-
Notifications
You must be signed in to change notification settings - Fork 2.4k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Add KeyVault without building a config (#14550)
- Loading branch information
Showing
2 changed files
with
104 additions
and
71 deletions.
There are no files selected for viewing
104 changes: 104 additions & 0 deletions
104
...Core/OrchardCore.Configuration.KeyVault/Extensions/AzureKeyVaultConfigurationExtension.cs
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,104 @@ | ||
| using System; | ||
| using Azure.Core; | ||
| using Azure.Extensions.AspNetCore.Configuration.Secrets; | ||
| using Azure.Identity; | ||
| using Microsoft.AspNetCore.Hosting; | ||
| using Microsoft.Extensions.Configuration; | ||
| using Microsoft.Extensions.Hosting; | ||
| using OrchardCore.Configuration.KeyVault.Services; | ||
|
|
||
| namespace OrchardCore.Configuration.KeyVault.Extensions | ||
| { | ||
| public static class AzureKeyVaultConfigurationExtension | ||
| { | ||
| /// <summary> | ||
| /// Adds Azure Key Vault as a Configuration Source. | ||
| /// </summary> | ||
| /// <param name="builder">The host builder to configure.</param> | ||
| /// <param name="tokenCredential">The token credential to use for authentication.</param> | ||
| /// <returns>The host builder.</returns> | ||
| public static IHostBuilder AddOrchardCoreAzureKeyVault(this IHostBuilder builder, TokenCredential tokenCredential = null) | ||
| { | ||
| if (builder == null) | ||
| { | ||
| throw new ArgumentNullException(nameof(builder)); | ||
| } | ||
|
|
||
| builder.ConfigureAppConfiguration((context, builder) => | ||
| { | ||
| // Here 'builder' is a config manager being a builder and also an 'IConfigurationRoot' | ||
| // if get from the 'context', allowing to get values from the providers already added | ||
| // without having to build a configuration on the fly that would need to be disposed. | ||
| AddOrchardCoreAzureKeyVault(builder, context.Configuration, tokenCredential); | ||
| }); | ||
|
|
||
| return builder; | ||
| } | ||
|
|
||
| /// <summary> | ||
| /// Adds Azure Key Vault as a Configuration Source. | ||
| /// </summary> | ||
| public static IWebHostBuilder AddOrchardCoreAzureKeyVault(this IWebHostBuilder builder, TokenCredential tokenCredential = null) | ||
| { | ||
| if (builder == null) | ||
| { | ||
| throw new ArgumentNullException(nameof(builder)); | ||
| } | ||
|
|
||
| builder.ConfigureAppConfiguration((context, builder) => | ||
| { | ||
| // Here 'builder' is a config manager being a builder and also an 'IConfigurationRoot' | ||
| // if get from the 'context', allowing to get values from the providers already added | ||
| // without having to build a configuration on the fly that would need to be disposed. | ||
| AddOrchardCoreAzureKeyVault(builder, context.Configuration, tokenCredential); | ||
| }); | ||
|
|
||
| return builder; | ||
| } | ||
|
|
||
| /// <summary> | ||
| /// Adds Azure Key Vault as a Configuration Source. | ||
| /// </summary> | ||
| public static ConfigurationManager AddOrchardCoreAzureKeyVault( | ||
| this ConfigurationManager manager, TokenCredential tokenCredential = null) | ||
| { | ||
| if (manager == null) | ||
| { | ||
| throw new ArgumentNullException(nameof(manager)); | ||
| } | ||
|
|
||
| // The 'ConfigurationManager' is a builder and also an 'IConfigurationRoot' allowing to | ||
| // get values from the providers already added without having to build a configuration. | ||
| AddOrchardCoreAzureKeyVault(manager, manager, tokenCredential); | ||
|
|
||
| return manager; | ||
| } | ||
|
|
||
| private static void AddOrchardCoreAzureKeyVault( | ||
| this IConfigurationBuilder builder, IConfiguration configuration, TokenCredential tokenCredential) | ||
| { | ||
| var keyVaultName = configuration["OrchardCore:OrchardCore_KeyVault_Azure:KeyVaultName"]; | ||
|
|
||
| TimeSpan? reloadInterval = null; | ||
| if (double.TryParse(configuration["OrchardCore:OrchardCore_KeyVault_Azure:ReloadInterval"], out var interval)) | ||
| { | ||
| reloadInterval = TimeSpan.FromSeconds(interval); | ||
| } | ||
|
|
||
| var keyVaultEndpointUri = new Uri("https://" + keyVaultName + ".vault.azure.net"); | ||
| var configOptions = new AzureKeyVaultConfigurationOptions() | ||
| { | ||
| Manager = new AzureKeyVaultSecretManager(), | ||
| ReloadInterval = reloadInterval, | ||
| }; | ||
|
|
||
| tokenCredential ??= new DefaultAzureCredential(includeInteractiveCredentials: true); | ||
|
|
||
| builder.AddAzureKeyVault( | ||
| keyVaultEndpointUri, | ||
| tokenCredential, | ||
| configOptions | ||
| ); | ||
| } | ||
| } | ||
| } |
71 changes: 0 additions & 71 deletions
71
...ore/OrchardCore.Configuration.KeyVault/Extensions/AzureKeyVaultWebHostBuilderExtension.cs
This file was deleted.
Oops, something went wrong.