Product CRD security spec's attribute SecretToken as k8s secret reference instead of open field

[eguzki]

Security Spec of the product has one attribute called Secret Token and it is an open field.

spec:
    backendUsages:
      swagger_petstore:
        path: /
    deployment:
      apicastHosted:
        authentication:
          userkey:
            security:
              secretToken: MyCustomSecretToken

It should be secret reference instead of open field

[eguzki]

OpenAPI CRD would also need to be changed

[carlkyrillos]

This will be addressed in THREESCALE-10838.