Altien teaches Mike to keep its secrets in Azure's vault
A new configuration layer lets Mike pull its sensitive settings from Microsoft's managed secrets store instead of leaving them in plain config.
Altien added a small but consequential piece of plumbing: Mike now looks for its settings in the deployment's environment first, and if it doesn't find them there, fetches them from Azure Key Vault - Microsoft's managed store for passwords, keys, and connection strings. Values are cached for a few minutes so the system isn't hammering the vault on every request.
The move pairs with an operator-facing install screen. During setup, whoever is deploying Mike can enter the deployment's settings once, and they're written straight into the vault to be read back securely from then on. The environment-first lookup also keeps local development simple - you can override anything without touching the vault at all.
Spotted something wrong? Or know the PR text has fresher detail than the writeup above?