This feature introduces Azure Key Vault , it's removes sensitive data from your code, boosting security. Now, keep your secrets safe and code clean effortlessly.
- Go to the Azure portal https://portal.azure.com/#home
- go to "Key vaults"
- Search EA Sana dev Platform
- SanaPlatform-staging
then go to Secret > select any value
eg: ApplicationSecrets-AzureWebJobStorage
secret value kept as encrypted
and authorized users can change the sensitive data from here. without hardcoding at the code level.
two types of jobs
1 Azure portal job (Keep)
2 operation Kubernetes (backup, upgrade, retry, extend trial)
eg:
now in App.config files don't keep any data,
all the details are kept in userSecretsFile.
userSecretsFile location is "C:\\home\\secrets.xml" (only use for Azure jobs)
by reading those data it will fill the appSettings Key value details
file inside secrets.xml
because it doesn't have any c:/ path
inside the cluster > up the init container
data initializer > yellow > green > active
eg
once the restart or backup starts, it will create a Pod and it will create 2 containers
1st container downloads the secret json,
2nd Get those data and share with relevant application and Run the application.
Kubanetis
Backup,Upgrade ,
Dinertrace