[AIRFLOW-3918] Add ssh private-key support to git-sync for KubernetesExecutor

[dmateusp]

Make sure you have checked all steps below.

Jira

• My PR addresses the following Airflow Jira issues and references them in the PR title. For example, "[AIRFLOW-XXX] My Airflow PR"
• https://issues.apache.org/jira/browse/AIRFLOW-XXX
• In case you are fixing a typo in the documentation you can prepend your commit with [AIRFLOW-XXX], code changes always need a Jira issue.

https://issues.apache.org/jira/browse/AIRFLOW-3918

Description

• Here are some details about my PR, including screenshots of any UI changes:

This PR adds support for Git Sync authentication through SSH key (e.g. a GitHub deployment read-only key)

Tests

• My PR adds the following unit tests OR does not need testing for this extremely good reason:

• test_worker_configuration_auth_both_ssh_and_user: tests that configuration validation throws an exception when both user authentication and SSH authentication are configured
• test_init_environment_using_git_sync_ssh: tests that the environment is correctly set up for the init pod when using SSH auth
• test_make_pod_git_sync_ssh: tests that the make_pod function correctly generates the config for the pod, covers security_context test

Additionally tested at HBC on our cluster

Commits

• My commits all reference Jira issues in their subject lines, and I have squashed multiple commits if they address the same issue. In addition, my commits follow the guidelines from "How to write a good git commit message":

1. Subject is separated from body by a blank line
2. Subject is limited to 50 characters (not including Jira issue reference)
3. Subject does not end with a period
4. Subject uses the imperative mood ("add", not "adding")
5. Body wraps at 72 characters
6. Body explains "what" and "why", not "how"

Documentation

• In case of new functionality, my PR adds documentation that describes how to use it.
• When adding new operators/hooks/sensors, the autoclass documentation generation needs to be added.
• All the public functions and the classes in the PR contain docstrings that explain what it does

Code Quality

• Passes flake8

[codecov-io]

Codecov Report

Merging #4777 into master will decrease coverage by 0.06%.
The diff coverage is 95.45%.

@@            Coverage Diff             @@
##           master    #4777      +/-   ##
==========================================
- Coverage   74.44%   74.38%   -0.07%     
==========================================
  Files         450      450              
  Lines       28974    29021      +47     
==========================================
+ Hits        21571    21587      +16     
- Misses       7403     7434      +31

Impacted Files	Coverage Δ
.../kubernetes_request_factory/pod_request_factory.py	100% <100%> (ø)	⬆️
airflow/contrib/kubernetes/pod.py	100% <100%> (ø)	⬆️
airflow/contrib/kubernetes/worker_configuration.py	92.85% <100%> (+1.45%)	⬆️
airflow/contrib/executors/kubernetes_executor.py	65.01% <100%> (+1.06%)	⬆️
...etes_request_factory/kubernetes_request_factory.py	72.63% <66.66%> (-0.2%)	⬇️
airflow/www/security.py	79.65% <0%> (-13.28%)	⬇️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update bb91246...bd2f503. Read the comment docs.

[codecov-io]

Codecov Report

Merging #4777 into master will increase coverage by 0.03%.
The diff coverage is 97.22%.

@@            Coverage Diff             @@
##           master    #4777      +/-   ##
==========================================
+ Coverage   74.44%   74.47%   +0.03%     
==========================================
  Files         450      450              
  Lines       28970    28994      +24     
==========================================
+ Hits        21567    21594      +27     
+ Misses       7403     7400       -3

Impacted Files	Coverage Δ
.../kubernetes_request_factory/pod_request_factory.py	100% <100%> (ø)	⬆️
airflow/contrib/kubernetes/pod.py	100% <100%> (ø)	⬆️
airflow/contrib/kubernetes/worker_configuration.py	93.45% <100%> (+2.06%)	⬆️
airflow/contrib/executors/kubernetes_executor.py	65.12% <100%> (+1.17%)	⬆️
...etes_request_factory/kubernetes_request_factory.py	72.63% <66.66%> (-0.2%)	⬇️
airflow/operators/python_operator.py	95.83% <0%> (ø)	⬆️
...irflow/contrib/example_dags/example_gcp_spanner.py	0% <0%> (ø)	⬆️
airflow/contrib/utils/gcp_field_validator.py	91.52% <0%> (ø)	⬆️
airflow/ti_deps/dep_context.py	100% <0%> (ø)	⬆️
... and 8 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 0044260...9cf874f. Read the comment docs.

[ashb]

Few minor changes - some of the "suggestions" need more than just the one line requested, but github doesn't allow multi line suggestions.

Looking good. Please ping me again once you've done the changes (in Slack is better, my inbox is a mess right now)

[ashb]

I'll mark this for 10.3 - and we'll attempt to cherry-pick it in to the release branch.