Mount CI integration scenario

[fredbi]

• [ ] with provisioned keycloak
• [ ] with fake/sample upstream (cf. github.com/authservice@oauth-provider)
• [ ] with service account token scenario (token in header auth)
• [ ] with cookies auth scenario (preferably with js client or better, browser)

Demonstrates e2e:

• auth routes work
• unauthorized routes don't
• upstream proxying works
• cookies auth work
• CSRF protection works

And in addition:

• metrics, health status endpoints work over HTTP, unauthenticated
• TLS test suite gives a good grade
• unwanted endpoints (login, etc... for forwarding proxy) don't work