Introduction Recently, I had the opportunity to help a customer solve a complex challenge involving multi-tenant identity federation. They needed to securely access resources across different Azure Active Directory (now Entra ID) tenants without managing secrets or certificates. The solution involved using managed identity with federated credentials to perform token exchange between tenants—a powerful but… Continue reading Multi-Tenant Identity Federation: Accessing Multiple Entra ID Tenants with Managed Identity
Category: AzureFunctions
Observability Unleashed: OpenTelemetry in Azure Functions with Go
In the evolving landscape of serverless computing, observability has become paramount for building reliable, scalable applications. This article explores how to implement OpenTelemetry (OTel) in Azure Functions using the new Flex Consumption plan with Go custom handlers, providing comprehensive telemetry data through Azure Monitor's Data Collection Endpoint (DCE) and Data Collection Rule (DCR). What is… Continue reading Observability Unleashed: OpenTelemetry in Azure Functions with Go
Blue-Green and Canary Releases with Zero-Downtime for Azure Functions Flex Consumption with APIM
This solution demonstrates the power of combining multiple Azure services to create sophisticated deployment patterns. As Azure Functions Flex Consumption matures, this approach provides a solid foundation that can be easily adapted when native deployment slots become available. The Challenge: Deployment Slots Without Slots Azure Functions on the Consumption plan has long provided deployment slots,… Continue reading Blue-Green and Canary Releases with Zero-Downtime for Azure Functions Flex Consumption with APIM
End-to-End Security: Function, Azure SQL, and API Management
Introduction In the dynamic realm of today's digital environment, safeguarding your applications and data holds utmost importance. This blog post is designed to lead you through the steps of establishing comprehensive security measures for an Azure Function App, Azure SQL database, and API Management. Our approach involves leveraging Azure Virtual Network (VNet) for robust network… Continue reading End-to-End Security: Function, Azure SQL, and API Management
Secure your pipelines by frequently rotating secrets
TL; DR: This article and accompanying source codes helps you setting up an automated secret or certificate rotations for Azure service principals and Azure DevOps service connections. Jump into the technical part here. Background If you are deploying applications on Azure from Azure DevOps service connections (or GitHub actions) you are most likely using a… Continue reading Secure your pipelines by frequently rotating secrets
Key Vault as backing store of Azure Functions
If you have used Azure function, you probably are aware that Azure Functions leverages a Storage Account underneath to support the file storage (where the function app code resides as Azure File share) and also as a backing store to keep Functions Keys (the secrets that are used in Function invocations). Figure: Storage Account containers… Continue reading Key Vault as backing store of Azure Functions
Resilient Azure Data Lake Analytics (ADLA) Jobs with Azure Functions
Azure Data Lake Analytics is an on-demand analytics job service that allows writing queries to transform data and grab insights efficiently. The analytics service can handle jobs of any scale instantly by setting the dial for how much power you need. In many organizations, these jobs could play a crucial role and reliability of these… Continue reading Resilient Azure Data Lake Analytics (ADLA) Jobs with Azure Functions
Reverse Engineering 