While creating Nuget package through Azure DevOps pipeline and adding the package to the Artifacts, you might get the following or similar errors:
error NU1301: Unable to load the service index for source https://pkgs.dev.azure.com/MyEnterpriseApps/_packaging/SchemaRegistry%40Local/nuget/v3/index.json
This could usually happen when you’re Publishing the package to Nuget in a separate job or Stage from the Build step.
To resolve this, you need to do a nuget package restore before publishing the package to Nuget:
A blob cannot be read directly from the Archive tier. To read a blob in the Archive tier, a user must first change the tier to Hot or Cool. For example, to retrieve and read a single 1,000-GB archived blob that has been in the Archive tier for 90 days, the following charges would apply:
Data retrieval (per GB) from the Archive tier: $0.022/GB-month x 1,000 GB = $22 Rehydrate operation (SetBlobTier Archive to Hot): $5.50/10k = $0.0006 Early deletion charge: (180 – 90 days)/30 days x $0.002/GB-month x 1,000 = $5.40 Read blob operation from Hot = $0.0044/10k = $0.0001 Total = $22 + $0.0006 + $5.40 + $0.0001 = $28
In addition to the per-GB, per-month charge, any blob that is moved to the Archive tier is subject to an Archive early deletion period of 180 days. Additionally, for general-purpose v2 storage accounts, any blob that is moved to the Cool tier is subject to a Cool tier early deletion period of 30 days. This charge is prorated. For example, if a blob is moved to the Archive tier and then deleted or moved to the Hot tier after 45 days, the customer is charged an early deletion fee for 135 (180 minus 45) days of storage in the Archive tier.
When a blob is moved from one access tier to another, its last modification time doesn’t change. If you manually rehydrate an archived blob to hot tier, it would be moved back to archive tier by the lifecycle management engine. Disable the rule that affects this blob temporarily to prevent it from being archived again. Re-enable the rule when the blob can be safely moved back to archive tier. You may also copy the blob to another location if it needs to stay in hot or cool tier permanently.
There will be some charges associated after 180 days for the storage account.
Storage capacity is billed in units of the average daily amount of data stored, in gigabytes (GB), over a monthly period. For example, if you consistently used 10 GB of storage for the first half of the month, and none for the second half of the month, you would be billed for your average usage of 5 GB of storage. However, using the Cool (GPv2 accounts only) or Archive tier for less than 30 and 180 days respectively will incur an additional charge.
To be able to send events to the EventHub, we need an EventHub Client as part of our Infrastructure layer. This implementation is part of an EventProducer used by an Azure Function. I’m using a .Net 6 Class Library Project to create the Client named MyService.EventHubClient.
Under the Domain Layer, add an Interface to be implemented by the EventHubService.
public interface IHrEventHubService
{
Task SendToEventHub(EventDataWrapper eventDataWrapper);
}
The EventDataWrapper contains the required serialized data to be shared between different services in a Microservice architecture. The data can be serialized/deserialized using Newtonsoft.json approach or Avro Serializer with Schema Registry. The EventDataWrapper is exposing the required properties over the domain models and sending the data to the Event Hub as the Producer.
Back to the EventHubClient Project, create EventHubClientBuilder as below:
public static class EventHubClientBuilder
{
public static EventHubProducerClient Build(string connectionString, string eventHubName)
{
return new EventHubProducerClient(connectionString, eventHubName);
}
}
The above class is like a Factory to return the EventHubProducerClient object and will be created on Startup.
Now, create the EventHubService that will implement the Interface created in the domain layer above:
public class EventHubService : IHrEventHubService
{
private readonly EventHubProducerClient _eventHubProducerClient;
public EventHubService(EventHubProducerClient eventHubProducerClient)
{
this._eventHubProducerClient = eventHubProducerClient;
}
public async Task SendToEventHub(EventDataWrapper eventDataWrapper)
{
using var eventBatch = await _eventHubProducerClient.CreateBatchAsync();
EventData messageEventData;
if (eventDataWrapper.SerializerType == SerializationType.Avro)
{
messageEventData = eventDataWrapper.AvroSerializedEventData;
messageEventData?.Properties.Add("ContentType", messageEventData.ContentType);
messageEventData?.Properties.Add("SerializationType", "Avro");
}
else
{
messageEventData = new EventData(Encoding.UTF8.GetBytes(eventDataWrapper.Message));
messageEventData.Properties.Add("SerializationType", "Other");
}
messageEventData?.Properties.Add("EventType", eventDataWrapper.EventType);
if (!eventBatch.TryAdd(messageEventData))
{
throw new Exception($"Event is too large for the batch and cannot be sent.");
}
await _eventHubProducerClient.SendAsync(eventBatch);
}
}
Use the default DI in the Startup.cs class of an Azure Function to get the EventHubService object as below:
public class Startup : FunctionsStartup
{
public override void Configure(IFunctionsHostBuilder builder)
{
//...
builder.Services.AddSingleton(factory =>
{
var eventHubClient = EventHubClientBuilder.Build(appConfiguration.EventProducerEventHubConnectionString,
appConfiguration.EventProducerEventHub);
IHrEventHubService hrEventHubClient = new EventHubService(eventHubClient);
return hrEventHubClient;
});
//...
