feat(rbac): add support for rejectUnauthorized in PG SSL options

[boris154]

Backstage's database configurations support various options that are being passed to the DB connection, example:

ssl:
  require: true
  rejectUnauthorized: false

This PR adds support for rejectUnauthorized.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign invinciblejai for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

[PatAKnight]

Hello, thank you for this PR. Sorry that we are just now getting around to reviewing it. Had one comment that I wanted to get your opinion on.

[PatAKnight]

It looks like there is some overlap between the knex client and typeORMAdapter. So we can update to instead do something like the below. Which would allow us to no longer have to use custom code to resolve ssl.

adapter = await TypeORMAdapter.newAdapter({
  type: 'postgres',
  username: databaseConfig?.getString('connection.user'),
  password: databaseConfig?.getString('connection.password'),
  ...knexClient.client.config.connection
});

What do you think?