Read Key Vault value in policy with Azure API Management RRS feed

  • Question

  • Is it possible to read value saved in Key Vault, or Key Vaulted value in Named Values?

    Managed Identities have been enabled in APIM, and Secrete is created in Key Vault.

                <base />
                <validate-jwt header-name="Authorization" failed-validation-httpcode="401" failed-validation-error-message="Error:" require-expiration-time="true" require-scheme="Bearer" require-signed-tokens="true">
                    <openid-config url="https://xxx" />
                        <audience>read it from Key Vault, or KeyValted value in Named Values</audience>
                <base />
                <base />
                <base />

    The links below seem relevant, but I wonder if there is simpler code, like a one line of code that used for Azure Functions.

    Wednesday, July 17, 2019 3:52 PM

All replies

  • The way it is mentioned in the article is correct. You can use it like a Azure Function.

    Retrieving a secret using send-request policy:

    <send-request mode="new" response-variable-name="secretResponse" timeout="20" ignore-error="false">
      <authentication-managed-identity resource="" />

    Wednesday, July 17, 2019 4:25 PM