Enable MTLS memcached auth

[lmiccini]

This commit allows operators to use mtls as an authentication method against Memcached.
Nova controllers will detect the presence of a purposely-created mtls certificate (authCertSecret) and use this to configure the [cache] and [keystone_authtoken] sections accordingly.
Additional volumes/volumemounts will be appended to each pod.

Note that this commit switches from MemcachedServersWithInet to MemcachedServers since keystone-middleware now uses pymemcache when tls=true and there is no need to use "[]" to enclose the list of memcached servers even for ipv6.

[softwarefactory-project-zuul]

Build failed (check pipeline). Post recheck (without leading slash)
to rerun all jobs. Make sure the failure cause has been resolved before
you rerun jobs.

https://softwarefactory-project.io/zuul/t/rdoproject.org/buildset/8033b0e7210d47b5b21e38fb27ea0d24

✔️ openstack-meta-content-provider SUCCESS in 3h 51m 23s
✔️ nova-operator-kuttl SUCCESS in 41m 03s
❌ nova-operator-tempest-multinode POST_FAILURE in 2h 07m 21s
✔️ nova-operator-tempest-multinode-ceph SUCCESS in 2h 56m 07s

[lmiccini]

recheck

[ratailor]

LGTM.

[gibizer]

Could you please add test coverage, here and for the other controllers well, for the new cert mounting logic as well as the new config options generation?

[lmiccini]

Hey Gibi can you please have a look at the test that I added to novaapi and see if it is something that would work for the rest of the controllers? thanks!

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: lmiccini
Once this PR has been reviewed and has the lgtm label, please ask for approval from gibizer. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment