![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(272, 15%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJJ%3C/text%3E%3C/svg%3E)
Azure Functions
An Azure service that provides an event-driven serverless compute platform.
5,668 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 39%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELM%3C/text%3E%3C/svg%3E)
Hello john john Pter,
While storing sensitive information in local.settings.json is suitable for local development, it should not be used for production secrets. Always ensure that your production secrets are stored securely, using methods like Application Settings or Azure Key Vault.
- Application Settings: Store your API credentials and connection strings in the application settings of your Azure Function app. These settings are encrypted and securely stored in Azure, which helps prevent accidental disclosure of sensitive information in your code.
- Azure Key Vault: For enhanced security, consider using Azure Key Vault to manage your secrets. This service allows you to store and control access to sensitive information, such as API passwords and connection strings. You can reference these secrets in your application settings, reducing the risk of exposure.
Note: If your Azure Function needs to access other Azure services, consider using managed identities. This feature allows your function to authenticate to Azure services without the need to manage secrets directly, further enhancing security.