elections: add a secret containing the client_secrets for flask-oidc

Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>

roles/openshift-apps/elections/templates/client_secrets.json

@@ -0,0 +1,17 @@
+{
+    "web": {
+        "auth_uri": "https://id{{env_suffix}}.fedoraproject.org/openidc/Authorization",
+        "client_id": "{{ elections_oidc_client_id }}",
+{% if env == 'staging' %}
+        "client_secret": "{{ elections_oidc_client_secret_stg }}",
+{% else %}
+        "client_secret": "{{ elections_oidc_client_secret }}",
+{% endif %}
+        "issuer": "https://id{{env_suffix}}.fedoraproject.org/openidc/",
+        "redirect_uris": [
+            "https://elections{{env_suffix}}.fedoraproject.org/oidc_callback"
+        ],
+        "token_uri": "https://id{{env_suffix}}.fedoraproject.org/openidc/Token",
+        "userinfo_uri": "https://id{{env_suffix}}.fedoraproject.org/openidc/UserInfo"
+    }
+}

roles/openshift-apps/elections/templates/secret.yml

@@ -0,0 +1,16 @@
+---
+{% macro load_file(filename) %}{% include filename %}{%- endmacro -%}
+apiVersion: v1
+kind: List
+metadata: {}
+items:
+
+- apiVersion: v1
+- kind: Secret
+- metadata:
+  name: elections-secret
+  labels:
+    app: elections
+  data:
+    client_secrets.json: |-
+      {{ load_file('client_secrets.json' | indent }}