Keycloak and Istio authentication

keycloak_istio.yaml

apiVersion: security.istio.io/v1beta1
kind: RequestAuthentication
metadata: 
  name: auth
  namespace: istio-system
spec:
  selector:
    matchLabels:
      app: istio-ingressgateway
  jwtRules:
  - issuer: <link_issuer>
    jwksUri: <link_jws>
---
apiVersion: security.istio.io/v1beta1
kind: AuthorizationPolicy
metadata: 
  name: policy-deny
  namespace: istio-system
spec:
  selector: 
    matchLabels: 
      app: istio-ingressgateway
  action: ALLOW
  rules:
  - from:
    - source:
        principals: ["*"]
    - source:
        requestPrincipals: ["*"]