https://learn.microsoft.com/zh-tw/azure/aks/azure-files-volume#create-a-kubernetes-secret

建立 Kubernetes 祕密

使用現在資源群組和儲存體帳戶的情況 只要先取得 storage key，kubectl create secret 後面參數就接實際資源和帳戶名稱

STORAGE_KEY=$(az storage account keys list --resource-group IESResourceGroup --account-name iesnas --query "[0].value" -o tsv)

kubectl create secret generic azure-secret --from-literal=azurestorageaccountname=iesnas --from-literal=azurestorageaccountkey=$STORAGE_KEY

1. Get storage account key

# Get storage account key
STORAGE_KEY=$(az storage account keys list 
 --resource-group $AKS_PERS_RESOURCE_GROUP
 --account-name $AKS_PERS_STORAGE_ACCOUNT_NAME --query "[0].value" -o tsv)

• Ex

# Get storage account key
STORAGE_KEY=$(az storage account keys list 
  --resource-group IESResourceGroup 
  --account-name iesnas --query "[0].value" -o tsv)

• $AKS_PERS_STORAGE_ACCOUNT_NAME

AKS_PERS_STORAGE_ACCOUNT_NAME=mystorageaccount

AKS_PERS_STORAGE_ACCOUNT_NAME=iesnas

2. 建立 Kubernetes 祕密

kubectl create secret generic azure-secret 
--from-literal=azurestorageaccountname=$AKS_PERS_STORAGE_ACCOUNT_NAME 
--from-literal=azurestorageaccountkey=$STORAGE_KEY

• Ex

kubectl create secret generic azure-secret 
--from-literal=azurestorageaccountname=iesnas 
--from-literal=azurestorageaccountkey=kOHqeHSRFnggXXXXX

kubectl create secret generic azure-secret --from-literal=azurestorageaccountname=iesnas --from-literal=azurestorageaccountkey=$STORAGE_KEY

• 使用命令檢查密鑰是否創建

kubectl get secret -n <namespaceName>