Support for App Protect module

[rafwegv]

Proposed changes

Add App Protect integration to Ingress Controller.
This adds two crd's and changes in go code that enables watching on those resources.
policies and log configuration can be added to ingresses using annotations.
CR's are read and written onto container storage as files , referenced in nginx configurations.

Checklist

Before creating a PR, run through this checklist and mark each as complete.

• I have read the CONTRIBUTING doc
• I have added tests that prove my fix is effective or that my feature works
• I have checked that all unit tests pass after adding my changes
• I have updated necessary documentation
• I have rebased my branch onto master
• I will ensure my PR is targeting the master branch and pulling from my branch from my own fork

[pleshakov]

Hi @rafwegv please my comments and suggestions. nothing major, just small corrections/improvements

Additionally, if #1009 is merged first, we need to update in this PR how helm handles AppProtect CRDs.

[Rulox]

Let's wait until #1009 is merged and make the changes here, I think is more fair/easier.

EDIT: I'll follow up with Dean and coordinate who merges first, I don't want to delay this PR just because of the changes in Helm.

[Dean-Coakley]

Let's wait until #1009 is merged and make the changes here, I think is more fair/easier.

EDIT: I'll follow up with Dean and coordinate who merges first, I don't want to delay this PR just because of the changes in Helm.

Just an update: I merged as agreed.

[AvriBalofsky]

The ability to use "external references" is also missing from the policy definition. Is that an intentional limitation?

[rafwegv]

I decided to add preserve unknown fields false to two fields, since they do not have a specific form (modifications) or are very complicated (signature sets).

[pleshakov]

@rafwegv 🚀

I think it was my merged PR that caused conflicts. sry! :)

[Rulox]

Closing in favour of #1035