Securing your API in API Management using OAuth 2.0

Azure's API Management allows individual APIs to do a variety of things, one of which is securing an API with built-in authorization servers and JWT token validation.  This tutorial by Microsoft is a great resource for implementing the authorization server and getting your site secured.  However, it lacks one key: validating the Authorization header your... Continue Reading →

Using client certificate authentication in Azure

Client certificate authentication (CCA) is a relatively easy way to secure communication between two parties.  Of course, both parties must be privy to the certificate and there is more to it than just configuration; code will need to be written. Setting up CCA When deploying to multiple environments, your different environments may have different certificates... Continue Reading →

Using VSTS to deploy to AWS

VSTS touts that it can be used to deploy your code anywhere.  While that's true, they don't necessarily give you the tools to do it unless that "anywhere" is Azure.  This guide will give you the steps to set up a file drop onto an S3 AWS resource that you can use to trigger an... Continue Reading →

Create a website or blog at WordPress.com

Up ↑