+ +First, you need to create a `ConfigMap` with the policy written in rego: + +```bash +kubectl --context ${CLUSTER1} apply -f - < + + +In this step, we're going to validate the JWT token and to create a new header from the `email` claim. + +Keycloak is running outside...