Open utterances-bot opened 4 years ago
irontoby
commented
4 years ago It appears that shortly after you posted your update about this method not working for decryption unless the cert is in the local store, a PR was submitted which fixes that issue:
https://github.com/aspnet/DataProtection/pull/299
Have you tried this method again since then to see if it works now?
MV10
commented
4 years ago @irontoby Yes, they fixed it, but we've moved away from Azure due to difficulties in predicting costs, so I haven't revisited this. We're currently using dedicated servers in a more traditional hosting setup. I love Azure but it's a tricky proposition for small business, in my opinion.
irontoby
commented
4 years ago Great, thanks for the feedback! Don't disagree at all on Azure, but it's what my employer is using so that part is outta my hands...
Storing X509 Certificates in Azure Key Vault - Forty Years of Code
This article demonstrates storing and retrieving X.509 certificates to Azure Key Vault. This is useful for ASP.NET Core’s Data Protection feature, as well as sharing IdentityServer4’s token credentials.
https://mcguirev10.com/2018/01/10/storing-certificates-azure-keyvault.html