add ingress nginx webhook (#9033)

* add ingress nginx webhook

* fix ingress nginx template

roles/kubernetes-apps/ingress_controller/ingress_nginx/tasks/main.yml

@@ -25,12 +25,25 @@
       - { name: ds-ingress-nginx-controller, file: ds-ingress-nginx-controller.yml, type: ds }
     ingress_nginx_templates_for_psp:
       - { name: psp-ingress-nginx, file: psp-ingress-nginx.yml, type: podsecuritypolicy }
+    ingress_nginx_templates_for_webhook:
+      - { name: admission-webhook-configuration, file: admission-webhook-configuration.yml, type: sa }
+      - { name: sa-admission-webhook, file: sa-admission-webhook.yml, type: sa }
+      - { name: clusterrole-admission-webhook, file: clusterrole-admission-webhook.yml, type: clusterrole }
+      - { name: clusterrolebinding-admission-webhook, file: clusterrolebinding-admission-webhook.yml, type: clusterrolebinding }
+      - { name: role-admission-webhook, file: role-admission-webhook.yml, type: role }
+      - { name: rolebinding-admission-webhook, file: rolebinding-admission-webhook.yml, type: rolebinding }
+      - { name: admission-webhook-job, file: admission-webhook-job.yml, type: job }
 
 - name: NGINX Ingress Controller | Append extra templates to NGINX Ingress Templates list for PodSecurityPolicy
   set_fact:
     ingress_nginx_templates: "{{ ingress_nginx_templates_for_psp + ingress_nginx_templates }}"
   when: podsecuritypolicy_enabled
 
+- name: NGINX Ingress Controller | Append extra templates to NGINX Ingress Templates list for PodSecurityPolicy
+  set_fact:
+    ingress_nginx_templates: "{{ ingress_nginx_templates + ingress_nginx_templates_for_webhook }}"
+  when: ingress_nginx_webhook_enabled
+
 - name: NGINX Ingress Controller | Create manifests
   template:
     src: "{{ item.file }}.j2"