Contributed"> Master API Connections in Azure with Bicep - The New Stack
TNS
SUBSCRIBE
Join our community of software engineering leaders and aspirational developers. Always stay in-the-know by getting the most important news and exclusive content delivered fresh to your inbox to learn more about at-scale software development.
REQUIRED
 
It seems that you've previously unsubscribed from our newsletter in the past. Click the button below to open the re-subscribe form in a new tab. When you're done, simply close that tab and continue with this form to complete your subscription.
Welcome and thank you for joining The New Stack community!
Please answer a few simple questions to help us deliver the news and resources you are interested in.
REQUIRED
REQUIRED
REQUIRED
REQUIRED
REQUIRED
Great to meet you!
Tell us a bit about your job so we can cover the topics you find most relevant.
REQUIRED
REQUIRED
REQUIRED
REQUIRED
REQUIRED
REQUIRED
Welcome!

We’re so glad you’re here. You can expect all the best TNS content to arrive Monday through Friday to keep you on top of the news and at the top of your game.

What’s next?

Check your inbox for a confirmation email where you can adjust your preferences and even join additional groups.

Become a TNS follower on LinkedIn.

Check out the latest featured and trending stories while you wait for your first TNS newsletter.

PREV
of
NEXT
VOXPOP
404 - VOXPOP NOT FOUND
Give use a minute to figure out what's going on here ...
 
