Sample code for 30+ languages & platforms
PureBasic

Azure Key Vault - Setup Bootstrap Secret in Local Manager

See more Secrets Examples

Accessing a cloud-based secrets manager requires authentication credentials, which cannot be stored in the manager itself. Instead, they must be securely stored locally.

One solution is to store the authentication credentials as a secret in the Windows Credentials Manager or Apple Keychain. These credentials serve as the "bootstrap secret" for authenticating with the cloud-based secrets manager.

This example demonstrates how to setup a bootstrap secret for the Azure Key Vault.

Note: This example requires Chilkat v10.1.0 or later.

Chilkat PureBasic Downloads

PureBasic
IncludeFile "CkJsonObject.pb"
IncludeFile "CkSecrets.pb"

Procedure ChilkatExample()

    success.i = 0

    ; This example requires the Chilkat API to have been previously unlocked.
    ; See Global Unlock Sample for sample code.

    bootstrap.i = CkSecrets::ckCreate()
    If bootstrap.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; We're going to store the bootstrap secret in the local manager.
    ; On Windows, this is the Windows Credentials Manager
    ; On MacOS/iOS, it is the Apple Keychain
    CkSecrets::setCkLocation(bootstrap, "local_manager")

    ; Specify the name of the bootstrap secret.
    ; service and username are required.
    ; appName and domain are optional.
    ; Note: The values are arbitrary and can be anything you want.
    json.i = CkJsonObject::ckCreate()
    If json.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    CkJsonObject::ckUpdateString(json,"appName","azure_bs")
    CkJsonObject::ckUpdateString(json,"service","Example")
    CkJsonObject::ckUpdateString(json,"username","Joe")

    ; The bootstrap secret for the Azure Key Vault will contain
    ; the tenant_id, client_id, and client_secret, like this:
    jsonSecret.i = CkJsonObject::ckCreate()
    If jsonSecret.i = 0
        Debug "Failed to create object."
        ProcedureReturn
    EndIf

    ; Modify to your values.
    CkJsonObject::ckUpdateString(jsonSecret,"tenant_id","YOUR_TENANT_ID")
    CkJsonObject::ckUpdateString(jsonSecret,"client_id","YOUR_CLIENT_ID")
    CkJsonObject::ckUpdateString(jsonSecret,"client_secret","YOUR_CLIENT_SECRET")

    ; Create or update the bootstrap secret.
    success = CkSecrets::ckUpdateSecretJson(bootstrap,json,jsonSecret)
    If success = 0
        Debug CkSecrets::ckLastErrorText(bootstrap)
        CkSecrets::ckDispose(bootstrap)
        CkJsonObject::ckDispose(json)
        CkJsonObject::ckDispose(jsonSecret)
        ProcedureReturn
    EndIf

    Debug "The Azure bootstrap secret has been stored."


    CkSecrets::ckDispose(bootstrap)
    CkJsonObject::ckDispose(json)
    CkJsonObject::ckDispose(jsonSecret)


    ProcedureReturn
EndProcedure