Description

Ephemeral environments are using custom Keycloak for authenticating users, we have to enable scoped profile config on it as well.

Details

Chrome recently adopted scoped profile (thin vs full profile) and is now adding new scopes to Keycloak. This is running just fine on stage. However ephemeral environments are using custom Kecylocak for each environment, so we'll have to adjust the image which is used there to include at least `nameandterms` in the scope. We'll have to eventually allow both `nameandterms` and `rhfull` to be passed in the scope, since some apps are expecting to use full profile and not just the thin one.

Steps to reproduce

• Launch new ephemeral environment
• Expect `nameandterms` in the KC URL
• login
• Be redirected back to the eph environment