Azure diaries: can’t access KeyVault

Context: as a tenant administrator you can't inspect KeyVault contents created by other people ("you are unauthorized to view these contents"). Solution: assign yourself appropriate permissions like this: Locate the KeyVault in the Azure portal: go to "Access policies"click "+Add Access Policy"Key permissions: everything under "Key Management Operations" and "Cryptographic Operations"Accordingly for key and certificate … Continue reading Azure diaries: can’t access KeyVault

Cloud-specific software architecture patterns

This post is about software application architecture patterns that simplify application design by leveraging cloud features. New: Download the cloud pattern cheat sheet Packaged configuration Packaged configuration cue card What Configuration is packaged with deployment artefacts Motivation Simplify system, increase resilience by removing runtime dependency on configuration service How Configuration is managed in configuration repository, … Continue reading Cloud-specific software architecture patterns

Scalability through client-driven workflows

This post discusses a way to increase a service architecture's scalability by removing any communication paths between services and instead burdening clients with that communication. Bureaucracy in real life is a trade-off between ease of work for the applicant vs. ease of work for officers  In "Les 12 travaux d'Astérix" [1], Asterix and Obelix are … Continue reading Scalability through client-driven workflows

Monitoring for the private Docker cloud project

A few days ago I blogged about my holiday project (Building a private cloud with Docker [1]) which is just a proof of concept as it lacks important features. One of them is monitoring which is a tough topic in cluster environments. There are a few open source, free to use monitoring solutions for Docker … Continue reading Monitoring for the private Docker cloud project