[Feature] Inject credentials into bindings from SSO

[tfabraham]

This would be useful for injecting passwords into bindings files where adapters don't support SSO (see: http://stackoverflow.com/a/37174322/1750471). This way we don't need to store passwords in source control.

What we would like is:

BTDF injects passwords into bindings files getting these credentials from SSO.
Bindings file with credentials is saved temporary location (which users would need to secure) and destroy this file immediately after use (even if errors occurs mid deployment).

This work item was migrated from CodePlex

CodePlex work item ID: '11089'
Vote count: '3'

[fernandodsanjos]

Hi
Is it possible via some script to update the binding, some event in where we can get and update the bindingfile before it is imported?

[eloekset]

Support various sources, like Azure KeyVault.

[fernandodsanjos]

We now have an app that injects/replaces password placeholders in the settingsfile using KeyVault. The placeholders must be named the same as an existing secret.

[akishaha]

We now have an app that injects/replaces password placeholders in the settingsfile using KeyVault. The placeholders must be named the same as an existing secret.

How did you achieved it ?

[fernandodsanjos]

We now have an app that injects/replaces password placeholders in the settingsfile using KeyVault. The placeholders must be named the same as an existing secret.

How did you achieved it ?

Using a custom target
<Target Name="InjectAzureCredentials" AfterTargets="PreprocessBindings" Condition="'$(Configuration)' != 'Server'"> <Exec Command="ICC.Shared.Utilities.InjectAzureCredentials.exe"/> </Target>

The executable searches all tags that looks like $[tagname] with the value from azure secret with the same name