Open guicassolato opened 1 year ago
Examples of use cases with authorization policies:
email_verified == true
)method=POST
wants to enforce an additional authorization rule to all other Routes linked to the same GW as Route A, where the rule is applied conditionally only when method=POST
.method=POST
wants to rollout a new set of authorization rules that supersedes all other rules attached to any other Routes linked to the same GW as Route A.
For cases that involving deciding on merging or not policies that target network resources that are strict subsets one of another. E.g.:
Gateway: hostname="*.acme.com"
HTTPRoute: headers{name="Authorization", type=RegularExpression, value="Bearer .+"}
Depending on the intent, the following variations might be possible:
Depends on #3.