Enable lazy certificates for Elasticsearch

[pioorg]

The latest versions of Elasticsearch (8.x) come with security enabled.
The somewhat older versions (which are still in use) can have security enabled.

It is handy for people to be able to enable security in their tests also for version 7.x as one of the required steps. This way they can start using the clients in the way that is going to work with 8.x as well.

The proposed changes basically postpone fetching the certificate until the client is created, instead of doing that as part of the container spin-up procedure.

[dadoonet]

Great! And I like the test a lot.

[pioorg]

Hi!

One thing I'm not sure of is what to do with:
protected void containerIsStarted(InspectContainerResponse containerInfo) {}

Shall the removal of it be allow-listed, or shall it be kept (e.g. with a comment), despite being empty?

[eddumelendez]

I think this will never be executed because certPath has a default value.

[pioorg]

Hmmm... What if one calls withCertPath("") when creating the container?

[eddumelendez]

Do you see any real use case when using ElasticsearchContainer and use withCertPath("")? If so, better to add a test to cover the scenario and also serve as a documentation. WDYT?

[pioorg]

Thank you very much for this comment @eddumelendez, it made me think ;-)
And as the result of this process I suggest yet another small change, basically the constructor of the ElasticsearchContainer should set the certPath by default only for versions, which do that by default, that is 8.
Previously it set it also for 7, which (after consideration) isn't optimal IMHO. I think, if version 7 requires manual opt-in to enable certificates, then this should be reflected in calling withCertPath(thePath). No opt in -> no path for 7.
Similarly for version 8, which has the certs enabled by default. If the user decides to disable them, ideally they should also state this intent by calling withCertPath("").

[eddumelendez]

Thanks for your contribution, @pioorg !