Don't store secrets in app.config

[mpoulson]

It is poor design to recommend people store secret in the .config file. The plain text passwords are source to many hacks. Passwords should be stored in KeyVault or other secure location

---

Document Details

⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

• ID: 35a3017a-6d6c-237f-fc57-94247a8f7bf6
• Version Independent ID: 93413445-18fa-9245-ea64-1c1d789dce1e
• Content: Granting access using SharePoint App-Only
• Content Source: docs/solution-guidance/security-apponly-azureacs.md
• Product: sharepoint
• GitHub Login: @VesaJuvonen
• Microsoft Alias: vesaj

[ghost]

Thank you for reporting this issue. We will be triaging your incoming issue as soon as possible.