CloudSQL: read-replica mode with SSL-enabled support

[muvaf]

What problem are you facing?

CloudSQL can be run in read-replica mode with an external master. Though in order to configure it to talk with master through a SSL connection, one needs to provide the SSL client information generated from the master's certificate. Currently, there is no way to give an SSL certificate as an input to CloudSQL resource. Details here.

How could Crossplane help solve your problem?

The actual issue here is that there is no way to provide an input in the form of a secret to resource provisioning. If we get that, it should be fairly easy to create a secret, refer it in the resource and use that in Insert call.

[muvaf]

Per https://github.com/crossplane/crossplane/pull/1129 , we have defined how sensitive inputs should be handled. Implementing this issue would serve as an example.