Accessing Azure Key Vault from within Azure API Management

Today we look at a common although slightly advanced scenario with API Management: accessing Azure Key Vault from Azure API Management. In an Enterprise, API Management service are often shared between teams. This means a lot of people might open it in the Portal and look at it. It also means that putting secrets in … More Accessing Azure Key Vault from within Azure API Management

API Management exclusive access to Azure Function

[Update 05-04-2019: Erratum on the original article. Logic Apps is actually able to perform public IP filering.] Azure API Management acts as a front door to your APIs. Typically, we do not want users / apps to be able to access the underlying APIs directly since that would bypass the API Management policies, e.g. throttling, … More API Management exclusive access to Azure Function

Accessing Azure Key Vault using Managed Service Identity Logic Apps

Azure Key Vault is a great service to manage secrets, keys & certificates. It uses RBAC to control access. Like all access control system, there is a chain of access. For instance, my user account has access to the vault: this means if my account’s credentials get leaked, the access to the vault is compromised. … More Accessing Azure Key Vault using Managed Service Identity Logic Apps

Using Azure DevOps REST API to start multiple releases with Azure Logic Apps

In our last article, we looked at how we could leverage the Azure DevOps REST API to trigger multiple releases. This is useful when rebuilding an environment: first we release the shared infrastructure then each service on top of it. In this article, we’ll see an implementation example using Azure Logic Apps. There are many … More Using Azure DevOps REST API to start multiple releases with Azure Logic Apps

Using Azure DevOps REST API to start multiple releases

Azure DevOps CI / CD (i.e. Build / Release) mechanism is very valuable to me. It makes things reproduceable & robust. It allows me to change whatever I want since I have this constant safety net underneath. For simple projects, having a build and release is fine. With micro-services I adopt the pattern of one … More Using Azure DevOps REST API to start multiple releases

How to get rid of /api in Azure Function’s route?

We looked at Azure Functions. We also looked at security around Azure Function used to implement APIs. Something people will quickly notice when implementing an Webhook / APIĀ  function is that its URL or route is always prepended by /api. For instance, if we create a webhook function in C# and we setup the route … More How to get rid of /api in Azure Function’s route?