Revised

msmbaldwin · msmbaldwin · commit 47b4a06981fe · 2019-12-03T11:40:31.000-08:00
diff --git a/articles/key-vault/key-vault-ovw-throttling.md b/articles/key-vault/key-vault-ovw-throttling.md
@@ -61,97 +61,24 @@ When you implement your app's error handling, use the HTTP error code 429 to det
 
 Code that implements exponential backoff is shown below. 
 ```
-    public sealed class RetryWithExponentialBackoff
+SecretClientOptions options = new SecretClientOptions()
     {
-        private readonly int maxRetries, delayMilliseconds, maxDelayMilliseconds;
-
-        public RetryWithExponentialBackoff(int maxRetries = 50,
-            int delayMilliseconds = 200,
-            int maxDelayMilliseconds = 2000)
-        {
-            this.maxRetries = maxRetries;
-            this.delayMilliseconds = delayMilliseconds;
-            this.maxDelayMilliseconds = maxDelayMilliseconds;
-        }
-
-        public async Task RunAsync(Func<Task> func)
-        {
-            ExponentialBackoff backoff = new ExponentialBackoff(this.maxRetries,
-                this.delayMilliseconds,
-                this.maxDelayMilliseconds);
-            retry:
-            try
-            {
-                await func();
-            }
-            catch (Exception ex) when (ex is TimeoutException ||
-                ex is System.Net.Http.HttpRequestException)
-            {
-                Debug.WriteLine("Exception raised is: " +
-                    ex.GetType().ToString() +
-                    " –Message: " + ex.Message +
-                    " -- Inner Message: " +
-                    ex.InnerException.Message);
-                await backoff.Delay();
-                goto retry;
-            }
-        }
-    }
-
-    public struct ExponentialBackoff
-    {
-        private readonly int m_maxRetries, m_delayMilliseconds, m_maxDelayMilliseconds;
-        private int m_retries, m_pow;
-
-        public ExponentialBackoff(int maxRetries, int delayMilliseconds,
-            int maxDelayMilliseconds)
+        Retry =
         {
-            m_maxRetries = maxRetries;
-            m_delayMilliseconds = delayMilliseconds;
-            m_maxDelayMilliseconds = maxDelayMilliseconds;
-            m_retries = 0;
-            m_pow = 1;
-        }
-
-        public Task Delay()
-        {
-            if (m_retries == m_maxRetries)
-            {
-                throw new TimeoutException("Max retry attempts exceeded.");
-            }
-            ++m_retries;
-            if (m_retries < 31)
-            {
-                m_pow = m_pow << 1; // m_pow = Pow(2, m_retries - 1)
-            }
-            int delay = Math.Min(m_delayMilliseconds * (m_pow - 1) / 2,
-                m_maxDelayMilliseconds);
-            return Task.Delay(delay);
-        }
-    }
+            Delay= TimeSpan.FromSeconds(2),
+            MaxDelay = TimeSpan.FromSeconds(16),
+            MaxRetries = 5,
+            Mode = RetryMode.Exponential
+         }
+    };
+    var client = new SecretClient(new Uri(https://keyVaultName.vault.azure.net"), new DefaultAzureCredential(),options);
+                                 
+    //Retrieve Secret
+    secret = client.GetSecret(secretName);
 ```
 
 
-Using this code in a client C\# application is straightforward. The following example shows how, using the HttpClient class.
-
-```csharp
-public async Task<Cart> GetCartItems(int page)
-{
-    _apiClient = new HttpClient();
-    //
-    // Using HttpClient with Retry and Exponential Backoff
-    //
-    var retry = new RetryWithExponentialBackoff();
-    await retry.RunAsync(async () =>
-    {
-        // work with HttpClient call
-        dataString = await _apiClient.GetStringAsync(catalogUrl);
-    });
-    return JsonConvert.DeserializeObject<Cart>(dataString);
-}
-```
-
-Remember that this code is suitable only as a proof of concept. 
+Using this code in a client C# application is straightforward. 
 
