From fa4a841a0593aa33929461aa3d5752d85c10e90f Mon Sep 17 00:00:00 2001
From: Daniil Nedostup <daniil_nedostup@epam.com>
Date: Tue, 27 Aug 2024 23:02:05 +0300
Subject: [PATCH] chore: Add ExternalSecret for Ansible AWX Credentials and URL
 (#285)

---
 .../externalsecret-ci-awx.yaml                | 31 +++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 deploy-templates/templates/external-secrets/externalsecret-ci-awx.yaml

diff --git a/deploy-templates/templates/external-secrets/externalsecret-ci-awx.yaml b/deploy-templates/templates/external-secrets/externalsecret-ci-awx.yaml
new file mode 100644
index 000000000..60f13d1fc
--- /dev/null
+++ b/deploy-templates/templates/external-secrets/externalsecret-ci-awx.yaml
@@ -0,0 +1,31 @@
+{{- if and .Values.externalSecrets.enabled .Values.externalSecrets.manageEDPInstallSecrets }}
+{{- $secretStore := include "edp-install.secretStoreName" . }}
+{{- $awsSecretName := .Values.externalSecrets.manageEDPInstallSecretsName }}
+apiVersion: external-secrets.io/v1beta1
+kind: ExternalSecret
+metadata:
+  name: ci-awx
+spec:
+  target:
+    template:
+      metadata:
+        labels:
+          app.edp.epam.com/secret-type: awx
+  refreshInterval: 1h
+  secretStoreRef:
+    kind: SecretStore
+    name: {{ $secretStore }}
+  data:
+  - secretKey: username
+    remoteRef:
+      key: {{ $awsSecretName }}
+      property: ci-awx.username
+  - secretKey: password
+    remoteRef:
+      key: {{ $awsSecretName }}
+      property: ci-awx.password
+  - secretKey: url
+    remoteRef:
+      key: {{ $awsSecretName }}
+      property: ci-awx.url
+{{- end }}