In this blog entry, I will combine a few topics as they are related: Multi-Account / Multi-Subscription support — Deploy parts of the environment to different subscriptions
In this blog entry, I will combine a few topics as they are related:
This blog expands upon a previous entry discussing dependency management.
When managing an enterprise scale cloud environment, it is important to divide it into functional pieces that will allow segregation of duties and minimizing blast radius. As such, core components such as platform management, networking, identity, audit, etc should be managed in separate subscriptions.
To deploy resources to different Azure subscriptions, it is possible to pass environment variables to Terraform and let it authenticate accordingly. In the code snippet below, there are 3 areas of interest:
The extra_arguments section requires special attention. Basically, this configuration says to inject the 4 environment variables when the following Terragrunt commands are called (init, apply,destroy, etc).
This blog shows how Azure Key Vault can be used in an Azure DevOps Pipeline build. By using Azure Key Vault to handle all your secrets or certificates, no secrets need to be saved to code, files, or other storage for the initial secrets required in a solution.
### Introduction In our previous [article](https://www.c-sharpcorner.com/blogs/creating-resource-groups-in-azure-using-terraform), we described the development process for provisioning an Azure Resource Group using Terraform Code. I promised a...
In this edition of Azure Tips and Tricks, you'll learn how to use secure configuration for Azure Functions with Azure Key Vault. For more tips and tricks, vi
This post shows how to implement an Azure client credential flows to access an API for a service-to-service connection. No user is involved in this flow. A client certificate (Private Key JWT authentication) is used to get the access token and the token is used to access the API which is then used and validated in the API. Azure Key Vault is used to create and provide the client certificate.
Configuration builders are mechanisms to retrieve connection strings from external sources. Using configuration builders, you may not have to do much coding besides installing packages and providing XML configurations for connecting to popular sources