Pull the connection string from key vault

src/Infrastructure/Dependencies.cs

@@ -3,6 +3,9 @@ using Microsoft.eShopWeb.Infrastructure.Data;
 using Microsoft.eShopWeb.Infrastructure.Identity;
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
+using Azure.Security.KeyVault.Secrets;
+using Azure.Identity;
+using System;
 
 namespace Microsoft.eShopWeb.Infrastructure;
 
@@ -11,6 +14,12 @@ public static class Dependencies
     public static void ConfigureServices(IConfiguration configuration, IServiceCollection services)
     {
         var useOnlyInMemoryDatabase = false;
+        string keyVaultUri = configuration["KEY_VAULT_ENDPOINT"];
+        string catalogConnectionStringKey = configuration["AZURE-SQL-CATALOG-CONNECTION-STRING"];
+        string identityConnectionStringKey = configuration["AZURE-SQL-IDENTITY-CONNECTION-STRING"];
+        string catalogConnectionStringValue = GetSqlConnectString(keyVaultUri, catalogConnectionStringKey);
+        string identityConnectionStringValue = GetSqlConnectString(keyVaultUri, identityConnectionStringKey);
+
         if (configuration["UseOnlyInMemoryDatabase"] != null)
         {
             useOnlyInMemoryDatabase = bool.Parse(configuration["UseOnlyInMemoryDatabase"]);
@@ -30,11 +39,24 @@ public static class Dependencies
             // Requires LocalDB which can be installed with SQL Server Express 2016
             // https://www.microsoft.com/en-us/download/details.aspx?id=54284
             services.AddDbContext<CatalogContext>(c =>
-                c.UseSqlServer(configuration["CATALOG_CONNECTION_STRING_VALUE"]));
+                c.UseSqlServer(catalogConnectionStringValue));
 
             // Add Identity DbContext
             services.AddDbContext<AppIdentityDbContext>(options =>
-                options.UseSqlServer(configuration["IDENTITY_CONNECTION_STRING_VALUE"]));
+                options.UseSqlServer(identityConnectionStringValue));
         }
     }
+
+    public static string GetSqlConnectString(string keyVaultUri, string connectionStringKey)
+    {
+        if (connectionStringKey == null)
+        {
+            return "";
+        }
+
+        var secretClient = new SecretClient(new Uri(keyVaultUri), new ClientSecretCredential("<tenant_id>","<client_id>","<client_secret>"));
+        KeyVaultSecret secret = secretClient.GetSecret(connectionStringKey);
+        string secretValue = secret.Value;
+        return secretValue;
+    }
 }

src/Infrastructure/Infrastructure.csproj

@@ -8,6 +8,8 @@
 
 	<ItemGroup>
 		<PackageReference Include="Ardalis.Specification.EntityFrameworkCore" Version="6.1.0" />
+		<PackageReference Include="Azure.Identity" Version="1.5.0" />
+		<PackageReference Include="Azure.Security.KeyVault.Secrets" Version="4.4.0" />
 		<PackageReference Include="Microsoft.AspNetCore.Identity.EntityFrameworkCore" Version="6.0.8" />
 		<PackageReference Include="Microsoft.EntityFrameworkCore.InMemory" Version="6.0.8" />
 		<PackageReference Include="Microsoft.EntityFrameworkCore.SqlServer" Version="6.0.8" />