Creating Custom Widget for Managing Client Secrets in APIM Developer Portal

June 5, 2024 Moim HossainLeave a comment

In today's rapidly evolving digital landscape, secure and efficient management of client credentials is paramount. Azure API Management (APIM) provides a robust platform for managing APIs, enabling organizations to expose and protect their services. Integrating Azure Active Directory B2C (Azure AD B2C) with the APIM Developer Portal allows API consumers to sign in and manage… Continue reading Creating Custom Widget for Managing Client Secrets in APIM Developer Portal

.NET · .net-core · API-Management-Service · APIM · Architecture · Azure CLI · azure-resource-manager-templates · azure-web-app · azure-web-apps · AzureFunctions · Bicep · CI-CD · Infrastructure As Code · managed-identity · Private DNS Zone · Private Endpoint · Private Link

End-to-End Security: Function, Azure SQL, and API Management

February 8, 2024February 9, 2024 Moim HossainLeave a comment

Introduction In the dynamic realm of today's digital environment, safeguarding your applications and data holds utmost importance. This blog post is designed to lead you through the steps of establishing comprehensive security measures for an Azure Function App, Azure SQL database, and API Management. Our approach involves leveraging Azure Virtual Network (VNet) for robust network… Continue reading End-to-End Security: Function, Azure SQL, and API Management

.NET · .net-core · API-Management-Service · APIM · Architecture · Azure · Azure Container Registry · AzureContainerApps · AzureDevOps · Bicep · Bicep · C# · IAC · Infrastructure As Code · managed-identity

Secure API with API Management, network integrated Container Apps

July 24, 2023 Moim HossainLeave a comment

Introduction In today's digital landscape, APIs play a crucial role in connecting applications and enabling seamless interactions. However, with the increasing importance of APIs, ensuring their security becomes paramount. In this blog post, we'll explore how to create a secure API using .net and hosted on Azure Container Apps, expose them via Azure API Management… Continue reading Secure API with API Management, network integrated Container Apps

.NET · .net-core · AzureDevOps · C# · CI-CD · Command · docker · IAC · Infrastructure As Code

Azure DevOps security as Code

March 29, 2023March 29, 2023 Moim HossainLeave a comment

Accompanied source code can be found here. A while ago, I have written an application that could simplify managing Azure DevOps security. The idea was that one could define bunch of YAML file that describes numerous security aspect for an Azure DevOps project (for example, security for teams, build and release folders, repositories etc.) and… Continue reading Azure DevOps security as Code

.NET · .net-core · AB Testing · Architecture · Automation · Azure · Azure Container Registry · azure-resource-manager-templates · AzureContainerApps · Bicep · Blue-Green Deployment · C# · CI-CD · http · HTTPS · Infrastructure As Code · ServiceMash · Test Strategy

Demystifying Azure Container Apps & Dapr – Part 5

October 25, 2022October 25, 2022 Moim Hossain1 Comment

Read Part 1 here. Read Part 2 here. Read Part 3 here. Read Part 4 here. Today I will be using the traffic-splitting capability of Azure Container Apps. Azure Container Apps implements container app versioning by creating revisions. A revision is an immutable snapshot of a container app version. Revisions in Azure Container App The… Continue reading Demystifying Azure Container Apps & Dapr – Part 5

.NET · .net-core · AKS · ASP.net · Azure · AzureContainerApps · Bicep · C# · CI-CD · Event Grid · Identity · Infrastructure As Code · Kubernetes · ServiceMash

Demystifying Azure Container Apps & Dapr – Part 2

October 21, 2022October 21, 2022 Moim HossainLeave a comment

Part 1 of this article is here. Last time, I created an empty Azure Container Apps Environment using Bicep. I also created some required components like Key vaults, Log analytics workspace, Application Insights and Computer vision. Application Architecture Today I want to make progress on that. As I have briefly explained before, I want to… Continue reading Demystifying Azure Container Apps & Dapr – Part 2

.NET · .net-core · API-Management-Service · APIM · Architecture · ASP.net · Azure · azure-web-app · C# · Identity

Multi-Tenant Daemons with Microsoft Identity platform

June 10, 2021June 10, 2021 Moim Hossain1 Comment

Background I have recently speaking to a customer about the following scenario. Customer has an API that supposed to be consumed by some **trusted** daemon applications built and managed by their partners. It's not the interactive users (no signed in users via an web application) who will be using the API, rather some background process… Continue reading Multi-Tenant Daemons with Microsoft Identity platform

.NET · .net-core · Azure · AzureDevOps · AzureFunctions · C# · Certificate · certificates · CI-CD · Functions · Identity · Serverless · ServicePrincipal

Secure your pipelines by frequently rotating secrets

May 28, 2021May 31, 2021 Moim HossainLeave a comment

TL; DR: This article and accompanying source codes helps you setting up an automated secret or certificate rotations for Azure service principals and Azure DevOps service connections. Jump into the technical part here. Background If you are deploying applications on Azure from Azure DevOps service connections (or GitHub actions) you are most likely using a… Continue reading Secure your pipelines by frequently rotating secrets

.net-core · AKS · Architecture · Azure · AzureDevOps · C# · docker · Kubernetes · Pipeline

Elastic self-hosted pool for Azure DevOps (on Kubernetes)

April 24, 2021June 24, 2022 Moim Hossain4 Comments

UpdateThere is a follow up post with some updates, you can read here. Introduction If you are using Azure Pipelines, then you surely have used Microsoft-hosted agent. With Microsoft-hosted agents, maintenance and upgrades are taken care of for you. However, there are times when self-hosted agents are needed (i.e. customized images, network connectivity requirements etc.).… Continue reading Elastic self-hosted pool for Azure DevOps (on Kubernetes)

.NET · .net-core · AKS · Automation · Azure · AzureDevOps · C# · CI-CD · docker · Kubernetes

Bridge to Kubernetes – be confident on shipping software

February 3, 2021 Moim HossainLeave a comment

Bridge to Kubernetes is a successor of Azure Dev Space. Distributed software’s are comprised of more than one services (often referred as micro-services), they depend on each other (one service invoking APIs of another service) to deliver capabilities to end users. While separations of services bring flexibility in delivering features (or bug fixes) faster, it… Continue reading Bridge to Kubernetes – be confident on shipping software