'Need to reboot all instances of a service when creating a new encrpytion key in the keyvault(use IDataProtectionBuilder)

I use the following data protection with protection encryption key:

dataProtectionBuilder.ProtectKeysWithAzureKeyVault(keyUri, tokenCredentials);

If I have a service with 4 instances, for example. When I create a new key version in the Azure keyvault, one instance has been rebooted and thus get the new key version, the other 3 instances still use the old key until they are refreshed from storage(24 hours?). This is a problem. I have to avoid force restart all instances. Is there another way to fix the problem?

Usually for key rotation, we can use both new and old keys for a few days to ensure there is no down time. Is there a way achieve it?

asp.net-coredata-protection


Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source

Related Questions

API Gateway Ocelot and Kubernetes

API Gateway Ocelot and Kubernetes

Using remote validation with ASP.NET Core

Unable to create an object of type 'DbContext'

automapper map interface to interface or object

Serilog set flush interval

Issue with API Versioning .NET Core 2.2 UnsupportedApiVersion

How to mock an IFormFile for a unit/integration test in ASP.NET Core?

No authentication handler is registered for the scheme 'Cookies'. The registered schemes are: Application, Bearer, ASOS

How do I solve a "view not found" exception in asp.net core mvc project

How to return a specific status code and no contents from Controller?

Why ASP Net Core 2.2 do not release memory?

How to use jquery in ASP.​NET Core

Using 'UseMvc' to configure MVC is not supported while using Endpoint Routing

How to cancel .Net Core Web API request using Angular?