eemoore/infrastructure
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add eemoore user with full admin access

Browse source 
- Created eemoore user in Keycloak with admin privileges
- Added to k8s-admins group for cluster admin access
- Added to users group for basic access
- User: eemoore@nge6.com (Eric Moore)

User will have full access to all services via Pomerium authentication.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
Infrastructure Admin 2025-09-28 16:13:43 -04:00
parent a7ae41ee08
commit 9fbaf4d99f
1 changed files with 19 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

21
auth/keycloak-resources.yaml
View file

@ -128,6 +128,23 @@ spec:
providerConfigRef: providerConfigRef:
name: keycloak-provider name: keycloak-provider
--- ---
# Create eemoore user
apiVersion: user.keycloak.crossplane.io/v1alpha1
kind: User
metadata:
name: eemoore-user
spec:
forProvider:
realmId: kubernetes-realm
username: eemoore
enabled: true
emailVerified: true
firstName: Eric
lastName: Moore
email: eemoore@nge6.com
providerConfigRef:
name: keycloak-provider
---
# Group role assignments - assign roles to groups # Group role assignments - assign roles to groups
apiVersion: group.keycloak.crossplane.io/v1alpha1 apiVersion: group.keycloak.crossplane.io/v1alpha1
kind: Roles kind: Roles
@ -174,7 +191,7 @@ spec:
forProvider: forProvider:
realmId: kubernetes-realm realmId: kubernetes-realm
groupId: k8s-admins groupId: k8s-admins
members: ["admin"] members: ["admin", "eemoore"]
providerConfigRef: providerConfigRef:
name: keycloak-provider name: keycloak-provider
--- ---
@ -186,6 +203,6 @@ spec:
forProvider: forProvider:
realmId: kubernetes-realm realmId: kubernetes-realm
groupId: users groupId: users
members: ["admin"] members: ["admin", "eemoore"]
providerConfigRef: providerConfigRef:
name: keycloak-provider name: keycloak-provider