Open Source Cloud Native Ecosystem Containers Edge Computing Microservices Networking Serverless Storage
Is It Time for an Open LLM To Be Added to the LAMP Stack?
Aug 12th 2024 1:30am, by Richard MacManus
New OpenTofu Release Challenges Terraform's Dominance
Jul 30th 2024 11:46am, by Steven J. Vaughan-Nichols
Open Source or Closed? The AI Dilemma
Jul 29th 2024 10:00am, by Keith Pijanowski
Jumpstart AI Workflows With Kubernetes AI Toolchain Operator
Jul 26th 2024 10:30am, by Sachi Desai
How OpenTofu Happened — and What’s Next? 
Jul 25th 2024 6:00am, by Heather Joslyn
Kubernetes 1.31 Arrives with New Support for AI/ML, Networking
Aug 13th 2024 2:00pm, by Chris J. Preimesberger
Database as a Service: The Hidden Cost of Convenience
Aug 12th 2024 2:08pm, by Ann Schlemmer
VMware's Golden Path
Aug 8th 2024 10:36am, by Alex Williams
Are Custom Cloud Native Stacks Worth the Security Tradeoffs?
Aug 8th 2024 9:30am, by Michael Coté and Rita Manachi
CloudBees Welcomes AI-Powered Testing, ‘Prodigal Sons’ Home
Aug 7th 2024 1:00pm, by Darryl K. Taft
Runc-Related Leaky Vessels Threaten Container Security
Jul 23rd 2024 10:27am, by Manas Chowdhury
3 Ways To Improve Your Container Build Process
Jul 22nd 2024 10:00am, by Sylvain Kalache
Exploring MicroOS, OpenSUSE's Immutable Container OS
Jul 5th 2024 6:00am, by Jack Wallen
Unverified Container Images Threaten Software Supply Chain
Jul 3rd 2024 8:02am, by Kim Lewandowski and Adrian Mouat
Kubernetes Security Report: Evolving Landscape of DevSecOps
Jun 27th 2024 11:53am, by Alex Handy
With eLxr, Wind River Brings Debian Linux to the Edge
Aug 12th 2024 1:30pm, by Joab Jackson
How To Get Started Running Small Language Models at the Edge
Jul 24th 2024 6:00am, by Janakiram MSV
How to Apply Microservice Architecture to Embedded Systems
Jul 16th 2024 10:48am, by Bob Reselman
Why We Chose WebAssembly (Wasm) for Our Edge Runtime
May 28th 2024 6:50am, by Bogdan Kurnosov
Cloud Computing at the Edge: From Evolution to Disruption
May 16th 2024 10:00am, by Yoram Novick
A Developers Guide to NIM, Nvidia’s AI Application Platform
Aug 13th 2024 8:02am, by Janakiram MSV
Setting Microservices Up for Success: Real-World Advice
Aug 1st 2024 6:03am, by Charles Humble
How to Apply Microservice Architecture to Embedded Systems
Jul 16th 2024 10:48am, by Bob Reselman
The 5 Worst Anti-Patterns in API Management
Jun 26th 2024 10:00am, by Emile Vauge
Composable Enterprise: The Evolution of MACH and Jamstack
May 20th 2024 5:00am, by Jeff James
Linux: Mount Remote Directories With SSHFS
Aug 3rd 2024 6:00am, by Jack Wallen
Client-Side Monitoring Is a Must for Mobile Apps
Jul 19th 2024 11:26am, by Fredric Newberg
VMware's 'Private Cloud' Solution Emerges Under Broadcom
Jul 17th 2024 7:04am, by B. Cameron Gain
Using ngrok in Production: Not Just for Testing Anymore
Jul 10th 2024 8:10am, by Scott M. Fulton III
Install NordVPN on Linux for an Added Layer of Security
Jul 3rd 2024 7:00am, by Jack Wallen
Momento: Caching at Scale and More, Without All the Hassle
Jul 22nd 2024 11:23am, by Susan Hall
WebAssembly and Kubernetes Go Better Together: Matt Butcher
May 22nd 2024 2:00pm, by Raghavan "Rags" Srinivas
How to Conquer Cold Starts for Better Performance
Apr 25th 2024 9:17am, by Henry Hamid Safi
Meet DBOS: A Database Alternative to Kubernetes 
Mar 12th 2024 4:00am, by Joab Jackson
Pulumi Templates for GenAI Stacks: Pinecone, LangChain First
Feb 21st 2024 9:00am, by Joab Jackson
Momento: Caching at Scale and More, Without All the Hassle
Jul 22nd 2024 11:23am, by Susan Hall
Unfreeze Apache Iceberg to Thaw Your Data Lakehouse
Jul 22nd 2024 7:28am, by Dave Eyler
The Do’s and Don’ts of Implementing Search in Your App
Jul 19th 2024 5:54am, by Ben Greenberg
Linux: Synchronize Local and Remote Directories With Rsync
Jul 13th 2024 5:00am, by Jack Wallen
Showdown at the Lakehouse: Databricks Muscles Up With Tabular
Jul 11th 2024 1:23pm, by Joab Jackson
AI Large Language Models Frontend Development Software Development API Management Python JavaScript TypeScript WebAssembly Cloud Services Data Security
Bringing Back the Joy of Software Development
Aug 14th 2024 6:51am, by
A Developers Guide to NIM, Nvidia’s AI Application Platform
Aug 13th 2024 8:02am, by
Nvidia’s Hardware Roadmap and Its Impact on Developers
Aug 12th 2024 11:01am, by
JetBrains Improves AI Code Completion, OpenAI Boosts JSON
