KNOX-3276: New configuration added to control CM Client SSL setup

[smolnar82]

KNOX-3276: - New config for CM client SSL configs

What changes were proposed in this pull request?

Summary

This change introduces dedicated SSL protocol and cipher configuration for the Cloudera Manager discovery client.

Changes

• Added new gateway configuration properties:
  • gateway.cloudera.manager.service.discovery.ssl.protocols
  • gateway.cloudera.manager.service.discovery.ssl.ciphers
• Added new configuration methods to GatewayConfig:
  • getClouderaManagerClientSSLProtocols()
  • getClouderaManagerClientSSLCiphers()
• Updated DiscoveryApiClient to use these new configuration methods when building the OkHttp TLS ConnectionSpec.
• Refactored TLS setup logic into helper methods:
  • configureSslProtocols
  • configureSslCiphers
• Added DEBUG-level logging to indicate which SSL protocols and ciphers are used and whether they were explicitly configured.
• Updated tests and test configuration classes to use the new configuration methods.

Default behavior

• If the new CM-specific properties are not configured, the discovery client falls back to:
  • the gateway-wide includedSSLProtocols
  • the gateway-wide includedSSLCiphers
• If those are also empty, the client uses the SSLContext supported protocols and cipher suites.

Impact

Allows independent TLS configuration for the Cloudera Manager discovery client without affecting other gateway TLS settings.

How was this patch tested?

Ran existing unit tests.

Integration Tests

N/A

UI changes

N/A

[github-actions]

Test Results

7 tests   7 ✅  1s ⏱️
1 suites  0 💤
1 files    0 ❌

Results for commit 4883a55.

♻️ This comment has been updated with latest results.