[PP-1775] Ensure ssl connections to postgres work when ssl required

[dbernstein]

Description

When we upgraded to Postgres 16 in the tpp-dev environment, VLC was failing because PG 16 requires SSL connections by default.

This update fixes the problem in the docker container. In order to verify SSL connections are happening I enabled SSL for postgres 16 in the docker compose script and for extra certainty that the client is using SSL I updated the dev settings to specify the pg ssl mode.

THIS PR should be merged after #285 is merged.

Motivation and Context

https://ebce-lyrasis.atlassian.net/browse/PP-1775

How Has This Been Tested?

Manually tested using docker compose up. Without the update to the docker image I was getting the same error we were seeing in tpp-dev. With it I, I am able to connect.

Checklist

• I have updated the documentation accordingly.
• All new and existing tests passed.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 88.15%. Comparing base (1b1c78c) to head (95125f3).
Report is 5 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #286   +/-   ##
=======================================
  Coverage   88.15%   88.15%           
=======================================
  Files          37       37           
  Lines        2271     2271           
  Branches      304      304           
=======================================
  Hits         2002     2002           
  Misses        215      215           
  Partials       54       54           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[jonathangreen]

Made a few comments that would be good to clean up before merging.

There is also a reference to postgres:12 in the README that should get updated to postgres:16

virtual-library-card/README.md

Lines 142 to 146 in 1b1c78c

	### 2. Create PostgreSQL Container (Only for testing)
	Either create a new database in the production PostgreSQL Database. Or use the docker PostgreSQL container for testing.
	docker run -d --name pg --rm -e POSTGRES_USER=vlc -e POSTGRES_PASSWORD=test -e POSTGRES_DB=virtual_library_card postgres:12

[jonathangreen]

This change updates the Python version in the container to Python 3.12. Probably don't want to make this change until we update CI to test against Python 3.12 as well. Maybe leave this at Python 3.10 for now, since all our other containers are using 3.10 at the moment.

[jonathangreen]

Should update this to the new env var format to fix the deprecation warning.

Suggested change

	ENV PGSSLCERT /tmp/postgresql.crt
	ENV PGSSLCERT=/tmp/postgresql.crt

[jonathangreen]

Might be helpful to our future selves to add a comment here about why these lines are required. I'm thinking something like:

AWS RDS requires SSL, so we enable SSL for the database with a self signed snakeoil cert, so this database mimics the production databases as closely as we can.

[jonathangreen]

Minor: Unnecessary space added

[jonathangreen]

Minor: Unnecessary space added

[jonathangreen]

I think this should follow the same naming scheme we already have for these environment variables. Based on the name, I assumed it was a PG environment variable and I was looking in the PG docs to try to figure out what it did, until I found it defined here.

I'd suggest something like VLC_DEV_DB_SSL_MODE.

[dbernstein]

Thank you for the thorough review :)