So far, we have used TLS certs from eurac's IT. Now, we (re-)use k8s
infrastructure (in particular the kube-lego add-on) and let kube-lego
- request/renew TLS certificates
- manage the certificate within a k8s secret
We then make this k8s secret available to our nginx and configure nginx
to use it.

We also got rid of internal TLS communication between ingress and the
apps avoiding the necessity to (re-)create valid/self-signed certs. The
overhead seemed unnecessary.

Note: using HTTP(!) over port 443 for internal communication (Shibboleth mishap)

Fix #62

- disabled ssl-passthrough
- configured ssl-certs

FIXME:
- repository/oai is not accessible via http
- battle test the config

- ingress also listens on port 80
- nginx redirects to https except for path: repository/oai

variables to enable use of Kubernetes secrets
- fixed TLS use in ingress
- removed http/https redirect from nginx conf