Update permission checks to include top level directory checks
By expanding the scope of the checks, we can maintain a higher
level of security by ensuring that newly created files created
in project configuration folders are restricted in the same
way as those listed, without hoping that projects update these
checks when they create these files.
For example, making /etc/keystone/keystone.conf have ownership
settings of root:keystone with permissions of 640 is practically
the same as giving /etc/keystone settings of root:keystone with
permissions of 750 as the same user restrictions apply.
Replacing Keystone deprecated configuration auth_uri with www_authenticate_uri
The auth_uri option is deprecated in favor of www_authenticate_uri and
will be removed in the Stien releasee and silently ignored in
the future. This change updates Keystone's auth_uri to
www_authenticate_uri in the security checklist docs.