Cloud & Engineering

We regularly write about our technical experiences (good and bad) and what we're learning from the market.

  • There are no suggestions because the search field is empty.

Tags

Assessing Azure API Management Authorisation Approaches

Posted by Paco de la Cruz on 24 April 2023

Azure, Azure API Management, api, security, OAuth 2.0

Introduction

As part of consulting engagements, it is common that customers ask for guidance on the different authentication and authorisation approaches available on API Management and how these approaches meet their security needs while offering support to existing legacy API clients. While many people now know...

Continue reading

Addressing the Dynamics 365 API Service Protection Limits using Boomi and Azure APIM

Posted by Sarah Fernando on 20 October 2021

Azure API Management, api, Boomi, dynamic connection properties, d365 rate limits

Introduction

Boomi can mediate interactions with Microsoft Dynamics 365 Custom Engagement by invoking the Dataverse API. In situations where applications need to support real-time synchronous interactions, measures need to be in place to ensure that threshold limits that are imposed by the Dataverse API are not...

Continue reading

Contract-First API Development using Dell Boomi and Azure API Management

Posted by Sarah Fernando on 22 October 2020

Azure, Azure API Management, CICD, Integration, Azure Resource Manager, DevOps, Microsoft Azure, Azure DevOps, Boomi, Dell Boomi, DPE

Context

At Deloitte Platform Engineering (DPE), we hold a substantial digital footprint within the Platform Engineering and Systems Integration national practice, offering professional services to meet clients' needs. Our strength comes from an expansive portfolio in providing innovative consulting services to cloud...

Continue reading

Validating RSA JWT Tokens with Azure API Management

Posted by Sujay Athavale on 31 July 2020

Azure, Azure API Management, security, OAuth 2.0, api policy, RSA, RS256, JWT

TL;DR

In this post, I highlight recently enhanced capabilities of the Validate JWT policy in Azure API Management and the specific gap that addresses for customers. I also provide related recommendations, tips and policy samples, which are not as yet available in Microsoft documentation.

Validate JWT policy

The ...

Continue reading

OAuth 2.0 Authorisation with the Client Credentials Flow on Azure API Management

Posted by Paco de la Cruz on 12 July 2019

Azure API Management, Microsoft Azure, OAuth 2.0

A well-adopted way of protecting APIs is by using the OAuth 2.0 authorisation standard. OAuth 2.0 offers different grant types, also known as flows, to cover multiple authorisation scenarios. As an end-user, you most probably have used, in one way or another, the authorisation code flow, in which you, as a resource...

Continue reading

Azure API Management CI/CD Best Practices

Posted by Grant Samuels on 13 April 2018

Azure API Management, Continuous Integration, Microsoft, VSTS, ARM Templates, Article, Technology

Introduction

Azure API Management is a great product that we often use on customer solutions. It is an extremely effective way to provide a layer of abstraction between your callers and back-end APIs, and provides centralised governance across your API surface.

However, one of the most common questions from our...

Continue reading

Azure Integration Platform as a Service (iPaaS) – Logic Apps and the Azure Integration Services

Posted by Paco de la Cruz on 01 February 2018

Azure API Management, Azure Functions, iPaaS, Logic Apps, Service Bus, Blog, Vision & Digital Transformation, Technology

Introduction

A year ago, I wrote a post about this very same topic, the Microsoft Azure Integration Platform as a Service (iPaaS). At that time, the core iPaaS product offering, Azure Logic Apps, was roughly 6 months old, since it’s generally available launch. Since the launch date, we’ve seen an impressive release...

Continue reading

SOAP over Azure API Management, Logic Apps and Functions

Posted by Justin Yoo on 11 December 2017

Azure API Management, Azure Functions, Logic Apps, WSDL, SOAP, WCF, Blog, Technology

When we work for a service integration project for a customer’s information systems, not all systems use cutting-edge technologies. Rather, still many information systems use legacy ways to get integration works done. For example, some legacy applications still drop files to a designated folder so that other...

Continue reading

Securing SAS Token from Azure Logic Apps

Posted by Justin Yoo on 07 December 2017

Azure API Management, Azure Functions, Logic Apps, SAS Token, Blog, Technology

When we are using Azure Logic Apps, especially HTTP trigger, their endpoint URLs are overwhelmingly long. Here is an example:

The...

Continue reading

Microsoft Azure Integration Platform as a Service (iPaaS) – Logic Apps, Azure Functions, API Management and Service Bus working together

Posted by Paco de la Cruz on 10 February 2017

Azure, Azure API Management, Azure Functions, iPaaS, Logic Apps, Microsoft iPaaS, Service Bus, Blog, Technology

[UPDATE] A newer version of this post has been published here. 

Introduction

If you work for an established organisation going through Digital Transformation or in a modern company born in the digital era, the chances are that IT is required to implement integration solutions more than ever before. Whether an...

Continue reading