Development version. This documentation is for unreleased features on the main branch. View the latest stable documentation.

Explanation

Background knowledge and design decisions behind the Coraza Kubernetes Operator.

Explanation pages provide context and background. They help you understand why the operator works the way it does, and the trade-offs involved in its design.

Architecture
Rule Processing
Istio WASM Integration
Known Limitations
Security Model

Architecture

How the operator’s two controllers, shared cache, and data flow work together.

Rule Processing

How rules are aggregated, compiled, validated, and cached.

Istio WASM Integration

How the operator integrates with Istio using WebAssembly plugins.

Known Limitations

Behavioral differences and limitations when running Coraza WAF with Istio in WASM mode.

Security Model

RBAC, TLS, authentication, and other security aspects of the operator.