Ingress Controller creates rules with auth annotations that are specific to NGINX. This breaks support for Traefik, where we need slightly more general annotations to cover more possible ingress controllers
Approach
Change nginx.ingress.kubernetes.io -> ingress.kubernetes.io throughout
Add new annotation: ingress.kubernetes.io/auth-type=forward - enable forwardAuth in Traefik and possibly other providers
Added a note about revisiting NetworkPolicies (currently disabled, but they appear to also contain references and patterns specific to NGINX, and may be completely outdated)
Problem
Ingress Controller creates rules with auth annotations that are specific to NGINX. This breaks support for Traefik, where we need slightly more general annotations to cover more possible ingress controllers
Approach
nginx.ingress.kubernetes.io->ingress.kubernetes.iothroughoutingress.kubernetes.io/auth-type=forward- enable forwardAuth in Traefik and possibly other providers