Fix bug possible to override project rbac built-in roles

[khanhtc1202]

What this PR does / why we need it:

As a spec, we don't allow users to update the project built-in RBAC roles. This PR changes the UpdateRBACRoles logic to ensure that.

Which issue(s) this PR fixes:

Fixes #

Does this PR introduce a user-facing change?:

• How are users affected by this change:
• Is this breaking change:
• How to migrate (if breaking change):

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 29.29%. Comparing base (b1177ab) to head (985afc7).

Additional details and impacted files

@@           Coverage Diff           @@
##           master    #4921   +/-   ##
=======================================
  Coverage   29.29%   29.29%           
=======================================
  Files         321      321           
  Lines       40835    40835           
=======================================
  Hits        11964    11964           
  Misses      27913    27913           
  Partials      958      958           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[t-kikuc]

I understood what you did and it worked well.

[ASK] Is there any way to update built-in roles from UI now? (hacking DOM?)
(just asking, not a problem)

[khanhtc1202]

I understood what you did and it worked well.

[ASK] Is there any way to update built-in roles from UI now? (hacking DOM?)

(just asking, not a problem)

Basically, it's just UI lock, mean we disable the edit button for built-in roles' policies. Not sure about your mentioned hacking DOM, but since there is no lock on server side, simply send a request to the update RBAC roles endpoint with updated built-in roles data will override it 👀

[t-kikuc]

@khanhtc1202 Thanks, I got it.

[t-kikuc]

Great detection, thanks 🚀

[ffjlabo]

LGTM 🙆‍♂️