From 9fbaf4d99fa9423ad155e3b079ddd22ea1818d38 Mon Sep 17 00:00:00 2001
From: Infrastructure Admin <admin@nge6.com>
Date: Sun, 28 Sep 2025 16:13:43 -0400
Subject: [PATCH] Add eemoore user with full admin access
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- Created eemoore user in Keycloak with admin privileges
- Added to k8s-admins group for cluster admin access
- Added to users group for basic access
- User: eemoore@nge6.com (Eric Moore)

User will have full access to all services via Pomerium authentication.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
---
 auth/keycloak-resources.yaml | 21 +++++++++++++++++++--
 1 file changed, 19 insertions(+), 2 deletions(-)

diff --git a/auth/keycloak-resources.yaml b/auth/keycloak-resources.yaml
index 319211f..57cdfca 100644
--- a/auth/keycloak-resources.yaml
+++ b/auth/keycloak-resources.yaml
@@ -128,6 +128,23 @@ spec:
   providerConfigRef:
     name: keycloak-provider
 ---
+# Create eemoore user
+apiVersion: user.keycloak.crossplane.io/v1alpha1
+kind: User
+metadata:
+  name: eemoore-user
+spec:
+  forProvider:
+    realmId: kubernetes-realm
+    username: eemoore
+    enabled: true
+    emailVerified: true
+    firstName: Eric
+    lastName: Moore
+    email: eemoore@nge6.com
+  providerConfigRef:
+    name: keycloak-provider
+---
 # Group role assignments - assign roles to groups
 apiVersion: group.keycloak.crossplane.io/v1alpha1
 kind: Roles
@@ -174,7 +191,7 @@ spec:
   forProvider:
     realmId: kubernetes-realm
     groupId: k8s-admins
-    members: ["admin"]
+    members: ["admin", "eemoore"]
   providerConfigRef:
     name: keycloak-provider
 ---
@@ -186,6 +203,6 @@ spec:
   forProvider:
     realmId: kubernetes-realm
     groupId: users
-    members: ["admin"]
+    members: ["admin", "eemoore"]
   providerConfigRef:
     name: keycloak-provider