support granting the "edit" role to users and groups
    
    This change also moves the "system:authenticated" group from the "view" to the "edit" role.
    This allows all users to access the pod console and view secrets, which helps when debugging test
    failures.