openscanhub: add credentials for aws

Signed-off-by: Siteshwar Vashisht <svashisht@redhat.com>

playbooks/openshift-apps/openscanhub.yml

@@ -102,6 +102,11 @@
     template: etc-resallocserver-pools-configmap.yml
     objectname: etc-resallocserver-pools-configmap
     when: env == "staging"
+  - role: openshift/object
+    app: openscanhub
+    template: aws-credentials-configmap.yml
+    objectname: aws-credentials-configmap
+    when: env == "staging"
   - role: openshift/object
     app: openscanhub
     file: deployment-resalloc-server.yml

roles/openshift-apps/openscanhub/files/deployment-resalloc-server.yml

@@ -59,6 +59,9 @@ spec:
           - mountPath: /etc/resallocserver/pools.yaml
             name: etc-resallocserver-pools-configmap
             subPath: pools.yaml
+          - mountPath: /var/lib/resallocserver/.aws/credentials
+            name: aws-credentials-configmap
+            subPath: credentials
       dnsPolicy: ClusterFirst
       restartPolicy: Always
       schedulerName: default-scheduler
@@ -71,3 +74,6 @@ spec:
         - name: etc-resallocserver-pools-configmap
           configMap:
             name: etc-resallocserver-pools-config
+        - name: aws-credentials-configmap
+          configMap:
+            name: aws-credentials-config

roles/openshift-apps/openscanhub/templates/aws-credentials

@@ -0,0 +1,3 @@
+[default]
+aws_access_key_id = {{ openscanhub_aws_access_key_id }}
+aws_secret_access_key = {{ openscanhub_aws_secret_access_key }}

roles/openshift-apps/openscanhub/templates/aws-credentials-configmap.yml

@@ -0,0 +1,15 @@
+{% macro load_file(filename) %}{% include filename %}{%- endmacro -%}
+---
+apiVersion: v1
+kind: List
+metadata: {}
+items:
+- apiVersion: v1
+  kind: ConfigMap
+  metadata:
+    name: aws-credentials-config
+    labels:
+      app: openscanhub
+  data:
+    credentials: |-
+      {{ load_file('aws-credentials') | indent(6) }}