Session
Securing Serverless APIs with Azure Active Directory and Azure Functions
This session will demonstrate how to build secure, serverless APIs using Azure Active Directory (AAD) and Azure Functions. Attendees will learn how to use AAD to authenticate and authorize access to their APIs, and how to use Azure Functions to build and deploy their API logic. We will also show how to use Logic Apps to integrate with other systems and services. By the end of this session, attendees will have a solid understanding of how to build and secure serverless APIs using Azure's serverless offerings.
Main Takeaways:
Learn how to use Azure Active Directory to authenticate and authorize access to your APIs
Understand how to use Azure Functions to build and deploy your API logic
See how to use Logic Apps to integrate with other systems and services
Gain knowledge on best practices of building and securing serverless APIs using Azure's serverless offerings
Demo Scenarios:
Building a simple "To-Do" API: In this demo, you could show how to use Azure Functions to build a basic "To-Do" API that allows users to create, read, update, and delete tasks. You could then show how to secure the API using Azure Active Directory, and demonstrate how to authenticate and authorize access to the API using AAD.
Integrating with an external system: In this demo, you could show how to use Logic Apps to integrate the "To-Do" API with an external system, such as a calendar or email service. You could show how to use Logic Apps connectors to connect to the external system, and demonstrate how to use Logic Apps to create workflows that integrate with the API.
Building a more complex API: In this demo, you could show how to use Azure Functions to build a more complex API that uses multiple functions and integrates with multiple external systems. You could demonstrate how to use Azure Functions features such as bindings and triggers, and show how to use Azure Active Directory to secure the API.
Implementing Role based access control: In this demo, you could show how to configure Azure AD to implement Role-based access control for the API. You could demonstrate how to assign roles to users and groups, and show how to use Azure AD to authorize access to the API based on the user's role.
Implementing Multi-Factor Authentication: In this demo, you could show how to configure Azure AD to implement Multi-Factor Authentication for the API. You could demonstrate how to use Azure AD to require MFA for certain users or groups and show how to implement the same for the API.
These are just a few examples of demo scenarios you could use to illustrate the concepts discussed in your session. Feel free to modify or adjust them to suit your specific needs.
Jan Vidar Elven
Senior Cloud Platform & Security Architect, Security MVP
Sarpsborg, Norway
Links
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top