<< ASP.NET Core 3.1.9 Hosting - HostForLIFE :: Handling Larger JSON String Values In .NET And Avoiding Exceptions | ASP.NET Core 5.0.2 Hosting - HostForLIFE :: How To Implement Database Views Using Entity Framework (EF) Code First Approach? >>

ASP.NET Core 5.0.2 Hosting - HostForLIFE :: How To Encrypt an AppSettings Key In Web.config?

February 22, 2021 06:20 by author

Peter

Sometimes we come across a scenario where we need to encrypt a sensitive key in appSettings section in Web.config file. This blog demonstrates the steps to encrypt a key and read the respective key in an ASP.NET application.

I have an appsettings key that is being called from .NET application. Before we are encrypting appsettings key in web.config.

Step 1 - Adding a section in configSections in web.config
    <configSections>
    <section name="secureAppSettings" type="System.Configuration.NameValueSectionHandler, System, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089" />
    </configSections

Step 2 - Add secureAppSettings section under configuration
    <secureAppSettings>
    <add key="Password" value="XXXXXXXX"/>
    </secureAppSettings>

How To Encrypt a AppSettings Key In Web.config
Step 3 - Execute command from command prompt to encrypt secureAppSettings section
Open command prompt and execute the below commands.

cd C:\Windows\Microsoft.NET\Framework\v4.0.30319
aspnet_regiis.exe -pef "secureAppSettings" "your application web config path" -prov "DataProtectionConfigurationProvider"

After execution of the above command, secure app settings section encrypted as below.

Step 4 - Accessing appsettings key from .NET code
To access the encrypted key value in code, we can write it like below.
    using System.Collections.Specialized;

    var passwordValue = "";
    var section = System.Web.Configuration.WebConfigurationManager.GetSection("secureAppSettings") as NameValueCollection;
    if (section != null && section["Password"] != null)
    {
    passwordValue = section["Password"];
    }

Excellent! We successfully encrypted to a key in appsettings in web.config. Similarly, we can do the same steps while deploying a Web application to IIS.

HostForLIFE ASP.NET 3.1.9 Hosting
HostForLIFE is European Windows Hosting Provider which focuses on Windows Platform only. We deliver on-demand hosting solutions including Shared hosting, Reseller Hosting, Cloud Hosting, Dedicated Servers, and IT as a Service for companies of all sizes. We have customers from around the globe, spread across every continent. We serve the hosting needs of the business and professional, government and nonprofit, entertainment and personal use market segments.

Tags: asp.net core 5.0.2 hosting
Categories:
Actions: E-mail | Kick it! | Permalink | comment

Comments (0) | RSS comment feed

Comment RSS

European ASP.NET Core 1.0 Hosting - HostForLIFE.eu :: How to Publish Your ASP.NET Core in IISHow to Publish Your ASP.NET Core in IISASP.NET Core 5.0.2 Hosting - HostForLIFE :: InProcess Hosting Model In ASP.NET CoreIn this article, we will learn about one of the AspNetCoreHostingModel i.e. InProcess Hosting Model....European ASP.NET Core 3 Hosting :: Simple Steps to Migrate Your ASP.NET Core 2 to ASP.NET Core 3Simple Steps to Migrate Your ASP.NET Core 2 to ASP.NET Core 3

European ASP.NET 4.5 Hosting BLOG

ASP.NET Core 5.0.2 Hosting - HostForLIFE :: How To Encrypt an AppSettings Key In Web.config?

About HostForLIFE

Month List

Other Important BLOGs

Featured on

European ASP.NET 4.5 Hosting BLOG

ASP.NET Core 5.0.2 Hosting - HostForLIFE :: How To Encrypt an AppSettings Key In Web.config?

About HostForLIFE

Month List

Other Important BLOGs

Featured on

Tag cloud