Add configuration to support the alternate Kerberos SPNEGO port

Summary

In Add support for Kerberos settings (!2132 - merged) we are adding support in the Charts for creating the configuration necessary for the GitLab Kerberos integration.

Due to a current limitation in git - git-HTTPS will not fallback to Basic Auth when offered a Negotiate header. Notably this will break GitLab CI/CD from working because the GitLab Runner uses in-url credentials with the CI_JOB_TOKEN

In order to accommodate this, GitLab supports setting an alternate port for Kerberos SPNEGO support - leaving the regular port for Basic auth. Git clients that want to make use of Kerberos are presented with an alternate URL in the UI, and the Negotiation headers are written out for requests to the alternate port.

We'll need to support this alternate port in the Service and TCP ConfigMap for the Chart, when the global.appConfig.kerberos.dedicatedPort settings are enabled and supplied.