Don't store secrets in app.config

[mpoulson]

It is poor design to recommend people store secret in the .config file. The plain text passwords are source to many hacks. Passwords should be stored in KeyVault or other secure location

---

Document Details

⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

• ID: 35a3017a-6d6c-237f-fc57-94247a8f7bf6
• Version Independent ID: 93413445-18fa-9245-ea64-1c1d789dce1e
• Content: Granting access using SharePoint App-Only
• Content Source: docs/solution-guidance/security-apponly-azureacs.md
• Product: sharepoint
• GitHub Login: @VesaJuvonen
• Microsoft Alias: vesaj

Thank you for reporting this issue. We will be triaging your incoming issue as soon as possible.

[github-actions]

Thank you for taking the time to file an issue. We periodically archive older or inactive issues as part of our issue management process, which automatically closes them once they are archived.

If you’d like to understand more about why and how we handle archived (closed) issues, please see Our approach to closed issues.

We appreciate your contribution and if this is still an active issue with the latest SPFx versions, please do resubmit the details. We needed to perform a cleanup, so that we can start with a clean table with a new process. We apologize for the inconvenience this might cause.