Accessing Azure Key Vault from within Azure API Management

Today we look at a common although slightly advanced scenario with API Management: accessing Azure Key Vault from Azure API Management. In an Enterprise, API Management service are often shared between teams. This means a lot of people might open it in the Portal and look at it. It also means that putting secrets in … More Accessing Azure Key Vault from within Azure API Management

Azure App Service Authentication with Azure Front Door

Last time, we looked at Azure Front Door being used as a reverse proxy in front of Azure App Service. We are going to increase the difficulty level today by looking at how to implement Azure AD authentication(also called easy auth) in Azure App Service behind Azure Front Door. Although that seems like an incremental … More Azure App Service Authentication with Azure Front Door

Azure Front Door with App Service

Azure Front Door service was recently released. Azure Front Door is an interesting service combining the capabilities of: Reverse Proxy (SSL Termination, URL based routing, URL rewrite & session affinity) Web Application Firewall (WAF) Accelerated Global routing Global Load Balancing between geo-distributed backend Some bits of Content Delivery Network (CDN, in the form of caching … More Azure Front Door with App Service

Flex Volume in AKS

I wanted to start looking at a few modules helping integrate AKS with the rest of Azure. In a past article, we looked at Pod Identity. This time around, we will look at Flex Volume. Flex Volume is an integration between AKS and Key Vault. It allows keys, secrets & certificates (the three main objects … More Flex Volume in AKS

Accessing Azure Key Vault using Managed Service Identity Logic Apps

Azure Key Vault is a great service to manage secrets, keys & certificates. It uses RBAC to control access. Like all access control system, there is a chain of access. For instance, my user account has access to the vault: this means if my account’s credentials get leaked, the access to the vault is compromised. … More Accessing Azure Key Vault using Managed Service Identity Logic Apps