feat: switch to include directives in pg_hba

[staaldraad]

Using include directives makes changing the pg_hba.conf on the fly more flexible. Enabling / disabling ssl enforcement for example only requires creating or removing a file, leaving the pg_hba.conf untouched. Allowing for more repeatable and stable processes and no need for regex based replace or custom parsers.

This will also support the just-in-time access work by allowing jit to be dynamically enabled/disabled

~⚠️ do not merge yet: requires admin-api update, otherwise ssl enforcement enable/disable will stop functioning~

The required admin-api update is included as v0.88.0 added to ansible/vars.yml

[staaldraad]

Requires pg16+