feat(helm): Offer the possiblity to disable aggreate-to-view and aggregate-to-edit on default ClusterRoles

[linolayani]

Problem Statement

View and edit permissions are aggregated to the view and edit default ClusterRoles.
Clusters admins would like to have the possiblity to disable this functionnality, so they can attach the default edit ClusterRole to a user, while blocking him from modifying an ExternalSecret

Related Issue

Fixes #4159

Proposed Changes

Adding the aggregateToView and aggregateToEdit booleans under the rbac object

Checklist

• I have read the contribution guidelines
• All commits are signed with git commit --signoff
• My changes have reasonable test coverage
• All tests pass with make test
• I ensured my PR is ready for review with make reviewable

[Skarlso]

You likely have to run make helm.test.update. I expect it to fail hopefully.

[linolayani]

Hi @Skarlso, I ran make.helm.test.update, and it passed. That's the command I've been using to verify that my tests are correct.
What makes you hope it fails ? 🤔

[Skarlso]

What makes you hope it fails ?

I hoped it would show that there is a change in the values.yaml. :D

It's okay. :)

[Skarlso]

/ok-to-test sha=fb89fe9c1e45e7c5206652afd5c1ea01f7c3f665

[eso-service-account-app]

[Bot] - ✅ e2e for fb89fe9c1e45e7c5206652afd5c1ea01f7c3f665 passed

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud