fix: disable cluster wide controller role permissions (#10659)

Signed-off-by: AhmedGrati <ahmedgrati1999@gmail.com>

Author: AhmedGrati

charts/ingress-nginx/templates/controller-role.yaml

@@ -44,12 +44,15 @@ rules:
       - get
       - list
       - watch
+  # Omit Ingress status permissions if `--update-status` is disabled.
+  {{- if ne (index .Values.controller.extraArgs "update-status") "false" }}
   - apiGroups:
       - networking.k8s.io
     resources:
       - ingresses/status
     verbs:
       - update
+  {{- end }}
   - apiGroups:
       - networking.k8s.io
     resources: