From b44584ba4d376c0d647cf9a4e4e4842b7aef919e Mon Sep 17 00:00:00 2001
From: Or Mergi <ormergi@redhat.com>
Date: Sun, 3 Mar 2024 13:47:03 +0200
Subject: [PATCH] manifests: Cleanup controller Deployment manifest

Remove node-affinity comments as there is no need to manage multu arch nodes
at the moment.

Set seccompProfile to RuntimeDefault, as there is no intention to support older
versions of k8s/OCP (< 1.19/4.11) at the moment.

Signed-off-by: Or Mergi <ormergi@redhat.com>
---
 config/manager/manager.yaml | 33 +++------------------------------
 1 file changed, 3 insertions(+), 30 deletions(-)

diff --git a/config/manager/manager.yaml b/config/manager/manager.yaml
index 7c61a6c..114bd97 100644
--- a/config/manager/manager.yaml
+++ b/config/manager/manager.yaml
@@ -36,35 +36,10 @@ spec:
       labels:
         control-plane: controller-manager
     spec:
-      # TODO(user): Uncomment the following code to configure the nodeAffinity expression
-      # according to the platforms which are supported by your solution. 
-      # It is considered best practice to support multiple architectures. You can
-      # build your manager image using the makefile target docker-buildx.
-      # affinity:
-      #   nodeAffinity:
-      #     requiredDuringSchedulingIgnoredDuringExecution:
-      #       nodeSelectorTerms:
-      #         - matchExpressions:
-      #           - key: kubernetes.io/arch
-      #             operator: In
-      #             values:
-      #               - amd64
-      #               - arm64
-      #               - ppc64le
-      #               - s390x
-      #           - key: kubernetes.io/os
-      #             operator: In
-      #             values:
-      #               - linux
       securityContext:
         runAsNonRoot: true
-        # TODO(user): For common cases that do not require escalating privileges
-        # it is recommended to ensure that all your Pods/Containers are restrictive.
-        # More info: https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
-        # Please uncomment the following code if your project does NOT have to work on old Kubernetes
-        # versions < 1.19 or on vendors versions which do NOT support this field by default (i.e. Openshift < 4.11 ).
-        # seccompProfile:
-        #   type: RuntimeDefault
+        seccompProfile:
+          type: RuntimeDefault
       containers:
       - command:
         - /manager
@@ -75,8 +50,6 @@ spec:
           capabilities:
             drop:
               - "ALL"
-        # TODO(user): Configure the resources accordingly based on the project requirements.
-        # More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
         resources:
           limits:
             cpu: 500m
@@ -85,4 +58,4 @@ spec:
             cpu: 10m
             memory: 64Mi
       serviceAccountName: controller-manager
-      terminationGracePeriodSeconds: 10
+      terminationGracePeriodSeconds: 1