pvNugsCsProviderNc9MsSql 9.0.1

.NET 9.0 This package targets .NET 9.0. The package is compatible with this framework or higher. 
dotnet add package pvNugsCsProviderNc9MsSql --version 9.0.1
                    


                    

                
NuGet\Install-Package pvNugsCsProviderNc9MsSql -Version 9.0.1
This command is intended to be used within the Package Manager Console in Visual Studio, as it uses the NuGet module's version of Install-Package. 
<PackageReference Include="pvNugsCsProviderNc9MsSql" Version="9.0.1" />
For projects that support PackageReference, copy this XML node into the project file to reference the package. 
<PackageVersion Include="pvNugsCsProviderNc9MsSql" Version="9.0.1" />
                    


                            Directory.Packages.props
                        

                    

                
<PackageReference Include="pvNugsCsProviderNc9MsSql" />
                    


                            Project file
For projects that support Central Package Management (CPM), copy this XML node into the solution Directory.Packages.props file to version the package. 
paket add pvNugsCsProviderNc9MsSql --version 9.0.1
                    


                    

                
#r "nuget: pvNugsCsProviderNc9MsSql, 9.0.1"
#r directive can be used in F# Interactive and Polyglot Notebooks. Copy this into the interactive tool or source code of the script to reference the package. 
#:package pvNugsCsProviderNc9MsSql@9.0.1
#:package directive can be used in C# file-based apps starting in .NET 10 preview 4. Copy this into a .cs file before any lines of code to reference the package. 
#addin nuget:?package=pvNugsCsProviderNc9MsSql&version=9.0.1
                    


                            Install as a Cake Addin
                        

                    

                
#tool nuget:?package=pvNugsCsProviderNc9MsSql&version=9.0.1
                    


                            Install as a Cake Tool

pvNugsCsProviderNc9MsSql

Enterprise-grade SQL Server connection string provider with multiple authentication modes, secret management integration, and multi-database support for .NET 9+

NuGet Version .NET 9 License

🚀 What is pvNugsCsProviderNc9MsSql?

A robust, production-ready SQL Server connection string provider that seamlessly integrates with dependency injection and supports multiple authentication modes. Whether you need simple configuration-based connections, static secret management, dynamic credential rotation, or multi-database/named connection support, this provider has you covered.

New in vNext:

  • Multi-database/named connection support via the Rows property in config
  • Full backward compatibility with legacy single-row config
  • IOptions pattern compliance for named/multi-tenant scenarios

Key Features

🔐 Multiple Authentication Modes

  • Config Mode - Traditional configuration-based authentication with appsettings.json
  • StaticSecret Mode - Integration with secret managers (Azure Key Vault, HashiCorp Vault, etc.)
  • DynamicSecret Mode - Automatic credential rotation with temporary credentials

🎯 Role-Based Database Access

  • Owner - Full administrative privileges
  • Application - Standard application-level permissions
  • Reader - Read-only access for reporting and analytics

🏗️ Enterprise-Ready

  • Dependency Injection - First-class support for .NET DI container
  • Thread-Safe - Concurrent access with built-in locking mechanisms
  • Async/Await - Full async support for high-performance applications
  • Automatic Renewal - Dynamic credentials refresh before expiration
  • Comprehensive Logging - Built-in diagnostic and error logging
  • Multi-Database/Named Connection Support - Configure and use multiple named connection rows in a single config

📦 Installation

dotnet add package pvNugsCsProviderNc9MsSql

🛠️ Quick Start

1. Basic Configuration Mode (Single Row)

// Program.cs or Startup.cs
services.AddSingleton<IConsoleLoggerService, ConsoleLoggerServiceImpl>();
services.TryAddPvNugsCsProviderMsSql(configuration);

// appsettings.json
{
  "PvNugsCsProviderMsSqlConfig": {
    "Mode": "Config",
    "Server": "myserver.database.windows.net",
    "Database": "MyDatabase",
    "Username": "myuser",
    "Password": "mypassword",
    "UseIntegratedSecurity": false
  }
}

2. Multi-Database & Named Connection Support

You can now configure multiple named connection rows for multi-tenant or multi-database scenarios:

{
  "PvNugsCsProviderMsSqlConfig": {
    "Rows": [
      {
        "Name": "Default",
        "Mode": "Config",
        "Server": "myserver.database.windows.net",
        "Database": "MyDatabase",
        "Username": "myuser",
        "Password": "mypassword"
      },
      {
        "Name": "Reporting",
        "Mode": "Reader",
        "Server": "reporting.database.windows.net",
        "Database": "ReportingDb",
        "Username": "reportuser",
        "Password": "reportpass"
      }
    ]
  }
}

Usage Example:

// Get connection string for a named row
var reportingCs = await csProvider.GetConnectionStringAsync("Reporting", SqlRoleEnu.Reader);

Note: The provider is fully backward compatible. If you use the old flat config style, it will be mapped to a single row named "Default".

3. Usage in Your Services

public class DataService
{
    private readonly IPvNugsMsSqlCsProvider _csProvider;
    
    public DataService(IPvNugsMsSqlCsProvider csProvider)
    {
        _csProvider = csProvider;
    }
    
    public async Task<List<User>> GetUsersAsync()
    {
        // Get read-only connection for queries
        var connectionString = await _csProvider.GetConnectionStringAsync(SqlRoleEnu.Reader);
        
        using var connection = new SqlConnection(connectionString);
        // Your data access logic here...
    }
    
    public async Task SaveUserAsync(User user)
    {
        // Get application-level connection for writes
        var connectionString = await _csProvider.GetConnectionStringAsync(SqlRoleEnu.Application);
        
        using var connection = new SqlConnection(connectionString);
        // Your save logic here...
    }
}

🔧 Advanced Configuration

Static Secret Mode with Azure Key Vault

// Register secret manager
services.AddSingleton<IPvNugsStaticSecretManager, AzureKeyVaultSecretManager>();
services.AddSingleton<IConsoleLoggerService, ConsoleLoggerServiceImpl>();
services.TryAddPvNugsCsProviderMsSql(configuration);

{
  "PvNugsCsProviderMsSqlConfig": {
    "Mode": "StaticSecret",
    "Server": "myserver.database.windows.net",
    "Database": "MyDatabase", 
    "Username": "myuser",
    "SecretName": "myapp-sqlserver",
    "ApplicationName": "MyApp",
    "TimeoutInSeconds": 30
  }
}

Dynamic Secret Mode with HashiCorp Vault

// Register dynamic secret manager  
services.AddSingleton<IPvNugsDynamicSecretManager, HashiCorpVaultDynamicSecretManager>();
services.AddSingleton<IConsoleLoggerService, ConsoleLoggerServiceImpl>();
services.TryAddPvNugsCsProviderMsSql(configuration);

{
  "PvNugsCsProviderMsSqlConfig": {
    "Mode": "DynamicSecret",
    "Server": "myserver.database.windows.net",
    "Database": "MyDatabase",
    "SecretName": "myapp-sqlserver",
    "ApplicationName": "MyApp"
  }
}

🎯 SQL Roles Explained

Role Use Case Permissions
Reader Analytics, reporting, read-only queries SELECT only
Application Standard business operations SELECT, INSERT, UPDATE, DELETE
Owner Migrations, schema changes, admin tasks Full database access 
// Use appropriate role for the task
var readerCs = await csProvider.GetConnectionStringAsync(SqlRoleEnu.Reader);
var appCs = await csProvider.GetConnectionStringAsync(SqlRoleEnu.Application);  
var ownerCs = await csProvider.GetConnectionStringAsync(SqlRoleEnu.Owner);

🔗 Configuration Reference

Property Required Description
Rows List of named connection rows (multi-database support)
Mode Authentication mode: Config, StaticSecret, or DynamicSecret
Server SQL Server hostname or IP address
Database Target database name
Port SQL Server port (default: 1433)
Username ⚠️* Username for authentication
Password Password (Config mode only)
SecretName ⚠️* Base secret name for secret managers
UseIntegratedSecurity Use Windows Authentication (default: false)
ApplicationName Application name in connection string
TimeoutInSeconds Connection timeout (default: 15)

* Required based on mode:

  • Config Mode: Username required when not using integrated security
  • StaticSecret Mode: Username and SecretName required
  • DynamicSecret Mode: SecretName required

Backward Compatibility:

  • If you use the old flat config style, it is automatically mapped to a single row named "Default".
  • The provider is fully compliant with the IOptions pattern and supports named options for multi-tenant/multi-db scenarios.

🏢 Enterprise Scenarios

Multi-Tenant Applications

// Different databases per tenant
services.Configure<PvNugsCsProviderMsSqlConfig>("Tenant1", config => { /* config */ });
services.Configure<PvNugsCsProviderMsSqlConfig>("Tenant2", config => { /* config */ });

High-Availability Environments

{
  "Server": "sqlcluster.company.com,1433",
  "Database": "ProductionDB",
  "ApplicationName": "MyApp-Production",
  "TimeoutInSeconds": 60
}

Development vs Production

#if DEBUG
    services.TryAddPvNugsCsProviderMsSql(configuration.GetSection("Development"));
#else  
    services.TryAddPvNugsCsProviderMsSql(configuration.GetSection("Production"));
#endif

📋 Dependencies

  • .NET 9.0+ - Latest .NET runtime
  • Microsoft.Extensions.DependencyInjection - DI container support
  • Microsoft.Extensions.Configuration - Configuration binding
  • pvNugsCsProviderNc9Abstractions - Core abstractions
  • pvNugsLoggerNc9Abstractions - Logging interfaces

Optional Dependencies

  • pvNugsSecretManagerNc9Abstractions - For secret management modes
  • Your secret manager implementation (Azure Key Vault, HashiCorp Vault, etc.)

🛡️ Security Best Practices

  1. Never store passwords in configuration files in production
  2. Use StaticSecret or DynamicSecret modes for production environments
  3. Implement role-based access - use Reader for queries, Application for business logic
  4. Enable connection encryption in your connection strings
  5. Monitor credential expiration with the built-in logging

🔍 Troubleshooting

Common Issues

❌ "IPvNugsStaticSecretManager not registered"

// Fix: Register the required secret manager
services.AddSingleton<IPvNugsStaticSecretManager, YourSecretManagerImpl>();

❌ "Username is required for StaticSecret mode"

// Fix: Add username to configuration
{
  "Username": "your-database-user"
}

❌ Connection timeout issues

// Fix: Increase timeout for slow networks
{
  "TimeoutInSeconds": 60
}

📚 Related Packages

  • pvNugsLoggerNc9Abstractions - Logging abstractions
  • pvNugsSecretManagerNc9Abstractions - Secret management abstractions
  • pvNugsConsoleLoggerNc9 - Console logging implementation

🤝 Contributing

We welcome contributions! Please see our contributing guidelines for details.

📄 License

This project is licensed under the MIT License - see the LICENSE file for details.

🆘 Support

Made with ❤️ for enterprise .NET applications

Product Compatible and additional computed target framework versions.
.NET net9.0 is compatible.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 was computed.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

NuGet packages

This package is not used by any NuGet packages.

GitHub repositories

This package is not used by any popular GitHub repositories.

Version Downloads Last Updated
9.0.1 45 9/26/2025
9.0.0 128 9/10/2025

introducing multi config feature