I have created a sample project and have Azure server to maintain resources and security at same time. In my ASP web application i want to create Login system and i want it to protect using Azure security vault. Basically i want to store them in Azure vault. I have gone through understand of keys and secrets and Azure AD authentication using SDK in my web application but i am not getting understanding about making use of Keys/ Secret for User ID and Password that can help user to login into my application.
Should i save username or password of a user inside keyvault. If i am doing it then what is the purpose of getting these values because they are simply accessible through URL.
I tried looking for various examples but they were all using OWIN authentication using Social networking website but in my case I will be no social network login.
Looking for help to understand where how can i use of Azure key vault's Key/Secret in the context of securing user's login credentials. Any hint would be helpful.
Ref : Key Vault REST APIs https://docs.microsoft.com/en-us/rest/api/keyvault/