The syndesis-rest-config ConfigMap should be a secret instead

[chirino]

syndesis-rest-config holds passwords and keys so it should be put in a Secret instead of a ConfigMap.

[rhuss]

@chirino which password except the sample database ? Having it as a secret it makes it a bit harder to edit during runtime because of the base 64 encoding. What's about extracting the security sensitive parts into an extra configuration and put this into a secret ?

[chirino]

Well the json db database password is there, as is the the encryption key. I'm fine with moving these to a separate config file.