Pulumi

Deploying to Azure from Azure DevOps without secrets

Azure DevOps Workload identity federation (OIDC) with Pulumi

If you are deploying your application to Azure from Azure Pipelines, you might want to leverage the ability to do so without using secrets thanks to Workload identity federation. In this article, I will demonstrate how to automate the configuration of your Azure DevOps project, with everything pre-configured to securely deploy applications to Azure.

Read more...

Create an Azure-Ready GitHub Repository using Pulumi

Using Azure OpenID Connect with Pulumi in GitHub Actions

Creating an application and deploying it to Azure is not complicated. You write some code on your machine, do some clicks in the Azure portal, or run some Azure CLI commands from your terminal and that's it: your application is up and running in Azure.

Read more...

When Pulumi met Nuke: a .NET love story

Pushing an ASP.NET Core API to Azure using .NET from provisioning to deployment

Today is a great time to be a developer:

Read more...

Why will I choose Pulumi over Terraform for my next project?

My take on choosing an Infrastructure as solution

In today's world of cloud-first applications, multi-cloud/hybrid cloud companies, and complex infrastructures, using infrastructure as code is essential. In recent years, Terraform has become one of the most popular IaC solutions, but its challenger Pulumi is quickly gaining traction. In this article, I will tell you why I think Pulumi is better and why I will choose it over Terraform for my next project.

Read more...

How to provision an Azure SQL Database with Active Directory authentication

Using Pulumi and its command provider to grant database permissions

In this article, we will talk about how to provision an Azure SQL Database with authentication restricted to Active Directory users/groups/applications. We will use Pulumi to do that.

Read more...

IaC Hot Reload with Pulumi Watch

Hot-reloading your cloud infrastructure.

Do you like using hot reload when developing applications? How about using hot reload when developing the cloud infrastructure of an application? Keep reading because that's what we are going to talk about.

Read more...

Pulumi with an Azure Blob Storage backend

Pulumi without Pulumi Service.

By default when you use Pulumi, the state is managed by Pulumi Service which is very convenient as you can concentrate on building your project infrastructure instead of spending time on where to store the state and how to handle concurrency. However, sometimes for governance or pricing concerns, or any other reasons, you don't want to use Pulumi Service and you prefer to manage the state yourself with your own backend. In this article, we will see how we can do that using Azure.

Read more...

AzureWebJobsStorage, the secret you don't need in your Function App.

If you are using Azure Functions chances are you are using the setting AzureWebJobsStorage in your Function App configuration. And it is quite likely that the value of this setting which is a secret is stored in a non-secured way directly in your Function App configuration, available to anyone who has access to this configuration. But do not worry, we will see in this article how we can make your Function App more secure by removing this secret.

Read more...