Currently, in our operator architecture, we have 2 SAs one for the operator and one for the kogito services. We need to rethink how does this approach going to be when we have cluster-scoped deployment for the operator. The first SA should have a cluster Role and access across all namespaces, while the other SA should only have the perms for the namespace the kogito service is deployed in. It may mean that the second SA will be created for every namespace we have the kogito-service deployed.