[x] Lab2: Create unauthenticated RateLimit for unauthenticated users
[ ] Lab2: Add another Ratelimit for authenticated users based on a new claim like subcription (values: gold, platinium, etc).
[x] Lab6: For the AuthN scenario, it needs to be moved to Lab2.
[x] Lab6: Remove the extractor for the id token since it is already taken before.
[x] Improve WAF sample. Block a huge payload with POST to bookinfo for the case of unauthenticated users
[x] Improve WAF sample. Add client-agent check
[ ] Add to response transformations. Take a header from the request and add it into the response.
TODO: The docs are wrong. It's missing identation. Besides it does not work. Spike on it.
[x] Improve response transformations. Take the 401 and transform the body in the response.
[x] Move delegation after LAB1. Delegate to different routeTables to different teams /secure with reoutetable1 to be managed by team1. Keep the route / at the VS level to show that we can also keep things in the VS
[x] Move RT to a specific namespace like team1 so they can see it can be in a different namespace.
[x] Use label selectors for the RT so we can show that the name is note totally required
[x] Lab6. Remove the extractor for the id token since it already taken before. → use the extauth > authconfig > oidc > headers > idTokenHeader to forward it upstream
[x] Remove troubleshooting Tip
[x] Lab2: Create unauthenticated RateLimit for unauthenticated users
[ ] Lab2: Add another Ratelimit for authenticated users based on a new claim like subcription (values: gold, platinium, etc).
[x] Lab6: For the AuthN scenario, it needs to be moved to Lab2.
[x] Lab6: Remove the extractor for the id token since it is already taken before.
[x] Improve WAF sample. Block a huge payload with POST to bookinfo for the case of unauthenticated users
[x] Improve WAF sample. Add client-agent check
[ ] Add to response transformations. Take a header from the request and add it into the response. TODO: The docs are wrong. It's missing identation. Besides it does not work. Spike on it.
[x] Improve response transformations. Take the 401 and transform the body in the response.
[x] Add something with regex
[x] Move delegation after LAB1. Delegate to different routeTables to different teams /secure with reoutetable1 to be managed by team1. Keep the route / at the VS level to show that we can also keep things in the VS
[x] Move RT to a specific namespace like team1 so they can see it can be in a different namespace.
[x] Use label selectors for the RT so we can show that the name is note totally required
[x] Lab6. Remove the extractor for the id token since it already taken before. → use the extauth > authconfig > oidc > headers > idTokenHeader to forward it upstream