I am deploying JupyterHub on a Kubernetes cluster. The authentication is done using Azure AD.
The config.yaml is version controlled in Git, and I would like to get rid of any references to the AzureAD client secrets. That is
auth: azuread: callbackUrl: ... clientId: ... clientSecret: ... tenantId: ...
I have tried to navigate previous posts on this issue, to no avail. I know of the concept of
existingSecret, however there are no references to how exactly you are supposed to use this.
Could anyone provide some insight on how I can expose the AzureAD authentication secrets as a kubernetes secret, to avoid having to commit this to VCS?
Cheers in advance