Add test for ACME container with CA

A new test has been added to create a CA container and an
ACME container using the CA, then run ACME tests using
certbot.

The pki-acme-run script has been modified to create the
/conf/acme folder to store imported config files if it
doesn't exist already.

The pki-server-run script has been modified to create an
NSS database and the /conf/certs folder to store imported
certs if they don't exist already.

The pki-server run command has been modified to provide
options to skip config upgrade and migration. The
pki-server-run script has also been modified to use these
options since in general containers should not alter the
config files automatically (including creating backup files).
For now containers should assume that the config files are
already upgraded/migrated by the admin.

The basic ACME container test has been updated to no longer
expect a backup folder to be created in the /logs folder.

.github/workflows/acme-container-test.yml → .github/workflows/acme-container-basic-test.yml

@@ -1,12 +1,11 @@
-name: ACME container
+name: Basic ACME container
 
 on: workflow_call
 
 env:
   DS_IMAGE: ${{ vars.DS_IMAGE || 'quay.io/389ds/dirsrv' }}
 
 jobs:
-  # docs/installation/podman/Deploying_PKI_ACME_Responder_on_Podman.md
   test:
     name: Test
     runs-on: ubuntu-latest
@@ -58,6 +57,7 @@ jobs:
           mkdir conf
           mkdir logs
 
+      # https://github.com/dogtagpki/pki/wiki/Deploying-ACME-Container
       - name: Set up ACME container
         run: |
           docker run \
@@ -147,7 +147,6 @@ jobs:
           # everything should be owned by root group (GID=0)
           # TODO: review owners/permissions
           cat > expected << EOF
-          drwxrwx--- root backup
           -rw-rw-rw- root catalina.$DATE.log
           -rw-rw-rw- root host-manager.$DATE.log
           -rw-rw-rw- root localhost.$DATE.log