![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 52%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Azure Key Vault
An Azure service that is used to manage and protect cryptographic keys and other secrets used by cloud apps and services.
1,283 questions
@Albertk
Access to the Azure Key Vault requires proper authentication and authorization before a caller (user or application) can get access. Even if a user retrieved the secret name within your Docker-Compose file, the 'true value' of that secret would still be hidden and secured within the Key Vault, because the secret name is different from the actual value of a secret.
If you're worried about access control or loss of secret information, you can easily mitigate these issues by using Azure RBAC, which will let you control access to resources such as the Key Vault and keys/secrets within the vault.
Access policies is another way to secure your keys/secrets, since you can assign your WebApp certain permissions within the vault when it comes to get, set, list, delete, etc.
Lastly, I was able to find a tutorial on how to use Key Vault references within an ASP.NET Core app, which might be what you're looking for.
I hope this helps! If you have any other questions, please let me know.
Thank you for your time and patience!