There is a zone, that I decided to name the “Magic Zone”, that makes IT Architecture so unique and interesting. Until very recently, I was not conscious of its existence. Knowing about it will probably won’t change a lot, but it will at least put some rational and help in explaining why IT Architecture is so exciting.

Areas of work

In this tutorial we are going to discuss how to properly manage secrets in Azure App Service using Terraform.

Application Settings in Azure App Service

If you are familiar with Azure App Service, you surely know that a common pattern to store secrets is to use Application Settings.

Earlier this month, Microsoft announced that Azure Blockchain Service will be retired September 10, 2021. Not much explanation was provided and, like me, you probably wonder why this service is shutdown. Here are 5 possible explanations.

Not all businesses need to have an internal blockchain to run and earn money. Blockchain sounds great from a tech perspective and we all dream of being the guy that is running one, but the truth is that you probably don’t really need one to earn money.

Implementing a blockchain is probably simply not needed.

Azure Blockchain service is managed, and really helps in…

AWS App Runner has just been announced a couple of days ago as I’m writing this article. Let’s try to analyze what is good and what could be improved.

Announcement of AWS App Runner:

If you are not familiar with AWS App Runner, I strongly recommend you to watch the above video, as it will give you a pretty good idea about what this is about.

Finally something simple to run Applications

I always found that AWS was missing something simple to deploy applications. …

If you are running Tomcat on Docker and want to control the allocated memory (Java Heap Size) then this article is for you.

Some basic knowledge first

Starting in Java 10 (this behavior was back ported to Java 8u191), the “UseContainerSupport” option is by default set to true and will help Tomcat (Java) to work well with Docker.

You can check this by running the following command on a official tomcat image:

docker run --rm tomcat:9.0.44-jdk11-openjdk java -XX:+PrintFlagsFinal -version | grep UseContainerSupport

It will return:

bool UseContainerSupport = true {product} {default}

So, to start with, it is good to know that Tomcat (Java) and…

Here is a basic tutorial to perform an HTTP redirect (Status code 301 or 302) using Azure Functions Proxies.

I was looking tonight for a basic, and serverless way, to perform a super simple http redirection that would redirect to Pretty simple ! I decided to try Azure Functions Proxies to achieve that.

Step 1 : Create an Azure Function App

Create a simple Azure Function App:

Listing the top 10 reasons why you should use an API Management solution

It might be obvious for some of us, but you may have to convince certain people in your organization that having an API Management solution makes sense.

We started our API Management journey in 2015, and at that time we had to explain many things about API. 6 years later, after a lot of learnings and discoveries, here is how I would justify the need for an API Management if I had to do it today (which I don’t by the way).

I will distinguish functional reasons from technical ones:

Functional reasons

Here is my top 5 functional arguments in favor of…

If you are in love with with Loki and Azure, this article is for you. It will take you through a basic deployment of Loki on Azure App Service.

Why Azure App Service

Let’s be pragmatic and straight forward, Azure App Service has many advantages. Here is my short list of preferred features:

  • Fully managed service (no hassle)
  • HTTPS / SSL Certificate handling
  • Custom domain
  • Auto scaling
  • Linux support
  • Docker (including Docker compose) support

Azure App Service is a great candidate to deploy Loki.

Loki Authentication

Loki does not come with any authentication layer. …

I’ll take you through a simple setup to add basic authentication to Loki using a Nginx reverse proxy.

In a previous article, I was writing about adding basic authentication to any application using Nginx. We are now going to apply this specifically to Loki.


Grafana Loki is a horizontally-scalable, highly-available, multi-tenant log aggregation system inspired by Prometheus.

Loki does not come with any authentication layer. You are expected to use it with a reverse proxy in front to ensure it is secured.

Overall picture

Here is the overall picture of what we want to achieve:

Nginx Reverse proxy

We are going to reuse the Nginx…

Leading the IT Architecture & Innovation team at Pernod Ricard. Interested in IT technology in general.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store