Create the dockercfg secret in osbs

Signed-off-by: Clement Verna <cverna@tutanota.com>

files/osbs/dockercfg-production-secret.j2

@@ -0,0 +1,5 @@
+{"candidate-registry.fedoraproject.org":
+    {"username": {{candidate_registry_osbs_prod_username}},
+     "password": {{candidate_registry_osbs_prod_password}},
+    }
+}

files/osbs/dockercfg-staging-secret.j2

@@ -0,0 +1,5 @@
+{"candidate-registry.stg.fedoraproject.org":
+    {"username": {{candidate_registry_osbs_stg_username}},
+     "password": {{candidate_registry_osbs_stg_password}},
+    }
+}

playbooks/groups/osbs-cluster.yml

@@ -394,6 +394,38 @@
       when: env == "production"
       environment: "{{ osbs_environment }}"
 
+- name: Add dockercfg secret to allow registry push
+  hosts: osbs-masters-stg[0]:osbs-masters[0]
+  tags:
+    - osbs-dockercfg-secret
+  user: root
+
+  vars_files:
+    - /srv/web/infra/ansible/vars/global.yml
+    - "/srv/private/ansible/vars.yml"
+    - /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
+  pre_tasks:
+    - name: Create the dockercfg secret file
+      template:
+        src: "{{ files }}/osbs/dockercfg-{{env}}-secret.j2"
+        dest: "/tmp/.dockercfg"
+        mode: 0400
+
+  roles:
+    - role: osbs-secret
+      osbs_secret_name: "v2-registry-dockercfg"
+      osbs_secret_type: kubernetes.io/dockercfg
+      osbs_secret_files:
+      - source: "/tmp/.dockercfg"
+        dest: .dockercfg
+
+  post_tasks:
+    - name: Delete the temporary secret file
+      file:
+        state: absent
+        path: "/tmp/.dockercfg"
+
+
 - name: Create worker namespace
   hosts: osbs-masters-stg[0]
   tags: