From f679e7eb6af286aa96c13af46398d0e852f502fa Mon Sep 17 00:00:00 2001 From: Rick Anderson <3605364+Rick-Anderson@users.noreply.github.com> Date: Thu, 10 Oct 2024 14:01:56 -1000 Subject: [PATCH] Update ROPE-SEE per blowdart /2 (#33816) --- aspnetcore/security/index.md | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/aspnetcore/security/index.md b/aspnetcore/security/index.md index d96d71187197..2b2840462cc4 100644 --- a/aspnetcore/security/index.md +++ b/aspnetcore/security/index.md @@ -61,7 +61,7 @@ Managed identities are a secure way to authenticate to services without needing * [Managed identities for App Service and Azure Functions](/azure/app-service/overview-managed-identity) * [Secure authentication flows](/entra/identity-platform/authentication-flows-app-scenarios#web-app-that-signs-in-a-user) -When the app is deployed to a test server, an environment variable can be used to set the connection string to a test database server. For more information, see [Configuration](xref:fundamentals/configuration/index). An environment variable should ***NEVER*** be used to store a production connection string. +When the app is deployed to a test server, an environment variable can be used to set the connection string to a test database server. For more information, see [Configuration](xref:fundamentals/configuration/index). We recommend environment variables not be used to store a production connection string as it's not the most secure approach. For more information, see: @@ -70,6 +70,11 @@ For more information, see: * [Azure services that can use managed identities to access other services](/entra/identity/managed-identities-azure-resources/managed-identities-status) * [IETF OAuth 2.0 Security Best Current Practice](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-security-topics#section-2.4) +For information on other cloud providers, see: + +* [AWS (Amazon Web Services): AWS Key Management Service (KMS)](https://aws.amazon.com/kms/) +* [Google Cloud Key Management Service overview](https://cloud.google.com/kms/docs/key-management-service) + ## Additional resources *