web.config
Security.cs
using System; using System.Configuration; using System.Web.Configuration;
connectionStrings
// To encrypt connectionStrings - the method is called from Global.aspx public static void EncryptConnString() { Configuration config = WebConfigurationManager.OpenWebConfiguration("~"); ConfigurationSection section = config.GetSection("connectionStrings"); if (!section.SectionInformation.IsProtected) { section.SectionInformation.ProtectSection("RsaProtectedConfigurationProvider"); config.Save(); } }
MailSettings
// To encrypt MailSettings - the method is called from Global.aspx public static void EncryptMailSettings() { Configuration config = WebConfigurationManager.OpenWebConfiguration("~"); ConfigurationSection section = config.GetSection("system.net/mailSettings/smtp"); if (!section.SectionInformation.IsProtected) { section.SectionInformation.ProtectSection("RsaProtectedConfigurationProvider"); config.Save(); // Console.WriteLine("MailSettings section encrypted successfully."); } else { // Console.WriteLine("MailSettings section is already encrypted."); } }
Application_Start
Global.aspx
void Application_Start(object sender, EventArgs e) { Security.EncryptConnString(); Security.EncryptMailSettings(); }
ConnectionString
encrypted strings