If I have Traefik configured to monitor IngressRoute resources across different namespaces, what can I do to avoid a user essentially hijacking the other's traffic by deploying an IngressRoute with a rule for the same domain? Is that even possible? If so, what are the mitigations in a multi-tenant environment?
Hi @gtirloni, thanks for your interest in Traefik!
This is not possible with Traefik, there is no built-in mechanism to do so.
I would say this is something what you want to configure as part of your K8s administration and permission control.