DacKeyVaultService Class
Definition
Important
Some information relates to prerelease product that may be substantially modified before it’s released. Microsoft makes no warranties, express or implied, with respect to the information provided here.
Provides a service for discovering and configuring a KeyVaultAuthenticator to handle key vault access requests. These requests will occur during deployment if an encrypted table is being altered. It also supports initialization of general key vault support in an application
public sealed class DacKeyVaultServicetype DacKeyVaultService = classPublic NotInheritable Class DacKeyVaultService- Inheritance
-
DacKeyVaultService
Properties
| BlockifMissingAuthentication |
Gives a way to set early failure if Azure Key Vault Provider is not setup. When this is true, deployment fails to start if there is no Provider defined contrary to default mode which lets the deployment go through and fails only when key is actually used. |
| Instance |
Singleton instance object for the DacKeyVaultService. |
Methods
| InitializeAuthenticator() |
Gives the authenticator the opportunity to register with the core AlwaysEncrypted callstack. This is important in scenarios where Interactive authentication is being used and this is the global authenticator to be used in the application |
| UpdateAuthInfo(KeyVaultAuthInfoBase) |
Passes a KeyVaultAuthInfoBase object to the KeyVaultAuthenticator, to support scenarios where a user changes authentication method, for instance by logging into a different Azure account |
| Validate(IList<String>, CancellationToken) |
Callback function to validate the presence of AKV token for Column Master Key access |