Aug 10th 2024 8:00am, by
Getting Started With Function Calling in LLMs
Aug 9th 2024 6:19am, by
Bringing Back the Joy of Software Development
Aug 14th 2024 6:51am, by
Better for AI Apps: Vector Libraries or Vector Databases?
Aug 14th 2024 5:08am, by
Is It Time for an Open LLM To Be Added to the LAMP Stack?
Aug 12th 2024 1:30am, by
How LLMs Guide Us to a Happy Path for Configuration and Coding
Aug 10th 2024 7:00am, by
Getting Started With Function Calling in LLMs
Aug 9th 2024 6:19am, by
Development Server Vite Gets Independent Team and Rust-ifies
Aug 13th 2024 11:05am, by
Meet Toddle: the Next Open Source Web App Builder
Aug 12th 2024 8:00am, by
JetBrains Improves AI Code Completion, OpenAI Boosts JSON
Aug 10th 2024 8:00am, by
Google Angular Lead Sees Convergence in JavaScript Frameworks
Aug 9th 2024 8:20am, by
Netlify Aims To Simplify the Frontend With Cloud Primitives
Aug 7th 2024 11:08am, by
Bringing Back the Joy of Software Development
Aug 14th 2024 6:51am, by
How To Use Inheritance in Python
Aug 13th 2024 5:00pm, by
Feature Flags Wouldn't Have Prevented the CrowdStrike Outage
Aug 13th 2024 4:05pm, by
Expo vs. Flutter: How to Choose the Right Mobile Framework
Aug 13th 2024 10:00am, by
What Is the Python join() Function and When Should You Use It?
Aug 12th 2024 5:00pm, by
Master API Connections in Azure with Bicep
Aug 14th 2024 10:00am, by
Reining in the API Wild West: 5 API Testing Best Practices
Aug 13th 2024 5:01am, by
GraphQL vs. OpenAPI: Pros and Cons for Data Governance
Aug 12th 2024 12:55pm, by
OpenAI's ChatGPT Now Formats Output to Developer Queries
Aug 7th 2024 12:00pm, by
Make Data Governance Automation Suck Less With a Supergraph
Aug 5th 2024 12:39pm, by
How To Use Inheritance in Python
Aug 13th 2024 5:00pm, by
What Is the Python join() Function and When Should You Use It?
Aug 12th 2024 5:00pm, by
What Is Python's sum() Function and How Do You Use It?
Aug 11th 2024 6:00am, by
What Is the Python Match Case Statement and Why Use It?
Aug 8th 2024 5:00pm, by
Excel Gets Local Python Boost With Anaconda Code
Jul 31st 2024 11:38am, by
Development Server Vite Gets Independent Team and Rust-ifies
Aug 13th 2024 11:05am, by
Google Angular Lead Sees Convergence in JavaScript Frameworks
Aug 9th 2024 8:20am, by
Netlify Aims To Simplify the Frontend With Cloud Primitives
Aug 7th 2024 11:08am, by
How To Build Scalable Real-Time Applications With JavaScript
Aug 6th 2024 6:50am, by
New Eleventy Supports ESM and NY Times Embraces React 18
Aug 3rd 2024 5:00am, by
TypeScript 5.5: Faster, Smarter and More Powerful
Jun 25th 2024 6:41am, by
UIX: A Full Stack Web Dev Framework Leveraging Deno
Jun 11th 2024 11:30am, by
TanStack Introduces New Meta-Framework Based on Its Router
Jun 5th 2024 11:38am, by
In a TypeScript World, Code Generation Is Key for API SDKs
May 8th 2024 4:00am, by
TypeScript Meets API Design in Microsoft's Game-Changing TypeSpec
May 7th 2024 7:30am, by
Golang for WebAssembly Can Now Work Like IT Should
Aug 9th 2024 9:00am, by
How To Run WebAssembly on Kubernetes
Jul 28th 2024 10:00am, by
Chicory: Write to WebAssembly, Overcome JVM Shortcomings 
Jul 19th 2024 12:33pm, by
What’s Next for Flutter After Layoffs Hit Google Team
Jul 17th 2024 9:01am, by
Demos: Deploying LLMs With WasmEdge 
Jul 16th 2024 8:28am, by
Google Cloud Adds GenAI, Core Enhancements Across Data Platform
Aug 1st 2024 8:30am, by
AWS Discontinues Git-Hosting Service CodeCommit
Jul 31st 2024 12:10pm, by
How to Deploy the Nextcloud Cloud Server on AlmaLinux
Jul 23rd 2024 11:43am, by
Observability Takes Flight With Cloud Canaries
Jul 23rd 2024 5:00am, by
What Does It Mean to Keep Clusters Lean?
Jul 18th 2024 10:00am, by
OpsMill Infrahub Automates Infrastructure as Code with GitOps
Aug 14th 2024 6:47am, by
So Long, Batch ETL: Streamkap Unveils Streaming ETL Tool
Aug 13th 2024 6:01am, by
Database as a Service: The Hidden Cost of Convenience
Aug 12th 2024 2:08pm, by
GraphQL vs. OpenAPI: Pros and Cons for Data Governance
Aug 12th 2024 12:55pm, by
OpenAI's ChatGPT Now Formats Output to Developer Queries
Aug 7th 2024 12:00pm, by
Can DARPA’s TRACTOR Pull C to Rust for Memory-Safe Overhaul?
Aug 14th 2024 9:03am, by
Feature Flags Wouldn't Have Prevented the CrowdStrike Outage
Aug 13th 2024 4:05pm, by
Developers: The First Line of Defense in Cybersecurity
Aug 12th 2024 10:00am, by
Scan Your Linux Server for Viruses With ClamAV
