0

I am looking for an easy and maintainable solution for connection-string storage and retrieval on Pivotal Cloud Foundry (PCF) running on-premise. I have explored CredHub, ConfigServer, Vault and I am looking for anybody who may have faced this dilemma in the past. I would appreciate any input.

Technical Specifications

  • .NET Core 2.2
  • Prefer to use existing SteelToe functionality.
  • C#
marc_s
  • 732,580
  • 175
  • 1,330
  • 1,459
Ryan
  • 295
  • 2
  • 8
  • I suspect some of this boils down to personal preference. To make this less subjective, could you include some details about what works or doesn't work for you regarding the three solutions you have explored? The way your post reads, it seems like none of those will work for you. What do you need in a solution? – Daniel Mikusa Mar 31 '20 at 13:55
  • Thanks for the response @DanielMikusa. So, it seems like the path of least resistance is (for SQL Server Connections) to use strictly CredHub, all others need a combination of CredHub + ConfigServer + Vault. – Ryan Mar 31 '20 at 15:48
  • 1
    Yes, I would agree with that. If you install the CredHub Service Broker, it's quite easy to securely store your creds in CredHub and have apps automatically retrieve them. In fact, many service brokers are moving to do just this and are automatically storing your service creds in CredHub. Just a little extra security out of the box. That said, ConfigServer is a fine option as well if you want that deeper integration with Spring for things like credential refresh. It depends on what you need. IMHO, use the simplest solution that covers your needs. – Daniel Mikusa Apr 01 '20 at 01:56
  • @DanielMikusa Thank you! – Ryan Apr 07 '20 at 14:28

0 Answers0