From 379aad93546ec2a1c47569160ba6c2491ccec3eb Mon Sep 17 00:00:00 2001
From: Andrew Azores <aazores@redhat.com>
Date: Wed, 16 Oct 2024 10:07:43 -0400
Subject: [PATCH 1/2] feat(storage): enable at-rest encryption on storage
 container

---
 .../common/resource_definitions/resource_definitions.go       | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/internal/controllers/common/resource_definitions/resource_definitions.go b/internal/controllers/common/resource_definitions/resource_definitions.go
index a93eddf5..e89f487b 100644
--- a/internal/controllers/common/resource_definitions/resource_definitions.go
+++ b/internal/controllers/common/resource_definitions/resource_definitions.go
@@ -1331,6 +1331,10 @@ func NewStorageContainer(cr *model.CryostatInstance, imageTag string, tls *TLSCo
 			Name:  "IP_BIND",
 			Value: "0.0.0.0",
 		},
+		{
+			Name:  "REST_ENCRYPTION_ENABLE",
+			Value: "1",
+		},
 	}
 
 	mounts := []corev1.VolumeMount{

From d2376adb05ed09e7e6fcef6e9fd81c62969a3476 Mon Sep 17 00:00:00 2001
From: Andrew Azores <aazores@redhat.com>
Date: Wed, 16 Oct 2024 10:09:36 -0400
Subject: [PATCH 2/2] fixup! feat(storage): enable at-rest encryption on
 storage container

---
 internal/test/resources.go | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/internal/test/resources.go b/internal/test/resources.go
index e576e5b1..0e804e80 100644
--- a/internal/test/resources.go
+++ b/internal/test/resources.go
@@ -1632,6 +1632,10 @@ func (r *TestResources) NewStorageEnvironmentVariables() []corev1.EnvVar {
 			Name:  "IP_BIND",
 			Value: "0.0.0.0",
 		},
+		{
+			Name:  "REST_ENCRYPTION_ENABLE",
+			Value: "1",
+		},
 		{
 			Name: "CRYOSTAT_SECRET_KEY",
 			ValueFrom: &corev1.EnvVarSource{