Reputation: 195
how to secure critical data Blazor serverside
i have my connectionstring stored in my appsetting.json in my blazor serverside app it make me no felling good when i know that my password is there in my code..
i know that in JAVA there is for exemple Glassfish who store critical data in Password Aliases, and not in the source code.
Is there something similar in .netcore? blazor serverside? Or a solution for store critical data ?
Upvotes: 1
Views: 288
Answers (1)
Reputation: 5787
You can use Secret Manager for local environment: https://learn.microsoft.com/en-us/aspnet/core/security/app-secrets?view=aspnetcore-5.0&tabs=windows
For production you have many choices: Azure KeyVault, CI/CD pipelines configuration - variables substitution (Azure DevOps, Octopus Deploy, Github Actions, etc.), Environment variables, etc
Upvotes: 2
Related Questions
- How to implement Custom Authorization in Blazor Server
- Security question about C# code on Blazor server
- How to protect/encrypt data stored in session/local storage in Blazor WebAssembly
- blazor dotnet 6 ProtectedBrowserStorage
- Require authentication for entire Blazor Server app
- Enforce Global Authorization Requirement in Blazor Server
- Securing Blazor webassembly source
- perform authorization check in code behind
- Blazor Security - Razor Pages custom authentication/security
- What is the valid procedure to secure blazor client side app?