Adjust GSSAPI authorization settings
After consultation with GSSAPI experts, we determined that it is
1) Safe to allow the AuthServerAllowList for all https:// domains
2) Unwise to allow delegation by default to fedoraproject.org
Note that no security issue has been encountered to date relating
to delegation.
Among other benefits, this will enable GSSAPI login support to
CentOS projects for users with an active FEDORAPROJECT.ORG TGT.
Signed-off-by: Stephen Gallagher <sgallagh@redhat.com>