Forem: Victor The latest articles on Forem by Victor (@victormai). https://forem.com/victormai https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F2099390%2Fd9171343-9d50-42e0-9732-092e547da99f.JPG Forem: Victor https://forem.com/victormai en Observability in Local Development with OpenTelemetry, OTLP, and Aspire Dashboard Victor Sat, 20 Dec 2025 10:14:15 +0000 https://forem.com/victormai/observability-in-local-development-with-opentelemetry-otlp-and-aspire-dashboard-2p5l https://forem.com/victormai/observability-in-local-development-with-opentelemetry-otlp-and-aspire-dashboard-2p5l <p><strong>Introduction</strong></p> <p>Modern applications are increasingly distributed, combining APIs, front-end SPAs, databases, and cloud storage. While observability is critical in production, developers often overlook its importance during local development. Without proper visibility, debugging performance bottlenecks, tracing requests across services, or identifying storage issues becomes guesswork.</p> <p>There are many ways to observe local systems — logs, metrics dashboards, or tracing tools — but this time I focus on using the standalone Aspire Dashboard with OpenTelemetry (OTLP).</p> <p>Local observability helps developers catch issues earlier, experiment with instrumentation safely, and build confidence in their system’s resilience.</p> <p><strong>Prerequisites</strong></p> <ul> <li>Podman (or Docker) for containerized Aspire Dashboard</li> </ul> <p>Here’s how I set things up in my own project, based on my experience.:</p> <p><strong>1 - Run Aspire Dashboard</strong></p> <p>Pull and run the Aspire Dashboard container using Podman.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight powershell"><code><span class="n">podman</span><span class="w"> </span><span class="nx">run</span><span class="w"> </span><span class="nt">--rm</span><span class="w"> </span><span class="nt">-it</span><span class="w"> </span><span class="nt">-p</span><span class="w"> </span><span class="nx">18888:18888</span><span class="w"> </span><span class="nt">-p</span><span class="w"> </span><span class="nx">4317:18889</span><span class="w"> </span><span class="nt">--name</span><span class="w"> </span><span class="nx">aspire-dashboard</span><span class="w"> </span><span class="nx">mcr.microsoft.com/dotnet/aspire-dashboard:latest</span><span class="w"> </span></code></pre> </div> <p>Expose the necessary ports for local access.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fckf4pg1s73q7quvcrc3t.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fckf4pg1s73q7quvcrc3t.png" alt="Aspire dashboard" width="800" height="80"></a></p> <p><strong>2 - Configure OpenTelemetry in .NET API</strong></p> <p><em>Add OpenTelemetry.Extensions.Hosting and OpenTelemetry.Exporter.OTLP packages.</em><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code><span class="p">&lt;</span><span class="n">PackageReference</span> <span class="n">Include</span><span class="p">=</span><span class="s">"OpenTelemetry.Exporter.OpenTelemetryProtocol"</span> <span class="n">Version</span><span class="p">=</span><span class="s">"1.14.0"</span> <span class="p">/&gt;</span> <span class="p">&lt;</span><span class="n">PackageReference</span> <span class="n">Include</span><span class="p">=</span><span class="s">"OpenTelemetry.Extensions.Hosting"</span> <span class="n">Version</span><span class="p">=</span><span class="s">"1.14.0"</span> <span class="p">/&gt;</span> <span class="p">&lt;</span><span class="n">PackageReference</span> <span class="n">Include</span><span class="p">=</span><span class="s">"OpenTelemetry.Instrumentation.AspNetCore"</span> <span class="n">Version</span><span class="p">=</span><span class="s">"1.14.0"</span> <span class="p">/&gt;</span> <span class="p">&lt;</span><span class="n">PackageReference</span> <span class="n">Include</span><span class="p">=</span><span class="s">"OpenTelemetry.Instrumentation.EntityFrameworkCore"</span> <span class="n">Version</span><span class="p">=</span><span class="s">"1.14.0-beta.2"</span> <span class="p">/&gt;</span> <span class="p">&lt;</span><span class="n">PackageReference</span> <span class="n">Include</span><span class="p">=</span><span class="s">"OpenTelemetry.Instrumentation.Http"</span> <span class="n">Version</span><span class="p">=</span><span class="s">"1.14.0"</span> <span class="p">/&gt;</span> </code></pre> </div> <p><em>Configure logs, tracing and metrics in Program.cs.</em><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code><span class="n">builder</span><span class="p">.</span><span class="n">Logging</span><span class="p">.</span><span class="nf">AddOpenTelemetry</span><span class="p">(</span><span class="n">logging</span> <span class="p">=&gt;</span> <span class="p">{</span> <span class="n">logging</span><span class="p">.</span><span class="n">IncludeFormattedMessage</span> <span class="p">=</span> <span class="k">true</span><span class="p">;</span> <span class="n">logging</span><span class="p">.</span><span class="n">IncludeScopes</span> <span class="p">=</span> <span class="k">true</span><span class="p">;</span> <span class="p">});</span> <span class="c1">// Configure OpenTelemetry</span> <span class="kt">var</span> <span class="n">otel</span> <span class="p">=</span> <span class="n">builder</span><span class="p">.</span><span class="n">Services</span><span class="p">.</span><span class="nf">AddOpenTelemetry</span><span class="p">()</span> <span class="p">.