 ### Recommended client-side throttling method
 
diff --git a/articles/virtual-machines/extensions/key-vault-linux.md b/articles/virtual-machines/extensions/key-vault-linux.md
@@ -37,20 +37,20 @@ The following JSON shows the schema for the Key Vault VM extension. The extensio
           "[concat('Microsoft.Compute/virtualMachines/', <vmName>)]"
       ],
       "properties": {
-			"publisher": "Microsoft.Azure.KeyVault",
-			"type": "KeyVaultForLinux",
-			"typeHandlerVersion": "1.0",
-			"autoUpgradeMinorVersion": true,
-			"settings": {
-				"secretsManagementSettings": {
-					"pollingIntervalInS": <polling interval in seconds, e.g. "3600">,
-					"certificateStoreName": <certificate store name, e.g.: "MY">,
-					"linkOnRenewal": <Not available on Linux e.g.: false>,
-					"certificateStoreLocation": <certificate store location, currently it works locally only e.g.: "LocalMachine">,
-					"requireInitialSync": <initial synchronization of certificates e..g: true>,
-					"observedCertificates": <list of KeyVault URIs representing monitored certificates, e.g.: "https://myvault.vault.azure.net/secrets/mycertificate"
-				}		  
-			}
+      "publisher": "Microsoft.Azure.KeyVault",
+      "type": "KeyVaultForLinux",
+      "typeHandlerVersion": "1.0",
+      "autoUpgradeMinorVersion": true,
+      "settings": {
+        "secretsManagementSettings": {
+          "pollingIntervalInS": <polling interval in seconds, e.g. "3600">,
+          "certificateStoreName": <certificate store name, e.g.: "MY">,
+          "linkOnRenewal": <Not available on Linux e.g.: false>,
+          "certificateStoreLocation": <certificate store location, currently it works locally only e.g.: "LocalMachine">,
+          "requireInitialSync": <initial synchronization of certificates e..g: true>,
+          "observedCertificates": <list of KeyVault URIs representing monitored certificates, e.g.: "https://myvault.vault.azure.net/secrets/mycertificate"
+        }      
+      }
       }
     }
 ```
@@ -93,17 +93,17 @@ The JSON configuration for a virtual machine extension must be nested inside the
           "[concat('Microsoft.Compute/virtualMachines/', <vmName>)]"
       ],
       "properties": {
-			"publisher": "Microsoft.Azure.KeyVault",
-			"type": "KeyVaultForLinux",
-			"typeHandlerVersion": "1.0",
-			"autoUpgradeMinorVersion": true,
-			"settings": {
-					"pollingIntervalInS": <polling interval in seconds, e.g. "3600">,
-					"certificateStoreName": <certificate store name, e.g.: "MY">,
-					"certificateStoreLocation": <certificate store location, currently it works locally only e.g.: "LocalMachine">,
-					"observedCertificates": <list of KeyVault URIs representing monitored certificates, e.g.: "https://myvault.vault.azure.net/secrets/mycertificate"
-				}		  
-			}
+      "publisher": "Microsoft.Azure.KeyVault",
+      "type": "KeyVaultForLinux",
+      "typeHandlerVersion": "1.0",
+      "autoUpgradeMinorVersion": true,
+      "settings": {
+          "pollingIntervalInS": <polling interval in seconds, e.g. "3600">,
+          "certificateStoreName": <certificate store name, e.g.: "MY">,
+          "certificateStoreLocation": <certificate store location, currently it works locally only e.g.: "LocalMachine">,
+          "observedCertificates": <list of KeyVault URIs representing monitored certificates, e.g.: "https://myvault.vault.azure.net/secrets/mycertificate"
+        }      
+      }
       }
     }
 ```
@@ -118,10 +118,10 @@ The Azure PowerShell can be used to deploy the Key Vault VM extension to an exis
     ```powershell
         # Build settings
         $settings = '{"secretsManagementSettings": 
-    		{ "pollingIntervalInS": "' + <pollingInterval> + 
-    		'", "certificateStoreName": "' + <certStoreName> + 
-    		'", "certificateStoreLocation": "' + <certStoreLoc> + 
-    		'", "observedCertificates": ["' + <observedCerts> + '"] } }'
+        { "pollingIntervalInS": "' + <pollingInterval> + 
+        '", "certificateStoreName": "' + <certStoreName> + 
+        '", "certificateStoreLocation": "' + <certStoreLoc> + 
+        '", "observedCertificates": ["' + <observedCerts> + '"] } }'
         $extName =  "KeyVaultForLinux"
         $extPublisher = "Microsoft.Azure.KeyVault"
         $extType = "KeyVaultForLinux"
@@ -138,10 +138,10 @@ The Azure PowerShell can be used to deploy the Key Vault VM extension to an exis
     
