Handling secure keys with Azure Key Vault
In the preceding scenarios, such as Bot Framework integration or HealthVault integration, we dealt with keys such as bot secret keys, which we don't recommend embedding or storing within a Holographic UWP application. For any enterprise scenario, these should be kept in secure locations, such as the Azure Key Vault solution for storing keys securely.
Key vault integration with Holographic application
In this section, we will look at ways to access Azure Key Vault from the holographic application. If you are not familiar with Azure Key Vault and would like to learn from the start, visit https://docs.microsoft.com/en-us/azure/key-vault/.
Azure Key Vault provides REST APIs to access secret keys and manage the overall Key Vault. For access keys, you must first get yourself authenticated and get an access token. All requests to Azure Key Vault must be authenticated through Azure Active Directory access tokens.
To retrieve the secret key from Azure Key Vault...