Azure DevOps now supports Service principals and Managed identities for authentication. This is currently (at the time of writing) in Public Preview. This is quite an interesting feature and addresses many concerns related to personal access tokens (PATs). I have a self-hosted container agent runs on Docker which needs PAT to spin up. With the new development… Continue reading Azure DevOps Container agents without PAT
GitOps for AKS with Azure Blob Storage (Flux v2)
GitOps is a modern way of managing infrastructure and applications using Git as a single source of truth. Flux v2 is a Kubernetes-native GitOps toolkit that automates the deployment and lifecycle management of applications in Kubernetes clusters. In this blog post, we will show you how to use GitOps with Flux v2 on Azure Kubernetes… Continue reading GitOps for AKS with Azure Blob Storage (Flux v2)
Azure DevOps security as Code
Accompanied source code can be found here. A while ago, I have written an application that could simplify managing Azure DevOps security. The idea was that one could define bunch of YAML file that describes numerous security aspect for an Azure DevOps project (for example, security for teams, build and release folders, repositories etc.) and… Continue reading Azure DevOps security as Code
Exploring WASM, WASI with .net7 & Docker
Web Assembly aka WASM is currently gaining a lot of attention into the container community - for legit reasons! WASM is a web-optimized code format that significantly improve web application performances running on browsers. However, it is gaining more and more attention in the container world lately, because of its sandbox/isolation hence - safety, near-native… Continue reading Exploring WASM, WASI with .net7 & Docker
Self-Hosted GitHub runner on Azure Container Apps
Last week I have shown how to run Azure DevOps self-hosted agents on Azure Container Apps. Using KEDA with its built-in Azure Pipeline scaler it was relatively straightforward to spin up new replicas in Container Apps. You can read all about that process here. However, today I wanted to achieve the same for GitHub self-hosted… Continue reading Self-Hosted GitHub runner on Azure Container Apps
Self-Hosted Azure DevOps pool on Azure Container Apps
A while ago, I have worked with few of our customers, helping to build elastic self-hosted pool for their Azure DevOps pipeline agents based on Azure Kubernetes Service. You can read all about that journey here - where I have created a Kubernetes Controller that observes the Job queue of Azure DevOps for incoming pipeline… Continue reading Self-Hosted Azure DevOps pool on Azure Container Apps
Accelerate Governance with Deployment Environments
I am super excited to explore and learn this new Azure capability: Azure Deployment Environment. Azure Deployment Environments empowers development teams to quickly and easily spin-up app infrastructure with project-based templates that establish consistency and best practices while maximizing security, compliance, and cost efficiency. This on-demand access to secure environments accelerates the different stages… Continue reading Accelerate Governance with Deployment Environments
Demystifying Azure Container Apps & Dapr – Part 5
Read Part 1 here. Read Part 2 here. Read Part 3 here. Read Part 4 here. Today I will be using the traffic-splitting capability of Azure Container Apps. Azure Container Apps implements container app versioning by creating revisions. A revision is an immutable snapshot of a container app version. Revisions in Azure Container App The… Continue reading Demystifying Azure Container Apps & Dapr – Part 5
Demystifying Azure Container Apps & Dapr – Part 4
Read Part 1 here. Read Part 2 here. Read Part 3 here. Last time, I wrote the backend service (JobListener) which gets triggered by the Dapr pubsub whenever an image is uploaded into the designated blob container in the storage account. It then uses Computer Vision APIs to do the image recognition. Today we will… Continue reading Demystifying Azure Container Apps & Dapr – Part 4
Demystifying Azure Container Apps & Dapr – Part 3
Read Part 1 here. Read Part 2 here. Last time, I created an empty Azure Container Apps Environment, some supporting components like Key vaults, Log analytics workspace, Application Insights and Computer vision. I have also created an Event Grid topic that subscribed changes in Azure Storage container and dispatches change events to a Service Bus… Continue reading Demystifying Azure Container Apps & Dapr – Part 3
Reverse Engineering 