@@RoyKimYYZ it's mean value came here rite...then encoded in k8s secrets...if so there is no use from key vault, basically we using this instead of encode to encrypt. K8s secret doing encode we can see it easily by "kubectl edit secret example-secret" and decode the value.
@@ramallways6321 If you are saying the secret is not encrypted when retrieved from key vault. Then yes you are right. Key vault encrypts the secret at rest in the the key vault. If you want the secret to be encrypted in k8s secret, I think you have to encrypt the secret as you store in key vault and decrypt it when the key vault provider mounts into the pod.