Make injector.external(Bao|Vault)Addr take precendence over global.external(Bao|Vault)Addr

[baurmatt]

Description

Previously it used to be the other way around. This had multiple disadvantages:

1. More specific configuration should override broader values.
2. Setting the injector specific config (injector.external(Bao|Vault)Addr) led to server being disabled.
3. Injector cannot be configured to connected to a external (e.g. Proxy) URL while still having OpenBao run in-cluster.

Rationale

Fixes #157.

Checklist

• This PR contains a description of the changes I'm making
• I read the CONTRIBUTING.md guide
• I updated the version in Chart.yaml if feasible according to Semantic versioning
• I updated the changelog with an artifacthub.io/changes annotation in Chart.yaml
• I update the changelog in CHANGELOG.md
• I updated applicable README.md files using helm-docs
• By contributing this change, I certify I have signed-off on the
  DCO ownership statement
  and this change did not use post-BUSL-licensed code from HashiCorp.
  Existing MPL-licensed code is still allowed, subject to attribution.
  Code authored by yourself and submitted to HashiCorp for inclusion is
  also allowed.

[eyenx]

hi @baurmatt

Thanks for your PR.

Please change the check to check precedence of injector.externalBaoAddr over global.externalBaoAddr and add second test checking precedence of injector.externalBaoAddr over injector.externalVaultAddr

[baurmatt]

Makes sense, added! :)

[eyenx]

I'm asking myself if we should even change this to openbao.global. or jst keep the openbao.externalAddr and have the addiional openbao.injector.externalAddr just take precedence.

[eyenx]

@baurmatt is there a specific reason for the global prefix?

[baurmatt]

I've added the global prefix to make it clearer why variable to function works with. I personally would mix up global and injector addr in this function. It's currently a clean way to work around the "legacy" vault variables.