I've got a setup with secret retrieval from KV using href, works when KV ingress is public however without having KV open to public it fails to setup complaining its unable to fetch the secret. I've whitelisted the container apps environment IP and allowed it access to KV using user-assigned managed identity. Do you know what the problem could be/what im missing? Thank you.
Excelent serie. But anyone who can access the shell of the container can see the secret, a production password for example. Is there any way to get the secret dynamicaly from within the code only?
thank you so much for this
I've got a setup with secret retrieval from KV using href, works when KV ingress is public however without having KV open to public it fails to setup complaining its unable to fetch the secret. I've whitelisted the container apps environment IP and allowed it access to KV using user-assigned managed identity. Do you know what the problem could be/what im missing?
Thank you.
and when i update my secret in key vault how to apply that change to container app, it still reads the old secret
Excelent serie. But anyone who can access the shell of the container can see the secret, a production password for example. Is there any way to get the secret dynamicaly from within the code only?
use google distroless images for your containers. they don't have shell.
What about Application Configurations , that can also help, can we use it ?
Request for demo ACA with key vault