protected string GetKeyVaultSecretId(string certificateName)
        {
            var credentials = ServiceConfigurationExtensions.GetAzureTokenCredential(_config);
            var keyVaultUri = new Uri($"https://{Settings.CertificateSourceVault.Name}.vault.azure.net/");
            var client      = new SecretClient(keyVaultUri, credentials);

            return(client.GetSecret(certificateName).Value.Id.AbsoluteUri);
        }
        protected List <string> GetKeyVaultSecretIds(string certificateName)
        {
            var credentials = ServiceConfigurationExtensions.GetAzureTokenCredential(_config);
            var keyVaultUri = new Uri($"https://{Settings.CertificateSourceVault.Name}.vault.azure.net/");
            var client      = new SecretClient(keyVaultUri, credentials);

            return(client.GetPropertiesOfSecretVersions(certificateName).Select(secretProps =>
            {
                if (secretProps.ExpiresOn.HasValue && secretProps.ExpiresOn.Value < DateTimeOffset.Now.AddDays(-1))
                {
                    return null !;
                }

                return secretProps.Id.AbsoluteUri;
            }).Where(n => n != null).ToList());
        }