Backstage on Azure Container Apps with Microsoft Entra ID (Azure AD) Authentication

October 14, 2025October 14, 2025 Moim HossainLeave a comment

End-to-end guide: containerizing Backstage, provisioning Azure resources (with Bicep & CLI), enabling Microsoft Entra (formerly Azure AD) sign-in, managing secrets, scaling, observing, troubleshooting, and cleaning up — all aligned with current Azure best practices (managed identities, least privilege, and no hard‑coded secrets). Why Backstage + Azure Container Apps Backstage centralizes your internal developer portal (catalog,… Continue reading Backstage on Azure Container Apps with Microsoft Entra ID (Azure AD) Authentication

Architecture · Azure · AzureFunctions · Bicep · Bicep · FlexConsumption · Go · HTTPS · IAC · Infrastructure As Code · Logging · Logs · Metrics · Observablity · OpenTelemetry · OTel · Traces

Observability Unleashed: OpenTelemetry in Azure Functions with Go

July 25, 2025September 12, 2025 Moim Hossain2 Comments

In the evolving landscape of serverless computing, observability has become paramount for building reliable, scalable applications. This article explores how to implement OpenTelemetry (OTel) in Azure Functions using the new Flex Consumption plan with Go custom handlers, providing comprehensive telemetry data through Azure Monitor's Data Collection Endpoint (DCE) and Data Collection Rule (DCR). What is… Continue reading Observability Unleashed: OpenTelemetry in Azure Functions with Go

.NET · .net-core · API-Management · API-Management-Service · APIM · Architecture · Azure · Azure Cognitive Services · AzureContainerApps · Bicep · C# · Entra · managed-identity · microsoft · Private DNS Zone · Private Endpoint · Private Link · Teams

Building a Secure Azure Bot for Microsoft Teams

November 13, 2024November 13, 2024 Moim Hossain3 Comments

Integrating bots with Microsoft Teams is a powerful way to improve collaboration and automate workflows. However, ensuring secure access, network isolation, and controlled data flows is crucial, especially in sensitive environments like financial or healthcare applications. In this blog post, I'll walk through a secure setup I recently implemented, showcasing how to create an Azure… Continue reading Building a Secure Azure Bot for Microsoft Teams

.net-core · Architecture · Azure · Azure CLI · Azure Cognitive Services · Azure Open Ai · AzureDevOps · Bicep · C# · managed-identity · Private DNS Zone · Private Endpoint · Private Link · Uncategorized

Streamline Azure Lifecycle Management with AI Solutions

September 20, 2024 Moim HossainLeave a comment

Introduction A while ago, I created a proof-of-concept application. It helps LCM (Life Cycle Management for Azure Resources) for a friend of mine. The POC was using all Azure Open AI, Storage Account etc. But the resources where exposed to the internet. Recently, I wanted to update them. I aimed to protect all traffic staying… Continue reading Streamline Azure Lifecycle Management with AI Solutions

Azure · Azure Communication Service · Azure Container Registry · AzureContainerApps · Bicep · Bicep · IAC · Identity · Infrastructure As Code · managed-identity · ServicePrincipal

Azure Communication Service with Managed Identity

September 5, 2023 Moim HossainLeave a comment

Background A few months ago, I have written a Demo application that shows how to send email and SMS via Azure Communication Service. The code was written in Spring Boot (Java) and hosted on Azure Container Apps. During the demo, I have used Connection strings of Azure Communication Service which is not ideal for production… Continue reading Azure Communication Service with Managed Identity

.NET · .net-core · API-Management-Service · APIM · Architecture · Azure · Azure Container Registry · AzureContainerApps · AzureDevOps · Bicep · Bicep · C# · IAC · Infrastructure As Code · managed-identity

Secure API with API Management, network integrated Container Apps

July 24, 2023 Moim HossainLeave a comment

Introduction In today's digital landscape, APIs play a crucial role in connecting applications and enabling seamless interactions. However, with the increasing importance of APIs, ensuring their security becomes paramount. In this blog post, we'll explore how to create a secure API using .net and hosted on Azure Container Apps, expose them via Azure API Management… Continue reading Secure API with API Management, network integrated Container Apps

Actions · Architecture · Azure Container Registry · azure-resource-manager-templates · AzureContainerApps · Bicep · binding · GitHub · KEDA · Logic App · Workflow

Self-Hosted GitHub runner on Azure Container Apps

November 17, 2022November 17, 2022 Moim HossainLeave a comment

Last week I have shown how to run Azure DevOps self-hosted agents on Azure Container Apps. Using KEDA with its built-in Azure Pipeline scaler it was relatively straightforward to spin up new replicas in Container Apps. You can read all about that process here. However, today I wanted to achieve the same for GitHub self-hosted… Continue reading Self-Hosted GitHub runner on Azure Container Apps

Architecture · Azure · Azure Deployment Environment · azure-resource-manager-templates · Bicep · Cloud Governance · compliance · Dev Box · IAC · Infrastructure As Code · managed-identity · terraform

Accelerate Governance with Deployment Environments

October 27, 2022 Moim HossainLeave a comment

I am super excited to explore and learn this new Azure capability: Azure Deployment Environment. Azure Deployment Environments empowers development teams to quickly and easily spin-up app infrastructure with project-based templates that establish consistency and best practices while maximizing security, compliance, and cost efficiency. This on-demand access to secure environments accelerates the different stages… Continue reading Accelerate Governance with Deployment Environments

.NET · .net-core · AB Testing · Architecture · Automation · Azure · Azure Container Registry · azure-resource-manager-templates · AzureContainerApps · Bicep · Blue-Green Deployment · C# · CI-CD · http · HTTPS · Infrastructure As Code · ServiceMash · Test Strategy

Demystifying Azure Container Apps & Dapr – Part 5

October 25, 2022October 25, 2022 Moim Hossain1 Comment

Read Part 1 here. Read Part 2 here. Read Part 3 here. Read Part 4 here. Today I will be using the traffic-splitting capability of Azure Container Apps. Azure Container Apps implements container app versioning by creating revisions. A revision is an immutable snapshot of a container app version. Revisions in Azure Container App The… Continue reading Demystifying Azure Container Apps & Dapr – Part 5

.NET · Architecture · Azure · Azure Container Registry · AzureContainerApps · Bicep · CI-CD · GitHub-Actions · Infrastructure As Code · managed-identity

Demystifying Azure Container Apps & Dapr – Part 4

October 24, 2022 Moim HossainLeave a comment

Read Part 1 here. Read Part 2 here. Read Part 3 here. Last time, I wrote the backend service (JobListener) which gets triggered by the Dapr pubsub whenever an image is uploaded into the designated blob container in the storage account. It then uses Computer Vision APIs to do the image recognition. Today we will… Continue reading Demystifying Azure Container Apps & Dapr – Part 4