}
}
This is just an example of creating the EventHubProducerClient, however you can change the serialization and EventDataWrapper implementation as required.
In this example, we’ll take a Block Blob and an example of a class named Assignment. The Pessimistic Concurrency approach takes a Lease on a Blob Client and allows overwrite only if the Lease is not expired else it’ll give HttpStatusCode.PreconditionFailed error. For more details, check the following document.
The code below is a .Net 6 Console App.
The Assignment Class has the following Properties:
public class Assignment
{
public int Id { get; set; }
public string Code { get; set; }
public string Kind { get; set; }
public double pehe { get; set; }
}
The Console App’s Program.cs code will fetch blob content every time and manually add another Assignment. In the 4th step, it’ll fetch content from another Blob and append the Deserialized object to the original list of Assignments being built in previous steps and finally overwrite the first Blob with all Assignments.
using Azure;
using Azure.Storage.Blobs;
using Azure.Storage.Blobs.Models;
using Azure.Storage.Blobs.Specialized;
using Newtonsoft.Json;
using System.Net;
using System.Text;
await PessimisticConcurrencyBlob();
Console.WriteLine("done");
Console.ReadLine();
async Task PessimisticConcurrencyBlob()
{
Console.WriteLine("Demonstrate pessimistic concurrency");
string connectionString = "xxxx"; //ConfigurationManager.ConnectionStrings["storage"].Con;
string filename = "testAssignment.json";
string containerName = "mycontainer";
BlobServiceClient _blobServiceClient = new BlobServiceClient(connectionString);
BlobContainerClient containerClient = _blobServiceClient.GetBlobContainerClient(containerName);
BlobClient blobClient = containerClient.GetBlobClient(filename);
BlobLeaseClient blobLeaseClient = blobClient.GetBlobLeaseClient();
string filename2 = "assignments.json";
BlobClient blobClient2 = containerClient.GetBlobClient(filename2);
try
{
// Create the container if it does not exist.
await containerClient.CreateIfNotExistsAsync();
var blobAssList = await RetrieveBlobContentAsync(blobClient);
// Upload json to a blob.
Assignment assignment1 = new Assignment()
{
Id = 8,
Code = "ABC",
Kind = "Lead",
pehe = 10.0
};
blobAssList.Add(assignment1);
var blobContents1 = JsonConvert.SerializeObject(blobAssList);
byte[] byteArray = Encoding.ASCII.GetBytes(blobContents1);
using (MemoryStream stream = new MemoryStream(byteArray))
{
BlobContentInfo blobContentInfo = await blobClient.UploadAsync(stream, overwrite: true);
}
// Acquire a lease on the blob.
BlobLease blobLease = await blobLeaseClient.AcquireAsync(TimeSpan.FromSeconds(60));
Console.WriteLine("Blob lease acquired. LeaseId = {0}", blobLease.LeaseId);
// Set the request condition to include the lease ID.
BlobUploadOptions blobUploadOptions = new BlobUploadOptions()
{
Conditions = new BlobRequestConditions()
{
LeaseId = blobLease.LeaseId
}
};
// Write to the blob again, providing the lease ID on the request.
// The lease ID was provided, so this call should succeed.
// Upload json to a blob.
blobAssList = await RetrieveBlobContentAsync(blobClient);
Assignment assignment2 = new Assignment()
{
Id = 9,
Code = "DEF",
Kind = "Assignment",
pehe = 20.0
};
blobAssList.Add(assignment2);
var blobContents2 = JsonConvert.SerializeObject(blobAssList);
byteArray = Encoding.ASCII.GetBytes(blobContents2);
using (MemoryStream stream = new MemoryStream(byteArray))
{
BlobContentInfo blobContentInfo = await blobClient.UploadAsync(stream, blobUploadOptions);
}
// This code simulates an update by another client.
// The lease ID is not provided, so this call fails.
// Acquire a lease on the blob.
BlobLease blobLease2 = await blobLeaseClient.AcquireAsync(TimeSpan.FromSeconds(60));
Console.WriteLine("Blob lease acquired. LeaseId = {0}", blobLease2.LeaseId);
// Set the request condition to include the lease ID.
BlobUploadOptions blobUploadOptions2 = new BlobUploadOptions()
{
Conditions = new BlobRequestConditions()
{
LeaseId = blobLease2.LeaseId
}
};
blobAssList = await RetrieveBlobContentAsync(blobClient);
Assignment assignment3 = new Assignment()
{
Id = 10,
Code = "GHI",
Kind = "Assignment",
pehe = 30.0
};
blobAssList.Add(assignment3);
var blobContents3 = JsonConvert.SerializeObject(blobAssList);
byteArray = Encoding.ASCII.GetBytes(blobContents3);
using (MemoryStream stream = new MemoryStream(byteArray))
{
// This call should fail with error code 412 (Precondition Failed).
BlobContentInfo blobContentInfo = await blobClient.UploadAsync(stream, blobUploadOptions2);
}
// Calling another blob and add to first blob.
BlobLease blobLease3 = await blobLeaseClient.AcquireAsync(TimeSpan.FromSeconds(60));
Console.WriteLine("Blob lease acquired. LeaseId = {0}", blobLease3.LeaseId);
// Set the request condition to include the lease ID.
BlobUploadOptions blobUploadOptions3 = new BlobUploadOptions()
{
Conditions = new BlobRequestConditions()
{
LeaseId = blobLease3.LeaseId
}
};
var blobAssList2 = await RetrieveBlobContentAsync(blobClient2);
blobAssList.AddRange(blobAssList2);
var blobContents4 = JsonConvert.SerializeObject(blobAssList);
byteArray = Encoding.ASCII.GetBytes(blobContents4);
using (MemoryStream stream = new MemoryStream(byteArray))
{
// This call should fail with error code 412 (Precondition Failed).
BlobContentInfo blobContentInfo = await blobClient.UploadAsync(stream, blobUploadOptions3);
}
}
catch (RequestFailedException e)
{
if (e.Status == (int)HttpStatusCode.PreconditionFailed)
{
Console.WriteLine(
@"Precondition failure as expected. The lease ID was not provided.");
}
else
{
Console.WriteLine(e.Message);
throw;
}
}
finally
{
await blobLeaseClient.ReleaseAsync();
}
}
The code for fetching the Blob Content is as follows:
async Task<List<Assignment>> RetrieveBlobContentAsync(BlobClient blobClient)
{
//List<Assignment> assignments = new List<Assignment>();
var response = await blobClient.DownloadAsync();
string content = string.Empty;
using (var streamReader = new StreamReader(response.Value.Content))
{
while (!streamReader.EndOfStream)
{
content = await streamReader.ReadToEndAsync();
}
}
var assignments = JsonConvert.DeserializeObject<List<Assignment>>(content);
return assignments;
}
Below example takes input from user in a .Net 6 Console App and appends each input to a text file on BlobStorage using AppendBlob. The connectionString is a SAS for access to the Blob Storage and should be managed in appSettings.json file.
using Azure.Storage.Blobs;
using Azure.Storage.Blobs.Specialized;
using System.Text;
Console.WriteLine("please enter text to add to the blob: ");
string text = Console.ReadLine();
await AppendContentBlobAsync(text);
Console.WriteLine("done");
Console.ReadLine();
async Task AppendContentBlobAsync(string content)
{
string connectionString = "xxxx";
string filename = "test.txt";
string containerName = "mycontainer";
BlobServiceClient _blobServiceClient = new BlobServiceClient(connectionString);
BlobContainerClient container = _blobServiceClient.GetBlobContainerClient(containerName);
await container.CreateIfNotExistsAsync();
AppendBlobClient appendBlobClient = container.GetAppendBlobClient(filename);
if (!await appendBlobClient.ExistsAsync())
{
await appendBlobClient.CreateAsync();
}
using (MemoryStream ms = new MemoryStream(Encoding.UTF8.GetBytes(content)))
{
await appendBlobClient.AppendBlockAsync(ms);
}
}
Basic Microservice Architecture with Azure Service Bus and API Gateway
The above Architecture has the following components:
Front-end: ReactJS Application with a simple form hosted on App Service Plan which will hit the API Gateway with GET/POST requests.
Name Microservice: First Microservice hosted on App Service Plan that will take User Details from front-end and save PersonId and Name in it’s own Azure SQL database.
Azure Service Bus: The Name Microservice will forward the PersonId created and Address details from front-end to the Azure Service Bus Topic.