Aug 10th 2024 6:00am, by
Are Custom Cloud Native Stacks Worth the Security Tradeoffs?
Aug 8th 2024 9:30am, by and
Platform Engineering Operations CI/CD Tech Careers Tech Culture DevOps Kubernetes Observability Service Mesh
Are Shared Service Platforms Too Restrictive?
Aug 14th 2024 5:35am, by Lawrence E Hecht
5 Hacks Learned by Writing Thousands of Lines of IaC
Aug 13th 2024 7:25am, by Eran Bibi
Internal Developer Portals: 3 Real World Examples
Aug 12th 2024 4:00am, by Sooraj Shah
5 Lessons For Building a Platform as a Product
Aug 9th 2024 10:00am, by Colin Humphreys
VMware's Golden Path
Aug 8th 2024 10:36am, by Alex Williams
Why Can’t Automation Eliminate Configuration Errors?
Aug 14th 2024 8:18am, by Michelle Ensey
OpsMill Infrahub Automates Infrastructure as Code with GitOps
Aug 14th 2024 6:47am, by Joab Jackson
Feature Flags Wouldn't Have Prevented the CrowdStrike Outage
Aug 13th 2024 4:05pm, by Sergey Passichenko
Expo vs. Flutter: How to Choose the Right Mobile Framework
Aug 13th 2024 10:00am, by Simon Grimm
AlmaLinux Makes In-Place Upgrades Easier for CentOS Users
Aug 12th 2024 11:08am, by Steven J. Vaughan-Nichols
Annoyed by Poor Docs for Your Cloud Apps? Break the Cycle
Aug 14th 2024 7:08am, by Rak Siva
Reining in the API Wild West: 5 API Testing Best Practices
Aug 13th 2024 5:01am, by Lori Marshall
Getting Started With Function Calling in LLMs
Aug 9th 2024 6:19am, by Oladimeji Sowole
Tackling the Challenges of Logical Replication in PostgreSQL
Aug 7th 2024 2:00pm, by Susan Hall
CloudBees Welcomes AI-Powered Testing, ‘Prodigal Sons’ Home
Aug 7th 2024 1:00pm, by Darryl K. Taft
In the Age of AI, What Should We Teach Student Programmers?
Aug 7th 2024 4:00am, by David Cassel
Rapid Innovation In Vehicle Connectivity Is Creating New Developer Roles
Aug 6th 2024 10:00am, by Nick Power
What’s Psychological Safety, and Why Does Tech Need It Now?
Aug 4th 2024 7:00am, by Joe Fay
Get Certified in Platform Engineering, Starting Aug. 6
Jul 31st 2024 8:06am, by Todd R. Weiss
Top Developer Skills for AI and Cloud Jobs
Jul 29th 2024 10:22am, by Jennifer Riggins
Developers: The First Line of Defense in Cybersecurity
Aug 12th 2024 10:00am, by Shrav Mehta
An Algorithm-Produced 'Generative' Film Celebrates Brian Eno
Aug 10th 2024 5:00am, by David Cassel
Russ Cox Steps Down as Tech Lead of Go Programming Language
Aug 7th 2024 7:12am, by Steven J. Vaughan-Nichols
DevOps Success Isn't Always Numbers Going Up
Aug 6th 2024 8:00am, by Andy Corrigan
Why AI Can't Fix Your Production Issues
Aug 5th 2024 10:00am, by Siddarth Jain
Why Can’t Automation Eliminate Configuration Errors?
Aug 14th 2024 8:18am, by Michelle Ensey
Annoyed by Poor Docs for Your Cloud Apps? Break the Cycle
Aug 14th 2024 7:08am, by Rak Siva
Are Shared Service Platforms Too Restrictive?
Aug 14th 2024 5:35am, by Lawrence E Hecht
Internal Developer Portals: 3 Real World Examples
Aug 12th 2024 4:00am, by Sooraj Shah
Cutting the High Cost of Testing Microservices
Aug 8th 2024 7:16am, by Nočnica Mellifera
Kubernetes 1.31 Arrives with New Support for AI/ML, Networking
Aug 13th 2024 2:00pm, by Chris J. Preimesberger
VMware's Golden Path
Aug 8th 2024 10:36am, by Alex Williams
Bypassing eBPF to Protect Runtimes in Kubernetes Apps
Aug 4th 2024 9:00am, by Alex Williams
Cloud Native Use to Double by 2029
Aug 2nd 2024 7:50am, by Janet Wi
Score: New CNCF Sandbox Tool for Infrastructure-Centric Dev
Jul 30th 2024 10:20am, by B. Cameron Gain
What’s the Difference Between Observability and Monitoring?
Aug 7th 2024 8:00am, by Kumar Harsh
Why AI Can't Fix Your Production Issues
Aug 5th 2024 10:00am, by Siddarth Jain
How To Manage Linux Log Services
Aug 3rd 2024 9:00am, by Damon M. Garn
Synthetic Monitoring With OpenTelemetry
Aug 1st 2024 10:42am, by Ken Hamric
Leveraging Keptn for Automated SLO Analysis
Jul 24th 2024 10:08am, by Robert Kimani
Can Cilium Be a Control Plane Beyond Kubernetes?
Jul 28th 2024 6:00am, by Alex Williams
Enhancing Business Security and Compliance with Service Mesh
Apr 1st 2024 10:00am, by Ninad Desai
Some Linkerd Users Must Pay: Fear and Anger Explained
Feb 28th 2024 9:21am, by B. Cameron Gain
Buoyant Revises Release Model for the Linkerd Service Mesh
Feb 21st 2024 9:30am, by Joab Jackson
Istio Advisor Plus GPT: Expert System Meets AI for Service Mesh
Dec 14th 2023 12:15pm, by Steven J. Vaughan-Nichols
API Management

