add oci support to skypilot helm chart

Author: funkypenguin

charts/stable/skypilot/Chart.yaml

@@ -3,7 +3,7 @@ name: skypilot
 description: A Helm chart for deploying SkyPilot API server on Kubernetes
 icon: "https://raw.githubusercontent.com/skypilot-org/skypilot/master/charts/skypilot/skypilot.svg"
 type: application
-version: 0.0.2-pre-05
+version: 0.0.2-pre-06
 appVersion: "0.0"
 dependencies:
   - name: ingress-nginx

charts/stable/skypilot/templates/api-deployment.yaml

@@ -312,7 +312,12 @@ spec:
         - name: cudo-config
           mountPath: /root/.config/cudo
           readOnly: true
-        {{- end }}        
+        {{- end }}      
+        {{- if .Values.ociCredentials.enabled }}
+        - name: oci-config
+          mountPath: /root/.oci
+          readOnly: true
+        {{- end }}                
         {{- if .Values.lambdaCredentials.enabled }}
         - name: lambda-config
           mountPath: /root/.lambda_cloud
@@ -525,6 +530,45 @@ spec:
         - name: cudo-config
           mountPath: /root/.config/cudo
       {{- end }}
+      {{- if .Values.ociCredentials.enabled }}
+      - name: create-oci-credentials
+        {{- with .Values.securityContext }}
+        securityContext:
+          {{- toYaml . | nindent 10 }}
+        {{- end }}
+        image: {{ .Values.apiService.image }}
+        command: ["/bin/sh", "-c"]
+        args:
+        - |
+          echo "Setting up OCI credentials..."
+          if [ -n "$OCI_CREDENTIALS_CONFIG" && -n "$OCI_CREDENTIALS_KEY" ]; then
+            echo "OCI credentials found in environment variable."
+            mkdir -p /root/.oci
+            cat > /root/.oci/config <<EOF
+          $OCI_CREDENTIALS_CONFIG
+          EOF
+            cat > /root/.oci/oci_api_key.pem <<EOF
+          $OCI_CREDENTIALS_KEY
+          EOF          
+          else
+            echo "OCI credentials not found in environment variables. Skipping credentials setup."
+            sleep 600
+          fi
+        env:
+        - name: OCI_CREDENTIALS_CONFIG
+          valueFrom:
+            secretKeyRef:
+              name: {{ .Values.ociCredentials.ociSecretName }}
+              key: config
+        - name: OCI_CREDENTIALS_KEY
+          valueFrom:
+            secretKeyRef:
+              name: {{ .Values.ociCredentials.cudoSecretName }}
+              key: key              
+        volumeMounts:
+        - name: oci-config
+          mountPath: /root/.oci
+      {{- end }}      
       {{- if .Values.lambdaCredentials.enabled }}
       - name: create-lambda-credentials
         {{- with .Values.securityContext }}
@@ -618,7 +662,11 @@ spec:
       {{- if .Values.cudoCredentials.enabled }}
       - name: cudo-config
         emptyDir: {}
-      {{- end }}      
+      {{- end }} 
+      {{- if .Values.ociCredentials.enabled }}
+      - name: oci-config
+        emptyDir: {}
+      {{- end }}            
       {{- if .Values.lambdaCredentials.enabled }}
       - name: lambda-config
         emptyDir: {}

charts/stable/skypilot/values.yaml

@@ -474,6 +474,12 @@ cudoCredentials:
   # Name of the secret containing the CUDO credentials. Only used if enabled is true.
   cudoSecretName: cudo-credentials
 
+# Populate CUDO credentials from the secret with key `api_key`
+ociCredentials:
+  enabled: false
+  # Name of the secret containing the OCI credentials, with required keys "config" and "key". Only used if enabled is true.
+  ociSecretName: oci-credentials  
+
 # Populate Lambda credentials from the secret with key `api_key`
 lambdaCredentials:
   enabled: false