         # Build settings
         $settings = '{"secretsManagementSettings": 
-    		{ "pollingIntervalInS": "' + <pollingInterval> + 
-    		'", "certificateStoreName": "' + <certStoreName> + 
-    		'", "certificateStoreLocation": "' + <certStoreLoc> + 
-    		'", "observedCertificates": ["' + <observedCerts> + '"] } }'
+        { "pollingIntervalInS": "' + <pollingInterval> + 
+        '", "certificateStoreName": "' + <certStoreName> + 
+        '", "certificateStoreLocation": "' + <certStoreLoc> + 
+        '", "observedCertificates": ["' + <observedCerts> + '"] } }'
         $extName = "KeyVaultForLinux"
         $extPublisher = "Microsoft.Azure.KeyVault"
         $extType = "KeyVaultForLinux"
@@ -183,8 +183,8 @@ The Azure CLI can be used to deploy the Key Vault VM extension to an existing vi
 
 Please be aware of the following restrictions/requirements:
 - Key Vault restrictions:
-	- It must exist at the time of the deployment 
-	- Key Vault Access Policy is set for VM/VMSS Identity using MSI
+  - It must exist at the time of the deployment 
+  - Key Vault Access Policy is set for VM/VMSS Identity using MSI
 
 
 ## Troubleshoot and support
diff --git a/articles/virtual-machines/extensions/key-vault-windows.md b/articles/virtual-machines/extensions/key-vault-windows.md
@@ -37,20 +37,20 @@ The following JSON shows the schema for the Key Vault VM extension. The extensio
           "[concat('Microsoft.Compute/virtualMachines/', <vmName>)]"
       ],
       "properties": {
-			"publisher": "Microsoft.Azure.KeyVault",
-			"type": "KeyVaultForWindows",
-			"typeHandlerVersion": "1.0",
-			"autoUpgradeMinorVersion": true,
-			"settings": {
-				"secretsManagementSettings": {
-					"pollingIntervalInS": <polling interval in seconds, e.g: "3600">,
-					"certificateStoreName": <certificate store name, e.g.: "MY">,
-					"linkOnRenewal": <Only Windows. This feature enables auto-rotation of SSL certificates, without necessitating a re-deployment or binding.  e.g.: false>,
-					"certificateStoreLocation": <certificate store location, currently it works locally only e.g.: "LocalMachine">,
-					"requireInitialSync": <initial synchronization of certificates e..g: true>,
-					"observedCertificates": <list of KeyVault URIs representing monitored certificates, e.g.: "https://myvault.vault.azure.net/secrets/mycertificate"
-				}		  
-			}
+      "publisher": "Microsoft.Azure.KeyVault",
+      "type": "KeyVaultForWindows",
+      "typeHandlerVersion": "1.0",
+      "autoUpgradeMinorVersion": true,
+      "settings": {
+        "secretsManagementSettings": {
+          "pollingIntervalInS": <polling interval in seconds, e.g: "3600">,
+          "certificateStoreName": <certificate store name, e.g.: "MY">,
+          "linkOnRenewal": <Only Windows. This feature enables auto-rotation of SSL certificates, without necessitating a re-deployment or binding.  e.g.: false>,
+          "certificateStoreLocation": <certificate store location, currently it works locally only e.g.: "LocalMachine">,
+          "requireInitialSync": <initial synchronization of certificates e..g: true>,
+          "observedCertificates": <list of KeyVault URIs representing monitored certificates, e.g.: "https://myvault.vault.azure.net/secrets/mycertificate"
+        }      
+      }
       }
     }
 ```
@@ -92,17 +92,17 @@ The JSON configuration for a virtual machine extension must be nested inside the
