Authentik Helm Values Use Secrets Instead of Clear Text Passwords

[ssyounger]

I am trying to deploy Authentik via a helm chart but I can't find any documentation on how to replace password string fields within the values file and use an existing secret such as a sealed-secret. This is a security product, I can't imagine this is not possible today. Can anyone please point me in the right direction or show me an example?

Here is a values example section:

  email:
    # -- SMTP Server emails are sent from, fully optional
    host: ""
    # -- SMTP server port
    port: 587
    # -- SMTP credentials, when left empty, no authentication will be done
    username: ""
    # -- SMTP credentials, when left empty, no authentication will be done
    **password: ""             <----- PASSWORD IN CLEAR TEXT**
    # -- Enable either use_tls or use_ssl, they can't be enabled at the same time.
    use_tls: false
    # -- Enable either use_tls or use_ssl, they can't be enabled at the same time.
    use_ssl: false
    # -- Connection timeout
    timeout: 30
    # -- Email from address, can either be in the format "[email protected]" or "authentik <[email protected]>"
    from: ""

Within the global section I can see a place to put a secret but I don't know how to fill out the password section for example on the SMTP email to use that secret.

  # -- Environment variables to pass to all deployed Deployments. Does not apply to GeoIP
  # See configuration options at https://goauthentik.io/docs/installation/configuration/
  # @default -- `[]` (See [values.yaml])
  env: []
    # - name: AUTHENTIK_VAR_NAME
    #   value: VALUE
    # - name: AUTHENTIK_VAR_OTHER
    #   valueFrom:
    #     secretKeyRef:
    #       name: secret-name
    #       key: secret-key
    # - name: AUTHENTIK_VAR_ANOTHER
    #   valueFrom:
    #     configMapKeyRef:
    #       name: config-map-name
    #       key: config-map-key

Thanks in advance!