Cloud & Engineering

We regularly write about our technical experiences (good and bad) and what we're learning from the market.

  • There are no suggestions because the search field is empty.

Tags

Assessing Azure API Management Authorisation Approaches

Posted by Paco de la Cruz on 24 April 2023

Azure, Azure API Management, api, security, OAuth 2.0

Introduction

As part of consulting engagements, it is common that customers ask for guidance on the different authentication and authorisation approaches available on API Management and how these approaches meet their security needs while offering support to existing legacy API clients. While many people now know...

Continue reading

Is It Time to Migrate to Isolated Azure Functions?

Posted by Emile Dawalibi on 23 November 2022

App Service Isolated, App Services, Azure, Azure Functions, Service Bus, ASP.NET Core, APIs, .NET, Isolated Azure Functions

Introduction

On November 10, 2020, Microsoft released .NET 5. But at that point in time, the current version of the Azure Functions runtime host (version 3.x) couldn’t support any code targeting .NET 5. That’s because version 3 of the runtime utilises NET Core 3.1, and therefore all the functions you code had to...

Continue reading

Azure Update Management - Why you need it

Posted by Sep Beheshti on 16 November 2021

Azure, Azure Automation, Microsoft Azure, automation, governance, Update Management, Patching

Introduction

Managing updates and patches for Virtual Machines (VMs) hosted in any enterprise environment is essential and can be a daunting task.

Patch management for VMs consist of frequent updates to the operating system such as anti-virus definition updates, operating system updates, software updates and much...

Continue reading

The Secrets of Kubernetes

Posted by Reza Susanto on 29 June 2021

Azure, CICD, Microsoft Azure, kubernetes, Azure Key Vault, secrets management, kubernetes secrets

At Deloitte Platform Engineering, I help organisations build Kubernetes clusters and establish baseline policies and governance to ensure that they remain secure. A key aspect of cluster governance is defining how sensitive application configuration or ‘secrets’ are managed and used within the cluster.

Secrets such...

Continue reading

Custom Distributed Tracing and Observability Practices in Azure Functions – Part 2: Solution Design

Posted by Paco de la Cruz on 24 February 2021

Azure, Azure Functions, Microsoft, Application Insights, Microsoft Azure

Introduction

In my previous post, I discussed why it is important to consider traceability and observability practices when we are designing distributed services, particularly when these are executed in the background with no user interaction. I also covered common requirements from an operations team supporting...

Continue reading

Platform Management: Enterprise Integration Patterns on Azure Integration Services

Posted by Paco de la Cruz on 10 December 2020

Azure, Azure Functions, Enterprise Integration Patterns, Service Bus, Azure Event Grid, Logic App

When implementing modern application integration solutions, we rely on platforms that abstract many of the challenges inherent to these types of solutions. While the Enterprise Integration Patterns previously covered in this series describe architectural and implementation patterns, the Platform Management patterns...

Continue reading

Contract-First API Development using Dell Boomi and Azure API Management

Posted by Sarah Fernando on 22 October 2020

Azure, Azure API Management, CICD, Integration, Azure Resource Manager, DevOps, Microsoft Azure, Azure DevOps, Boomi, Dell Boomi, DPE

Context

At Deloitte Platform Engineering (DPE), we hold a substantial digital footprint within the Platform Engineering and Systems Integration national practice, offering professional services to meet clients' needs. Our strength comes from an expansive portfolio in providing innovative consulting services to cloud...

Continue reading

Validating RSA JWT Tokens with Azure API Management

Posted by Sujay Athavale on 31 July 2020

Azure, Azure API Management, security, OAuth 2.0, api policy, RSA, RS256, JWT

TL;DR

In this post, I highlight recently enhanced capabilities of the Validate JWT policy in Azure API Management and the specific gap that addresses for customers. I also provide related recommendations, tips and policy samples, which are not as yet available in Microsoft documentation.

Validate JWT policy

The ...

Continue reading

New Dev SKU for Azure Integration Service Environment (ISE)

Posted by Dan Toomey on 06 August 2019

Azure, Integration, Logic Apps, Microsoft Azure, Azure Integration Services

Last week, Microsoft responded to numerous requests from the community by announcing a new developer tier offering for Integration Service Environments (ISE). The ISE has been generally available for several weeks, but the single available SKU prior to this announcement carried a hefty price tag.

I had the great...

Continue reading

TimeKeeper: Using Azure Logic Apps to generate updates from Tempo in Jira

Posted by Kris Barton on 28 June 2019

Azure, Azure Functions, Logic Apps, automation, innovation, transparency, TimeKeeper

Two of the more consistent problems faced by service management professionals are transparency around billed hours and a lack of automation within this space. At Deloitte Operate, we leverage Jira Tempo to keep track of our clients’ billed hours and current utilisation levels. 

Currently, Jira Tempo lacks...

Continue reading