Update Helm Chart for running API Gateways in Agentless config and with external servers

[t-eckert]

Changes proposed in this PR:

• Add a key to the Helm chart externalServers.httpPort.
• Set CONSUL_HTTP_ADDR to the first external server host when externalServers is enabled.
• Set CONSUL_HTTP_ADDR using Kube DNS when running with local servers.
• Change addresses to not have http(s):// and instead set this using the CONSUL_HTTP_SSL environment variable.
• Add environment variable to API Gateway controller deployment for CONSUL_TLS_SERVER_NAME to support SNI with external servers.
• Set the consul.address for the GatewayClassConfig whether using external or local servers.
• Set ports for the three protocols when running with external servers.
• Add the BATS tests for these changes.

How I've tested this PR:

• BATS!
• Deployed API Gateways 0.4.0 with Consul-k8s 1.0.0-beta5 (Agentful) and local servers
• Deployed API Gateways 0.5.0 with Consul-k8s 1.0.0-beta5 (Agentful) and local servers
• Deployed API Gateways 0.4.0 with Consul-k8s 1.0.0-beta5 (Agentless) and local servers
• Deployed API Gateways 0.5.0 with Consul-k8s 1.0.0-beta5 (Agentless) and local servers
• Deployed API Gateways 0.4.0 with Consul-k8s 1.0.0-beta5 (Agentful) and external servers
• Deployed API Gateways 0.5.0 with Consul-k8s 1.0.0-beta5 (Agentful) and external servers
• Deployed API Gateways 0.5.0 with Consul-k8s 1.0.0-beta5 (Agentless) and external servers

Also verified that "Deployed API Gateways 0.4.0 with Consul-k8s 1.0.0-beta5 (Agentless) and external servers" does not work as is expected.

How I expect reviewers to test this PR:

• BATS!

Checklist:

• Tests added
• CHANGELOG entry added

  HashiCorp engineers only, community PRs should not add a changelog entry.
  Entries should use present tense (e.g. Add support for...)

[andrewstucki]

Hey @t-eckert just heads up, but just for some clarity I think we probably want the following for full compatibility. Checked are the ones that I think are the highest priority.

Agent-based

• Deployed hashicorp/consul-api-gateway:0.4 with Consul-k8s 1.0.0-beta5 (Agentful) and local servers
• Deployed hashicorppreview/consul-api-gateway:0.5-dev with Consul-k8s 0.49.0 (Agentful) and local servers
• Deployed hashicorppreview/consul-api-gateway:0.5-dev with Consul-k8s 1.0.0-beta5 (Agentful) and local servers
• Deployed hashicorppreview/consul-api-gateway:0.5-dev with Consul-k8s 1.0.0-beta5 (Agentful) and external servers

Agentless

• Deployed hashicorppreview/consul-api-gateway:0.5-dev with Consul-k8s 1.0.0-beta5 (Agentless) and local servers
• Deployed hashicorppreview/consul-api-gateway:0.5-dev with Consul-k8s 1.0.0-beta5 (Agentless) and external servers

The agentless/external setup will not work with our 0.4 release.

[andrewstucki]

Generally LGTM other than adding a test for CONSUL_HTTP_SSL. If you need any help verifying the configurations, let me know.

[andrewstucki]

One last change to add a test and then I'm good on feedback at this point, though you should probably wait for someone from the k8s team to sign off too.

[mikemorris]

Minor suggested tweaks to the comments for clarity, overall LGTM and feels like we'll have a good backwards compatibility/upgrade path story with this implemented.