Installing the Dapr extension for Azure Kubernetes Service with Terraform

Installing the Dapr extension for Azure Kubernetes Service with Terraform

As part of the AKS cluster that I’m building for my personal development, I decided it be worthwhile installing the Dapr extension on my cluster. AKS extensions provide an Azure Resource Manager driven experience for installing and managing different services like Dapr on your cluster. Since I built my cluster using Terraform, I decided to configure the Dapr extension using Terraform as well. In this article, I’ll talk about how we can configure our AKS cluster so that we can install extensions on it, How the Dapr cluster extension works, and then I’ll explain how we can configure our Dapr extension in Terraform....

October 1, 2024 · 5 min · Will Velida
Deploy to Azure with Terraform and GitHub Actions

Deploying to Azure with Terraform and GitHub Actions

I’m building my own Azure Kubernetes Cluster that I can use for my personal development, and I’ve been wanting to improve my Terraform skills, so I’ve spent a bit of time over the past couple of days getting a Terraform deployment to work with GitHub Actions. The AzureRM provider has moved on a bit since I’ve used it in anger, so I learnt a lot about the different resources that are available, and how we can use GitHub Actions to deploy Terraform templates to Azure....

September 19, 2024 · 21 min · Will Velida
Managing Secrets in Azure Container Apps

Managing Secrets in Azure Container Apps

Azure Container Apps allows your apps to secure sensitive configuration values as secrets. Once you define your secrets, you can pass them as configuration to revisions of your Container Apps, and as secured values to your scale rules. In this article, I’ll discuss what secrets are, where we can define secrets, and how we can reference them in our application’s environment variables. If you want to watch a video that talks about these concepts, check out the video below!...

March 26, 2024 · 5 min · Will Velida
Using Workload Identities for Bicep Deployments in GitHub Actions

Using Workload Identities for Bicep Deployments in GitHub Actions

As I’ve been working on my side project, I’ve been trying to work on my CI/CD skills and deploy all my resources through GitHub Actions. This project is made up of a couple of services, which each have their own infrastructure and application code. I’m deploying my resources to a single resource group in Azure. To deploy infrastructure to Azure via GitHub Actions, we need to authenticate to our Azure subscription....

June 24, 2023 · 7 min · Will Velida
Using Microsoft Security DevOps tasks in GitHub Action worflow files

Configure Bicep code scanning in GitHub with Microsoft Defender for DevOps

Microsoft Defender for DevOps is a new capability in Defender for Cloud that provides visibility across multiple DevOps environments that you can use to centrally manage DevOps security, strengthen your infrastructure as code and help you prioritize critical issues in code across your pipeline and multiple cloud environments. This feature is currently in preview, and supports GitHub and AzureDevOps (with support for more platforms coming soon). As part of my job at Microsoft, I spend a lot of time helping engineers to use infrastructure as code to provision their resources to Azure, and help them to build pipelines that automates their deployments....

October 20, 2022 · 5 min · Will Velida