Best practice with .gitignore for connection strings inside App.config or Web.config

Question

I've tried several approaches with *.gitignore for managing connection strings when working on a larger team.

From the official repository of .gitignore files at gitignore, I've downloaded VisualStudio.gitignore and used it as a starting point for all the projects.

The same process can be done by visiting http://gitignore.io/, typing VisualStudio, then downloading the file.

The approach I currently use is by leveraging the SectionInformation.ConfigSource Property

<connectionStrings configSource="myConnectionStrings.config" />

and then adding myConnectionStrings.config to .gitignore, which is nice because it doesn't add the entire *.config.

Also you can use the same myConnectionStrings.config inside another project (your MyProject.Data layer)

<configuration>
  <connectionStrings configSource="myConnectionStrings.config"/>
</configuration>

Just remember to set Copy always!

Also I've tried using filters as described at Git - Ignoring a specific modification to a config file, but I find that to be an overkill.

I wonder if there is any other approach that is considered a best practice?

Answer 1

I can't speak for your setup, but this is how I have tackled this problem.

Firstly, all the guys in my team use local databases with Integrated Security set as true. This means that when we check out the files from source control, it is good to go with a local setup. So my Web config file looks like this

<add name="appConnString"
   connectionString="Data Source=(local);Initial Catalog=MyDatabaseName;Integrated Security=True;"
   providerName="System.Data.SqlClient" />

Regarding going deploying to different environments, the first option you have is to use transforms. If you don't know what that is, read here

Since we use Octopus Deploy as our deployment tool, our transform file has the connection string for "web.release.config" like this

<add name="appConnString"
   connectionString="{{appConnString}}"
   xdt:Transform="Update" 
   xdt:Locator="Match(name)" />

When Octopus runs it's course, it grabs the web.config and overwrites the relevant sections using the release file. Then depending on which environment/machine/branch I am deploying to, it replaces the {{appConnString}} with the configuration that has been set up for that deployment.

I'm sure Visual Studio has pretty much the same process.

If you don't like the Transforms process. You can also use a parameters.xml file. msdepoy uses this file to replace values in your web.config at build. You can read up more about it here.

Another consideration is if you are hosting with Azure, you can set up certain configuration replacements on your various deployment slots all the way to production.

These are just a few techniques I have used and seen being used very effectively. Some take a bit getting used to and also a lot of frustration setting up, but having a proper deployment system will pay in the long run.

Answer 2

Perhaps a bit presumptuously, I hold that there is no need for a policy for adding shell globs to a file. I've never heard of "connectionStrings" before reading this question, but from what I could gather, they hold URIs / credentials for various backends.

How often does a backend change? Better yet, how often does the path of the configuration file change? Probably not often enough to warrant a policy. The only thing you need is a convention for naming the configuration files that contain these connectionStrings to easily identify them with automation tools.

So use your tools or write a script and append the foobarService.config from <connectionStrings configSource="foobarService.config" /> to the .gitignore file for all your backends.

1. Find the files.

$ find -name cs.xml

./more/configs/here/cs.xml
./cs.xml
./some/sub/folder/cs.xml

2. get config-file names

$ find -name cs.xml | xargs grep -ho '[^"]\+\.config'

getImagesService.config
users.config
ldap.config
foobar2k.config
ratpoison.config
moo.config
foo.config
trololol.config
moreconfigz.config
myConnectionStrings.config
data.config
base.config
filebackend.config
offsitewhatever.config

3. ignore them

$ find -name cs.xml | xargs grep -ho '[^"]\+\.config' >> .gitignore

4. update your CV

• March 2014 - lead designer of a connectionString policy

---

I'm baffled that anyone would ask about advice on managing a .gitignore file. This could indicate that I don't see the big picture. Would you kindly update your question with some background information? I'm curious about why this is a meaningful question, as I'm having a hard time grasping that there is a need for establishing best practices to append a string to a file.