SPIRE-212: Network Policy for zero-trust-workload-identity-management

[PillaiManish]

This PR introduces comprehensive NetworkPolicy resources for all Zero Trust Workload Identity Manager (ZTWIM) components to implement network-level security controls and enforce the principle of least privilege.

What's Changed
Network policies defined for all ZTWIM components:

• Operator controller
• SPIRE server (including controller manager)
• SPIRE agent
• OIDC discovery provider
• SPIFFE CSI driver (noted as Unix socket communication, no network policies needed)

[openshift-ci-robot]

@PillaiManish: This pull request references SPIRE-212 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.21.0" version, but no target version was set.

In response to this:

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign bear-redhat for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci-robot]

@PillaiManish: This pull request references SPIRE-212 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.21.0" version, but no target version was set.

In response to this:

This PR introduces comprehensive NetworkPolicy resources for all Zero Trust Workload Identity Manager (ZTWIM) components to implement network-level security controls and enforce the principle of least privilege.

What's Changed
Network policies defined for all ZTWIM components:

• Operator controller
• SPIRE server (including controller manager)
• SPIRE agent
• OIDC discovery provider
• SPIFFE CSI driver (noted as Unix socket communication, no network policies needed)

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[openshift-ci]

@PillaiManish: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

[anirudhAgniRedhat]

This link is not valid.

[anirudhAgniRedhat]

reference needs to be updated