As a user of hosted control planes, I want the ignition-server to automatically detect changes to secret data and restart, so that updated secrets are picked up without requiring a manual pod restart.

Background

There is an existing TODO in ignition-server/cmd/start.go (line 109) that calls for adding an fsnotify watcher to cancel the context and trigger a restart if any of the secret data has changed. Currently, the ignition-server only handles SIGINT for graceful shutdown but does not watch for changes to mounted secret files.

Acceptance Criteria

• Test that the ignition-server detects file changes to mounted secret data using fsnotify
• Test that when secret data changes, the current context is cancelled and the server restarts
• Verify that normal operation is unaffected when no secret changes occur
• Test that SIGINT signal handling still works correctly alongside the fsnotify watcher