From edb2513a06b9d90afd8dbba33334f37e405fc3c3 Mon Sep 17 00:00:00 2001
From: Pier-Olivier Thibault <23230+pier-oliviert@users.noreply.github.com>
Date: Thu, 27 Jun 2024 09:56:50 -0400
Subject: [PATCH] Add configuration option for non-eks with Helm

---
 docs/tutorials/aws.md | 22 ++++++++++++++++++++--
 1 file changed, 20 insertions(+), 2 deletions(-)

diff --git a/docs/tutorials/aws.md b/docs/tutorials/aws.md
index 360d8c7a6..ae869ebe6 100644
--- a/docs/tutorials/aws.md
+++ b/docs/tutorials/aws.md
@@ -477,7 +477,7 @@ kubectl create --filename externaldns-no-rbac.yaml \
 
 ### When using clusters with RBAC enabled
 
-Update the `values.yaml` file you created earlier to include the annotations to link the Role ARN you created before.
+If you're using EKS, you can update the `values.yaml` file you created earlier to include the annotations to link the Role ARN you created before.
 
 ```yaml
 provider:
@@ -487,7 +487,25 @@ serviceAccount:
     eks.amazonaws.com/role-arn: arn:aws:iam::${ACCOUNT_ID}:role/${EXTERNALDNS_ROLE_NAME:-"external-dns"}
 ```
 
-When ready deploy, update your Helm installation:
+If you need to provide credentials directly using a secret (ie. You're not using EKS), you can change the `values.yaml` file to include volume and volume mounts.
+
+```yaml
+provider:
+  name: aws
+env:
+  - name: AWS_SHARED_CREDENTIALS_FILE
+    value: /.aws/credentials
+extraVolumes:
+  - name: aws-credentials
+    secret:
+      secretName: external-dns
+extraVolumeMounts:
+  - name: aws-credentials
+    mountPath: /.aws
+    readOnly: true
+```
+
+When ready, update your Helm installation:
 
 ```shell
 helm upgrade --install external-dns external-dns/external-dns --values values.yaml