Add example for creating Self provisioned AWS S3 or S3 compatible storage credential for data protection

Signed-off-by: Ramya Bangera <bangerar@vmware.com>

Author: ramya-bangera

docs/data-sources/kubernetes_secret.md

@@ -30,14 +30,14 @@ Only one scope per resource is allowed.
 ```terraform
 # Read Tanzu Mission Control kubernetes secret : fetch namespace details
 data "tanzu-mission-control_kubernetes_secret" "read_secret" {
-  name                    = "tf-secret" # Required
-  namespace_name          = "tf-secret-namespace-name" # Required 
+  name           = "tf-secret"                # Required
+  namespace_name = "tf-secret-namespace-name" # Required 
 
   scope {
     cluster {
-        cluster_name            = "testcluster"  # Required
-        provisioner_name        = "attached"     # Default: attached
-        management_cluster_name = "attached"     # Default: attached
+      cluster_name            = "testcluster" # Required
+      provisioner_name        = "attached"    # Default: attached
+      management_cluster_name = "attached"    # Default: attached
     }
   }
 }

docs/resources/credential.md

@@ -172,6 +172,39 @@ resource "tanzu-mission-control_credential" "tmc_provisioned_aws_s3_cred" {
 }
 ```
 
+# Credential for Self provisioned AWS S3 or S3-compatible storage used for data-protection
+
+## Example Usage
+
+```terraform
+# Create Self provisioned AWS S3 or S3-compatible credential
+resource "tanzu-mission-control_credential" "aws_eks_cred" {
+  name = "tf-aws-s3-self-test"
+
+  meta {
+    description = "Self provisioned AWS S3 or S3-compatible storage credential for data protection"
+    labels = {
+      "key1" : "value1",
+    }
+  }
+
+  spec {
+    capability = "DATA_PROTECTION"
+    provider   = "GENERIC_S3"
+    data {
+      key_value {
+        type = "OPAQUE_SECRET_TYPE"
+        data = {
+          "aws_access_key_id"          = "abcd="
+          "aws_secret_access_key"      = "xyz=="
+        }
+      }
+    }
+  }
+  ready_wait_timeout = "1m" // Wait time for credential create operations to finish (default: 3m).
+}
+```
+
 # Credential for Tanzu Observability
 
 ## Example Usage

docs/resources/kubernetes_secret.md

@@ -36,18 +36,18 @@ Only one scope per resource is allowed.
 ```terraform
 # Create Tanzu Mission Control kubernetes secret with attached set as default value.
 resource "tanzu-mission-control_kubernetes_secret" "create_secret" {
-  name                    = "tf-secret" # Required
-  namespace_name          = "tf-secret-namespace-name" # Required 
+  name           = "tf-secret"                # Required
+  namespace_name = "tf-secret-namespace-name" # Required 
 
   scope {
     cluster {
-        cluster_name            = "testcluster"  # Required
-        provisioner_name        = "attached"     # Default: attached
-        management_cluster_name = "attached"     # Default: attached
+      cluster_name            = "testcluster" # Required
+      provisioner_name        = "attached"    # Default: attached
+      management_cluster_name = "attached"    # Default: attached
     }
   }
 
-   export = false # Default: false
+  export = false # Default: false
 
   meta {
     description = "Create namespace through terraform"
@@ -56,9 +56,9 @@ resource "tanzu-mission-control_kubernetes_secret" "create_secret" {
 
   spec {
     docker_config_json {
-        username           = "testusername" # Required
-        password           = "testpassword" # Required
-        image_registry_url = "testimageregistryurl" # Required
+      username           = "testusername"         # Required
+      password           = "testpassword"         # Required
+      image_registry_url = "testimageregistryurl" # Required
     }
   }
 }

examples/resources/credential/generic_s3.tf

@@ -0,0 +1,26 @@
+# Create Self provisioned AWS S3 or S3-compatible credential
+resource "tanzu-mission-control_credential" "aws_eks_cred" {
+  name = "tf-aws-s3-self-test"
+
+  meta {
+    description = "Self provisioned AWS S3 or S3-compatible storage credential for data protection"
+    labels = {
+      "key1" : "value1",
+    }
+  }
+
+  spec {
+    capability = "DATA_PROTECTION"
+    provider   = "GENERIC_S3"
+    data {
+      key_value {
+        type = "OPAQUE_SECRET_TYPE"
+        data = {
+          "aws_access_key_id"          = "abcd="
+          "aws_secret_access_key"      = "xyz=="
+        }
+      }
+    }
+  }
+  ready_wait_timeout = "1m" // Wait time for credential create operations to finish (default: 3m).
+}

templates/resources/credential.md.tmpl

@@ -31,6 +31,12 @@ For proxy credential add the annotation `proxyType : explicit` for explicit prox
 
 {{ tffile "examples/resources/credential/dataprotection.tf" }}
 
+# Credential for Self provisioned AWS S3 or S3-compatible storage used for data-protection
+
+## Example Usage
+
+{{ tffile "examples/resources/credential/generic_s3.tf" }}
+
 # Credential for Tanzu Observability
 
 ## Example Usage