chore: operator roles sanitizing

[tolusha]

What does this PR do?

• fixed product page link: https://www.eclipse.org/che
• removed redundant cluster roles delegated to che service account:

- apiGroups:
    - extensions
  resources:
    - ingresses
  verbs:
    - get
    - list
    - watch
    - create
    - delete
- apiGroups:
    - apps
  resources:
    - secrets
  verbs:
    - list

• removed duplicated cluster roles delegated to che-operator service account
• removed redundant cluster roles delegated to che-operator service account:

- apiGroups:
    - ''
  resources:
    - nodes
  verbs:
    - get
- apiGroups:
    - apiextensions.k8s.io
  resources:
    - customresourcedefinitions
  verbs:
    - get
    - create
    - update
- apiGroups:
    - apps
  resourceNames:
    - che-operator
  resources:
    - deployments/finalizers
  verbs:
    - update
- apiGroups:
    - extensions
  resources:
    - ingresses
  verbs:
    - '*'
- apiGroups:
    - user.openshift.io
  resources:
    - users
  verbs:
    - list
    - delete
- apiGroups:
    - config.openshift.io
  resources:
    - infrastructures
  verbs:
    - get
    - list
    - watch
- apiGroups:
    - operators.coreos.com
  resources:
    - clusterserviceversions
  verbs:
    - list
    - get
    - watch
- apiGroups:
    - operators.coreos.com
  resources:
    - subscriptions
  verbs:
    - get
- apiGroups:
    - cert-manager.io
  resources:
    - issuers
    - certificates
  verbs:
    - create
    - get
    - list
    - update
- apiGroups:
    - config.openshift.io
  resources:
    - oauths
  verbs:
    - get
    - list
    - watch
    - patch
- apiGroups:
    - user.openshift.io
  resources:
    - identities
  verbs:
    - delete
- apiGroups:
    - apps
  resources:
    - secrets
  verbs:
    - list

• removed some roles delegated to che-operator service account, since the same exist as cluster roles
• copied roles from leader_election_role.yaml to roles.yaml
• removed redundant files
  • config/rbac/auth_proxy_client_clusterrole.yaml
  • config/rbac/auth_proxy_role.yaml
  • config/rbac/auth_proxy_role_binding.yaml
  • config/rbac/auth_proxy_service.yaml
  • config/rbac/checluster_editor_role.yaml
  • config/rbac/checluster_viewer_role.yaml
  • config/rbac/leader_election_role.yaml
  • config/rbac/leader_election_role_binding.yaml

Screenshot/screencast of this PR

N/A

What issues does this PR fix or reference?

eclipse-che/che#22811

How to test this PR?

1. Prepare a patch file if needed:

cat > /tmp/cr-patch.yaml <<EOF
apiVersion: org.eclipse.che/v2
kind: CheCluster
spec: {}
EOF

2. Deploy the operator:

OpenShift

./build/scripts/olm/test-catalog-from-sources.sh --cr-patch-yaml /tmp/cr-patch.yaml

on Minikube

./build/scripts/minikube-tests/test-operator-from-sources.sh --cr-patch-yaml /tmp/cr-patch.yaml

PR Checklist

As the author of this Pull Request I made sure that:

• The Eclipse Contributor Agreement is valid
• Code produced is complete
• Code builds without errors
• Tests are covering the bugfix
• Development resource are up to date
• The repository devfile is up to date and works
• Sections What issues does this PR fix or reference and How to test this PR completed
• Relevant user documentation updated
• Relevant contributing documentation updated
• CI/CD changes implemented, documented and communicated

Reviewers

Reviewers, please comment how you tested the PR when approving it.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: tolusha

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 59.66%. Comparing base (09e4471) to head (cb00247).

❗ Current head cb00247 differs from pull request most recent head 8ce831c. Consider uploading reports for the commit 8ce831c to get more accurate results

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #1814      +/-   ##
==========================================
- Coverage   59.73%   59.66%   -0.07%     
==========================================
  Files          74       74              
  Lines        9114     9099      -15     
==========================================
- Hits         5444     5429      -15     
  Misses       3294     3294              
  Partials      376      376              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[tolusha]

/retest

[openshift-ci]

@tolusha: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/prow/v14-che-behind-proxy	b94c5da	link	true	/test v14-che-behind-proxy

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.