stackoom
  简体   繁体   中英

How to add a “key” and its “name” to apsettings.js in ASP .NET Core Web application

 原文  2021-05-22 19:44:16       c#/ asp.net-core/ asp.net-core-mvc/ app-secret

Question

In ASP .NET Core Web Applications I have noticed that the connection string can be put into apsettings.jso n or secret.json file as follows:

appsettings.json 

{
   "ConnectionStrings": {
    "DBConnectionString": "DefaultEndpointsProtocol=https;AccountName=name;AccountKey=the_key;EndpointSuffix=core.windows.net"
  }
}

secret.json

{
  "ConnectionStrings:DBConnectionString": "DefaultEndpointsProtocol=https;AccountName=name;AccountKey=the_key;EndpointSuffix=core.windows.net"
}

And, it is used in the startup.cs .

public class startup
{
  public void ConfigureServices(IServiceCollection services)
        {
            services.AddDbContext<AppDBContext>(options =>
                options.UseSqlServer(
                    Configuration.GetConnectionString("DBConnectionString")));
        }
}

Problem:

In the same way the following is a how the connection string is passed in one of the controllers in the ASP .NET Core web Application:

BlogUploadController.cs

 AccountName = "MyAccount";
 AccountKey = "DGKC5745dfdG_+dkfkld";

 string UserConnectionString = string.Format("DefaultEndpointsProtocol=https;AccountName=name;AccountKey=DGAKSECCDI654D_FGd;EndpointSuffix=core.windows.net", AccountName, AccountKey);

You can see that I have put the "connection string", and the "AccountKey" directly in the code (which is vulnarable for security threats). Can anybody how to put in the apsettings.json or Secret.json like I have put the database connection string in the above exmple.

Thanks in advance.

1 answers

solution1
 3  2021-05-22 20:11:45

Adding things to the appsettings.json is a simple as editing the JSON. Take the custom appsettings.json below:

{
    "Setup": "Setup Value",    
    "Config": {
        "Key": "My Key",
        "Token": "My Token"
    }
}

In order to get the custom values from the above, you can use the Configuration variable in the setup.cs file in APS.NET Core.

string setup = Configuration["Setup"];

To get a value such as Config.Key , you separate the names with a colon : , such as this:

string key = Configuration["Setup:Key"];
string token = Configuration["Setup:Token"];

Do be aware that using appsettings.json to hold secrets is a bad idea, as appsettings.json is usually a public document and not a secrets file.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to add ProcessModel to an asp.net core web application How to fetch the user name of user browsing the site in asp.net core 2.0 web application? How to add a foreign key into a table using one-to-one relationship in ASP.NET Core 6 Web API? How do i add a web api to an existing asp.net mvc core 6 web application How exactly an ASP. NET core web application is launched Can I add ASP.NET Core MVC to existing ASP.NET Web Forms Application How to create a WebJob for my ASP.NET Core Web Application ASP.NET Core web application - How to upload large files How to add new key/values to “IConfiguration” in ASP.NET Core ASP.NET Core 2.1 Web.API change application insights instrumentation key for logging
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM