From c26347000727b58f312f40041fa3c84a96cdd7cc Mon Sep 17 00:00:00 2001
From: Michael Thomson <mthomson@konradgroup.com>
Date: Thu, 23 Nov 2023 14:21:46 -0500
Subject: [PATCH] cluster role binding

---
 ...errolebinding-oidc-group-admin-kube-apiserver.yaml | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 authentik/clusterrolebinding-oidc-group-admin-kube-apiserver.yaml

diff --git a/authentik/clusterrolebinding-oidc-group-admin-kube-apiserver.yaml b/authentik/clusterrolebinding-oidc-group-admin-kube-apiserver.yaml
new file mode 100644
index 0000000..1656b20
--- /dev/null
+++ b/authentik/clusterrolebinding-oidc-group-admin-kube-apiserver.yaml
@@ -0,0 +1,11 @@
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: oidc-group-admin-kube-apiserver
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: cluster-admin 
+subjects:
+- kind: Group
+  name: oidc:admin-kube-apiserver