Feature: External Database TLS Certificate configuration

[harrytang]

Description of the change

This feature request adds support for configuring TLS certificates when connecting to an external database via the NextCloud Helm chart. The proposed change introduces new Helm chart parameters that allow users to specify certificate details such as the TLS CA certificate, client certificate, and corresponding key. With these additions, users can enable secure, encrypted connections to external databases by simply providing the necessary certificate paths or inline values in the chart's configuration. This update involves modifying the chart templates and values files to integrate these new settings seamlessly into the existing deployment process.

Benefits

• Enhanced Security: Encrypts communication between NextCloud and the external database, reducing the risk of data interception.
• Compliance: Helps meet organizational security policies and regulatory requirements that mandate encrypted connections.
• Flexibility: Allows users to integrate with existing certificate management systems, improving compatibility with managed external database services.

Possible drawbacks

• Increased Complexity: Adds additional configuration options which might complicate the setup for users who are less familiar with TLS and certificate management.
• Potential for Misconfiguration: Incorrectly specified certificate paths or values could lead to connection failures, necessitating thorough documentation and testing.
• Upgrade Considerations: Existing deployments without TLS settings may require careful review during upgrades to ensure a smooth transition.

Additional information

• Documentation updates will be provided to guide users through configuring TLS certificates within the Helm chart.
• This feature is optional and will not impact users who do not need to configure TLS for their external databases.