From ec6adda90c0eb7b257393c6738adb197cef50efb Mon Sep 17 00:00:00 2001
From: Michaela Lang <milang@redhat.com>
Date: Tue, 18 Jul 2023 10:10:48 +0200
Subject: [PATCH] adding Postgres client certificate secret,mount overlay

---
 kustomize/base/quay.deployment.yaml | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/kustomize/base/quay.deployment.yaml b/kustomize/base/quay.deployment.yaml
index 837978fa6..a01b7c05e 100644
--- a/kustomize/base/quay.deployment.yaml
+++ b/kustomize/base/quay.deployment.yaml
@@ -33,6 +33,18 @@ spec:
                   name: cluster-trusted-ca
               - secret:
                   name: extra-ca-certs
+        - name: postgres-certs
+          projected:
+            sources:
+            - secret:
+              name: postgresql-ca
+              optional: true
+            - secret:
+              name: postgresql-client-certs
+              optional: true
+        - name: postgres-certs-store
+          emptyDir:
+            sizeLimit: 5m
       affinity:
         podAntiAffinity:
           preferredDuringSchedulingIgnoredDuringExecution:
@@ -129,3 +141,5 @@ spec:
             - name: extra-ca-certs
               readOnly: true
               mountPath: /conf/stack/extra_ca_certs
+            - name: postgres-certs
+              mountPath: /.postgres