           "[concat('Microsoft.Compute/virtualMachines/', <vmName>)]"
       ],
       "properties": {
-			"publisher": "Microsoft.Azure.KeyVault",
-			"type": "KeyVaultForWindows",
-			"typeHandlerVersion": "1.0",
-			"autoUpgradeMinorVersion": true,
-			"settings": {
-					"pollingIntervalInS": <polling interval in seconds, e.g: "3600">,
-					"certificateStoreName": <certificate store name, e.g.: "MY">,
-					"certificateStoreLocation": <certificate store location, currently it works locally only e.g.: "LocalMachine">,
-					"observedCertificates": <list of KeyVault URIs representing monitored certificates, e.g.: "https://myvault.vault.azure.net/secrets/mycertificate"
-				}		  
-			}
+      "publisher": "Microsoft.Azure.KeyVault",
+      "type": "KeyVaultForWindows",
+      "typeHandlerVersion": "1.0",
+      "autoUpgradeMinorVersion": true,
+      "settings": {
+          "pollingIntervalInS": <polling interval in seconds, e.g: "3600">,
+          "certificateStoreName": <certificate store name, e.g.: "MY">,
+          "certificateStoreLocation": <certificate store location, currently it works locally only e.g.: "LocalMachine">,
+          "observedCertificates": <list of KeyVault URIs representing monitored certificates, e.g.: "https://myvault.vault.azure.net/secrets/mycertificate"
+        }      
+      }
       }
     }
 ```
@@ -117,10 +117,10 @@ The Azure PowerShell can be used to deploy the Key Vault VM extension to an exis
     ```powershell
         # Build settings
         $settings = '{"secretsManagementSettings": 
-    		{ "pollingIntervalInS": "' + <pollingInterval> + 
-    		'", "certificateStoreName": "' + <certStoreName> + 
-    		'", "certificateStoreLocation": "' + <certStoreLoc> + 
-    		'", "observedCertificates": ["' + <observedCerts> + '"] } }'
+        { "pollingIntervalInS": "' + <pollingInterval> + 
+        '", "certificateStoreName": "' + <certStoreName> + 
+        '", "certificateStoreLocation": "' + <certStoreLoc> + 
+        '", "observedCertificates": ["' + <observedCerts> + '"] } }'
         $extName =  "KeyVaultForWindows"
         $extPublisher = "Microsoft.Azure.KeyVault"
         $extType = "KeyVaultForWindows"
@@ -137,10 +137,10 @@ The Azure PowerShell can be used to deploy the Key Vault VM extension to an exis
     
         # Build settings
         $settings = '{"secretsManagementSettings": 
-    		{ "pollingIntervalInS": "' + <pollingInterval> + 
-    		'", "certificateStoreName": "' + <certStoreName> + 
-    		'", "certificateStoreLocation": "' + <certStoreLoc> + 
-    		'", "observedCertificates": ["' + <observedCerts> + '"] } }'
+        { "pollingIntervalInS": "' + <pollingInterval> + 
+        '", "certificateStoreName": "' + <certStoreName> + 
+        '", "certificateStoreLocation": "' + <certStoreLoc> + 
+        '", "observedCertificates": ["' + <observedCerts> + '"] } }'
         $extName = "KeyVaultForWindows"
         $extPublisher = "Microsoft.Azure.KeyVault"
         $extType = "KeyVaultForWindows"
@@ -182,8 +182,8 @@ The Azure CLI can be used to deploy the Key Vault VM extension to an existing vi
 
 Please be aware of the following restrictions/requirements:
 - Key Vault restrictions:
-	- It must exist at the time of the deployment 
-	- Key Vault Access Policy is set for VM/VMSS Identity using MSI
+  - It must exist at the time of the deployment 
+  - Key Vault Access Policy is set for VM/VMSS Identity using MSI
 
 
 ## Troubleshoot and support
