Aryan Gupta

Refactoring of istio concept page

13

1. Moved the authorization policy examples from the **concept page** to the **operations/configuration /security/security-policy-examples** And to help us figure out who should review this PR, please put an X in...

security tests refactory - part 3

5

**This PR refactor some of the security tests to align with new test framework**

**Added new regex based tests for jwt claim based routing**

added new TCP based test for deny policies

2

**Behavior of deny policies on TCP Ports in the following scenarios** 1) When we have any L7 rule (only http attributes) 2) When we don't have a pure L7 rule...

[For-testing-purpose-only, do-not-review] ignoring authz policy with http attributes on non sniffing tcp ports

3

**Whenever port is defined as TCP and authz deny policy has just http attributes, no need to apply this king of policy on tcp ports. This is a test PR,...

K8 CSR support

8

Added support for K8 CSR and custom signer

GEP: L7 Authorization Policy for Gateways and mesh workloads

14

The Gateway API currently lacks a standardized authorization policy, a critical requirement for production deployments, particularly as cloud infrastructure increasingly adopts zero-trust security models where granular access control is essential....