feat: cache asm secrets

[matt2e]

closes #1782
ASM changes:

• ASM uses leader package to coordinate between leader and followers
• The leader syncs secrets from ASM
  • Only requests secrets that have been updated since last sync
• Followers always uses admin service to get the secrets from the leader
• Both leader and follower cache secrets using secretsCache

Other changes:

• Remove additional db connection pools created at start up. Now a single db pool is created along with a dal at start up, which is then passed into the controller service and anything else that needs it

[alecthomas]

Wasn't this going to be two separate PRs?

[alecthomas]

Can you split it up please?

[matt2e]

I'll add some more tests to this PR too

[gak]

I've seen this pattern a few times, maybe a fn (rp *) ToRef (Ref, error) {} ?

[matt2e]

I'll make a helper func for this 👍

[matt2e]

ParseRef already exists 🤦‍♂️

[matt2e]

I'll add some more tests to this PR too

added integration test for syncing secrets

[alecthomas]

Suggested change

	go func() {
	l.watchForUpdates(ctx, clock)
	}()
	go l.watchForUpdates(ctx, clock)

[alecthomas]

We should log this error, even if at debug.

[matt2e]

This case is for when there is no error and is resetting the backoff. The error is logged below

[alecthomas]

I don't see a cache for the followers?

[alecthomas]

It would be more idiomatic to use a channel here, closing it once the value is available. This makes it simpler to do timeouts too.

[matt2e]

Oh nice

[matt2e]

Updated:

• added secretsCache which asmLeader and asmFollower use
• made the integration test where set secrets via ftl and ASM directly handle both cases:
  • setting/getting via leader which calls ASM
  • setting/getting via a follower, which calls a leader, which calls ASM