Support disabling API Key auth on specific routes

[ymesika]

#12962 adds support for API Key auth in the TrafficPolicy.
With other policies we have the disable field to control disabling the policy on specific route, for instance, if it is enabled at gateway level.

Although Envoy config for the API Key filter doesn't provide a disable field we can use the approach taken in #12945 to achieve similar behavior.