[英]how to secure critical data Blazor serverside
i have my connectionstring stored in my appsetting.json in my blazor serverside app it make me no felling good when i know that my password is there in my code..我的连接字符串存储在我的 appsetting.json 在我的 blazor 服务器端应用程序中,当我知道我的密码在我的代码中时,这让我没有任何感觉。
i know that in JAVA there is for exemple Glassfish who store critical data in Password Aliases, and not in the source code.我知道在 JAVA 中,例如 Glassfish 将关键数据存储在密码别名中,而不是在源代码中。
Is there something similar in .netcore? .netcore 中有类似的东西吗? blazor serverside?
blazor 服务器端? Or a solution for store critical data?
还是存储关键数据的解决方案?
You can use Secret Manager for local environment : https://docs.microsoft.com/en-us/aspnet/core/security/app-secrets?view=aspnetcore-5.0&tabs=windows您可以在本地环境中使用 Secret Manager: https://docs.microsoft.com/en-us/aspnet/core/security/app-secrets?view=aspnetcore-5.0&tabs=windows
For production you have many choices: Azure KeyVault, CI/CD pipelines configuration - variables substitution (Azure DevOps, Octopus Deploy, Github Actions, etc.), Environment variables, etc对于生产,您有很多选择:Azure KeyVault、CI/CD 管道配置 - 变量替换(Azure DevOps、Octopus Deploy、Github 操作等)、环境变量等
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.