refactor(helm): move provisionSSL under ssl.provision and update templates/schema

Nest the top-level provisionSSL into ssl.provision in values.yaml and values.schema.json,
and update _helpers.tpl to read the new path (using default false via dig) so PROVISION_SSL
env is derived from ssl.provision.

HelmChart/Public/oneuptime/templates/_helpers.tpl

@@ -50,7 +50,7 @@ Usage:
 - name: HOST
   value: {{ $.Values.host }}
 - name: PROVISION_SSL
-  value: {{ ternary "true" "false" $.Values.provisionSSL | quote }}
+  value: {{ ternary "true" "false" (default false (dig "ssl" "provision" $.Values)) | quote }}
 - name: STATUS_PAGE_CNAME_RECORD
   value: {{ $.Values.statusPage.cnameRecord }}
 - name: ALLOWED_ACTIVE_MONITOR_COUNT_IN_FREE_PLAN

HelmChart/Public/oneuptime/values.schema.json

@@ -22,9 +22,15 @@
       "type": "string",
       "enum": ["http", "https"]
     },
-    "provisionSSL": {
-      "type": "boolean",
-      "description": "Automatically provision a Let's Encrypt certificate for the primary host"
+    "ssl": {
+      "type": "object",
+      "properties": {
+        "provision": {
+          "type": "boolean",
+          "description": "Automatically provision a Let's Encrypt certificate for the primary host"
+        }
+      },
+      "additionalProperties": false
     },
     "oneuptimeSecret": {
       "type": ["string", "null"]

HelmChart/Public/oneuptime/values.yaml

@@ -5,8 +5,9 @@ global:
 # Please change this to the domain name / IP where OneUptime server is hosted on.
 host: localhost
 httpProtocol: http
-# Automatically provision a Let's Encrypt certificate for the primary host when set to true.
-provisionSSL: false
+ssl:
+  # Automatically provision a Let's Encrypt certificate for the primary host when set to true.
+  provision: false
 
 # Important: You do need to set this to a long random values if you're using OneUptime in production.
 # Please set this to string.