Download Azure API Management and Storage Services: A Comprehensive Guide and more Exams Software Development in PDF only on Docsity! AZ-204 100% questions and answers azure function consumption - >>>default, scales automatically azure function premium - >>>pre-warmed instances azure function dedicated - >>>always on option function chaining - >>>execute in specific order fan out/in - >>>multiple functions in parallel azure function async http api - >>>polls if function has completed azure function monitor - >>>reoccurring function activated by a regular timer azure function human interaction - >>>approval process azure function aggregator - >>>aggreates data from multiple sources user delegation shared access signature - >>>- Secured with azure AD credentials - blob storage only - most secure service shared access signature - >>>- secured with storage account key - delegates access to 1 azure storage service (blob, queue, table) account shared access signature - >>>- secured with storage account key - delegates access to 1+ storage service SAS sp=r - >>>- access rights - 'r' for read SAS st=2020-1-20T11 - >>>date and time access starts SAS se=2020-1-20T11 - >>>data and time access ends SAS sv=2019-02-02 - >>>version of storage API SAS sr=b - >>>- kind of storage being accessed - 'b' for blob SAS sig=asdfjlsdkfjl - >>>cryptographic signature .Net create SAS Token for Blob container - >>>builder = new BlobSasBuilder() { resource = "c" } //set permissions builder.SetPermissions(BlobContainerSasPermissions.Read) Event Grid Event Handler - >>>- where an event is sent and processed further Event Hub vs Event Grid - >>>- event grid doesn't guarantee order - event hub uses partitions which are ordered sequences - event hub can keep data up to seven days Event Hub EventData - >>>-Object for sending a message to Event Hub Event Hub Capture Format - >>>- captured in Apache Avro Event Hub Checkpointing - >>>the event processor marks the position of the last successful event Redis Volatile - >>>-Evict keys with an expire set Redis ConnectionMultiplexer() - >>>Used to connect to Redis DB Redis Premium Tier - >>>- caches are deployed on more powerful VMs compared to basic and standard Redis Content Cache - >>>- Cache for access to static web content Redis Session Store - >>>- pattern commonly used with shopping carts - uses a cache to associate information with a user instead of cookies Redis Job and Message Queuing - >>>- cache for task queuing Redis Distributed Transactions - >>>- execute a batch of commands as a single transaction Redis Basic Tier - >>>- single vm - no service level agreement Redis Standard Tier - >>>- two vms Redis Enterprise Tier - >>>- powered by redis enterprise software - redis modules Redis Enterprise Flash - >>>- extends to non-volatile memory Redis Powershell Create - >>>az redis create Redis .Net Create - >>>using ( var cache = ConnectionMultiplexer.Connect(connectionString)) { db = cache.GetDatabase(); result = await db.ExecureAsync("ping"); API Management Open API - >>>- used to import an API to discover all endpoints API Management Validate JWT - >>>- standard for representing claims between two parties API Management Check HTTP Policy - >>>- enforces a specific HTTP Header in a request API Management Authenticate with Managed Identity Policy - >>>- Use to authenticate with a backend service that uses a API Management managed idenity API Management Rate-Limit Policy - >>>- Limit Requests without specifying a key Api Management Versions - >>>- a new version can expose new API operations without chaning the URL API Management quota-by-key - >>>- restricts number of calls by subscriber id API Management Rate-Limit-By-Key - >>>- throttles by id of subscriber API Management 'access denied due to missing subscription key' error fix - >>>- include Ocp-Apim- Subscription Key in http header - add api to product API Managment Quota Renewal Period - >>>- cannot be less than 1 hour API Manangement API Gateway - >>>- Recieves API calls and routes them to backends - can enforce usage quotas API Managment Managed Gateway - >>>- default - receives all traffic API Managment Self-hosted Gateway - >>>- Optional - used for cloud and on-premises hybrid infrastructure application insights impact - >>>- load time effects sales application insights retention - >>>- return to website application insights set availability alert - >>>- app insight resource - availability pane - add test - open rules - set action group Event hub ensure data is delivered ordered - >>>- use the same partition key Service Bus correlation filter - >>>- match conditions against one or more properties Service Bus Autoforwarding - >>>- chains a queue to another queue within the same namespace ServiceBusMessage - >>>Object for sending a service bus message with .NET Service Bus Queue - >>>- FIFO message delivery to one or more consumers Service Bus Queue Receive and Delete - >>>- receive mode where the queue receives a message request from a consumer, marks it as consumed, and then returns it to the consumer Service Bus Queue Peek Lock - >>>- receive mode where the queue locks a message, then after processing it, marks the message as consumed - best if you expect processing failures Service Bus Topics and Subscriptions - >>>- one to many message communication service bus data limit - >>>- 80GB Service Bus - >>>- can detect duplicate messages Service Bus Premium - >>>- fixed pricing - message size up to 100MB Service Bus Standard Tier - >>>- message size up to 256KB Service Bus .NET send message - >>>client = new ServiceBusClient(ConnectionString) sender = client.CreateSender(queue) messageBatch = sender.CreateMessageBatch() messageBatch.TryAddMessage(new ServiceBusMessage(message) sender.SendMessages(messageBatch) Service Bus .Net Process Message - >>>client.CreateProcessor(queue, new ServiceBusProcessorOptions) Task MessageHandler(args) { body = args.Message.Body.ToString() args.CompleteMessage(args.Message) } processor.ProcessMessage += MessageHandler Service Bus Authorization - >>>- OAuth Access token passed in HTTP Authorization header as a bearer token Service Bus Delegated Permission - >>>- user is signed in Service Bus App Permission - >>>- using background service Azure Storage Queue - >>>- Service for storing large amounts of messages (millions) - can poll queue - 64KB max message size - has server side logging of transactions Microsoft Graph signed-in user permission - >>>User.Read Microsoft Graph Signed-in user photo - >>>graph.microsoft.com/v1.0/me/photo/$value Microsoft Graph Read with .NET - >>>var user = await graphClient.Me.Request().GetAsync() Microsoft Graph Get list of entities with .NET - >>>var messages = await graphClient.Me.Messages.Request().Select(m => new { m.Subject, m.Sender}).Filter().OrderBy().GetAsync() Microsoft Graph Delete Entity with .Net - >>>messageId = "messageId" var message = await graphClient.Me.Messages[messageId].Request().DeleteAsync() cosmos consistent prefix consistency - >>>- data is never out of order cosmos eventual consistency - >>>- weakest cosmos partition key - >>>- should be what the data is filtered by - immutable cosmos change feed - >>>- order is guaranteed within each partition not across multiple partitions - enabled by default Microsoft Identity Platform Single Tenant app - >>>- only accessible in your tenant Identity Platform Application Object - >>>- Azure AD Template to create a service principal Identity Platform Service Principal - >>>- used to access resources secured by azure active directory tenant Service Principal application type - >>>- application Service Principal Managed Identity Type - >>>- provides an identity for apps so they can connect to resources that use Azure AD Authentication Application objects vs Service Principal - >>>- Application objects represent an application across all tenants - service principal is the local representative to a singular tenant Authorization OAuth 2.0 - >>>- method for third-party apps to access web hosted resources on behalf of a user OAuth 2.0 Delegated Permission type - >>>- Used when the app has a signed-in user OAuth 2.0 App-only access permission type - >>>- used by an app without a signed-in user Microsoft Authentication Library - >>>- library for acquiring tokens from the microsoft identithy platform in order to authenticate users/access APIs Azure CDN - >>>- delivers high bandwidth content through caching - optimizes non cached content delivery CDN Create .NET - >>>cdn = new CdnManagementClient(new Token Credentials(authResult.AccessToken)) { subscriptionId = subscriptionId } App service plan - >>>- defines the set of compute resources for one or more web apps App Service free and shared tier - >>>- resources cannot scale out App Service Dedicated tier - >>>- Basic, Standard, premium-premiumV3 - the higher the tier the more VM instances available to scale-out App Service Automated Deployment - >>>- process to push out new features and fixes in a fast repetitive pattern with minimal effect on end users App Service Isolated Plan Category - >>>- provides max scale-out capabilities App Service Hybrid Connections - >>>- used to control outbound network traffic App Service Webspace - >>>- where a certificate is stored when uploaded into an app. - The app service plan's resource group and region App Service import private certificate requirements - >>>- password protected PFX file - encrypted using Triple DES - private key at least 2048 bits long - contains all intermediate certificates in the certificate chain App Service General Settings - >>>- stack, platform, debugging, and incoming client certificate settings App Service Linux logging - >>>- Deployment logging Autoscale factors - >>>- schedule - CPU utilization - memory usage - incoming requests Autoscale time grain - >>>- most cases 1 minute