As I spent several hours on getting this to run, this is how one can use https://github.com/jupyterhub/ldapauthenticator with this project:

1. clone this repository and edit the Dockerfile of the "hub" image, adding git+https://github.com/jupyterhub/ldapauthenticator@a8bc231 to the first pip3 call (the one installing lots of dependencies. The version from pypi is one year old and semms to have caused some issues, but that might have been different problems. It definitely is worth giving the released version a try, I decided to change to the most recent commit in the middle of debugging and didn't go back.
2. Build the hub docker image that now also contains the ldap authenticator and push it to whereever your cluster gets its images from
3. edit the config for this chart to contain an auth: section like this:
   ````
   

   Enable LDAP auth

Requires https://github.com/jupyterhub/ldapauthenticator in the "hub" Docker image

auth:
type: custom
custom:
className: ldapauthenticator.LDAPAuthenticator
config:
server_address: ldap.example.com
bind_dn_template:
- '{username}'
use_ssl: false
lookup_dn: false
escape_userdn: false
``` The big issue that caused a lot of confusion on my end was that the keys incustom:are NOT like the documentation at https://github.com/jupyterhub/ldapauthenticator/blob/master/README.md but they are already dropped into the correct part of the configuration by https://github.com/jupyterhub/zero-to-jupyterhub-k8s/blob/master/images/hub/jupyterhub_config.py#L188. To be clear: While the documentation is written as if the key should beLDAPAuthenticator.server_addressor evenc.LDAPAuthenticator.server_address, it actually must beserver_addressand the config loader will automatically put it in theLDAPAuthenticatorsection of the jupyterhub config. These settings are of course specific to your environment, the big issue for me was that they never were actually getting applied and the errors that were logged due to this were less than helpful. 4. Add the hub image that you built to thehub: image:` section
5. Add whatever other configuration you need and deploy away

Things that will NOT work (easily):

• Using the released image and just running pip3 install jupyterhub-ldapauthenticator in there to get your new hub image - you need to be root to do that, since root owns a few folders that you would need. You can write a Dockerfile with USER statements before and after the pip3 install I guess, I personally found it easy enough to just build the upstream one instead of using it as base layer.
• Just expanding the config file. While I guess it could work, it sounds like asking for trouble in my opinion.

Hopefully this helps people who want LDAP authentication enabled for their jupyterhub instance on Kubernetes.