Skip to content

Commit 28c27e1

Browse files
Rick-Andersontdykstra
Rick-Anderson
and
tdykstra
authored
Update aspnetcore/fundamentals/configuration/index.md
Co-authored-by: Tom Dykstra <[email protected]>
1 parent a2d5300 commit 28c27e1

File tree

1 file changed

+1
-1
lines changed
  • aspnetcore/fundamentals/configuration

1 file changed

+1
-1
lines changed

aspnetcore/fundamentals/configuration/index.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -159,7 +159,7 @@ Configuration data guidelines:
159159
* Never store passwords or other sensitive data in configuration provider code or in plain text configuration files. The [Secret Manager](xref:security/app-secrets) tool can be used to store secrets in development.
160160
* Don't use production secrets in development or test environments.
161161
* Specify secrets outside of the project so that they can't be accidentally committed to a source code repository.
162-
* Avoid the use of passwords in production apps; for more information, see [Secure authentication flows](xref:security/index#secure-authentication-flows).
162+
* Production apps should use the most secure authentication flow available. For more information, see [Secure authentication flows](xref:security/index#secure-authentication-flows).
163163

164164
By [default](#default), the user secrets configuration source is registered after the JSON configuration sources. Therefore, user secrets keys take precedence over keys in `appsettings.json` and `appsettings.{Environment}.json`.
165165

0 commit comments

Comments
 (0)