</span><span class="nf">WithMetrics</span><span class="p">(</span><span class="n">metrics</span> <span class="p">=&gt;</span> <span class="p">{</span> <span class="n">metrics</span><span class="p">.</span><span class="nf">AddAspNetCoreInstrumentation</span><span class="p">();</span> <span class="c1">//metrics.AddMeter("Microsoft.AspNetCore.Hosting");</span> <span class="c1">//metrics.AddMeter("Microsoft.AspNetCore.Server.Kestrel");</span> <span class="p">})</span> <span class="p">.</span><span class="nf">WithTracing</span><span class="p">(</span><span class="n">tracing</span> <span class="p">=&gt;</span> <span class="n">tracing</span> <span class="p">.</span><span class="nf">AddAspNetCoreInstrumentation</span><span class="p">()</span> <span class="p">.</span><span class="nf">AddHttpClientInstrumentation</span><span class="p">()</span> <span class="p">.</span><span class="nf">AddEntityFrameworkCoreInstrumentation</span><span class="p">(</span><span class="n">options</span> <span class="p">=&gt;</span> <span class="p">{</span> <span class="n">options</span><span class="p">.</span><span class="n">EnrichWithIDbCommand</span> <span class="p">=</span> <span class="p">(</span><span class="n">activity</span><span class="p">,</span> <span class="n">command</span><span class="p">)</span> <span class="p">=&gt;</span> <span class="p">{</span> <span class="kt">var</span> <span class="n">stateDisplayName</span> <span class="p">=</span> <span class="s">$"</span><span class="p">{</span><span class="n">command</span><span class="p">.</span><span class="n">CommandType</span><span class="p">}</span><span class="s"> operation"</span><span class="p">;</span> <span class="n">activity</span><span class="p">.</span><span class="n">DisplayName</span> <span class="p">=</span> <span class="n">stateDisplayName</span><span class="p">;</span> <span class="n">activity</span><span class="p">.</span><span class="nf">SetTag</span><span class="p">(</span><span class="s">"db.name"</span><span class="p">,</span> <span class="n">stateDisplayName</span><span class="p">);</span> <span class="p">};</span> <span class="p">}));</span> <span class="kt">var</span> <span class="n">OtlpEndpoint</span> <span class="p">=</span> <span class="n">builder</span><span class="p">.</span><span class="n">Configuration</span><span class="p">[</span><span class="s">"OTEL_EXPORTER_OTLP_ENDPOINT"</span><span class="p">];</span> <span class="k">if</span> <span class="p">(</span><span class="n">OtlpEndpoint</span> <span class="p">!=</span> <span class="k">null</span><span class="p">)</span> <span class="p">{</span> <span class="n">otel</span><span class="p">.</span><span class="nf">UseOtlpExporter</span><span class="p">();</span> <span class="p">}</span> </code></pre> </div> <p><em>Appsetting.json file</em><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="w"> </span><span class="nl">"OTEL_EXPORTER_OTLP_ENDPOINT"</span><span class="p">:</span><span class="w"> </span><span class="s2">"http://localhost:4317"</span><span class="err">,</span><span class="w"> </span><span class="nl">"OTEL_SERVICE_NAME"</span><span class="p">:</span><span class="w"> </span><span class="s2">"StorageManagementAPI"</span><span class="err">,</span><span class="w"> </span><span class="nl">"OTEL_TRACES_SAMPLER"</span><span class="p">:</span><span class="w"> </span><span class="s2">"always_on"</span><span class="w"> </span></code></pre> </div> <p><strong>3 - Run the system locally.</strong><br> <em>3.1 - Logs</em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fl0pvotv9flt47qmlxx47.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fl0pvotv9flt47qmlxx47.png" alt="Structured logs" width="800" height="391"></a></p> <p><em>3.2 - Traces</em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fbisbgtkq1prx0p4bnqcm.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fbisbgtkq1prx0p4bnqcm.png" alt="Traces screen" width="800" height="376"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7mf25bnoh3fpmzpvp2yl.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7mf25bnoh3fpmzpvp2yl.png" alt="A particular trace" width="800" height="181"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Froqtdutwq35em97bn03e.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Froqtdutwq35em97bn03e.png" alt="A traces with mssql" width="800" height="126"></a></p> <p><em>3.2 - Metrics</em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fu7x3vueks9mpxi38gt76.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fu7x3vueks9mpxi38gt76.png" alt="Metric sreen" width="800" height="374"></a></p> <p><strong>Conclusion</strong></p> <p>This approach is lightweight, easy to set up, and highly effective for debugging complex interactions across APIs, SPAs, databases, ...</p> <p>Whether you’ve already tested it or you’re just thinking about it, local observability is worth exploring.</p> tooling monitoring devops dotnet ASP.NET CORE - How to using IAuthorizationRequirementData Victor Sat, 13 Dec 2025 04:58:19 +0000 https://forem.com/victormai/aspnet-core-how-to-using-iauthorizationrequirementdata-16dh https://forem.com/victormai/aspnet-core-how-to-using-iauthorizationrequirementdata-16dh <p><strong>Scenarios may be useful:</strong></p> <ul> <li>Using an external service to provide policy evaluation.</li> <li>Using a large range of policies, so it doesn't make sense to add each individual authorization policy with an AuthorizationOptions.AddPolicy call.</li> <li>Creating policies at runtime based on information in an external data source (like a database) or determining authorization requirements dynamically through another mechanism.</li> </ul> <p><strong>Applied:</strong> from ASP.NET Core 8</p> <p><strong>Step 1: Implement a custom Authorize Attribute</strong><br> In my case, I implement a <em>UserFeatureAuthorizeAttirbute</em><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code><span class="err"></span><span class="k">using</span> <span class="nn">Microsoft.AspNetCore.Authorization</span><span class="p">;</span> <span class="k">using</span> <span class="nn">System</span><span class="p">;</span> <span class="k">using</span> <span class="nn">System.Collections.Generic</span><span class="p">;</span> <span class="k">namespace</span> <span class="nn">PracticalAPI.AuthorizationRequirementData</span> <span class="p">{</span> <span class="k">public</span> <span class="k">enum</span> <span class="n">FeatureOperator</span> <span class="p">{</span> <span class="n">And</span> <span class="p">=</span> <span class="m">1</span><span class="p">,</span> <span class="n">Or</span> <span class="p">=</span> <span class="m">2</span> <span class="p">}</span> <span class="k">public</span> <span class="k">class</span> <span class="nc">UserFeatureAuthorizeAttribute</span> <span class="p">:</span> <span class="n">AuthorizeAttribute</span> <span class="p">,</span> <span class="n">IAuthorizationRequirement</span> <span class="p">,</span> <span class="n">IAuthorizationRequirementData</span> <span class="p">{</span> <span class="k">internal</span> <span class="k">const</span> <span class="kt">string</span> <span class="n">PolicyPrefix</span> <span class="p">=</span> <span class="s">"UserFeature_"</span><span class="p">;</span> <span class="k">public</span> <span class="n">FeatureOperator</span> <span class="n">Operator</span> <span class="p">{</span> <span class="k">get</span><span class="p">;</span> <span class="k">set</span><span class="p">;</span> <span class="p">}</span> <span class="k">public</span> <span class="kt">string</span><span class="p">[]</span> <span class="n">Features</span> <span class="p">{</span> <span class="k">get</span><span class="p">;</span> <span class="k">set</span><span class="p">;</span> <span class="p">}</span> <span class="k">public</span> <span class="nf">UserFeatureAuthorizeAttribute</span><span class="p">(</span><span class="n">FeatureOperator</span> <span class="n">featureOperator</span><span class="p">,</span> <span class="k">params</span> <span class="kt">string</span><span class="p">[]</span> <span class="n">features</span><span class="p">)</span> <span class="p">{</span> <span class="n">Operator</span> <span class="p">=</span> <span class="n">featureOperator</span><span class="p">;</span> <span class="n">Features</span> <span class="p">=</span> <span class="n">features</span><span class="p">;</span> <span class="p">}</span> <span class="k">public</span> <span class="nf">UserFeatureAuthorizeAttribute</span><span class="p">(</span><span class="kt">string</span> <span class="n">feature</span><span class="p">)</span> <span class="p">{</span> <span class="n">Operator</span> <span class="p">=</span> <span class="n">FeatureOperator</span><span class="p">.</span><span class="n">And</span><span class="p">;</span> <span class="n">Features</span> <span class="p">=</span> <span class="k">new</span> <span class="kt">string</span><span class="p">[]</span> <span class="p">{</span> <span class="n">feature</span> <span class="p">};</span> <span class="p">}</span> <span class="k">public</span> <span class="n">IEnumerable</span><span class="p">&lt;</span><span class="n">IAuthorizationRequirement</span><span class="p">&gt;</span> <span class="nf">GetRequirements</span><span class="p">()</span> <span class="p">{</span> <span class="k">yield</span> <span class="k">return</span> <span class="k">this</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Step 2: Implement the <em>AuthorizationHandler</em></strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code><span class="k">using</span> <span class="nn">Microsoft.AspNetCore.Authorization</span><span class="p">;</span> <span class="k">using</span> <span class="nn">Microsoft.Extensions.Logging</span><span class="p">;</span> <span class="k">using</span> <span class="nn">System.Globalization</span><span class="p">;</span> <span class="k">using</span> <span class="nn">System.Threading.Tasks</span><span class="p">;</span> <span class="k">using</span> <span class="nn">System</span><span class="p">;</span> <span class="k">namespace</span> <span class="nn">PracticalAPI.AuthorizationRequirementData</span> <span class="p">{</span> <span class="k">public</span> <span class="k">class</span> <span class="nc">UserFeatureAuthorizationHandler</span> <span class="p">:</span> <span class="n">AuthorizationHandler</span><span class="p">&lt;</span><span class="n">UserFeatureAuthorizeAttribute</span><span class="p">&gt;</span> <span class="p">{</span> <span class="k">private</span> <span class="k">readonly</span> <span class="n">ILogger</span><span class="p">&lt;</span><span class="n">UserFeatureAuthorizationHandler</span><span class="p">&gt;</span> <span class="n">_logger</span><span class="p">;</span> <span class="k">private</span> <span class="k">static</span> <span class="kt">string</span> <span class="n">featureType</span> <span class="p">=</span> <span class="s">"feature"</span><span class="p">;</span> <span class="k">public</span> <span class="nf">UserFeatureAuthorizationHandler</span><span class="p">(</span><span class="n">ILogger</span><span class="p">&lt;</span><span class="n">UserFeatureAuthorizationHandler</span><span class="p">&gt;</span> <span class="n">logger</span><span class="p">)</span> <span class="p">{</span> <span class="n">_logger</span> <span class="p">=</span> <span class="n">logger</span><span class="p">;</span> <span class="p">}</span> <span class="k">protected</span> <span class="k">override</span> <span class="n">Task</span> <span class="nf">HandleRequirementAsync</span><span class="p">(</span><span class="n">AuthorizationHandlerContext</span> <span class="n">context</span><span class="p">,</span> <span class="n">UserFeatureAuthorizeAttribute</span> <span class="n">requirement</span><span class="p">)</span> <span class="p">{</span> <span class="k">if</span> <span class="p">(</span><span class="n">requirement</span><span class="p">.