In this demo, I’ll walk you through how to use Envoy Gateway’s SecurityPolicy to enforce OIDC authentication and authorization, using Amazon Cognito as the identity provider.
You’ll learn how to:
- Set up Envoy Gateway in your Kubernetes cluster
- Configure a Gateway + HTTPRoute for HTTPS traffic
- Attach a SecurityPolicy to protect backend services
- Validate JWT tokens and apply fine-grained access control
🎯 Everything is handled at the gateway layer — your backend stays clean and simple.
📦 Try the demo yourself in 5 minutes: https://github.com/zhaohuabing/kubecon-envoy-gateway-securitypolicy
📺 Watch the full demo on YouTube: