How to manage PostgreSQL database permissions using Azure AD groups
This article shows how we can control read-only and read-write access to a PostgreSQL database by using Azure AD groups.
Latest — page 4
C#
·
How to log request & response body to Application Insights
Application Insights does not provide a turn-key ready solution that logs request and response bodies. This article shows how to leverage a custom ASP.NET Core middleware to get that data into Azure Monitor.
OAuth 2.0 & OpenID Connect (Part 5) - OIDC Introduction
This post gives an introduction to OpenID Connect and the concept of identity federation.
How to use static IP addresses with Azure App Service
This post shows how to use a static inbound or outbound IP together with Azure App Service.
How to use Key Vault secrets in application settings
This article shows how an App Service can be configured to consume secrets stored in a Key Vault
How to get the creation timestamp of an Azure resource
In this article I describe how to make use of the Azure REST API to retrieve the creation timestamp of any Azure resource. Unfortunately this info is not available via Portal or CLI.
OAuth 2.0 & OpenID Connect (Part 4) - Device Authorization Flow
This article gives an overview of the steps involved in the device authorization flow, which can be used by input constraint devices (clients) like smart TVs.
OAuth 2.0 & OpenID Connect - Terminology
This article covers the terminology required to understand the OAuth 2.0 & OpenID Connect flows
OAuth 2.0 & OpenID Connect (Part 3) - Client Credentials Flow
This article gives an overview of the steps involved in the client credentials flow which is commonly used for server-to-server interactions.
OAuth 2.0 & OpenID Connect (Part 2) - Authorization Code Flow + PKCE
This post talks about the authorization code flow - probably the most common OAuth 2.0 flow type. And also about the PKCE extension, which can be seen as the successor of the implicit grant flow.
Security
·
OAuth 2.0 & OpenID Connect (Part 1) - An introduction
OAuth 2.0 & OpenID Connect does have a reputation of being complex. In this series of posts I am documenting my own endevaours to understand this protocol in more depth
Azure
·
Always Encrypted: Deterministic vs. Randomized
When it comes to securing a SQL server there are severeal things we need to think of. One of this things is the protection of our data in transit and/or at rest by using encryption