I've got a secret (and I don't even know what it is)

Abstract:

Keeping secrets safe and out of source code has always been challenging. De-coupling sensitive information like connection strings, certificates and passwords keeps these secrets out of source control and away from the prying eyes of decompilers. This session begins with an overview of the .NET Core configuration system with emphasis on configuration outside of code. Also briefly demonstrated will be a full framework project that keeps secrets out of the web.config file.
Next we get an overview of Managed identities for Azure Resources which solves this long-standing problem.
Demonstrated is an Azure App Service pulling secrets out of Azure Key Vault with no stored password or token. The Azure portal is used to create a managed identity and assign it to the application, then Azure Key Vault is configured to trust it in a particular role.
Additionally, you learn the difference between a system assigned managed identity vs user assigned managed identity.
This presentation gives you the basic knowledge to store and retrieve secrets from a variety of Azure service offerings.

Bio:

Bob Crowley is a Software Developer in Portland Maine where he builds solutions in the .Net and Azure ecosystems. Having gained so much from the community himself, he is trying to give a little back as an occasional presenter at his local Casco Bay .Net User Group, Boston Code Camp and Vermont Code Camp.

Agenda:

6:00pm - Welcome time, pizza served
6:30pm - Group announcements
6:45pm - Presentation
8:00pm - End of presentation

Questions? Leave a comment below.