Default root cert for RDS warehouses if not provided during warehouse creation

[fatchat]

When setting up an RDS warehouse, our destination doesn't require an SSL certificate if the ssl mode is set to allow. We don't know how Airbyte connects to the warehouse, but dbt and edr need to send a certificate in order to connect

If the warehouse is RDS we can using amazon's global bundle, which is on our production machine's disk at /home/ddp/global-bundle.pem (which we downloaded from https://truststore.pki.rds.amazonaws.com/global/global-bundle.pem)

if the sslmode is anything other than disable we should insert an sslrootcert key into

• the secrets manager's warehouse credentials
• the dbt cli profile

[fatchat]

before doing this, will try copying the global-bundle.pem file into /home/ddp/.postgresql/root.crt

this is where dbt looks by default

there was already a root.crt in that location which i renamed to root.crt.backup

[fatchat]

at airbytehelpers.py:885

we might insert

        if (
            "rds.amazonaws.com" in dbt_credentials["host"]
            and dbt_credentials["ssl_mode"]["mode"] == "require"
            and "sslrootcert" not in dbt_credentials
        ):
            dbt_credentials["sslrootcert"] = "/home/ddp/global-bundle.pem"  # make this an ENV var