IP whitelist route annotation
Without this annotation, I expect that there's no restriction on who can use the route, therefore it's a security feature which we'll need for production.
The following discussion from https://gitlab.cern.ch/paas-tools/okd4-install/-/merge_requests/407 should be addressed:
-
@alossent started a discussion: This default route annotation makes sense for paas because users create routes themselves. For Drupal you don't need this, the drupal-site-operator should instead set the
ip_whitelist
annotation directly on the routes it creates based on the drupal site's configuration (whether site should be accessible from outside cern or not).