</span><span class="n">Operator</span> <span class="p">==</span> <span class="n">FeatureOperator</span><span class="p">.</span><span class="n">And</span><span class="p">)</span> <span class="p">{</span> <span class="k">foreach</span> <span class="p">(</span><span class="kt">var</span> <span class="n">feature</span> <span class="k">in</span> <span class="n">requirement</span><span class="p">.</span><span class="n">Features</span><span class="p">)</span> <span class="p">{</span> <span class="n">_logger</span><span class="p">.</span><span class="nf">LogWarning</span><span class="p">(</span><span class="s">"Evaluating authorization requirement for feature: {Feature}"</span><span class="p">,</span> <span class="n">feature</span><span class="p">);</span> <span class="k">if</span> <span class="p">(!</span><span class="n">context</span><span class="p">.</span><span class="n">User</span><span class="p">.</span><span class="nf">HasClaim</span><span class="p">(</span><span class="n">featureType</span><span class="p">,</span> <span class="n">feature</span><span class="p">))</span> <span class="p">{</span> <span class="n">context</span><span class="p">.</span><span class="nf">Fail</span><span class="p">();</span> <span class="k">return</span> <span class="n">Task</span><span class="p">.</span><span class="n">CompletedTask</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="n">context</span><span class="p">.</span><span class="nf">Succeed</span><span class="p">(</span><span class="n">requirement</span><span class="p">);</span> <span class="k">return</span> <span class="n">Task</span><span class="p">.</span><span class="n">CompletedTask</span><span class="p">;</span> <span class="p">}</span> <span class="k">foreach</span> <span class="p">(</span><span class="kt">var</span> <span class="n">feature</span> <span class="k">in</span> <span class="n">requirement</span><span class="p">.</span><span class="n">Features</span><span class="p">)</span> <span class="p">{</span> <span class="n">_logger</span><span class="p">.</span><span class="nf">LogWarning</span><span class="p">(</span><span class="s">"Evaluating authorization requirement for feature: {Feature}"</span><span class="p">,</span> <span class="n">feature</span><span class="p">);</span> <span class="k">if</span> <span class="p">(</span><span class="n">context</span><span class="p">.</span><span class="n">User</span><span class="p">.</span><span class="nf">HasClaim</span><span class="p">(</span><span class="n">featureType</span><span class="p">,</span> <span class="n">feature</span><span class="p">))</span> <span class="p">{</span> <span class="n">context</span><span class="p">.</span><span class="nf">Succeed</span><span class="p">(</span><span class="n">requirement</span><span class="p">);</span> <span class="k">return</span> <span class="n">Task</span><span class="p">.</span><span class="n">CompletedTask</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="n">context</span><span class="p">.</span><span class="nf">Fail</span><span class="p">();</span> <span class="k">return</span> <span class="n">Task</span><span class="p">.</span><span class="n">CompletedTask</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>Step 3: Register the <em>UserFeatureAuthorizationHandler</em></strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code><span class="k">using</span> <span class="nn">AuthRequirementsData.Authorization</span><span class="p">;</span> <span class="k">using</span> <span class="nn">Microsoft.AspNetCore.Authorization</span><span class="p">;</span> <span class="kt">var</span> <span class="n">builder</span> <span class="p">=</span> <span class="n">WebApplication</span><span class="p">.</span><span class="nf">CreateBuilder</span><span class="p">();</span> <span class="p">....</span> <span class="c1">// Use Custom Authorization</span> <span class="c1">// builder.Services.AddSingleton&lt;IAuthorizationHandler, UserFeatureAuthorizationHandler&gt;()</span> <span class="kt">var</span> <span class="n">app</span> <span class="p">=</span> <span class="n">builder</span><span class="p">.</span><span class="nf">Build</span><span class="p">();</span> <span class="n">app</span><span class="p">.</span><span class="nf">MapControllers</span><span class="p">();</span> <span class="n">app</span><span class="p">.