I'm migrating from a local tfs to a private git (probably bitbucket). Today I simply encrypt webconfig, now I will have to get my sensitive version control data (connection string, passwords, etc.).
How do you do? Environment Variables?
As probably the answer is yes, every time you need to add or edit a key, I go to the infra-man and it adds "on hand"?
What about the organization of these variables? One variable for each key? At the user level? Should I encrypt in any way?
In case I use jenkins, deploy is automated. But I'm studying improvements in the process. I believe that the jenkins permissions do not allow changing environment variables, so the issue of the face of the infra.
I'm also intrigued at how azure create the variables / settings, how does azure do to change the environment veriáveis by the site / app? Could I (should) simulate this on my systems too?