fix!: small threat modelling issues

[n3rdc4ptn]

This PR fixes issues of the threat modelling.

removes endpoints:

• btp-so not needed/used
• kubeconfig not needed anymore, as oidc informtion is now provided in the frontend directly

Also removed the jsonpath header option as it wasn't used.

The kubeconfig endpoint removal is a breaking change and makes the backend only compatible with frontend version v0.2.0 and above as it needs the feature: openmcp-project/ui-frontend#77.

[Copilot]

Pull Request Overview

This PR fixes threat modelling issues by removing deprecated endpoints and unused JSONPath functionality.

• Removed endpoints: "/.well-known/openmcp/kubeconfig" and "/btp-so".
• Eliminated the unused JSONPath header and related processing in favor of JQ handling.
• Updated the routing and handler implementations to support the breaking change, requiring frontend v0.2.0 and above.

Reviewed Changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated 1 comment.

Show a summary per file

File	Description
internal/server/server.go	Removed routing for kubeconfig and btp-so endpoints.
internal/server/handlerWellKnownKubeconfig.go	Removed the kubeconfig handler implementation.
internal/server/handlerMain.go	Removed JSONPath header processing and logic; now solely using JQ.
internal/server/handlerCategory.go	Removed JSONPath branch in conditional response handling.
internal/server/handlerBtpSO.go	Removed the btp-so handler implementation.

Comments suppressed due to low confidence (1)

internal/server/server.go:16

• The removal of the kubeconfig and btp-so endpoints is a breaking change; ensure that the frontend integration and API documentation are updated accordingly.

mux.HandleFunc("/.well-known/openmcp/kubeconfig", defaultHandler(shared, wellKnownKubeconfigHandler))