[FEATURE REQ] Supporting certificates onboarding to APIM

[passionInfinite]

Please describe the feature.

As of now, we want to onboard certificates specifically to support mtls in backend. This APIM instance is shared across different teams so it cannot be done at the infrastructure level unless there is already any recommended process from Microsoft to handle it.

Workaround We can have additional powershell scripts that looks into mtls-certificates folder having spec.json file that can have content mentioning details about the Azure Key Vault and the Certificate that needs to be synced from the Azure Key Vault. The access to the AKV is done through managed identities. So that APIM instance SPN can access the certificates to sync from AKV.

Standard Solution Looking something standard support to apiops, How can we integrate that same process to the ApiOps so that teams can onboard api level certificates to support MTLS scenario.

Note: I am happy to contribute with some guidance from the core maintainers.