Protecting your Azure Container Registry by denying all requests except from allowed IP addresses

Protecting your Azure Container Registry by denying all requests except from allowed IP addresses

With Azure Container Registry, or ACR, we get a lot of great capabilities to host our Docker images in the Azure cloud. With that, as with everything else, comes security concerns we should not overlook. In this post I'm exploring how we can lock down all access to our ACR by default, and then enable access based on an IP address or range of IP addresses. This is similar to what I've already explained in another post about Secure your Azure Storage Accounts with restrictions based on public IP addresses. If you haven't seen that, take a look there how…

Read More

Azure Container Instances (ACI) and Secrets - Using Secure Environment Variables

Azure Container Instances (ACI) and Secrets - Using Secure Environment Variables

In this post I'm talking about how you can use something called secureValue, or secure environment variables, with your Azure Container Instance. Given the sensitive nature of some data you put into the variables, it is a good idea to understand different ways to protect some of that data - with secure environment variables you can hide the values from the UI and API calls to the ACI, and from the Azure Portal. BackgroundRunning your applications in the cloud has become increasingly popular. Migrating your .NET applications to .NET Core and hosting them as Docker images in the cloud is…

Read More

Processing data from SQLite hosted in an Azure File share, running in Azure Kubernetes Services

Processing data from SQLite hosted in an Azure File share, running in Azure Kubernetes Services

In this post, I am talking about how we can practically make use of the Azure File share that is mounted to our containers in AKS. I'm examining a PoC of how you can query a SQLite database hosted on an Azure File share, accessed from multiple containers at a huge scale simultaneously. It's fun, tag along.This is a mini-series with two parts.How to: Mount an Azure Storage File share to containers in AKS.(this post) Processing data from SQLite hosted in an Azure File share, running in Azure Kubernetes Services.I've simplified the sample code for this…

Read More