Use configmap helm driver instead of secrets

[TrafalgarZZZ]

Ⅰ. Describe what this PR does

Fluid now use the default HELM_DRIVER(i.e. secret) to install/uninstall runtime charts which means Fluid controllers must have full permission to operate secret resources. This may incur potential security issue because secrets usually store sensitve user-applied data.

This PR makes the following changes to the code:

• Default HELM_DRIVER to configmap instead of secret
• For secrets, remove unnecessary permission like list/watch by skip caching secrets in informers.

IMPORTANT: BREAKING CHANGE NOTE
By migrating HELM_DRIVER from secret to configmap, it is possible that some resources may not be cleared after upgrade to the latest Fluid version. It is highly recommended to delete all the datasets and runtimes before upgrading to the version.

Ⅱ. Does this pull request fix one issue?

NONE

Ⅲ. List the added test cases (unit test/integration test) if any, please explain if no tests are needed.

Ⅳ. Describe how to verify it

Ⅴ. Special notes for reviews

[fluid-e2e-bot]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[codecov]

Codecov Report

Merging #3272 (e364a1b) into master (7411af5) will not change coverage.
The diff coverage is n/a.

❗ Current head e364a1b differs from pull request most recent head 58038d8. Consider uploading reports for the commit 58038d8 to get more accurate results

@@           Coverage Diff           @@
##           master    #3272   +/-   ##
=======================================
  Coverage   65.51%   65.51%           
=======================================
  Files         399      399           
  Lines       23198    23198           
=======================================
  Hits        15198    15198           
  Misses       6215     6215           
  Partials     1785     1785           

[cheyang]

Could you add logic for enabling HELM_DRIVER as secret.

[sonarqubecloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
2.0% Duplication

[cheyang]

/test fluid-e2e

[cheyang]

/lgtm
/approve

[fluid-e2e-bot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: cheyang

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [cheyang]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment