switch to cert/IP association instead of site/IP
note that the upgrade path is still broken here, as the incorrect cert/IP associations get created. that huge SQL query need to be refactored. we completely remove the site/IP association, and the IP of a site isn't displayed in the frontend anymore, as that IP is irrelevant most of time. we still need to handle properly multiple IP certs (for clusters), but the database structure supports this at least.
Showing with 118 additions and 38 deletions