azure appfabric
play

Azure AppFabric WebDay, Porto, Feb. 2, 2010 Pedro Flix ( pedrofelix - PowerPoint PPT Presentation

Dec 16, 2022 •307 likes •620 views

An introduction to the Azure AppFabric WebDay, Porto, Feb. 2, 2010 Pedro Flix ( pedrofelix em cc.isel .ipl.pt) Azure AppFabric Set of services Service Bus (SB) Access Control Service (ACS) Running in the cloud Based on

  1. An introduction to the Azure AppFabric WebDay, Porto, Feb. 2, 2010 Pedro Félix ( pedrofelix em cc.isel .ipl.pt)

  2. Azure AppFabric • Set of services – Service Bus (SB) – Access Control Service (ACS) • Running in the cloud – Based on Windows Azure Platform • Providing – SB : Service Connectivity, Addressability and Discoverability – ACS : Service Access Control 2

  3. A Motivating Scenario • Issue Tracker web app. • Cloud-based CloudTrack • Multi-tenant . View/manage issues Create/view issues Contoso Fabrikam 3

  4. Connectivity challenges CloudTrack . Notify new issue Create new issue Fetch trace data FW, NAT, … FW, NAT, … 4

  5. Challenges • Addressability and discoverability – Private addresses and Network Address Translation (NAT) – Dynamic addresses (e.g. ISP) • Connectivity – Firewalls (denial of inbound connections) – Event distribution – Transient connectivity 5

  6. Service Bus address? outbound inbound 6

  7. Service Bus “All problems in computer science can be solved by another level of indirection” Butler Lampson Service Bus outbound inbound 7

  8. Connectivity and addressability • Relay – Service “listens” on the SB via outbound connection – Client “sends” to the SB – SB relays between client and service sends listens public address Service Bus outbound 8

  9. Naming and discovery • Naming – Service is exposed via a public name – Local DNS binds these public names to IP addresses – Local registry describes available public names DNS Registry sends listens public name Service Bus outbound outbound 9

  10. Naming and discovery • Naming – Public service namespaces – One Azure project – multiple service namespaces – {scheme} :// {namespace} .servicebus.windows.net/ {relpath} • Registry – Mapping between URIs and services – Readable via HTTP+ATOM 10

  11. Buffering • Buffering – One-way messaging – Temporal decoupling sends listens public name outbound outbound 11

  12. Eventing (pub-sub) • Eventing – multicast – One-way messages – Multiple listeners – Message distribution - multicast outbound listens sends listens Service Bus outbound outbound 12

  13. Security • Access Control – Both “listen” and “send” subject to access control – Programmable authorization policy, defined by ACS • Isolation – SB is the DMZ ACS sends listens Service Bus outbound outbound 13

  14. WCF architecture • Channel stack with transport and protocol channels • Channels described by binding elements • One binding contains several binding elements User code Service Impl. Client Dispatcher Protocol Protocol Binding element Protocol Protocol Binding element Encoding Encoding Binding element Transport Transport Binding element Binding 14

  15. WCF and SB • New bindings – New transport channels and binding elements • New behaviors User code Service Impl. Client Dispatcher Protocol Protocol Binding element Protocol Protocol Binding element Encoding Encoding Binding element Service Transport Transport Binding element Bus Binding 15

  16. Bindings • WebHttpRelayBinding – HTTP (Web programming model) – Client interoperability • BasicHttpRelayBinding e WS2007HttpRelayBinding – SOAP over HTTP (basic profile | WS-*) – Client interoperability • NetTcpRelayBinding – Similar to NetTcpBinding (request-response and duplex) • NetOnewayRelayBinding e NetEventRelayBinding – One- way w/buffering and multicast 16

  17. Binding elements • Http(s)RelayTransportBindingElement • TcpRelayTransportBindingElement • RelayedOnewayTransportBindingElement 17

  18. Demo http:// demos-pfelix .servicebus.windows.net/ webday 18

  19. Access Control Service • Identity and access control • Distributed systems – Decentralized authority – Heterogeneous technologies • Claims-based model • SB integration 19

  20. Identity and Authorization Contoso:: Contoso:: webapp:: webapp:: creds Alice LeadDev IssueMgr IssueView 20

  21. Centralized Solution webapp (IssueTracker) Contoso:: Contoso:: webapp:: webapp:: creds Alice LeadDev IssueMgr IssueView Membership Role IPrincipal.IsInRole(...) Provider Provider 21

  22. Decentralized Authority webapp (IssueTracker) Contoso:: Contoso:: webapp:: webapp:: creds Alice LeadDev IssueMgr IssueView Contoso Authority 22

  23. Decentralized Authority Contoso Identity Provider Contoso Identity Provider webapp Contoso:: Contoso:: webapp:: webapp:: creds Alice LeadDev IssueMgr IssueView Identity Directory 23

  24. Decision  Enforcement Contoso webapp Identity Authorization Information Decision Contoso:: Contoso:: webapp:: webapp:: creds Alice LeadDev IssueMgr IssueView Service Service Authorization Authorization Bus webapp:: Enforcement Enforcement SB.Listen 24

  25. Access Control Service Authorization Enforcement Identity Provider Authorization Decision webapp webapp Contoso Access Control Service Access Control Service Contoso:: webapp:: creds LeadDev IssueView Alice SB webapp:: SB.Listen 25

  26. Access Control Service • Claims-based Identity and Access Control • Claims transformer (“claims in, claims out”) – Consumes claims from federated issuers – Provides claims to applications and services • Rule based issuance policy – Rule: If has claim1 then output claim2 • Not an identity provider – Does not manage user’s identities 26

  27. Protocols and technologies • AppFabric 1.0 – OAuth WRAP (Web Resource Authorization Protocol) – Simple Web Token • Future (and past)? – WS-Federation – “passive” (browser based) federation – WS-Trust – “active” (SOAP based) federation – LiveID integration 27

  28. WRAP Identity Authorization Provider Server Bearer Token with Bearer Token with API authorization claims Protected Client Resource 28

  29. WRAP and SWT • Simple Web Token (SWT) – Form encoded name-value pairs – HMAC-SHA-256 symmetric signature • WRAP token request – HTTP POST – username+password or authentication assertion (e.g. SAML) • WRAP protected client call – HTTP header (Authorization: WRAP access_token = “…”) – GET or POST parameter ( wrap_access_token = “…”) 29

  30. Demo Access Control WRAP Service Membership WIF WS-Trust LeadDev username Alice + password SAML Listen Service Bus SWT WIF 30

  31. Finally … • Service Bus – Connectivity – Addressability and discoverability – Eventing – Buffering • Access Control Service – Authorization Decision Point • For Service Bus • For other services, both cloud or on-premises – Flexible claims based policy 31

Recommend

Using PubSub For Scheduling in Azure SDN Qi Zhang (Microsoft - Azure Networking) Azure

Using PubSub For Scheduling in Azure SDN Qi Zhang (Microsoft - Azure Networking) Azure

Using PubSub For Scheduling in Azure SDN Qi Zhang (Microsoft - Azure Networking) Azure Networking Regional Cable Azure Region A Network Consumers CDN Regional Network Carrier Microsoft Edge Enterprise, SMB, WAN mobile Azure

604 views • 26 slides
Azure Active Directory Provider The Azure Provider can be used to congure infrastructure in

Azure Active Directory Provider The Azure Provider can be used to congure infrastructure in

Azure Active Directory Provider The Azure Provider can be used to congure infrastructure in Azure Active Directory (https://azure.microsoft.com/en- us/services/active-directory/) using the Azure Resource Manager API's. Documentation regarding

925 views • 46 slides
at Your Fingertips, in the Azure Cloud An Azure/UberCloud Sales Guide

at Your Fingertips, in the Azure Cloud An Azure/UberCloud Sales Guide

Engineering Simulations at Your Fingertips, in the Azure Cloud An Azure/UberCloud Sales Guide Wolfgang.Gentzsch@TheUberCloud.com For Use by Microsoft Sales Benefits of HPC* as a Service flexible - on-demand - user-friendly 1 2 3 4

1.02k views • 12 slides
Getting Started with The Azure Data Platform How to Set Up a Fully-Functional Azure Data &

Getting Started with The Azure Data Platform How to Set Up a Fully-Functional Azure Data &

Getting Started with The Azure Data Platform How to Set Up a Fully-Functional Azure Data & Analytics Environment in Just 30-Days 10/21/2020 CONFI DENTI AL | 2020 | 1 Todays Presenter Rob Carek Director, Global Solution Development

349 views • 31 slides
Lead Azure Architect, MCT(Microsoft Certified Trainer) Azure Talk by Niraj kumar, Cloud Architect!

Lead Azure Architect, MCT(Microsoft Certified Trainer) Azure Talk by Niraj kumar, Cloud Architect!

http://blog.kloudezy.com Niraj Kumar Lead Azure Architect, MCT(Microsoft Certified Trainer) Azure Talk by Niraj kumar, Cloud Architect! Azure Talk Telegram Group http://blog.kloudezy.com Azure Container Services Containers vs VMs Azure

895 views • 7 slides
Azure MapReduce Thilina Gunarathne Salsa group, Indiana University Agenda Recap of Azure

Azure MapReduce Thilina Gunarathne Salsa group, Indiana University Agenda Recap of Azure

Azure MapReduce Thilina Gunarathne Salsa group, Indiana University Agenda Recap of Azure Cloud Services Recap of MapReduce Azure MapReduce Architecture Application development using AzureMR Pairwise distance alignment

326 views • 30 slides
ENMAX GIS in Azure May 16,2019 Background Why the Azure cloud? In 2016 ENMAX IT

ENMAX GIS in Azure May 16,2019 Background Why the Azure cloud? In 2016 ENMAX IT

ENMAX GIS in Azure May 16,2019 Background Why the Azure cloud? In 2016 ENMAX IT Infrastructure launched a Data Centre Transformation project as ENMAX had out grown our on premise data center This move was also consistent with a

186 views • 15 slides
Microsoft AZURE Giovanni Gatto Azure Partner Recruiter EMAIL: ggatto@Microsoft.com TWITTER:

Microsoft AZURE Giovanni Gatto Azure Partner Recruiter EMAIL: ggatto@Microsoft.com TWITTER:

Microsoft AZURE Giovanni Gatto Azure Partner Recruiter EMAIL: ggatto@Microsoft.com TWITTER: @giobannigatto Industry transformation Big data Devices Apps Cloud one quarter nearly half more than half 40ZB of external app of total IT

391 views • 18 slides
Niraj Kumar Lead Azure Architect, MCT( Microsoft Certified Trainer) Azure Talk by Niraj kumar,

Niraj Kumar Lead Azure Architect, MCT( Microsoft Certified Trainer) Azure Talk by Niraj kumar,

http://blog.kloudezy.com Niraj Kumar Lead Azure Architect, MCT( Microsoft Certified Trainer) Azure Talk by Niraj kumar, Cloud Architect! http://blog.kloudezy.com Azure Storage Azure Storage Overview Types of Storage Account and performance

609 views • 8 slides
High Performance Computing with do doAzur ureP ePar arallel allel Using Azure as your

High Performance Computing with do doAzur ureP ePar arallel allel Using Azure as your

High Performance Computing with do doAzur ureP ePar arallel allel Using Azure as your Parallel-Backend for Microsoft Embarassingly Parallel work JS Tan Azure Big Compute Azure Infrastructure Commodity, most Fast processors, Fast

454 views • 21 slides
Microsoft Azure Workshop Getting Started with Microsoft Azure Hands on Tutorial Swag, including

Microsoft Azure Workshop Getting Started with Microsoft Azure Hands on Tutorial Swag, including

Microsoft Azure Workshop Getting Started with Microsoft Azure Hands on Tutorial Swag, including a raffle for a Razer bundle worth $120 and including a mechanical keyboard, gaming mouse, gaming mouse pad, and overear headphones 7pm TONIGHT!

313 views • 15 slides
AZ-300-301 - Microsoft Certified: Azure Architect Technologies These 2 courses composed of

AZ-300-301 - Microsoft Certified: Azure Architect Technologies These 2 courses composed of

AZ-300-301 - Microsoft Certified: Azure Architect Technologies These 2 courses composed of modules are designed for IT Professionals who will learn about how to manage their Azure resources, including deployment and configuration of virtual

328 views • 4 slides
Microsoft Azure Security Protecting mission-critical cloud Steve Faehl Microsoft US National

Microsoft Azure Security Protecting mission-critical cloud Steve Faehl Microsoft US National

Microsoft Azure Security Protecting mission-critical cloud Steve Faehl Microsoft US National Director Security Strategy Microsoft Azure, a strong foundation Azure Government The only Supports the broadest Physically Meets the most

422 views • 9 slides
MICROSOFT AZURE MACHINE LEARNING Oscar Naim Microsoft Microsoft Azure Machine Learning What is

MICROSOFT AZURE MACHINE LEARNING Oscar Naim Microsoft Microsoft Azure Machine Learning What is

MICROSOFT AZURE MACHINE LEARNING Oscar Naim Microsoft Microsoft Azure Machine Learning What is Machine Learning? Azure Machine Learning: How it works Azure Machine Learning in action Get started Contents What is Machine Learning?

