-
Notifications
You must be signed in to change notification settings - Fork 393
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Secure Speech Service Key/Region #101
Comments
The solution now has KeyVault - should this be utilised? |
Looks like we are now using Key Vault. I think this is more that the key is returned in plain text from the chat-with-your-data-solution-accelerator/code/app.py Lines 32 to 40 in ede0d6d
I'll reword the issue to be clearer. |
After discussing with the team, it has been decided to remove the If such a requirement arises, the endpoint may be added back to the application. |
Motivation
Ensure sensitive credentials cannot be exposed. We are currently returning the Azure Speech Key from the
/api/config
endpoint in plain textchat-with-your-data-solution-accelerator/code/app.py
Lines 32 to 40 in ede0d6d
How would you feel if this feature request was implemented?
Requirements
/api/config
endpoint. Consider usingSecretStr
from pydantic https://docs.pydantic.dev/2.6/examples/secrets/ to return a masked version of the secret/api/config
endpoint) Speech from UI does not work when using RBAC #501Tasks
To be filled in by the engineer picking up the issue
/api/config
, with secrets masked #683The text was updated successfully, but these errors were encountered: