Pastafartian
Struggling with Securing Environment Variables in Deployed Desktop Apps
Hello, I'm creating an Avalonia desktop app that takes user input and generates a pdf by overlaying input text over a template image. The end result is a certificate for the completion of a canvas course for the interns at my company. The pdf generation is done, and I didn't have any issues with that.
However, I would like the end user, whoever is handing out a certificate, to have an email send to the certificate recipient when the pdf is generated. I've used Gmail SMTP to successfully send the emails, but I couldn't figure out how to secure the environment variables in the deployed app. I then tried setting up an AWS Lambda function to hide the environment variables, but now I have the API Gateway endpoint that I don't want hardcoded into my application. It seems like any solution to this will just continue to push the issue further back.
So, my question is: is there any way to deploy a .NET desktop application that does what I want it to do while keeping environment variables safe? My thought is that I might need to set up some kind of authentication and an actual web server on an ec2 instance to do this. Maybe I should just drop my goal of sending emails from within the application, but it seems like there would be some way to do this.
Any input and guidance would be appreciated! I've been trying to find a solution for over a week now with no luck.
18 replies