This repository has been archived by the owner on Jul 9, 2024. It is now read-only.
This issue was moved to a discussion.
You can continue the conversation there. Go to discussion →
Microsoft Azure support #339
Labels
Projects
You can continue the conversation there. Go to discussion →
Previously: bifravst/bifravst#29
Service Equivalents
Porting the AWS-based implementation to
Microsoft Azure (Azure) means finding the
equivalent services:
Data Explorer¹ -Synapse Analytics² Cosmos DB ³ (minimum price per month: ~24 USD)¹ The minimum price for Azure Data Explore per month is around $220.
Resources
The reference architecture looks good, in my experience FOTA is a critical
component, which is not covered in that architecture (although mentioned in
the User management section). Guides for this
exist already.
The sample implementation does not
follow this architecture (it omits the Active Directory part) and is basically
a giant TODO list, it hasn't been updated in over a year, no CI/CD tests
ensure that this implementation actually works. Deployment is a barely
document multi-step process
(this is just for one sub-component, the HotPath),
and seems to depend on VS Code. Finally, both architectures seem to target
business internal deployments, use of Active Directory suggests, that it's
assumed that this will be deployed alongside an existing organization's AD to
allow employees (pre-known users) access to the solution. This is not suitable
for the architecture I want: It should implement a B2C solution, where user
sign up and have access to their devices. This also works for internal
deployments, but the key is to have a separate user directory, that's why I am
using Active Directory B2C as an authentication provider for the SPA.
Notes
msal
is recommended, but not yet supported by the
@azure/arm-*
packages:[Service Bus] Support AAD authentication in Browser Azure/azure-sdk-for-js#2556 (comment),
use
ms-rest-browserauth
instead:
Example
Azure Active Directory B2C
Features
taken from
the AWS implementation's features
Azure Resource Manager
to set up all resources
Issuer URL:
https://bifravstwebsite.azurewebsites.net/.auth/login/aad/callback
)End-to-end tests
├ Scenario: Initially the user should not have policies└ Scenario: Self-assign the policyThe text was updated successfully, but these errors were encountered: