Skip to content

Instantly share code, notes, and snippets.

@justinyoo

justinyoo/appmodule.cs

Created January 2, 2019 11:40
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save justinyoo/3ae0b1e3d47454b9ed6f9fb4290e1cae to your computer and use it in GitHub Desktop.
Save justinyoo/3ae0b1e3d47454b9ed6f9fb4290e1cae to your computer and use it in GitHub Desktop.
Download ZIP
Accessing to Key Vault from Azure Functions with Managed Identity
Raw
appmodule.cs
public class AppModule : Module
{
public override void Load(IServiceCollection services)
{
var azureServiceTokenProvider = new AzureServiceTokenProvider();
var kv = new KeyVaultClient(new KeyVaultClient.AuthenticationCallback(azureServiceTokenProvider.KeyVaultTokenCallback));
services.AddSingleton<IKeyVaultClient>(kv);
...
}
}
Raw
get-secret-function.cs
public class GetSecretFunction : FunctionBase<ILogger>, IGetSecretFunction
{
private readonly IKeyVaultClient _kv;
...
public GetSecretFunction(AppSettings settings, IMapper mapper, IKeyVaultClient kv)
{
this._kv = kv ?? throw new ArgumentNullException(nameof(kv));
...
}
public override async Task<TOutput> InvokeAsync<TInput, TOutput>(TInput input, FunctionOptionsBase options = null)
{
...
var secret = await this._kv
.GetSecretAsync("https://my-keyvault.vault.azure.net/", "[secret key]")
.ConfigureAwait(false);
...
}
}
Raw
get-secret.cs
var provider = new AzureServiceTokenProvider();
var kv = new KeyVaultClient(new KeyVaultClient.AuthenticationCallback(provider.KeyVaultTokenCallback));
var secret = await kv.GetSecretAsync("https://my-keyvault.vault.azure.net", "[secret key]")
.ConfigureAwait(false);
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment