Fix spire-server configmap UpstreamAuthority/aws_pca and KeyManager/a…

[unufr33]

Current configmap template renders to a wrong KeyManager and UpstreamAuthority configurarion when aws_kms and aws_pca are enabled and container is crashing. The proposed changes will fix the issue.

[kfox1111]

Thanks for the fixes.

Could you please add a quick section to tests/unit/spire_test.go that turns the features on to see if it renders ok? Not having any tests at all, even "does it render to valid yaml" makes it hard to not accidentally break.

[faisal-memon]

@unufr33 Do you have time to write the test? No problem if not, we can merge without it. We understand people are busy.

[unufr33]

Hope this works

[faisal-memon]

Is this test failure related to this pr?

INFO: Downloading bootstrap version 'v2.0.0' of cosign to verify version to be installed...
      https://storage.googleapis.com/cosign-releases/v2.0.0/cosign-linux-amd64
Error: Process completed with exit code 56.

[unufr33]

I don't think the failed tests are related to my changes. My changes are in the "checks" job and it passes. The failed jobs passed several times before that .Can you please rerun ?

[kfox1111]

Is this test failure related to this pr?

INFO: Downloading bootstrap version 'v2.0.0' of cosign to verify version to be installed...
      https://storage.googleapis.com/cosign-releases/v2.0.0/cosign-linux-amd64
Error: Process completed with exit code 56.

Looks like a transient network issue. I just re-triggered the failed job to rerun. I'm expecting it to pass.

[kfox1111]

I don't think the failed tests are related to my changes. My changes are in the "checks" job and it passes. The failed jobs passed several times before that .Can you please rerun ?

Yeah. The tests look great. Thanks for writing them. :)

[kfox1111]

LGTM. Thanks!