Need to a way to cycle the ClientId/Secret to authentication

jguadagno / jjgnet-broadcast

Repository for the automated broadcasting of blog post, conferences, and streams

MIT License

14 stars 2 forks source link

Need to a way to cycle the ClientId/Secret to authentication #109

Open jguadagno opened 5 months ago

jguadagno commented 5 months ago

The current Microsoft Entra authentication requires a client id / secret for each of the enterprise applications. The client secret expires between 180 days and year. We should either

Rotate the secrets programmatically
Replace the secrets with a certificate.