fixes #22196 - use ssl chain for hammer if available

[stbenjam]

Alternative to Katello/katello-installer#574

[theforeman-bot]

@stbenjam, the Redmine ticket used is for a different project than the one associated with this GitHub repository. Please either:

• check #22196: Hammer errors out with certificate errors when using custom certs
  is the correct one
• move ticket #22196 from Katello to the Installer project
• or file a new ticket in the Installer project

If changing the ticket number used, remember to update the PR title and the commit message (using git commit --amend).

---

This message was auto-generated by Foreman's prprocessor

[stbenjam]

Actually chain has to have a value so the pick will never fall through to just the CA. I updated it to only use the chain for hammer.

I wonder if that's actually a bug hiding there, if a user in Foreman tries to use their own custom certs and only specifies a CA File but chain defaults to the Puppet certs. That'd not happen in Katello though, but I don't know much about how Foreman-only users tend to set this up.

[stbenjam]

@ekohl I made a small change, could you take a quick look again?

[ekohl]

Thanks!