Hello is there a way how to purge keyvault secret with azure

Question

Hello is there a way how to purge keyvault secret with azure nextgen

brave-planet-10645 · Answer

How did the secret get added to the vault

rough-tomato-98795 · Answer

with new next keyvault latest Secret

brave-planet-10645 · Answer

Ah and you want it purged permanently Rather than soft deleted

rough-tomato-98795 · Answer

exactly

brave-planet-10645 · Answer

I don t believe you can although I ll check up on this You can set the number of days to keys around for before they are purged <https www pulumi com docs reference pkg azure keyvault keyvault softdeleteretentiondays nodejs> so you could set that to be 1 day

rough-tomato-98795 · Answer

thats too long for our case and unluckily we dont even have access to keyvault itself in our program we just have rights to add and delete secrets

brave-planet-10645 · Answer

Another option would be just to delete it using the azure SDK So as part of the program just delete it

brave-planet-10645 · Answer

brave-planet-10645 · Answer

or <https docs microsoft com en us dotnet api overview azure security keyvault secrets readme pre>

rough-tomato-98795 · Answer

yeah but some kind of hooking on component lifecycle will be needed then Something like postDelete = gt purge with api call

rough-tomato-98795 · Answer

or some kind of logic which purge if exists and do nothing if not can work as well i guess

tall-needle-56640 · Answer

< rough tomato 98795> If you put the purge in the stack then it will purge whether or not the secret has been created or deleted

tall-needle-56640 · Answer

Can you explain your scenario