You can encrypt the web.config with aspnet_regiis. This is to stop people with access to your server from reading sensitive information.
By the way, I would put your config settings inside a class, that can then be injected into your controllers – it will make unit testing easier.
More Related Contents:
- How to force HTTPS using a web.config file
- Loop through enum result property
- Login failed for user ‘IIS APPPOOL\ASP.NET v4.0’
- How to return a file (FileContentResult) in ASP.NET WebAPI
- ASP.NET MVC 5 group of radio buttons
- Questions about using Ninject
- Passing data between different controller action methods
- Is Task.Run considered bad practice in an ASP .NET MVC Web Application?
- CSS, Images, JS not loading in IIS
- An ASP.NET setting has been detected that does not apply in Integrated managed pipeline mode
- Remote Validation for LIST of MODELs
- Restrict access to a specific controller by IP address in ASP.NET MVC Beta
- Passing data to Master Page in ASP.NET MVC
- Web.Config Debug/Release
- How to enable cross origin requests in ASP.NET MVC [duplicate]
- Do I need a Global.asax.cs file at all if I’m using an OWIN Startup.cs class and move all configuration there?
- Is it secure to store passwords in cookies?
- How do I display the DisplayAttribute.Description attribute value?
- ASP.Net MVC route to catch all *.aspx requests
- Visual Studio – Resx File default ‘internal’ to ‘public’
- MvcSiteMap generating a Menu without messing the breadcumbs
- How do I route images using ASP.Net MVC routing?
- The model item passed into the dictionary is of type ‘mvc.Models.ModelA’ but this dictionary requires a model item of type ‘mvc.Models.ModelB‘
- Get UserID of logged-in user in Asp.Net MVC 5
- Can I use ASP.NET MVC together with regular ASP.NET Web forms
- System.web.mvc missing
- How to route EVERYTHING other than Web API to /index.html
- MVC4 – Bundling does not work when optimizations are set to true
- Error 500.19 with 0x8007000d when running ASP.NET Core app in IIS despite AspNetCoreModule being installed
- The ‘Microsoft.ACE.OLEDB.12.0’ provider is not registered on the local machine.