documentation for end-user authencation on ingress-gateway (#2243) (#2904)

* documentation for end-user authencation on ingress-gateway (#2243)

* documentation for end-user authencation on ingress-gateway

* address comments

* address comments

* address comment

* Move end user authentication on Ingress section to securtity.

* Minor text change.

* Revert edit in traffic management doc.

* Remove Ingress example. Replace it with a single sentence.

* Addressed comment.

content/docs/tasks/security/authn-policy/index.md

@@ -570,6 +570,9 @@ $ for i in `seq 1 10`; do curl --header "Authorization: Bearer $TOKEN" $INGRESS_
 401
 {{< /text >}}
 
+You can also add a JWT policy to an ingress gateway (e.g., service `istio-ingressgateway.istio-system.svc.cluster.local`).
+This is often used to define a JWT policy for all services bound to the gateway, instead of for individual services.
+
 ### End-user authentication with per-path requirements
 
 End-user authentication can be enabled or disabled based on request path. This is useful if you want to