</span><span class="nf">Run</span><span class="p">();</span> </code></pre> </div> <p><strong>Step 4: Use the custom authorization attribute in controller</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code><span class="p">[</span><span class="nf">UserFeatureAuthorize</span><span class="p">(</span><span class="s">"Feature1"</span><span class="p">)]</span> <span class="k">public</span> <span class="k">async</span> <span class="n">Task</span><span class="p">&lt;</span><span class="n">ActionResult</span><span class="p">&lt;</span><span class="kt">bool</span><span class="p">&gt;&gt;</span> <span class="nf">MyAction</span><span class="p">([</span><span class="n">FromBody</span><span class="p">]</span> <span class="n">RequestModel</span> <span class="n">model</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Logic code go here</span> <span class="p">}</span> </code></pre> </div> <p>Yup, this is one of many options that you can use to implement a good authorization for your application. You have to figure out which option is fit your scenario.</p> <p>Happy coding!</p> security csharp dotnet tutorial ASP.NET Core - Fundamentals - Error Handling Victor Sat, 13 Dec 2025 04:41:14 +0000 https://forem.com/victormai/aspnet-core-fundamentals-error-handling-1fp7 https://forem.com/victormai/aspnet-core-fundamentals-error-handling-1fp7 <p>There are some ways to handle exceptions while we working with ASP.NET Core</p> <p><strong>1. Use try-catch block</strong></p> <p><em>Best practice when using "throw"</em></p> <ul> <li><p>Throw ex: loose stack trace on downstream layer<br> For example, an exception has occurred in the Data layer, Business layer catch this exception and use 'Throw Ex', at API layer will lose stack trace</p></li> <li><p>Throw: keep stack trace on downstream layer<br> For example, an exception has occurred in the Data layer, Business layer catch this exception and use 'Throw', at API layer will get a stack trace in detail</p></li> <li><p>Throw new Exception/ or Custom Exception: it will make downstream layer losing stack trace in detail<br> Only use at a lower level, the downstream level should use "Throw", we will keep stack trace on the downstream level</p></li> </ul> <p><strong>2. Use custom middleware to centralize exception handling</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code> <span class="c1">/// &lt;summary&gt;</span> <span class="c1">/// Step 1: Create a middleware class</span> <span class="c1">/// &lt;/summary&gt;</span> <span class="k">public</span> <span class="k">class</span> <span class="nc">CustomExceptionHandlerMiddleware</span> <span class="p">{</span> <span class="k">private</span> <span class="k">readonly</span> <span class="n">RequestDelegate</span> <span class="n">_next</span><span class="p">;</span> <span class="n">ILogger</span><span class="p">&lt;</span><span class="n">CustomExceptionHandlerMiddleware</span><span class="p">&gt;</span> <span class="n">_logger</span><span class="p">;</span> <span class="k">public</span> <span class="nf">CustomExceptionHandlerMiddleware</span><span class="p">(</span><span class="n">RequestDelegate</span> <span class="n">next</span> <span class="p">,</span> <span class="n">ILogger</span><span class="p">&lt;</span><span class="n">CustomExceptionHandlerMiddleware</span><span class="p">&gt;</span> <span class="n">logger</span><span class="p">)</span> <span class="p">{</span> <span class="n">_next</span> <span class="p">=</span> <span class="n">next</span><span class="p">;</span> <span class="n">_logger</span> <span class="p">=</span> <span class="n">logger</span><span class="p">;</span> <span class="p">}</span> <span class="k">public</span> <span class="k">async</span> <span class="n">Task</span> <span class="nf">InvokeAsync</span><span class="p">(</span><span class="n">HttpContext</span> <span class="n">context</span><span class="p">)</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="k">await</span> <span class="nf">_next</span><span class="p">(</span><span class="n">context</span><span class="p">);</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">(</span><span class="n">Exception</span> <span class="n">ex</span><span class="p">)</span> <span class="p">{</span> <span class="n">_logger</span><span class="p">.</span><span class="nf">LogError</span><span class="p">(</span><span class="n">ex</span><span class="p">,</span> <span class="s">"Error while processing your request"</span><span class="p">);</span> <span class="k">await</span> <span class="nf">HandleExceptionAsync</span><span class="p">(</span><span class="n">context</span><span class="p">,</span> <span class="n">ex</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="k">private</span> <span class="n">Task</span> <span class="nf">HandleExceptionAsync</span><span class="p">(</span><span class="n">HttpContext</span> <span class="n">context</span><span class="p">,</span> <span class="n">Exception</span> <span class="n">exception</span><span class="p">)</span> <span class="p">{</span> <span class="n">context</span><span class="p">.</span><span class="n">Response</span><span class="p">.</span><span class="n">ContentType</span> <span class="p">=</span> <span class="s">"application/json"</span><span class="p">;</span> <span class="n">context</span><span class="p">.</span><span class="n">Response</span><span class="p">.</span><span class="n">StatusCode</span> <span class="p">=</span> <span class="p">(</span><span class="kt">int</span><span class="p">)</span><span class="n">HttpStatusCode</span><span class="p">.</span><span class="n">InternalServerError</span><span class="p">;</span> <span class="k">return</span> <span class="n">context</span><span class="p">.</span><span class="n">Response</span><span class="p">.</span><span class="nf">WriteAsync</span><span class="p">(</span><span class="n">exception</span><span class="p">.