docker registry in katello doesn't work with installed pulp3
Currently katello expects the smart proxy pulpcore.yaml to contain:
And then podman pull communicates like this:
podman ----> katello ----> pulp_content_app
There is a desire to not have katello know about or communicate directly with teh content app, so the communication needs to look like this:
podman ---> katello ---> apache ---> pulp_content_app
Right now, all auth ends at katello, so we will need apache to authorize katello to talk to the pulp_content_app registry. We can use an ssl cert to do this.
Fixes #28698 - route docker registry through apache
This change changes the expectation of the content_app_url setting
provided by the pulp3 smart proxy plugin. Now katello will be
proxying through apache to a special endpoint /pulpcore_registry/
that requires a client cert with a CN of 'admin'.