✨ Rosa roles config implementations

[serngawy]

This PR is based on PR 5499 fixing all the comments

Based on proposal #5451
Adding RosaRoleConfig API with implementation. that should create account roles, operator roles, OIDC config and OIDC provider necessary to create ROSA HCP cluster.

Moving RosaMachinePoolAutoScaling definition to ROSAControlPlane to avoid circular dependency.

What type of PR is this?
/kind feature

What this PR does / why we need it:

Which issue(s) this PR fixes (optional, in fixes #<issue number>(, fixes #<issue_number>, ...) format, will close the issue(s) when PR gets merged):
Fixes #

Special notes for your reviewer:

Checklist:

• squashed commits
• includes documentation
• includes emoji in title
• adds unit tests
• adds or updates e2e tests

Release note:

Adding Rosa Role Config API and implementation

[PanSpagetka]

Looks good

[serngawy]

/test pull-cluster-api-provider-aws-test

[damdo]

/assign @damdo @nrb @richardcase

[damdo]

I think we could maybe extract this into a specific reconcileRosaRoleConfig function.

[serngawy]

fixed

[damdo]

Why do we have these RequeueAfter 60s functions all over the place?
Wouldn't erroring normally and retry soon after be ok?

[damdo]

@serngawy These ones are still here I see, any thoughts?

[damdo]

I think Unmanaged might be better.

[serngawy]

fixed

[damdo]

There is a missing EndOfFile here

[damdo]

I think it would be cleaner to have all these invocations that only return errors as inlined err checks

Suggested change

	err = r.setUpRuntime(ctx, scope)
	if err != nil {
	return ctrl.Result{}, fmt.Errorf("failed to set up runtime: %w", err)
	}
	if err := r.setUpRuntime(ctx, scope); err != nil {
	return ctrl.Result{}, fmt.Errorf("failed to set up runtime: %w", err)
	}

[serngawy]

fixed

[damdo]

/label tide/merge-method-squash

[damdo]

Thanks for addressing some of my comments, still some things left to be addressed but we are looking good! TY

[damdo]

@serngawy These ones are still here I see, any thoughts?

[serngawy]

Thanks @damdo , fixed all the err inline nil check AND removed the RequeueAfter 60 (just forget remove it with others)

[damdo]

Thanks for addressing my comments

[damdo]

/lgtm

Let's see what others think

[k8s-ci-robot]

LGTM label has been added.

Git tree hash: d89f75256d7de8148a3dccb2b6a17b1083baef51

[richardcase]

/approve

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: richardcase

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [richardcase]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[serngawy]

/cherry-pick release-2.9

[k8s-infra-cherrypick-robot]

@serngawy: #5667 failed to apply on top of branch "release-2.9":

Applying: Add RosaRoleConfig API and CRD.
Using index info to reconstruct a base tree...
M	config/crd/bases/controlplane.cluster.x-k8s.io_rosacontrolplanes.yaml
M	config/rbac/role.yaml
M	controlplane/rosa/controllers/rosacontrolplane_controller.go
M	go.mod
M	go.sum
M	pkg/rosa/ocmclient.go
M	test/mocks/ocm_client_mock.go
Falling back to patching base and 3-way merge...
Auto-merging test/mocks/ocm_client_mock.go
CONFLICT (content): Merge conflict in test/mocks/ocm_client_mock.go
Auto-merging pkg/rosa/ocmclient.go
CONFLICT (content): Merge conflict in pkg/rosa/ocmclient.go
Auto-merging go.sum
Auto-merging go.mod
Auto-merging controlplane/rosa/controllers/rosacontrolplane_controller.go
Auto-merging config/rbac/role.yaml
CONFLICT (content): Merge conflict in config/rbac/role.yaml
Auto-merging config/crd/bases/controlplane.cluster.x-k8s.io_rosacontrolplanes.yaml
error: Failed to merge in the changes.
hint: Use 'git am --show-current-patch=diff' to see the failed patch
hint: When you have resolved this problem, run "git am --continue".
hint: If you prefer to skip this patch, run "git am --skip" instead.
hint: To restore the original branch and stop patching, run "git am --abort".
hint: Disable this message with "git config advice.mergeConflict false"
Patch failed at 0001 Add RosaRoleConfig API and CRD.

In response to this:

/cherry-pick release-2.9

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[serngawy]

/cherry-pick release-2.9

[k8s-infra-cherrypick-robot]

@serngawy: new pull request created: #5696

In response to this:

/cherry-pick release-2.9

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.