feat: implement multiple token support and token management

Added new pages for join token management.
The token can be created, revoked and deleted.
Also support tokens with the expiration.

Introduced new resources:
- `JoinToken` - keeps the token, it's ID is the token string.
- `JoinTokenStatus` - is generated by the controller, it calculates the
  information about the current token state: active, revoked or expired.
  And also has the information about if the token is default.
- `DefaultJoinToken` - is the singleton resource that keeps the current
  default token id.

The behavior of siderolink manager was changed to create a default
`JoinToken` resource out of whatever is currently stored in the
`siderolink.Config` resource.

`siderolink.ConnectionParams` is now generated by the controller.
It's using the default token from the `DefaultJoinToken` resource.

Infra providers will get their own unique tokens, but they won't use it
until the library is updated.
So they will still rely on the default join token until updated.

Dropped `siderolink.ConnectionParams` usage in most of the places. This
resource is kept only for the backward compatibility reasons.

Fixes: #907

Signed-off-by: Artem Chernyshev <[email protected]>

Author: Unix4ever

client/api/omni/management/management.pb.go

@@ -138,6 +138,7 @@ message CreateSchematicRequest {
   string media_id = 5;
   bool secure_boot = 6;
   SiderolinkGRPCTunnelMode siderolink_grpc_tunnel_mode = 7;
+  string join_token = 8;
 }
 
 message CreateSchematicResponse {
@@ -200,13 +201,27 @@ message MaintenanceUpgradeResponse {
 
 message GetMachineJoinConfigRequest {
   bool use_grpc_tunnel = 1;
+  string join_token = 2;
 }
 
 message GetMachineJoinConfigResponse {
   repeated string kernel_args = 1;
   string config = 2;
 }
 
+message GenJoinTokenResponse {
+  string token = 1;
+}
+
+message CreateJoinTokenRequest {
+  string name = 1;
+  google.protobuf.Timestamp expiration_time = 2;
+}
+
+message CreateJoinTokenResponse {
+  string id = 1;
+}
+
 service ManagementService {
   rpc Kubeconfig(KubeconfigRequest) returns (KubeconfigResponse);
   rpc Talosconfig(TalosconfigRequest) returns (TalosconfigResponse);
@@ -225,4 +240,5 @@ service ManagementService {
   rpc ReadAuditLog(ReadAuditLogRequest) returns (stream ReadAuditLogResponse);
   rpc MaintenanceUpgrade(MaintenanceUpgradeRequest) returns (MaintenanceUpgradeResponse);
   rpc GetMachineJoinConfig(GetMachineJoinConfigRequest) returns (GetMachineJoinConfigResponse);
+  rpc CreateJoinToken(CreateJoinTokenRequest) returns (CreateJoinTokenResponse);
 }