[kube-prometheus-stack] thanos-sidecar volumeMounts missing

[jhuspek]

Is your feature request related to a problem ?

The Prometheus CRD supports adding volumeMounts to the Thanos sidecar container, but this functionality is not currently available in the Helm chart. Additional volumes are required to include an internal CA certificate, which is necessary for establishing a secure connection to on-premise S3 storage.

Describe the solution you'd like.

Update the Helm chart to allow configuration of volumeMounts and associated volumes for the Thanos sidecar container via values.

Example Expected Configuration:

prometheus:
  prometheusSpec:
#... ...    
    thanos:
      objectStorageConfig:
        secret:
          type: S3
#... ...
      volumeMounts:
        - name: ca-certificates
          mountPath: /etc/ssl/certs/ca-certificates.crt
          subPath: ca.cer
#... ...
volumes:
  - name: ca-certificates
    configMap:
      name: cm-ca

Describe alternatives you've considered.

We can alternatively use an insecure connection to the S3 storage or the workaround mentioned in #1461 which involves overriding the Thanos sidecar container. However, this approach forces us to bypass the operator's native support, adding unnecessary complexity to operations.

Additional context.

No response

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Any further update will cause the issue/pull request to no longer be considered stale. Thank you for your contributions.