OSH-Infra: Add emptydirs for tmp

This PS adds emptydirs backing the /tmp directory in pods, which
is required in most cases for full operation when using a read only
filesystem backing the container.

Additionally some yaml indent issues are resolved.

Change-Id: I8b7f1614da059783254aa6efc09facf23fca3cad
Signed-off-by: Pete Birley <pete@port.direct>

kubernetes-keystone-webhook/templates/deployment.yaml

@@ -57,6 +57,8 @@ spec:
             - name: k8sksauth-pub
               containerPort: {{ tuple "kubernetes_keystone_webhook" "internal" "api" $envAll | include "helm-toolkit.endpoints.endpoint_port_lookup" }}
           volumeMounts:
+            - name: pod-tmp
+              mountPath: /tmp
             - name: etc-kubernetes-keystone-webhook
               mountPath: /etc/kubernetes-keystone-webhook
             - name: key-kubernetes-keystone-webhook
@@ -76,6 +78,8 @@ spec:
               subPath: start.sh
               readOnly: true
       volumes:
+        - name: pod-tmp
+          emptyDir: {}
         - name: etc-kubernetes-keystone-webhook
           emptyDir: {}
         - name: key-kubernetes-keystone-webhook

kubernetes-keystone-webhook/templates/pod-test.yaml

@@ -49,12 +49,16 @@ spec:
       command:
         - /tmp/kubernetes-keystone-webhook-test.sh
       volumeMounts:
+        - name: pod-tmp
+          mountPath: /tmp
         - name: kubernetes-keystone-webhook-bin
           mountPath: /tmp/kubernetes-keystone-webhook-test.sh
           subPath: kubernetes-keystone-webhook-test.sh
           readOnly: true
 {{ if $mounts_kubernetes_keystone_webhook_tests.volumeMounts }}{{ toYaml $mounts_kubernetes_keystone_webhook_tests.volumeMounts | indent 8 }}{{ end }}
   volumes:
+    - name: pod-tmp
+      emptyDir: {}
     - name: kubernetes-keystone-webhook-bin
       configMap:
         name: kubernetes-keystone-webhook-bin