Very noob in the Azure and c# space. A engineering “dev” in the company I work for is building an app based off c# on EntityFramework Core. It needs to connect out to an azure DB.
The dev is putting the connection string in the source in his tests which is not secure.
I’ve searched but can’t seem to find what the correct way in c# to connect out to an Azure DB without having plain text connection strings.
Can anyone help me out?
have you tried googling encrypted connection strings? not sure if that’s what you’re looking for but most likely.
I have, not sure if that’s the correct way to do it though.
Something like this?
https://docs.microsoft.com/en-us/aspnet/core/fundamentals/configuration/?view=aspnetcore-5.0#environment-variables
I add them as a user secret for development and use environment variables in Azure. That way there’s no sensitive information in the source code.
Thanks, I’ll look into this.
C# devs
null reference exceptions