Using Azure API Gateway to expose azure keyvault api to client application

rauf101

1/29/24, 4:23 PM

Currently a client application works directly over internet with Azure Keyvault to get secret stored in the Keyvault. Azure service principal is used on client side for authentication to the Keyvault and this service principal has GET, LIST permission on Keyvault.

Is it possible to configure a Azure API Management (Azure API gateway) between client app and Keyvault to proxy client's API request (e.g., GET) directed toward the Keyvault. Also, is it a bad practice to have direct communication between client app and Keyvault over internet using service principal?

0 + 0

proxy

authentication

reverse-proxy

azure

vault

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Using Azure API Gateway to expose azure keyvault api to client application

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.