From 6f80686ebed1ae3db5f02a2e330c338cc704eb40 Mon Sep 17 00:00:00 2001
From: Jonny Stoten <jonny.stoten@docker.com>
Date: Tue, 2 Jul 2024 16:44:10 +0100
Subject: [PATCH] Add volume mount for TLS certs

---
 .../templates/attest-provider-deployment.yaml     | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/charts/attest-provider/templates/attest-provider-deployment.yaml b/charts/attest-provider/templates/attest-provider-deployment.yaml
index 7b7d41e..b06772f 100644
--- a/charts/attest-provider/templates/attest-provider-deployment.yaml
+++ b/charts/attest-provider/templates/attest-provider-deployment.yaml
@@ -52,6 +52,11 @@ spec:
           mountPath: /tmp/gatekeeper
           readOnly: true
         {{- end }}
+        {{- if .Values.certSecret }}
+        - name: tls-cert-key
+          mountPath: {{ .Values.certDir }}
+          readOnly: true
+        {{- end }}
       restartPolicy: Always
       nodeSelector:
         kubernetes.io/os: linux
@@ -66,3 +71,13 @@ spec:
           - key: ca.crt
             path: ca.crt
       {{- end }}
+      {{- if .Values.certSecret }}
+      - name: tls-cert-key
+        secret:
+          secretName: {{ .Values.certSecret }}
+          items:
+          - key: tls.crt
+            path: tls.crt
+          - key: tls.key
+            path: tls.key
+      {{- end }}