APS-3966 Assign SDX Edge Server to Gateway

[ikethecoder]

Description

The gwa-api provisions gateway configuration on Kong using Kong's Admin API and the deck CLI. With the introduction of the Secure Data Exchange, there could be any number of SDX Edge Servers running. Three changes are being made to support SDX:

1. Due to the way Edge Servers are deployed, there is no need to use the Kube-API to provision additional resources to setup routes, so this feature needs to be disabled when the data plane is an Edge Server.

2. The Kong Control Plane for the API Gateway has sensitive information, which is OK when the same team that runs the data planes also runs the control planes. But with SDX, the Edge Servers will be operated by different organizations. For this reason, a new Kong Control Plane will be used for distributing configuration to Edge Servers. Provisioning new routing policies will ensure that no sensitive information (private keys, passwords, etc) will be part of the configuration.

3. Open up the ability to configure key_sets and keys so that teams are able to register public keys that can be used to verify tokens that are signed by their own private keys

Types of changes

• New feature (non-breaking change which adds functionality)

Checklist

• I have checked that unit tests pass locally with my changes
• I have added tests that prove my fix is effective or that my feature works
• I have added necessary documentation (if appropriate)

[github-actions]

🔔 Friendly reminder: The following reviewers still need to review this PR: @Elson9, @rustyjux

PS: @sdqdadat

[Elson9]

Looks good, added a couple tests.