Encrypting and Decrypting Configuration Sections of web.config

Encrypting and Decrypting Configuration Sections of web.config

  
Hi,

we  need to store some sensitive data in our web.config and encrypt it.
Does Outsystems does this already?

introduction: https://msdn.microsoft.com/en-us/library/zhhddkxy(v=vs.140).aspx
walkthrough : https://msdn.microsoft.com/en-us/library/dtkwfdky(v=vs.140).aspx

For example we need to store some "private" keys we use to access 3rd party webservices.
or even encryption/decryption of our database.
When we are able to place those values inside a custom section of the web.config and even encrypt them on a system-level we are slightly more secure :)


Hi,

I haven't done this in OutSystems and I don't know if the platform encrypts any of web.config sections.

However I think it should be easy to accomplish this task. Running a command similar to this:
C:\WINDOWS\Microsoft.NET\Framework\v4.5\aspnet_regiis.exe -pe "MySection" -app "/MyApplication"

It works with any configuration section - including ones you build yourself.
Since ASP.NET automatically decrypts what you have encrypted... this should be enough.

I just don't know if this will create any conflict with the outsystems platform.
that's the key question :)


did you ever figure this out?
yes. I have managed to get it to work.