About This Patch:
- Using templates (present since NGINX 1.19) to populate conf.d.
- Templates allow for the use of environment variables defined in the .env files, enabling us to distinguish between PROD and DEV environments, particularly for the server name and certificate paths.
- A proxy_params file is required according to the PROD configuration.
- Mounting /etc/letsencrypt/live for SSL certificates. The base path is the same in both environments.
- NGINX_ARTIFACTS_SSL_PATH variable is necessary because, in DEV, the same certificate is used for both CI and BB.
- Attaching net_back to the NGINX container to facilitate communication with master-web via DNS.
- Removing net_front from master-web; communication will be handled through NGINX.
- NGINX access/error logs are written to the Docker-Compose relative path logs/nginx, which is needed for Zabbix collection.

TODO Before Migration to PROD:
- Address all FIXME comments.
  - Cross-reference proxy pass
  - helper_files directory name on hz-bbm2.
  - location /cloud-init ?

TODO Before Deployment in DEV:
- Disable the HAProxy service.

This will require some changes in Zabbix configuration for collecting these NGINX metrics. (replacing HAProxy metrics)

We don't have CrossReference in DEV, yet.
For PROD I've configured the WG IP, for DEV it's just the loopback interface and will raise a BAD GATEWAY error.

- add certbot container to docker-compose
- bind mount www path for certbot/nginx to use it in webroot mode
- bind mount certboot cnf path to allow nginx find the certificates

Fixes:
- remove location /cloud-init as per review
- remove NGINX_ARTIFACTS_SSL_PATH variable . Will use multiple domain names in PROD also.
- adapt bb and ci NGINX conf files to handle the acme challenge on port 80
- fix generate-config to avoid exposing nginx env variables to other containers other than nginx