inject rbac for coordinator to enable logs/exec

[Congrool]

What type of PR is this?

/kind feature

What this PR does / why we need it:

Currently, kubectl logs to poolcoordinator cannot work because the apiserver in pool-coordinator is not authorized to access the kubelet server, in other words it cannot get sub-resources proxy/logs. This pr will inject relative rbac rule to enable the apiserver to access the kubelet server.

The proposal in origin PR #1384 was deprecated for problems in offline scenario.

Which issue(s) this PR fixes:

Fixes #1176

other Note

The way we do the injection is that: the leader yurthub should try to create the relative rbac rules for openyurt:yurt-coordinator:apiserver after winning the election. It will start a goroutine to create the rbac rules which will retry on faile. This goroutine will exit only when the rbac is created successfully or the leader changes.

[openyurt-bot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: Congrool
To complete the pull request process, please assign rambohe-ch
You can assign the PR to them by writing /assign @rambohe-ch in a comment when ready.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
1.4% Duplication

[codecov]

Codecov Report

Attention: Patch coverage is 0% with 57 lines in your changes are missing coverage. Please review.

Project coverage is 51.04%. Comparing base (237fe8f) to head (3d80028).
Report is 194 commits behind head on master.

Files	Patch %	Lines
pkg/yurthub/yurtcoordinator/coordinator.go	0.00%	57 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #1637      +/-   ##
==========================================
+ Coverage   50.93%   51.04%   +0.11%     
==========================================
  Files         137      218      +81     
  Lines       16029    26403   +10374     
==========================================
+ Hits         8164    13477    +5313     
- Misses       7126    11679    +4553     
- Partials      739     1247     +508     

Flag	Coverage Δ
unittests	51.04% <0.00%> (+0.11%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

[sonarcloud]

Quality Gate failed

Failed conditions
C Security Rating on New Code (required ≥ A)

See analysis details on SonarCloud

Catch issues before they fail your Quality Gate with our IDE extension SonarLint

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.