Use existing kubernetes secret for authentik.secret_key

[jonsch318]

I want to deploy authentik via GitOps for this i am using openbao as a secret store and then sync them as Kubernetes secrets.

This allows me to have 0 secrets in my Git repo.
However I see no way to configure authentik to use an existing kubernetes secret to get the secret_key.

I would propose a API similar to the geoip existingSecret value where one can specify the name and key of the secret

[jonsch318]

#329 this is connected as I could just disable the whole secret generation and overwrite it with my own

[rissson]

#329 has nothing to do with this.

You can set authentik.secrey_key to env://MY_ENV_VAR or file:///secrets/secret_key and the value will be fetched from those places. Then you can configure custom env vars or volumes/volumeMounts.

Relevant docs: https://docs.goauthentik.io/docs/install-config/configuration/#about-authentik-configurations