Add KeyVault without building a config

src/OrchardCore/OrchardCore.Configuration.KeyVault/Extensions/AzureKeyVaultConfigurationExtension.cs

@@ -0,0 +1,104 @@
+using System;
+using Azure.Core;
+using Azure.Extensions.AspNetCore.Configuration.Secrets;
+using Azure.Identity;
+using Microsoft.AspNetCore.Hosting;
+using Microsoft.Extensions.Configuration;
+using Microsoft.Extensions.Hosting;
+using OrchardCore.Configuration.KeyVault.Services;
+
+namespace OrchardCore.Configuration.KeyVault.Extensions
+{
+    public static class AzureKeyVaultConfigurationExtension
+    {
+        /// <summary>
+        /// Adds Azure Key Vault as a Configuration Source.
+        /// </summary>
+        /// <param name="builder">The host builder to configure.</param>
+        /// <param name="tokenCredential">The token credential to use for authentication.</param>
+        /// <returns>The host builder.</returns>
+        public static IHostBuilder AddOrchardCoreAzureKeyVault(this IHostBuilder builder, TokenCredential tokenCredential = null)
+        {
+            if (builder == null)
+            {
+                throw new ArgumentNullException(nameof(builder));
+            }
+
+            builder.ConfigureAppConfiguration((context, builder) =>
+            {
+                // Here 'builder' is a config manager being a builder and also an 'IConfigurationRoot'
+                // if get from the 'context', allowing to get values from the providers already added
+                // without having to build a configuration on the fly that would need to be disposed.
+                AddOrchardCoreAzureKeyVault(builder, context.Configuration, tokenCredential);
+            });
+
+            return builder;
+        }
+
+        /// <summary>
+        /// Adds Azure Key Vault as a Configuration Source.
+        /// </summary>
+        public static IWebHostBuilder AddOrchardCoreAzureKeyVault(this IWebHostBuilder builder, TokenCredential tokenCredential = null)
+        {
+            if (builder == null)
+            {
+                throw new ArgumentNullException(nameof(builder));
+            }
+
+            builder.ConfigureAppConfiguration((context, builder) =>
+            {
+                // Here 'builder' is a config manager being a builder and also an 'IConfigurationRoot'
+                // if get from the 'context', allowing to get values from the providers already added
+                // without having to build a configuration on the fly that would need to be disposed.
+                AddOrchardCoreAzureKeyVault(builder, context.Configuration, tokenCredential);
+            });
+
+            return builder;
+        }
+
+        /// <summary>
+        /// Adds Azure Key Vault as a Configuration Source.
+        /// </summary>
+        public static ConfigurationManager AddOrchardCoreAzureKeyVault(
+            this ConfigurationManager manager, TokenCredential tokenCredential = null)
+        {
+            if (manager == null)
+            {
+                throw new ArgumentNullException(nameof(manager));
+            }
+
+            // The 'ConfigurationManager' is a builder and also an 'IConfigurationRoot' allowing to
+            // get values from the providers already added without having to build a configuration.
+            AddOrchardCoreAzureKeyVault(manager, manager, tokenCredential);
+
+            return manager;
+        }
+
+        private static void AddOrchardCoreAzureKeyVault(
+            this IConfigurationBuilder builder, IConfiguration configuration, TokenCredential tokenCredential)
+        {
+            var keyVaultName = configuration["OrchardCore:OrchardCore_KeyVault_Azure:KeyVaultName"];
+
+            TimeSpan? reloadInterval = null;
+            if (double.TryParse(configuration["OrchardCore:OrchardCore_KeyVault_Azure:ReloadInterval"], out var interval))
+            {
+                reloadInterval = TimeSpan.FromSeconds(interval);
+            }
+
+            var keyVaultEndpointUri = new Uri("https://" + keyVaultName + ".vault.azure.net");
+            var configOptions = new AzureKeyVaultConfigurationOptions()
+            {
+                Manager = new AzureKeyVaultSecretManager(),
+                ReloadInterval = reloadInterval,
+            };
+
+            tokenCredential ??= new DefaultAzureCredential(includeInteractiveCredentials: true);
+
+            builder.AddAzureKeyVault(
+                keyVaultEndpointUri,
+                tokenCredential,
+                configOptions
+            );
+        }
+    }
+}