osc-changes

gistfile1.txt

diff --git a/controllers/scc.go b/controllers/scc.go
index f9d490e..c0401fe 100644
--- a/controllers/scc.go
+++ b/controllers/scc.go
@@ -38,6 +38,6 @@ func GetScc() *secv1.SecurityContextConstraints {
                        },
                },
                Volumes: []secv1.FSType{secv1.FSTypeAll},
-               Users:   []string{"system:serviceaccount:openshift-sandboxed-containers-operator:monitor"},
+               //Users:   []string{"system:serviceaccount:openshift-sandboxed-containers-operator:monitor"},
        }
 }
 
---

diff --git a/controllers/openshift_controller.go b/controllers/openshift_controller.go
index 894a7f5..6993c1a 100644
--- a/controllers/openshift_controller.go
+++ b/controllers/openshift_controller.go
@@ -128,10 +128,14 @@ func (r *KataConfigOpenShiftReconciler) Reconcile(ctx context.Context, req ctrl.
                if err != nil {
                        if k8serrors.IsNotFound(err) {
                                r.Log.Info("Creating a new installation monitor daemonset", "ds.Namespace", ds.Namespace, "ds.Name", ds.Name)
-                               err = r.Client.Create(context.TODO(), ds)
-                               if err != nil {
-                                       r.Log.Error(err, "error when creating monitor daemonset")
-                                       res = ctrl.Result{Requeue: true, RequeueAfter: 15 * time.Second}
+                               //Can we create it post runtimeClass creation ?
+
+                               if r.kataConfig.Status.RuntimeClass == "kata" {
+                                       err = r.Client.Create(context.TODO(), ds)
+                                       if err != nil {
+                                               r.Log.Error(err, "error when creating monitor daemonset")
+                                               res = ctrl.Result{Requeue: true, RequeueAfter: 15 * time.Second}
+                                       }
                                }
                        } else {
                                r.Log.Error(err, "could not get monitor daemonset, try again")

---
diff --git a/config/manifests/bases/sandboxed-containers-operator.clusterserviceversion.yaml b/config/manifests/bases/sandboxed-containers-operator.clusterserviceversion.yaml
index 4632356..4db1ccf 100644
--- a/config/manifests/bases/sandboxed-containers-operator.clusterserviceversion.yaml
+++ b/config/manifests/bases/sandboxed-containers-operator.clusterserviceversion.yaml
@@ -9,6 +9,10 @@ metadata:
           "kind": "KataConfig",
           "metadata": {
             "name": "example-kataconfig"
+          },
+          "spec": {
+             "checkNodeEligibility": "false",
+             "logInfo": "info
           }
         }
       ]
@@ -105,16 +109,6 @@ spec:
   install:
     spec:
       clusterPermissions:
-      - rules:
-        - apiGroups:
-          - security.openshift.io
-          resourceNames:
-          - sandboxed-containers-operator-scc
-          resources:
-          - securitycontextconstraints
-          verbs:
-          - use
-        serviceAccountName: monitor
       - rules:
         - apiGroups:
           - ""