feat: add kyverno authz server blog post

[eddycharly]

Description

Add kyverno authz server blog post.

The kyverno authz server is an external authz server for envoy, decisions are driven by policies based on CEL.

Reviewers

• Ambient
• Docs
• Installation
• Networking
• Performance and Scalability
• Extensions and Telemetry
• Security
• Test and Release
• User Experience
• Developer Infrastructure
• Localization/Translation

[istio-policy-bot]

😊 Welcome! This is either your first contribution to the Istio documentation repo, or
it's been a while since you've been here. A few things you should know:

• You can learn about how we write and maintain documentation, our style guidelines,
  and the available web site features by visiting Contributing to the Docs.

• In the next few minutes, an automatic preview of your change will be built with
  a full copy of the istio.io website. You can find this preview by clicking on
  the Details link next to the deploy/netlify entry in the status section of this
  page.

• We care about quality, so we've put in place a number of checks to ensure our documentation
  is top-notch. We do spell checking, sanitize the Markdown, ensure all hyperlinks point to a
  valid location, and more. If your PR doesn't pass one of these checks, you'll see a red X in the
  lint_istio.io entry in the status section. Click on the Details link to get a list of the
  problems with your PR. Fix those problems and push an update; this will automatically re-run the
  tests. Hopefully this time everything will be perfect!

• Once your changes are accepted and merged into the repository, they will initially show up
  on https://preliminary.istio.io. The changes will be published to https://istio.io
  the next time we do a major release (which typically happens every 3 months or so).
  To publish them sooner, add a cherrypick/release-x.xx label, where x.xx is the current
  release of Istio.

Thanks for contributing!

Courtesy of your friendly welcome wagon.

[istio-testing]

Hi @eddycharly. Thanks for your PR.

I'm waiting for a istio member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[craigbox]

I don't think "Kyverno" is in our spell check dictionary 😄 Please fix this and other lint errors to proceed.

I'm checking with Steering on if we're happy for a "just this post but with that technology" post; please stay tuned. on that front.

[craigbox]

Could you please reformat this post a little so it's not so much a carbon copy of the layout of the previous? Start with your own title, own blurb, etc, and then you can mention that there was an OPA post, but make this one your own.

(We also want to see this in an Integration doc for the ext_authz feature, which should not take too much reformatting I hope!)

[eddycharly]

Thanks @craigbox !
I'm back to work and will fix issues with this PR. I want to work on adding more content in other areas too.

[eddycharly]

@craigbox I fixed the linter issues, changed the title and description. Let me know if it's enough.

[craigbox]

Some suggestions posted. This is great stuff, Charles-Edouard!

[eddycharly]

Thanks @craigbox i will update the PR tomorrow.
I also opened #15963 I will update this one as well :)

[eddycharly]

Thanks for the review @craigbox.
I addressed your comments, let me know if there's something else.

[eddycharly]

@craigbox any update ?

[craigbox]

LGTM, let's ship!

/cherry-pick release-1.24

[istio-testing]

@craigbox: once the present PR merges, I will cherry-pick it on top of release-1.24 in a new PR and assign it to you.

In response to this:

LGTM, let's ship!

/cherry-pick release-1.24

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[istio-testing]

@craigbox: new pull request created: #16003

In response to this:

LGTM, let's ship!

/cherry-pick release-1.24

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.