Tcl
Tcl
Azure Key Vault - Create or Update a JSON Secret
See more Secrets Examples
Demonstrates how to create or update a JSON secret stored in the Azure Key Vault.Note: This example requires Chilkat v10.1.0 or later.
Chilkat Tcl Downloads
load ./chilkat.dll
set success 0
# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.
# The bootstrap secret will contain the following information:
# Azure Tenant ID
# Azure Client ID
# Azure Client Secret
# See following examples for setting up a bootstrap secret in memory,
# or in the local manager (Windows Credentials Manager or Apple Keychain)
# Setup Bootstrap Secret in Local Manager
# Setup Bootstrap Secret in Memory
set bootstrap [new_CkSecrets]
# Set the location of the bootstrap secret.
# Can be "local_manager" or "memory", depending on how you setup the bootstrap secret.
# ---------------------------------------------------------------------------------------------
# If your operating system is NOT Windows or MacOS/iOS, then change "local_manager" to "memory"
# You can also, if desired, use "memory" on Windows and MacOS/iOS if your bootstrap secret was previously setup in memory.
# ---------------------------------------------------------------------------------------------
CkSecrets_put_Location $bootstrap "local_manager"
# Specify the bootstrap secret to be used.
set bsId [new_CkJsonObject]
CkJsonObject_UpdateString $bsId "appName" "azure_bs"
CkJsonObject_UpdateString $bsId "service" "Example"
CkJsonObject_UpdateString $bsId "username" "Joe"
# ----------------------------------------------------
set secrets [new_CkSecrets]
CkSecrets_put_Location $secrets "azure_key_vault"
set success [CkSecrets_SetBootstrapSecret $secrets $bsId $bootstrap]
if {$success == 0} then {
puts [CkSecrets_lastErrorText $secrets]
delete_CkSecrets $bootstrap
delete_CkJsonObject $bsId
delete_CkSecrets $secrets
exit
}
# ----
# Specify the name of the secret.
# service and username are required.
# appName and domain are optional.
# Note: The values are arbitrary and can be anything you want.
set json [new_CkJsonObject]
CkJsonObject_UpdateString $json "appName" "MyApp"
CkJsonObject_UpdateString $json "service" "OAuth2"
CkJsonObject_UpdateString $json "domain" "onedrive"
CkJsonObject_UpdateString $json "username" "matt"
# For Azure Key Vault, we also need to specify the name of the vault where the secret is to be stored.
# Replace "kvChilkat" with the name of your key vault.
CkJsonObject_UpdateString $json "vaultName" "kvChilkat"
# Get the secret to be stored.
set jsonSecret [new_CkJsonObject]
set success [CkJsonObject_LoadFile $jsonSecret "qa_data/tokens/oneDrive.json"]
if {$success == 0} then {
puts [CkJsonObject_lastErrorText $jsonSecret]
delete_CkSecrets $bootstrap
delete_CkJsonObject $bsId
delete_CkSecrets $secrets
delete_CkJsonObject $json
delete_CkJsonObject $jsonSecret
exit
}
# Create or update the secret.
set success [CkSecrets_UpdateSecretJson $secrets $json $jsonSecret]
if {$success == 0} then {
puts [CkSecrets_lastErrorText $secrets]
delete_CkSecrets $bootstrap
delete_CkJsonObject $bsId
delete_CkSecrets $secrets
delete_CkJsonObject $json
delete_CkJsonObject $jsonSecret
exit
}
puts "Success."
# Here you can see the secret that was created:
#
delete_CkSecrets $bootstrap
delete_CkJsonObject $bsId
delete_CkSecrets $secrets
delete_CkJsonObject $json
delete_CkJsonObject $jsonSecret