The ros-ocp-backend endpoints need to be accessible from external client in a secured manner (external to the cluster). Since we're using keycloak as the multi cluster ID provider, we need to add the sidecar design to the ros-ocp-backend to ensure it is able to communicate with external clients using the keycloak token.