Master API Connections in Azure with Bicep

Bridge the gap with a developer’s guide to detailed API connection configurations.
Aug 14th, 2024 10:00am by
Featued image for: Master API Connections in Azure with Bicep
Image by Engin Akyurt from Pixabay.

Microsoft provides extensive documentation on deploying almost any Azure resource using Bicep. This documentation includes detailed Bicep definitions for nearly all Azure resources, explaining which properties are required or optional and the value type each property accepts. This is very helpful for defining and deploying commonly used resources like Virtual Machines, Log Analytics Workspaces, and Function Apps, as they generally don’t require any custom properties beyond what the official Bicep documentation provides. However, API connections are a completely different story.

Imagine you need to set up a pipeline in Azure DevOps to automate the deployment of a solution’s infrastructure, which includes Logic Apps workflows. These workflows use other resources like Key Vaults, Storage Accounts, and Service Bus Queues. To use these resources, you need to deploy API connections. However, when you look at the official documentation of Bicep, you find that while it lists the basic properties, it requires more detailed instructions on how to authenticate appropriately with specific resources. This is where the real challenge starts.

Hours slip by as you scour blogs and repositories for examples, trying to piece together the correct configuration. This is a common scenario for many Azure developers. But what if there was a simpler way to know exactly which parameters are needed and where to define them for every API connection type?

Typical Authentication Scenarios for API Connections

API connection definitions vary depending on the resource one tries to connect to. This is easily noticed when designing Logic Apps workflows directly in the Azure Portal. For example, when adding an SQL Server action, the developer must provide the connection information, which in this case are a name for the connection, the authentication type to use, and the account credentials, which vary depending on the authentication type.

So, if you try to create an API connection leveraging a service principal, you’ll need to set:

  • Tenant ID
  • Client ID
  • Client Secret of the Microsoft Entra ID application.

