public void CreateClient()
{
// Environment variable with the Key Vault endpoint.
string managedHsmUrl = TestEnvironment.ManagedHsmUrl;
// Create a new access control client using the default credential from Azure.Identity using environment variables previously set,
// including AZURE_CLIENT_ID, AZURE_CLIENT_SECRET, and AZURE_TENANT_ID.
KeyVaultAccessControlClient client = new KeyVaultAccessControlClient(vaultUri: new Uri(managedHsmUrl), credential: new DefaultAzureCredential());
#if !SNIPPET
client = Client;
#endif
// Retrieve all the role definitions.
List <KeyVaultRoleDefinition> roleDefinitions = client.GetRoleDefinitions(KeyVaultRoleScope.Global).ToList();
// Retrieve all the role assignments.
List <KeyVaultRoleAssignment> roleAssignments = client.GetRoleAssignments(KeyVaultRoleScope.Global).ToList();
}
public void CreateClient()
{
// Environment variable with the Key Vault endpoint.
string keyVaultUrl = TestEnvironment.KeyVaultUrl;
#region Snippet:CreateKeyVaultAccessControlClient
// Create a new access control client using the default credential from Azure.Identity using environment variables previously set,
// including AZURE_CLIENT_ID, AZURE_CLIENT_SECRET, and AZURE_TENANT_ID.
KeyVaultAccessControlClient client = new KeyVaultAccessControlClient(vaultUri: new Uri(keyVaultUrl), credential: new DefaultAzureCredential());
/*@@*/ client = Client;
// Retrieve all the role definitions.
List <RoleDefinition> roleDefinitions = client.GetRoleDefinitions(RoleAssignmentScope.Global).ToList();
// Retrieve all the role assignments.
List <RoleAssignment> roleAssignments = client.GetRoleAssignments(RoleAssignmentScope.Global).ToList();
#endregion
this.client = client;
objectId = TestEnvironment.ClientObjectId;
roleDefinitionId = roleDefinitions.FirstOrDefault(d => d.RoleName.Equals("Azure Key Vault Managed HSM Crypto User")).Name;
}
