Bicep modules can now be published to a **Private Azure Container Registry (ACR)**, enabling enterprise-scale sharing and versioning of infrastructure templates. Publishing a Module Consuming from Registry Key Takeaways Versioning (`v1.0`) enables safe rollouts and rollbacks. Authenticate using `az login` or a Service Principal in CI/CD.
Read more →Search Results for: name
Securing Microservices: mTLS in Kubernetes
Zero Trust mandates that internal traffic be encrypted and authenticated. **mTLS (mutual TLS)** achieves this by requiring both client and server to present certificates. In Kubernetes, Service Meshes like Istio automate this entirely. How Istio Handles mTLS Enabling Strict Mode Key Takeaways Certificate rotation is automatic (usually 24 hours). Use AuthorizationPolicies to control which services […]
Read more →Azure AD B2C: Custom Policies
User Flows are easy but limited. Custom Policies (Identity Experience Framework) are XML-based beasts that unlock full control. REST API Integration We use a Custom Policy to call a REST API during sign-up to validate a loyalty number. This runs before the user accounts is created in the directory.
Read more →Managing Terraform State in Azure
Terraform’s `.tfstate` file is gold. If it’s lost or corrupted, Terraform cannot track what resources exist. You **must** store state remotely with locking. Azure Backend Configuration State Locking Azure Blob’s native lease mechanism prevents concurrent writes. Key Takeaways Never commit `.tfstate` to Git. Enable **soft delete** on the storage account to recover corrupted state. Use […]
Read more →Designing for Nullability in C#
With Nullable Reference Types (NRTs) enabled by default in .NET 6 templates, designing APIs that clearly communicate nullability is no longer optional—it’s expected. Enabling NRTs Guard Clauses Use the new .NET 6 helper to throw if null. Key Takeaways Use `string?` to explicitly mark nullable strings. Use `!` (null-forgiving operator) sparingly—only when you truly know […]
Read more →GraphQL vs gRPC vs REST: The 2021 Guide
Choosing the right API paradigm is critical. It’s not about which is “better,” but which fits the consumption model. Decision Matrix Feature REST gRPC GraphQL Protocol HTTP/1.1 HTTP/2 HTTP/1.1 or 2 Data Format JSON Protobuf (Binary) JSON Use Case Public APIs Internal Microservices Mobile/Frontend BFF Browser Support Native Requires Proxy (gRPC-Web) Native Why GraphQL for […]
Read more →