</span><span class="n">Message</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">/// &lt;summary&gt;</span> <span class="c1">/// Step 2: Create a extension method to use our middleware</span> <span class="c1">/// &lt;/summary&gt;</span> <span class="k">public</span> <span class="k">static</span> <span class="k">class</span> <span class="nc">CustomExceptionHandlerMiddlewareExtensions</span> <span class="p">{</span> <span class="k">public</span> <span class="k">static</span> <span class="n">IApplicationBuilder</span> <span class="nf">UseCustomExceptionHandlers</span><span class="p">(</span><span class="k">this</span> <span class="n">IApplicationBuilder</span> <span class="n">app</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="n">app</span><span class="p">.</span><span class="n">UseMiddleware</span><span class="p">&lt;</span><span class="n">CustomExceptionHandlerMiddleware</span><span class="p">&gt;();</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><strong>3. Centralize exception handling with IExceptionFilter</strong></p> <p><em>Implement an ExceptionFilter class</em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ftx00bigl3qv9444ykz91.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Ftx00bigl3qv9444ykz91.png" alt="Implement ExceptionFilter class" width="587" height="349"></a></p> <p><em>Add to the configuration method (Sample for ASP.NET Core 3.0)</em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fsp6ke9xfu48qpo640swi.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fsp6ke9xfu48qpo640swi.png" alt="Configure Custom Exception filter" width="556" height="204"></a></p> <p><em>Throw an exception when needed.</em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flo86oba2rxdvo3vfkdvs.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flo86oba2rxdvo3vfkdvs.png" alt="Exception throwing" width="619" height="166"></a></p> <p><strong>4. [From ASP.NET Core 8] - Use IExceptionHandler</strong></p> <p>This interface has <em>TryHandleAsync</em> method.<br> If Exception can handle =&gt; return true;<br> If Not =&gt; return false</p> <p><em>Implement of IExceptionHandler</em><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code><span class="k">public</span> <span class="k">class</span> <span class="nc">GlobalExceptionHandler</span> <span class="p">:</span> <span class="n">IExceptionHandler</span> <span class="p">{</span> <span class="k">private</span> <span class="k">readonly</span> <span class="n">ILogger</span><span class="p">&lt;</span><span class="n">GlobalExceptionHandler</span><span class="p">&gt;</span> <span class="n">logger</span><span class="p">;</span> <span class="k">public</span> <span class="nf">GlobalExceptionHandler</span><span class="p">(</span><span class="n">ILogger</span><span class="p">&lt;</span><span class="n">GlobalExceptionHandler</span><span class="p">&gt;</span> <span class="n">logger</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="n">logger</span> <span class="p">=</span> <span class="n">logger</span><span class="p">;</span> <span class="p">}</span> <span class="k">public</span> <span class="k">async</span> <span class="n">ValueTask</span><span class="p">&lt;</span><span class="kt">bool</span><span class="p">&gt;</span> <span class="nf">TryHandleAsync</span><span class="p">(</span> <span class="n">HttpContext</span> <span class="n">httpContext</span><span class="p">,</span> <span class="n">Exception</span> <span class="n">exception</span><span class="p">,</span> <span class="n">CancellationToken</span> <span class="n">cancellationToken</span><span class="p">)</span> <span class="p">{</span> <span class="k">this</span><span class="p">.</span><span class="n">logger</span><span class="p">.</span><span class="nf">LogError</span><span class="p">(</span><span class="n">exception</span><span class="p">,</span> <span class="s">"Exception occurred: {Message}"</span><span class="p">,</span> <span class="n">exception</span><span class="p">.</span><span class="n">Message</span><span class="p">);</span> <span class="kt">var</span> <span class="n">problemDetails</span> <span class="p">=</span> <span class="k">new</span> <span class="n">ProblemDetails</span> <span class="p">{</span> <span class="n">Status</span> <span class="p">=</span> <span class="n">StatusCodes</span><span class="p">.</span><span class="n">Status500InternalServerError</span><span class="p">,</span> <span class="n">Title</span> <span class="p">=</span> <span class="s">"Server error -- apply IExceptionHandler for Global"</span> <span class="p">};</span> <span class="n">httpContext</span><span class="p">.</span><span class="n">Response</span><span class="p">.</span><span class="n">StatusCode</span> <span class="p">=</span> <span class="n">problemDetails</span><span class="p">.</span><span class="n">Status</span><span class="p">.</span><span class="n">Value</span><span class="p">;</span> <span class="k">await</span> <span class="n">httpContext</span><span class="p">.</span><span class="n">Response</span> <span class="p">.</span><span class="nf">WriteAsJsonAsync</span><span class="p">(</span><span class="n">problemDetails</span><span class="p">,</span> <span class="n">cancellationToken</span><span class="p">);</span> <span class="k">return</span> <span class="k">true</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p><em>Use the handler in Program file</em><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight csharp"><code><span class="c1">// User Exception Handler</span> <span class="n">builder</span><span class="p">.