(PureBasic) Azure Key Vault - Create or Update a Binary Secret

See more Secrets Examples

Demonstrates how to create or update a binary secret stored in the Azure Key Vault.

Note: This example requires Chilkat v10.1.0 or later.

For more information, see https://cknotes.com/chilkat-secrets-class-added-in-version-10-1-0/

Chilkat PureBasic Module Download Chilkat PureBasic Module

IncludeFile "CkBinData.pb"
IncludeFile "CkHttp.pb"
IncludeFile "CkJsonObject.pb"
IncludeFile "CkSecrets.pb"

Procedure ChilkatExample()

    ; This example requires the Chilkat API to have been previously unlocked.
    ; See Global Unlock Sample for sample code.

    ; The bootstrap secret will contain the following information:

    ; Azure Tenant ID
    ; Azure Client ID
    ; Azure Client Secret

    ; See following examples for setting up a bootstrap secret in memory, 
    ; or in the local manager (Windows Credentials Manager or Apple Keychain)
    ; Setup Bootstrap Secret in Local Manager
    ; Setup Bootstrap Secret in Memory
    bootstrap.i = CkSecrets::ckCreate()
    If bootstrap.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; Set the location of the bootstrap secret.
    ; Can be "local_manager" or "memory", depending on how you setup the bootstrap secret.
    ; ---------------------------------------------------------------------------------------------
    ; If your operating system is NOT Windows or MacOS/iOS, then change "local_manager" to "memory"
    ; You can also, if desired, use "memory" on Windows and MacOS/iOS if your bootstrap secret was previously setup in memory.
    ; ---------------------------------------------------------------------------------------------
    CkSecrets::setCkLocation(bootstrap, "local_manager")

    ; Specify the bootstrap secret to be used.
    bsId.i = CkJsonObject::ckCreate()
    If bsId.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    CkJsonObject::ckUpdateString(bsId,"appName","azure_bs")
    CkJsonObject::ckUpdateString(bsId,"service","Example")
    CkJsonObject::ckUpdateString(bsId,"username","Joe")

    ; ----------------------------------------------------
    secrets.i = CkSecrets::ckCreate()
    If secrets.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    CkSecrets::setCkLocation(secrets, "azure_key_vault")
    success.i = CkSecrets::ckSetBootstrapSecret(secrets,bsId,bootstrap)
    If success = 0
        Debug CkSecrets::ckLastErrorText(secrets)
        CkSecrets::ckDispose(bootstrap)
        CkJsonObject::ckDispose(bsId)
        CkSecrets::ckDispose(secrets)
        ProcedureReturn
    EndIf

    ; Specify the name of the secret to be created or updated.
    ; service and username are required.
    ; appName and domain are optional.
    ; Note: The values are arbitrary and can be anything you want.
    json.i = CkJsonObject::ckCreate()
    If json.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    CkJsonObject::ckUpdateString(json,"appName","Test2")
    CkJsonObject::ckUpdateString(json,"service","Custom")
    CkJsonObject::ckUpdateString(json,"domain","Ocean")
    CkJsonObject::ckUpdateString(json,"username","Starfish")

    ; For Azure Key Vault, we also need to specify the name of the vault where the secret is to be stored.
    ; Replace "kvChilkat" with the name of your key vault.
    CkJsonObject::ckUpdateString(json,"vaultName","kvChilkat")

    ; The purpose of this example is to show how arbitrary binary data
    ; can be stored as a secret.

    ; We'll use a small JPG image that is approximately 6KB in size.
    ; You can test using this same JPG at this URL:
    url.s = "https://chilkatdownload.com/sample_data/starfish.jpg"
    http.i = CkHttp::ckCreate()
    If http.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    bd.i = CkBinData::ckCreate()
    If bd.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    success = CkHttp::ckDownloadBd(http,url,bd)
    If success = 0
        Debug CkHttp::ckLastErrorText(http)
        CkSecrets::ckDispose(bootstrap)
        CkJsonObject::ckDispose(bsId)
        CkSecrets::ckDispose(secrets)
        CkJsonObject::ckDispose(json)
        CkHttp::ckDispose(http)
        CkBinData::ckDispose(bd)
        ProcedureReturn
    EndIf

    ; Create or update the binary secret.
    success = CkSecrets::ckUpdateSecretBd(secrets,json,bd)
    If success = 0
        Debug CkSecrets::ckLastErrorText(secrets)
        CkSecrets::ckDispose(bootstrap)
        CkJsonObject::ckDispose(bsId)
        CkSecrets::ckDispose(secrets)
        CkJsonObject::ckDispose(json)
        CkHttp::ckDispose(http)
        CkBinData::ckDispose(bd)
        ProcedureReturn
    EndIf

    Debug "Success."

    ; Here you can see the secret that was created in the Azure Key Vault:

    ; 


    CkSecrets::ckDispose(bootstrap)
    CkJsonObject::ckDispose(bsId)
    CkSecrets::ckDispose(secrets)
    CkJsonObject::ckDispose(json)
    CkHttp::ckDispose(http)
    CkBinData::ckDispose(bd)


    ProcedureReturn
EndProcedure