456 views • 21 slides
All-in with Azure AD, Intune, and Oce 365 All-in with Azure AD, Intune, and Oce 365

All-in with Azure AD, Intune, and Oce 365 All-in with Azure AD, Intune, and Oce 365

All-in with Azure AD, Intune, and Oce 365 All-in with Azure AD, Intune, and Oce 365 Notes and Slides: billdeitrick.com/citn2019 Notes and Slides: billdeitrick.com/citn2019 Bill Deitrick Bill Deitrick Information Services Director

599 views • 20 slides
Microsoft Azure Backup echnologies mikep@biggreenit.com Director of Cloud T Mike Prachar T

Microsoft Azure Backup echnologies mikep@biggreenit.com Director of Cloud T Mike Prachar T

Microsoft Azure Backup echnologies mikep@biggreenit.com Director of Cloud T Mike Prachar T odays Agenda 11:40 Who is Big Green IT? Jeff Rogers 11:45 Azure Backup Mike Prachar 12:10 Azure Backup Demo Ryan

568 views • 52 slides
Microsoft Azure Backup echnologies wadew@biggreenit.com Manager Cloud T Wade Walker T

Microsoft Azure Backup echnologies wadew@biggreenit.com Manager Cloud T Wade Walker T

Microsoft Azure Backup echnologies wadew@biggreenit.com Manager Cloud T Wade Walker T odays Agenda 11:40 Who is Big Green IT? Jonas Nordling 11:45 Azure Backup Wade Walker 12:10 Azure Backup Demo Ryan

887 views • 44 slides
Performing Large Science Experiments on Azure: Pitfalls and Solutions Wei Lu, Jared Jackson,

Performing Large Science Experiments on Azure: Pitfalls and Solutions Wei Lu, Jared Jackson,

Performing Large Science Experiments on Azure: Pitfalls and Solutions Wei Lu, Jared Jackson, Jaliya Ekanayake, Roger Barga, Nelson Araujo Microsoft eXtreme Computing Group CloudCom2010, Indianapolis , IN Windows Azure Application Storage

630 views • 26 slides
CSE 344 Section 3 [Srini] 1. Connecting to Azure and running queries 2. Nested Queries Connect

CSE 344 Section 3 [Srini] 1. Connecting to Azure and running queries 2. Nested Queries Connect

CSE 344 Section 3 [Srini] 1. Connecting to Azure and running queries 2. Nested Queries Connect to Azure Hostname: wsxq8lmids.database.windows.net Username: <your UW id> Password: <yourpass> Databases: master and IMDB

589 views • 6 slides
Configuring Data Security Policies in Microsoft Azure CONFIGURING DATA CLASSIFICATION IN

Configuring Data Security Policies in Microsoft Azure CONFIGURING DATA CLASSIFICATION IN

Configuring Data Security Policies in Microsoft Azure CONFIGURING DATA CLASSIFICATION IN MICROSOFT AZURE Reza Salehi CLOUD CONSULTANT @zaalion linkedin.com/in/rezasalehi2008 t h s Understanding data risks, governance and compliance

1.36k views • 40 slides
Azure Minerals Ltd ASX Code: AZS @AzureMinerals Tony Rovira Managing Director

Azure Minerals Ltd ASX Code: AZS @AzureMinerals Tony Rovira Managing Director

Azure Minerals Ltd ASX Code: AZS @AzureMinerals Tony Rovira Managing Director www.azureminerals.com.au Azure Minerals Ltd Objective To be a low cost, high margin copper producer Strategy Developing our high quality mineral assets in

585 views • 26 slides
A-Brain: Large-scale Joint Genetic and Neuroimaging Data Analysis on Azure Clouds Project PIs:

A-Brain: Large-scale Joint Genetic and Neuroimaging Data Analysis on Azure Clouds Project PIs:

A-Brain: Large-scale Joint Genetic and Neuroimaging Data Analysis on Azure Clouds Project PIs: Gabriel Antoniu, Bertrand Thirion Contributors: Alexandru Costan, Benoit Da Mota, Radu Tudoran and the Microsoft Azure team from EMIC Final

740 views • 35 slides
Platform Choices on Windows Azure (Its not just ASP.NET and SQL Server) Mark Rendle Cloud

Platform Choices on Windows Azure (Its not just ASP.NET and SQL Server) Mark Rendle Cloud

Platform Choices on Windows Azure (Its not just ASP.NET and SQL Server) Mark Rendle Cloud Computing guy Software Development consultant Windows Azure Development MVP Language geek Open source developer mark@markrendle.net

521 views • 19 slides
Eric Chan System

Eric Chan System

Welcome Eric Chan System Consultant Hong Kong, Macau and Taiwan Hybrid Active Directory Environment Office 365 requires an Azure AD instance Azure AD

1.06k views • 79 slides

More recommend