Upgrade Kustomize manifests and align with Helm chart

### What feature you would like to be added?

Proposing a comprehensive fix and alignment of the upstream Kustomize manifests with the Helm chart to make Kustomize a production-ready deployment option.

**Current State**: The upstream Kustomize manifests at `config/` are fundamentally broken:
- Running `kustomize build config/default/` **fails entirely** (missing entry point)
- Missing core deployment files (`config/default/kustomization.yaml`, `config/manager/` directory, `config/rbac/kustomization.yaml`)
- Multiple critical bugs in existing manifests (webhook configs, RBAC, CRD patches)
- Missing RBAC permissions (PVCs, ResourceQuotas)
- No CI validation to prevent future drift

**Result**: Kustomize cannot deploy the operator. Only Helm works upstream.

Following the community decision in PR #2702 and #2820 to maintain Kustomize manifests, we've completed a comprehensive audit and identified **four critical gap categories**:

### 1: Deployment Incompleteness 
Examples of missing essential files that prevent any deployment:
- `config/default/kustomization.yaml` - main entry point that composes all resources
- `config/manager/` directory - controller Deployment, ServiceAccount, Namespace


### 2: Logic and Naming Bugs 
Examples of syntax errors and configuration mistakes in existing files:
- Duplicate CRD patches (partially fixed in PR #2820, awaiting merge)
- Missing SparkConnect CRD in kustomization


### 3: RBAC Permission Divergence 
Examples of security gaps and missing permissions compared to Helm chart:
- Missing PVC permissions (breaks PVC-backed Spark applications)
- Missing ResourceQuota permissions (quota enforcement broken)

### 4: Kustomize Feature Parity Deficit 
Examples of production features only available in Helm:
- No PodDisruptionBudget (operator can be disrupted during maintenance)
- No Prometheus PodMonitor (manual metrics setup required)

### Why is this needed?

_No response_

### Describe the solution you would like

_No response_

### Describe alternatives you have considered

_No response_

### Additional context

_No response_

### Love this feature?

Give it a 👍 We prioritize the features with most 👍

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Upgrade Kustomize manifests and align with Helm chart #2871

What feature you would like to be added?

1: Deployment Incompleteness

2: Logic and Naming Bugs

3: RBAC Permission Divergence

4: Kustomize Feature Parity Deficit

Why is this needed?

Describe the solution you would like

Describe alternatives you have considered

Additional context

Love this feature?

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Upgrade Kustomize manifests and align with Helm chart #2871

Description

What feature you would like to be added?

1: Deployment Incompleteness

2: Logic and Naming Bugs

3: RBAC Permission Divergence

4: Kustomize Feature Parity Deficit

Why is this needed?

Describe the solution you would like

Describe alternatives you have considered

Additional context

Love this feature?

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions