I’ve created a tool called “portwrap” to secure apps proxied by jupyter server. It is intended for environments like HPC with jupyterhub and batchspawner where users’ servers are not fully containerized and are running on a shared system. This blog post describes it in more detail:
I’d be interested in your feedback, especially if you deploy it in a dev/test hub. Right now it is at the Works for Me stage.