Remove hard-coded password

Currently the password is hard-coded in the container image. It should instead be possible to either have the user specify a password up-front, or create a random password and make it available after deployment as part of the Status. Either way, the password will need to be in a Secret referenced from either the spec or status.