From e9ee23e745ccd09ce8763f3a47188f6a99e77810 Mon Sep 17 00:00:00 2001
From: Ryan Dyer <ryan.dyer@favordelivery.com>
Date: Mon, 29 Apr 2024 15:54:10 -0500
Subject: [PATCH] Set aws file secrets as individual files

---
 charts/atlantis/Chart.yaml                 |  2 +-
 charts/atlantis/templates/statefulset.yaml | 11 +++++++++--
 2 files changed, 10 insertions(+), 3 deletions(-)

diff --git a/charts/atlantis/Chart.yaml b/charts/atlantis/Chart.yaml
index e4a1de5a..ca329314 100644
--- a/charts/atlantis/Chart.yaml
+++ b/charts/atlantis/Chart.yaml
@@ -3,7 +3,7 @@ apiVersion: v1
 appVersion: v0.27.3
 description: A Helm chart for Atlantis https://www.runatlantis.io
 name: atlantis
-version: 5.0.1
+version: 5.1.0
 keywords:
   - terraform
 home: https://www.runatlantis.io
diff --git a/charts/atlantis/templates/statefulset.yaml b/charts/atlantis/templates/statefulset.yaml
index e5b79828..22dff835 100644
--- a/charts/atlantis/templates/statefulset.yaml
+++ b/charts/atlantis/templates/statefulset.yaml
@@ -520,10 +520,17 @@ spec:
             mountPath: /home/atlantis/.netrc
             subPath: netrc
           {{- end }}
-          {{- if or .Values.aws.credentials .Values.aws.config .Values.awsSecretName }}
+          {{- range $filename, $_ := .Values.aws }}
+          {{- if has $filename (list "credentials" "config") }}
           - name: aws-volume
             readOnly: true
-            mountPath: {{ .Values.aws.directory | default "/home/atlantis/.aws" }}
+            mountPath: {{ $.Values.aws.directory | default "/home/atlantis/.aws" }}/{{ $filename }}
+            subPath: {{ $filename }}
+          {{- else if has $filename (list "awsSecretName") }}
+          - name: aws-volume
+            readOnly: true
+            mountPath: {{ $.Values.aws.directory | default "/home/atlantis/.aws" }}
+          {{- end }}
           {{- end }}
           {{- if .Values.tlsSecretName }}
           - name: tls