JWE Example using Key Vault

This is a simple example using Key Vault (or Managed HSM) to encrypt a content encryption key (CEK) used to encrypt plaintext and generate a JWE to store all information necessary to decrypt it using Key Vault (or Managed HSM).

Prerequisites

.NET 8.0
Key Vault (or Managed HSM) and RSA key
(Optional) Azure Developer CLI

Provisioning

You can easily provision a Key Vault with an RSA 4096 key to use with this example using azd:

azd up
. .azure/dev/.env # path may vary if you provision a different environment

Running the example

Assuming your key ID is stored in the $AZURE_KEY_ID environment variable, which it would be if you followed the provisioning instructions above:

JWE=$(dotnet run -- encrypt 'This is plaintext' --id $AZURE_KEY_ID)
echo $JWE
dotnet run -- decrypt $JWE

Name		Name	Last commit message	Last commit date
Latest commit History 1 Commit
.vscode		.vscode
infra		infra
.editorconfig		.editorconfig
.gitattributes		.gitattributes
.gitignore		.gitignore
JweExample.csproj		JweExample.csproj
LICENSE.txt		LICENSE.txt
Program.cs		Program.cs
README.md		README.md
azure.yaml		azure.yaml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

JWE Example using Key Vault

Prerequisites

Provisioning

Running the example

About

Languages

License

heaths/jwe-example-net

Folders and files

Latest commit

History

Repository files navigation

JWE Example using Key Vault

Prerequisites

Provisioning

Running the example

About

Topics

Resources

License

Stars

Watchers

Forks

Languages