This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 11%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECF%3C/text%3E%3C/svg%3E)
Hi. I started hosting a web app through Azure in January. I recently noticed that my GitHub project, which is connected to Azure, is not set to private. I tried changing it, but it is not possible because of security reasons. It says: "For security reasons, you cannot change the visibility of a fork.". Its the file that is forked from Azure-Samples/php-docs-hello-world.
Because of this, anyone can see my connection string in my connect.php file, making it super easy for anyone to i.e. drop all tables from my database.
How can I make this private??
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 38%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
hth Marcin
Thank you for the tip! I didnt know about Github Secrets. Ive made a secret now, and followed a "how-to" on docs.github.com. How do I link the connection string in my secret to my webapp repository?
Hello @Chris Fauskanger Here are some steps you can take:
Create a new private repository: Since you cannot change the visibility of a forked repository directly, you can create a new private repository on GitHub.
Clone the forked repository: Clone the forked repository to your local machine. You can do this by using the command git clone https://github.com/username/repository.git.
Push to the new repository: Push the cloned content to your new private repository. First, navigate to your cloned repository on your local machine. Then, remove the existing origin with the command git remote remove origin. Add the new origin pointing to your private repository with the command git remote add origin https://github.com/username/new-repository.git. Finally, push the content to the new repository with the command git push -u origin master.
Update Azure: Update your Azure Web App to point to this new private repository instead of the old one. Remove sensitive data: Since your connection string was previously exposed, it’s recommended to change it to ensure the security of your database. After changing it, update the connection string in your Azure Web App settings.
Use Secrets for sensitive data: For better security, consider using Secrets in GitHub or Azure Key Vault for storing sensitive data like connection strings. This way, the sensitive data is not exposed in your code.
Remember, once sensitive data is committed to a repository, it might still be accessible in the commit history even after you change the visibility or remove the file. Therefore, it’s crucial to change any credentials that were exposed.
If this information provided here helps solve your issue, please tag this as answered, so it helps further community readers, who may have similar questions.
Ive done all the GIt stuff, now my only problem is to update my azure web app to point to a new repository instead of the old one. I cant see where I can change the link. I can only see the link on "overview" tab atm.
Hi Chris, you would typically reference the secret during a deployment - as described in https://docs.github.com/en/actions/security-guides/using-secrets-in-github-actions
hth Marcin