stackoom
  简体   繁体   中英

C# Can't retrieve secret from Azure Key Vault

 原文  2019-12-05 09:21:10       c#/ azure/ azure-keyvault

Question

I am trying to retrieve a secret from Azure Key Vault (without using credentials, like in this tutorial: example ):

public static async Task<string> GetSecret(string secretName)
{
   try
   {
       return (await GetClient().GetSecretAsync(keyVaultUrl, secretName)).Value;
   }
   catch (KeyVaultErrorException)
   {
      return null;
   }
   catch (Exception ex)
   {
      return null;
   }
}

public static async Task<string> GetAccessTokenAsync()
{
    AzureServiceTokenProvider azureServiceTokenProvider = new AzureServiceTokenProvider();
    return await azureServiceTokenProvider.GetAccessTokenAsync("https://vault.azure.net");
}

private static KeyVaultClient GetClient()
{
   AzureServiceTokenProvider azureServiceTokenProvider = new AzureServiceTokenProvider();
   using KeyVaultClient keyVaultClient = new KeyVaultClient(new KeyVaultClient.AuthenticationCallback(azureServiceTokenProvider.KeyVaultTokenCallback));
   return keyVaultClient;
}

but when I call GetSecret() I get an

object reference not set to an instance of an object

exception.

I am pretty sure that the secret does in fact exist in the key vault.

My key vault url is formatted like " https://my-keyvault.vault.azure.net ".

2 answers

solution1
 2 ACCPTED  2019-12-06 10:10:01

Because you have a using statement in your GetClient function, the KeyVaultClient is disposed as soon as the function returns. Remove the using there and move it to where you use the client.

private static KeyVaultClient GetClient()
{
   AzureServiceTokenProvider azureServiceTokenProvider = new AzureServiceTokenProvider();
   KeyVaultClient keyVaultClient = new KeyVaultClient(new KeyVaultClient.AuthenticationCallback(azureServiceTokenProvider.KeyVaultTokenCallback));
   return keyVaultClient;
}

public static async Task<string> GetSecret(string secretName)
{
   try
   {
       using var client = GetClient();
       return (await client.GetSecretAsync(keyVaultUrl, secretName)).Value;
   }
   catch (KeyVaultErrorException)
   {
      return null;
   }
   catch (Exception ex)
   {
      return null;
   }
}

solution2
 1  2019-12-05 09:47:37

I test in my site and the code you provided is almost right. Make sure you have login your account in Visual Studio which you create your key vault.

And remove using in code and install nuget .

private static KeyVaultClient GetClient()
{
   AzureServiceTokenProvider azureServiceTokenProvider = new AzureServiceTokenProvider();
   KeyVaultClient keyVaultClient = new KeyVaultClient(new KeyVaultClient.AuthenticationCallback(azureServiceTokenProvider.KeyVaultTokenCallback));
   return keyVaultClient;
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question retrieve secret from azure key vault How to retrieve Secret from Azure Key Vault using DefaultAzureCredential Unable to fetch secret value from Key Vault using system managed identity in C# Azure Function Getting Unathorized when trying to get a secret from Azure key Vault Can't Access Azure Key Vault from desktop console app How to check if secret is in Azure Key Vault C# - Using Azure Key Vault with Azure Storage on Native App Access azure key vault secret with application client secret Unable to read secret from Azure Key Vault from Azure Service Fabric App Read Vault secret with VaultSharp in C#
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM