tags:

views:

80

answers:

3
+3  Q: 

ASP.NET connection string deployment best practice

I've collected a (hopefully useful) summary of the ways I've researched to accomplish the subject of this post, as well as the problems I have with them. Please tell me if you've found other ways you like better, especially if they resolve the problems that the methods I mention do not.

  1. Leave connection strings in web.config and use XDT/msdeploy transformation to replace them with settings according to my active build configuration (for example, a web.PublicTest.config file). My problem with this is I merge and bury a few server-specific settings into an otherwise globally identical file with many configuration elements. Additionally, I cannot share connection string definitions among multiple peer-level applications.

  2. Specify a configSource="DeveloperLocalConnectionStrings.config" value for connection strings in web.config, and XDT transform this value to point to one of the multiple environment-specific files in my code-base. My problem with this is I send passwords for all my environments to all destinations (in addition to SVN, of course) and have unused config sections sitting on servers waiting to be accidentally used.

  3. Specific connection strings in the machine.config file rather than web.config. Problem: who the heck expects to find connection strings in the machine.config, and the probability of surprise name collisions as a result is high.

  4. Specify a configSource="LocalConnectionStrings.config", do not transform the value, and edit the project xml to exclude deployment of the connection string config. http://msdn.microsoft.com/en-us/library/ee942158.aspx#can_i_exclude_specific_files_or_folders_from_deployment - It's the best solution I've found to address my needs for a proprietary (non-distributed) web application, but I'm paranoid another team member will come one day and copy the production site to test for some reason, and voila! Production database is now being modified during UAT. (Update: I've found I can't use one-click publish in this scenario, only msdeploy command line with the -skip parameter. Excluding a file as above is the same as setting it to "None" compile action instead of "Content", and results in the package deleting it from the deployment target.)

  5. Wire the deployment package up to prompt for a connection string if it isn't already set (I don't know how to do this yet but I understand it is possible). This will have similar results to #4 above.

  6. Specify a configSource="..\ConnectionStrings.config". Would be great for my needs, since I could share the config among the apps I choose, and there would be nothing machine-specific in my application directory. Unfortunately parent paths are not allowed in this attribute (like they are for 'appSettings file=""' - note also that you can spiffily use file= inside a configSource= reference).

p.s. some of these solutions are discussed here: http://stackoverflow.com/questions/1221708/asp-net-configuration-file-connection-strings-for-multiple-developers-and-depl

A: 

  1. Use the hostname as key for the connectionstring, that way you can choose the datasource automagically. Make sure the choosing routine is not buggy (change hostname - test!)...

  2. Don't put it in the web.config, write an ini file, that way there is no XML encoding.

  3. Encrypt the password therein, with private/public key (RSA/PGP). Don't ever use cleartext, or a symmetric key, which is just as bad.

Quandary  2010-10-15 07:44:31
1. I like it - though, you are going to laugh, but currently test and dev application pools run on the same IIS server.
Shannon  2010-10-15 07:46:22
2. could you clarify please? can this ini file be used from the same library methods? specifically, I have an Entity Framework formatted connection string.
Shannon  2010-10-15 07:47:47
3. Thank you, I was not aware I could use an asymmetric key in a connection string or to encrypt a connection string (whichever you meant). I will research to find out more about how that's done.
Shannon  2010-10-15 07:52:25
@Shannon: No it can't. You've got to use Read/Write PrivateProfileString pinvokes, or write your own ini serializer. The advantage is you can change it by hand, if it's an XML string, things like quotation marks must be encoded. Doing that by hand in an XML file means you need to know all these escape squences, doing it in an ini file doesn't require escape sequences at all.
Quandary  2010-10-15 07:59:25
Thanks for the follow-up Quandry, I understand.
Shannon  2010-10-16 00:37:59
A: 

Check my following blog post: Protecting asp.net machine keys and connection strings

If you do use Quandary's answer, use a key that's not in the site's folder, just like asp.net does with protected config sections.

We manually approve changes to the web.config that go into staging/production. We use integrated instead of username based where possible, but an option we've used in the later case is to just have placeholders for the username/passwords in SVN.

We've used separate config files in the past, but we have run into other type of issues with web.config modifications, so we have been locking it in a single file lately.

eglasius  2010-10-15 14:18:58
Thanks Eglasius. I like the idea of integrated security. It used to be my MO, I don't remember why I stopped. As we've all experienced, every point of human interaction is downtime waiting to happen.
Shannon  2010-10-16 00:45:33
+1  A: 

When using SQL Server, you can also use Integrated Security / SSPI and add the WebServer Computer Login to the Sql Server.

That way you dont have to expose anything in the web.config and you can grant roles to that login like you would to any other DB user.

Though you have to understand the implications and security considerations to be taken, because any malicious code executed as THAT machine will have access to the Sql Server.

with regards Ole

ovm  2010-10-19 10:33:50
Awesome, thanks Ole. Eglasius mentioned "integrated" briefly, but didn't mention adding logins. Note that has restrictions for servers that do not share domains. You can save a remote server password, but that can't be used for MSSQL filestream type columns, and has other restrictions as well.
Shannon  2010-10-21 05:19:48

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps