controller: use rbac 'coordination.k8s.io'

Without having RBAC 'coordination.k8s.io' to samba-operator, we would
get an error log-message upon 'make delete-deploy' over OpenShift, due
to forbidden RBAC:

  "... leaderelection.go:330] error retrieving resource lock
  samba-operator-system/b60bd080.samba.org: leases.coordination.k8s.io
  "b60bd080.samba.org" is forbidden ..."

Signed-off-by: Shachar Sharon <[email protected]>

Author: synarete

config/rbac/role.yaml

@@ -28,6 +28,17 @@ rules:
       - patch
       - update
       - watch
+  - apiGroups:
+      - coordination.k8s.io
+    resources:
+      - leases
+    verbs:
+      - create
+      - delete
+      - get
+      - list
+      - update
+      - watch
   - apiGroups:
       - ""
     resources:

controllers/smbshare_controller.go

@@ -50,6 +50,7 @@ type SmbShareReconciler struct {
 // +kubebuilder:rbac:groups=core,resources=configmaps,verbs=get;list;watch;create;update;patch;delete
 // +kubebuilder:rbac:groups=core,resources=services,verbs=get;list;watch;create;update;patch;delete
 // +kubebuilder:rbac:groups=core,resources=events,verbs=create
+// +kubebuilder:rbac:groups=coordination.k8s.io,resources=leases,verbs=get;list;watch;create;update;delete
 
 //revive:enable