Cleanups:

 * simplify nginx management with real template
 * rename sections to provide explanation in their name so it's less cryptic

Instead of trusting CSR id published by the node which tries to join the
cluster add a tool which is able to compare exposed CSR with one in caucase
and then decide to accept node in the cluster. This tool does what usual user
would do, and it's logic implemented as a script leads to much simpler profiles.

For sake of clean profiles csr_id has been removed, except when it's used for
self joining of the user to the cluster.

Adjust paths.
Cleanup.

Use relative paths. Cleanup.

CSR id shall be requested only when it's not available yet, as otherwise it
contacts caucase server needlessly, and in some circumstances it can result
with bogus new CSR.

Fixes a build error with recent gawk versions.

As refernce to the network-config-ipv4 part has been removed from the
publish-connection-information the part was not installed anymore, so the
netconfig.sh file was not added.

Fixed it by simply adding this part to the installed ones.

This fixes commit 3f7d8965

Server header might be changed by client facing caddy, for which caddy code
has been fixed to not transmit the Server header at all by default.
In ATS Server header has been disabled by configuration.
haproxy does not add Server header at all.
Thanks to improvement in the test backend, it's asserted that Server header
send by the backend is left intact.

This was useless. dumps is enough.

And upgrading to the python3-supported version (1.1) requires gtk3 and recent
versions of freetype, glib, atk, gtk, gtkmm, atkmm...

https://wiki.inkscape.org/wiki/Tracking_Dependencies

This reverts commit 27f574bc.

NEO now should support zodbpickle >= 2 with neoppod!19.

/cc @jerome
/merge-request-on !1125

Pick up nexedi/wendelin.core@3d0f134c to
fix build on Python3.

Depends on nexedi/erp5!1529 and nexedi/erp5!1534

See merge request nexedi/slapos!1114

See merge request nexedi/slapos!1117

This upgrade teaches nxdtest to properly cancel test run and test job
when it receives SIGTERM or SIGINT.

See nexedi/nxdtest@6f75fa90...56e52da6 for details.

/reviewed-by @jerome
/reviewed-on nexedi/slapos!1121

Finishing touches to release wendelin.core 2.0.alpha2:

- Switch to using File IO provided by Pygolang
- Fix build_dso on clean checkout (not relevant for SlapOS)

nexedi/wendelin.core@11e023cf...ad6305c0

Tested via:

ERP5: https://nexedijs.erp5.net/#/test_result_module/20220127-586CEAFD
Wendelin: https://nexedijs.erp5.net/#/test_result_module/20220127-8444F82A

This upgrade adds ability to handle signals via nogil channels, and
other improvements and fixes.

See nexedi/pygolang@e18adbab and
https://pypi.org/project/pygolang/#pygolang-change-history for details.

/reviewed-by @jerome
/reviewed-on nexedi/slapos!1120

This upgrade prepares wendelin.core to be forward-compatible with
upcoming pygolang upgrade. It also brings in fixes to several crashes
caught by first on-field usage.

See nexedi/wendelin.core@49f826b1...11e023cf for details.

/reviewed-by @jerome
/reviewed-on nexedi/slapos!1120

See merge request nexedi/slapos!1118

Going Go1.17.3 -> Go1.17.6 brings in fixes to compiler, runtime and stdlib
including security fixes to syscall and net/http packages.

https://go.dev/doc/devel/release#go1.17.minor

Tested via:

- SlapOS.SoftwareReleases.IntegrationTest.Python2 (https://nexedijs.erp5.net/#/test_result_module/20220118-7422B39B), and
- SlapOS.SoftwareReleases.IntegrationTest.Python3 (https://nexedijs.erp5.net/#/test_result_module/20220118-30B9FCE8)

/cc @luke, @jerome, @alain.takoudjou, @xavier_thompson @tomo, @lu.xu
/reviewed-on nexedi/slapos!1116