问题
Good Day!
I've read in most articles that deploying an application in Azure is needed such that an application will be able programmatically access the secrets stored in the Azure Key Vault.
Is there a way to not deploy the application in azure and have it still be able to access the Azure Key Vault to fetch the secrets either by using client id and client secret or certificates?
Thanks!
回答1:
There's no need to run your application in Azure for you to use Azure KeyVault. Your application can run on your local machine, somewhere on your intranet, in AWS or where-ever you like.
In order to access KeyVault, you need a security token from Azure Active Directory (AAD), so you do need to register your application within an AAD directory.
You can find more information on getting a token to talk to Azure KeyVault in this blog post here.
HTH
来源:https://stackoverflow.com/questions/34022041/access-azure-key-vault-stored-secret-using-application-not-deployed-in-azure