Enable mtls for file_server by default

[stephanme]

WHAT is this change about?

• inline the content of ops file enable-tls-on-file-server.yml
• deprecate this ops file
• configure tls.client_ca_cert
• update tests and doc

What customer problem is being addressed? Use customer persona to define the problem e.g. Alana is unable to...

This PR ensures that the file-server is secured by mTLS by default. Before, TLS could be enabled by ops-file enable-tls-on-file-server.yml but not mTLS.

Please provide any contextual information.

cloudfoundry/diego-release#1107

Has a cf-deployment including this change passed cf-acceptance-tests?

• YES
• NO

Does this PR introduce a breaking change? Please take a moment to read through the examples before answering the question.

• YES - please choose the category from below. Feel free to provide additional details.
• NO

How should this change be described in cf-deployment release notes?

• mTLS is enabled by default for the file-server
• The ops-file enable-tls-on-file-server.yml has become obsolete and is deprecated.

Does this PR introduce a new BOSH release into the base cf-deployment.yml manifest or any ops-files?

• YES - please specify
• NO

Does this PR make a change to an experimental or GA'd feature/component?

• experimental feature/component
• GA'd feature/component

Please provide Acceptance Criteria for this change?

• green tests
• a new semantic test "file-server-mtls-enabled-by-default" was added

What is the level of urgency for publishing this change?

• Urgent - unblocks current or future work
• Slightly Less than Urgent

Tag your pair, your PM, and/or team!

n/a