</span><span class="n">Services</span><span class="p">.</span><span class="n">AddExceptionHandler</span><span class="p">&lt;</span><span class="n">GlobalExceptionHandler</span><span class="p">&gt;();</span> <span class="n">builder</span><span class="p">.</span><span class="n">Services</span><span class="p">.</span><span class="nf">AddProblemDetails</span><span class="p">();</span> <span class="kt">var</span> <span class="n">app</span> <span class="p">=</span> <span class="n">builder</span><span class="p">.</span><span class="nf">Build</span><span class="p">();</span> <span class="n">app</span><span class="p">.</span><span class="nf">UseExceptionHandler</span><span class="p">();</span> </code></pre> </div> csharp backend dotnet tutorial [Part 2] - Practice Azure services - Enhance security by using Key Vault and App Configuration Victor Fri, 12 Dec 2025 15:29:26 +0000 https://forem.com/victormai/part-2-practice-azure-services-enhance-security-by-using-key-vault-and-app-configuration-30ml https://forem.com/victormai/part-2-practice-azure-services-enhance-security-by-using-key-vault-and-app-configuration-30ml <p><strong>Scenario</strong></p> <p>In the previous post, we use a shared key to establish a connection to an Azure storage account (including Table storage and Blob storage) and SQL Database. This method can lead security vulnerabilities. To enhance the security of our application, we can leverage App Configuration along with Azure Key Vault. This post will illustrate how to integrate these services to our current application.</p> <p><strong>Let's started.</strong></p> <p><strong>Overview architecture</strong></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fy96f5qi4sj04kdjraxg3.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fy96f5qi4sj04kdjraxg3.png" alt="Overview architecture" width="409" height="215"></a></p> <p>The app now functions similarly to what was described in the earlier post. The difference is that we now save the connection string (shared key) for the storage account and SQL Database in Key Vault, and the configurations are managed in App Configuration instead of relying on the environment variables of Azure App Service. When the API starts up, it will load the configuration from an additional configuration provider, which is App Configuration, with the values sourced from Key Vault.</p> <p><strong>Set up Azure Service</strong><br> If you're unsure how to set up Azure App Configuration and Azure Key Vault, you can refer to these Microsoft articles:</p> <p><a href="https://learn.microsoft.com/en-us/azure/azure-app-configuration/quickstart-azure-app-configuration-create?tabs=azure-portal#create-an-app-configuration-store" rel="noopener noreferrer">Quickstart: Create an Azure App Configuration store | Microsoft Learn</a></p> <p><a href="https://learn.microsoft.com/en-us/azure/azure-app-configuration/use-key-vault-references-dotnet-core" rel="noopener noreferrer">Tutorial for using Azure App Configuration Key Vault references in an ASP.NET Core app | Microsoft Learn</a></p> <p>You need to have all below information prior to proceeding to the next step.</p> <p><strong>Key Vault and new secrets</strong></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzwygji2uygopkoj5zjab.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fzwygji2uygopkoj5zjab.png" alt="Key Vault and new secrets" width="474" height="199"></a></p> <p><strong>App configuration</strong></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7p1i3x3hjpb6rhu7qrz0.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7p1i3x3hjpb6rhu7qrz0.png" alt="App Configuration" width="481" height="217"></a></p> <p><strong>Activate Managed Identity for the API</strong></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7hxkkhyumebumang1t9i.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F7hxkkhyumebumang1t9i.png" alt="Activate system managed identity" width="449" height="243"></a></p> <p>Remember <em>the Object (principal ID)</em> to use for the next step.</p> <p><strong>Grant access to your API/ local dev to Key Vault</strong></p> <p>Azure role-based access control: "Key Vault Secrets User"/"Key Vault Administrator"</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8k6tqd5dmeg59exftz28.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8k6tqd5dmeg59exftz28.png" alt="Grant permission" width="481" height="245"></a></p> <p><strong>Modify code</strong></p> <p>You can use code sample from previous post.</p> <p><em>Add one more extension class to add Azure App Configuration to provided configuration builder.</em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fxv0dwqob5f199c6txkyo.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fxv0dwqob5f199c6txkyo.png" alt="Code snippet 1 " width="431" height="201"></a></p> <p>Modify "Program.cs" file</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F34jmlgxp7uwyb3emle0d.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F34jmlgxp7uwyb3emle0d.png" alt="Code snippet 2" width="436" height="125"></a></p> <p><strong>Run locally</strong></p> <p>Change value of config key: "appConfig:ConnectionString"<br> Run API from Visual studio. If It runs successfully, then deploy to Azure App Service </p> <p><strong>Deploy new changes to Azure App Service</strong></p> <p><strong>Check API</strong></p> <p><em>Environment variables of App service</em></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fi2xmvx6pd5g5te0gn9bz.