Address Microservice: Second Microservice hosted on App Service Plan will subscribe to the Topic that takes PersonId and Address data from the Name service and store the details in it’s own Azure SQL database.
This is not an ideal scenario for creating Microservice Architecture but it shows the idea how the individual components interact with each other.
*In addition to this, another Azure Function will subscribe to the Queue for new User creation and sends email to someone with the details. This is however, not shown in the above image.
The Front-end Application is a form created in ReactJS that takes in following fields from the User:
FirstName, MiddleName, LastName, Email, Phone Number and Address
The following front-end and back-end repositories have all the code for connecting to the required components.
Further, a separate Authentication Microservice can be created which will return a JWT token based on the credentials provided. The token can then be validated by the API Gateway configured with the API Manager Service and then allow the requests to go through to the other Microservices.
The front-end code does not have Login page in this sample, however it directly passes the credentials to the Auth Service to generate the token. The token is then passed through to the subsequent calls to the API Management Gateway.
Select Validate JWT policy for Inbound Processing at the Operation Level for APIs under API Management.
Change the issuer signing key while adding the Inbound Policy under API Management as per the key used while generating the token from your Authentication Microservice.
In continuation to my previous post, I’m deploying the Hub and Spoke model using the ARM templates from Azure Repo using Azure pipeline. For this example, I’m only showing 2 ARM templates deployment for Log Analytics and Hub Vnet. The rest can be done in the same way.
Create a Service Connection in your Azure Project as shown below:
Below is the yaml file that I’m using to create multi-stage pipeline, where each stage is running a job:
The Hub and Spoke model is a popular Architecture for Teams who are migrating their Workloads to Cloud environment incrementally and still keep some workloads on-prem. Following are the main components that make-up Hub and Spoke model:
Hub Virtual Network that holds your common components like VPN or Express Route Gateway, Azure Firewall, Azure Bastion Host etc. These components can be common to different environments like Dev, Staging, Prod etc. for better cost management.
Spoke Virtual Network which have isolated workloads. These can hold VMs or other PaaS services like App Service that connect to On-Prem network via the Hub network gateway transit. There can be any number of Spokes.
Example Hub and Spoke Architecture
The benefits of hub and spoke configuration include cost savings, overcoming subscription limits and workload isolation.
Another example from the MS docs I found useful is as shown below:
I’m going to create the architecture shown above using ARM templates. You can find the templates for different components here. I’ve broken down the combined template into multiple templates that can be run in the following order by deploying them as Custom templates in Azure Portal and will be created in an existing Resource Group:
Log Analytics workbook
Hub (includes vpn gateway, firewall, bastion)
Spoke1
Spoke2
Vnet Peerings
Azure Sentinel
Azure KeyVault
MS docs URL shared above contains more details about these components. Breaking down the templates into separate components gives you more control in creating a automated flow using say Azure pipelines. You can also later add or remove components easily as per your requirement.
Other options can be using Azure Blueprints for creating a minimal architecture and building from there on.
A similar architecture can created using Terraform as per MS docs here. But while running Terraform seems to be erroneous in Cloud shell and sometimes becomes unresponsive as per my experience.
The above template creates a name Parameter which is used under resources. Also, I want to create this Storage account in the same Location as my Resource Group.
Now open Bash CLI in Azure Portal and create json file:
touch StorageAccount1.json
Open vim editor and paste the above json:
vim StorageAccount1.json
Press Esc and save and exit with :wq .
Now run the below command in the same Bash CLI session:
az group deployment create -g AutomateRGPG --template-file StorageAccount1.json
Once this executes, you’ll be able to see the Storage account in the Resource group in same location as provided in command above.
You can also run a Custom deployment in Azure Portal and save this json template in the Custom Template editor.
Using the above approaches, any other resource can be created in Azure.
Application Insights is a Service on Microsoft Azure that lets you understand what users are actually doing on your App. It also lets you diagnose any issues with it’s Powerful analytics tools and works with platforms including .Net, Java and Node.js.
The App Insights Instrumentation key is what is required to link your App with the resource on Azure. If you already have an existing App Insights resource created through Visual Studio and you need to change it, then you can create another resource manually from the Azure Portal.
Once the App Insights resource is created, copy the Instrumentation key and replace it in your ApplicationInsights.config file. This lets you switch the ApplicationInsights resource for your Application.
Look for the InstrumentationKey tag in your ApplicationInsights.config file and replace. You might also need to change the InstrumentationKey in the HomePage JavaScript under Views folder added by App Insights SDK.
Start debugging your App and verify with your Live Metrics Stream in the App Insights resource that it is working.
InTheTechPit 