Last week, I spoke at the INTEGRATE conference. During my talk, I've conducted a survey about Azure API Management. 200 attendees participated in this survey, which leads to interesting insights! You can discover them here.
Subscribe to the blog
Latest Posts
Protect your API program with a single Azure AD RBAC policy!
Azure API Management's default security mechanism is built on top of subscriptions. Whilst this is a very simple way to protect your APIs, it's often not secure enough. Many scenarios require the APIs to be protected with OAuth2, which is perfectly possible with...
Use App Service Key Vault references with User-Assigned Identities
If you follow my blog, it should not be a surprise that I am using Managed Identity where possible, to avoid the need for passwords and secrets. In case these secrets are inevitable, we should store them in Azure Key Vault. Within App Service, you have the ability...
Enforce Azure AD authentication on Service Bus
Security is one of my main concerns when building PaaS solutions in Azure. Since private endpoints have GA'd, I always apply network security on my projects. Unfortunately, private endpoints for Service Bus are only available in the Premium tier, which is a huge...
Strange issue when creating a Service Bus namespace
Recently, I wanted to create a Service Bus namespace via Bicep. The simplified resource looked like this: resource serviceBus 'Microsoft.ServiceBus/namespaces@2021-06-01-preview' = { name: 'test-sb' location: resourceGroup().location sku: { name: 'Standard' tier:...
Improving the user experience of Azure Policy
A solid governance is the foundation of a successful Azure implementation. I often refer to it as "freedom within the frame". As an organization, you configure the rules of the game, e.g. allowed locations, no public IPs, restricted service tiers... Within that...
Send API inspector traces to Application Insights
In the December 2020 release of Azure API Management, there was a release note that drew my attention: You can now log API inspector traces to Application Insights and Azure Monitor by setting the verbosity property of the service/diagnostics resource to debug. Azure...