Background I have recently speaking to a customer about the following scenario. Customer has an API that supposed to be consumed by some **trusted** daemon applications built and managed by their partners. It's not the interactive users (no signed in users via an web application) who will be using the API, rather some background process … Continue reading Multi-Tenant Daemons with Microsoft Identity platform
Architecture
Elastic self-hosted pool for Azure DevOps (on Kubernetes)
Introduction If you are using Azure Pipelines, then you surely have used Microsoft-hosted agent. With Microsoft-hosted agents, maintenance and upgrades are taken care of for you. However, there are times when self-hosted agents are needed (i.e. customized images, network connectivity requirements etc.). Pipeline agents can be hosted as stand-alone, on Azure virtual machine scale-sets, as … Continue reading Elastic self-hosted pool for Azure DevOps (on Kubernetes)
Restricting Unverified Kubernetes Content with Docker Content Trust
Docker Content Trust (DCT) provides the ability to use digital signatures for data sent to and received from remote Docker registries. These signatures allow client-side or runtime verification of the integrity and publisher of specific image tags. Image source: Docker Content Trust Through DCT, image publishers can sign their images and image consumers can ensure … Continue reading Restricting Unverified Kubernetes Content with Docker Content Trust
Azure AD App via ARM Template Deployment Scripts
Background ARM templates offer a great way to define resources and deploy them. However, ARM templates didn’t have any support to invoke or run scripts. If we wanted to carry out some operations as part of the deployment (Azure AD app registrations, Certificate generations, copy data to/from another system etc.) we had to create pre … Continue reading Azure AD App via ARM Template Deployment Scripts
CloudOven – Terraform at ease!
TL;DR: URL: CloudOven Use Google account or sign-up Google Chrome please! (I've not tested on other browsers yet) Background In recent years I have spent fair amount of time in design and implementation of Infrastructure as code in larger enterprise context. Terraform seemed to be a tool of choice when it comes to preserve the … Continue reading CloudOven – Terraform at ease!
Continuously deliver changes to Azure API management service with Git Configuration Repository
What is API management Publishing data, insights and business capabilities via API in a unified way can be challenging at times. Azure API management (APIM) makes it simpler than ever. Businesses everywhere are looking to extend their operations as a digital platform, creating new channels, finding new customers and driving deeper engagement with existing ones. … Continue reading Continuously deliver changes to Azure API management service with Git Configuration Repository
Resilient Azure Data Lake Analytics (ADLA) Jobs with Azure Functions
Azure Data Lake Analytics is an on-demand analytics job service that allows writing queries to transform data and grab insights efficiently. The analytics service can handle jobs of any scale instantly by setting the dial for how much power you need. In many organizations, these jobs could play a crucial role and reliability of these … Continue reading Resilient Azure Data Lake Analytics (ADLA) Jobs with Azure Functions
Zero-Secret application development with Azure Managed Service Identity
Committing the secrets along with application codes to a repository is one of the most commonly made mistakes by many developers. This can get nasty when an application is developed for Cloud deployment. You probably have read the story of checking in AWS S3 secrets to GitHub. The developer corrected the mistake in 5 mins, … Continue reading Zero-Secret application development with Azure Managed Service Identity
CQRS and ES on Azure Table Storage
Lately I was playing with Event Sourcing and command query responsibility segregation (aka CQRS) pattern on Azure Table storage. Thought of creating a lightweight library that facilitates writing such applications. I ended up with a Nuget package to do this. here is the GitHub Repository. A lightweight CQRS supporting library with Event Store based on … Continue reading CQRS and ES on Azure Table Storage
Reverse Engineering 