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fi2xmvx6pd5g5te0gn9bz.png" alt="App service environment variable" width="438" height="149"></a></p> <p>API swagger - OK: means the APP can interact with App Configuration and Key Vault</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fmp8tf1v1mbzw0wjlhm03.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fmp8tf1v1mbzw0wjlhm03.png" alt="API endpoints" width="421" height="204"></a></p> <p>Over to you: When to use the App Configuration and Key Vault and what are pros and cons?</p> security azure architecture tutorial [Part 1] - Practice Azure services - Build a small storage management app - Upload document feature Victor Fri, 12 Dec 2025 15:20:20 +0000 https://forem.com/victormai/part-1-practice-azure-services-build-a-small-storage-management-app-upload-document-feature-52p6 https://forem.com/victormai/part-1-practice-azure-services-build-a-small-storage-management-app-upload-document-feature-52p6 <p>In this initial part, we concentrate on creating a document upload feature utilizing various Azure services. For the first post, we will employ these services at a fundamental level.</p> <p><strong>Scenario</strong><br> The document management feature is required to save various documents (such as import documents, export documents, etc.).</p> <p><strong>Prerequisites</strong></p> <ul> <li><p>An Azure subscription.</p></li> <li><p>Visual Studio or Visual Studio Code.</p></li> <li><p>A basic understanding of the Azure services referenced in this article and the ability to create them (using the Azure portal or Bicep, for example) is necessary.</p></li> </ul> <p><strong>Tech stacks</strong></p> <ul> <li><p>ASP.NET CORE 8</p></li> <li><p>Vue.js 3, PrimeVue</p></li> </ul> <p><strong>How we use Azure service for this functionality</strong></p> <ul> <li><p>Azure blob storage: for uploading document files.</p></li> <li><p>Azure table storage: to store the document types</p></li> <li><p>Azure SQL Database: to save the document information such as document type, document URL...</p></li> <li><p>Azure App Service: to host the storage API</p></li> <li><p>Static Web App: to serve the Vue single-page application (SPA).</p></li> </ul> <p>To authenticate the SQL Database and Storage account, we will use connection string (shared key) for these services.</p> <p><strong>Overview architecture</strong></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flrmyytieou01xwgea5hu.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Flrmyytieou01xwgea5hu.png" alt="Overview architecture" width="677" height="372"></a></p> <p>1 - User access document management page, list document is loaded from SQL database and user would like to upload new document<br> 2, 3 - SPA obtains SAS (shared access signature) token via API</p> <p>4 - SPA uses SAS to upload appropriated document to blob storage </p> <p>5,6 - SPA save document information to database via API.</p> <p><a href="https://github.com/GiangHM/shared-storage-samples" rel="noopener noreferrer"><strong>Code Example</strong></a></p> <p>You can use the upload doc sample or create your own API and front-end using your preferred tech stack.<br> This sample includes infra code(not complete) and app code (Vue app and API)</p> <p><strong>Set up Azure services</strong></p> <p>If you're knowledgeable about Bicep code or interested in learning it, you can use Bicep code found in "infra" folder to deploy Azure services. Of course, there are few aspects you will need to modify or include. :)</p> <p>The required azure services (sample is below, services name is your choice)</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fpffqvivrc9zqg3imqjuf.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fpffqvivrc9zqg3imqjuf.png" alt="Azure services" width="800" height="267"></a></p> <p><strong>Run locally</strong></p> <p><strong>Storage API</strong></p> <ol> <li>Open project in folder: "upload-doc\app\api"</li> <li>Add configuration for table storage, blob storage and SQL database</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8eks4e51shiba8tk6a49.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8eks4e51shiba8tk6a49.png" alt="appsetting.json sample" width="279" height="275"></a></p> <ol> <li>Run code from your IDE.</li> </ol> <p><strong>Vue App</strong></p> <ol> <li>Open Vue project: ".\upload-doc\app\webapp"</li> <li>Change API base URL in the "HttpService.ts" file</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fh282kqf9pozio3duopmo.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fh282kqf9pozio3duopmo.png" alt="Url Config" width="800" height="379"></a></p> <ol> <li>Run: npm install</li> <li>Run: npm run dev</li> </ol> <p><strong>Deploy to Azure services</strong></p> <ol> <li>Deploy API to Azure App Service created in previous step.</li> <li>Check the API</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F0cnm8jx3chsaiw5v5dy4.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F0cnm8jx3chsaiw5v5dy4.png" alt="API endpoints" width="486" height="242"></a></p> <ol> <li>Deploy the Vue app to Static Web App created in previous step.</li> <li>Check the application</li> </ol> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F13dtjpdfz2jar7c866z4.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F13dtjpdfz2jar7c866z4.png" alt="Mini upload screen" width="800" height="447"></a></p> <p>Ultimately, you are aware of how to integrate Azure Storage, Azure App Service, Azure SQL Database, and Static Web App for your own objectives.</p> <p>Over to you<br> When should we use these services?</p> javascript azure dotnet tutorial