Azure-docs: secureString in Outputs
[Enter feedback here]
In the outputs section it is stated
> Type of the output value. Output values support the same types as template input parameters.
However for variables of type securestring the output will be masked and can't be use as an input for another deployment . Instead of passing secure information between deployments reference to that secret should be used
Document Details
⚠Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.
- ID: 0eb51e04-9b4e-c22d-be8c-4ddf4a59a100
- Version Independent ID: 2390761b-e1b9-21d1-ea81-7b8d669d0cf2
- Content: Azure Resource Manager template structure and syntax
- Content Source: articles/azure-resource-manager/resource-group-authoring-templates.md
- Service: azure-resource-manager
- GitHub Login: @tfitzmac
- Microsoft Alias: tomfitz
martgras
All 5 comments
@martgras Thanks for bringing this to our attention. Your feedback has been shared with the content owner for further review.
femsulu
on 17 Apr 2019
@martgras - thanks for this suggestion. I have clarified how securestring behaves as an output type, and added a link to the Key Vault with templates article.
tfitzmac
on 18 Apr 2019
please-close
tfitzmac
on 18 Apr 2019
This is such a bad design ... the template outputs of type 'securestring' should be available but not recorded in log files.
gigeld
on 16 Oct 2019
I agree with @gigeld, what's the point of specifying an output if you can't use it? Why wouldn't it just return a value of type SecureString and hide it in the deployment outputs view in the Azure Portal?
austincrft
on 22 Jan 2020
Related issues
behnam89
·
3Comments
jamesgallagher-ie
·
3Comments
spottedmahn
·
3Comments
AronT-TLV
·
3Comments
monteledwards
·
3Comments
Most helpful comment
I agree with @gigeld, what's the point of specifying an output if you can't use it? Why wouldn't it just return a value of type
SecureStringand hide it in the deployment outputs view in the Azure Portal?