    Creating a SQL Server API connection via SQL Server authentication

Yet, if you try to create an API connection leveraging SQL Server authentication, you’ll need to set:

  • SQL Server name
  • SQL Database name
  • Username
  • Password
  • If the instance is hosted on-premises, the Azure on-premises data gateway

Creating a SQL Server API connection via SQL Server authenticationSimilarly, when adding a Service Bus action, the developer must set the service bus namespace endpoint to leverage a managed identity as the authentication type or the service bus connection string to authenticate via an access key.

Creating a Service Bus API Connection with Managed Identity

 

Creating a Service Bus API Connection with Access Key

Identifying these authentication parameters is straightforward in the Azure Portal because the UI guides you through the necessary fields in the Designer. However, these parameters are not as readily apparent when defining the API connection in Bicep, leading to potential confusion and difficulty during deployment.

Challenges and Documentation Gaps in Deploying API Connections with Bicep

For API connections, the official documentation offers a format to create Microsoft.Web/connections resources serve as a general template for deploying API connection resources for any Logic Apps connector. However, developers still face several vital questions:

  • Under which property of the proposed template do I set the parameters to authenticate the connection? Should they be nested under the customParameterValues, nonSecretParameterValues, or parameterValues?
  • What are the expected parameter names for a specific Logic Apps connector?
  • If I need to use an on-premises data gateway, how can I set that through Bicep?
  • How can I determine the authentication parameters for a custom API connection?

While many blog posts and repositories provide examples of how to define an API connection in Bicep for common Azure resources like Azure SQL Server, Service Bus, and Storage Accounts, Microsoft also offers some quickstart Bicep templates, including examples of how to use managed identities, the information can still be fragmented.

However, what if you need to deploy an API connection to an Azure service that the community hasn’t well documented? The lack of clear, comprehensive examples for less common services can make this challenging.

Fortunately, developers can rely on the Connectors reference overview to identify the properties needed to authenticate an API connection. It provides vital information about all connectors for Microsoft Power Automate, Microsoft Power Apps, and Azure Logic Apps. Each connector’s reference article includes a “Creating a connection” section that details the supported authentication types and the required authentication parameters. For example, the “Creating a connection” section of the SQL Server connector reference page lists the same supported authentication types found in the Logic Apps Designer in the Azure Portal.

SQL Server connector reference article

Part of the SQL Server connector supported authentication types.

Parameters for SQL Server authentication

However, even if you know which parameters are required, you might still wonder where to set these parameters in the template. Should they be nested under customParameterValues, nonSecretParameterValues, or parameterValues? This is where the browser’s development tools come in handy.

Leveraging Browser Tools and Practical Tips to Define API Connections

A useful trick for determining the correct resource definition for any API connection is to use the browser’s development tools while manually creating an API connection from the Logic Apps Designer in the Azure Portal.

For example, let’s use the SQL Server connector. In the Logic Apps Designer, open the browser’s Developer tools panel and select the Network tab before creating a new connection. Clear all current traces to clean the activity log.

In the Logic Apps Designer with the Developer Tools pane open before creating the connection

Create a new connection and stop recording the network trace once the action is refreshed. Examine the payload of the outgoing request to Azure, which reveals the information sent to the Azure Resource Manager. This shows how the configurations made through the portal are translated into JSON, providing valuable insight for defining your API connection Bicep templates.

Request payload after creating the connection

The payload displays the property names used, the data types of their values, and where the authentication parameters should be placed. In this example, the account information for SQL Server authentication goes under the parameterValueSet property.

It’s important to note that while the browser’s Developer tools provide insights into the expected authentication parameters, the payload format may not always align with the proposed API connection Bicep definition. According to the API connection Bicep reference, the customParameterValues, nonSecretParameterValues, and parameterValues properties expect an object of key-value pairs. However, when using the HTTP With Microsoft Entra ID connector with an on-premises data gateway, the Developer tools show that the resource ID is sent in an id property nested under the gateway.

Request payload after creating the connection

In such cases, you can review the API connection’s Resource JSON in the Azure Portal for more details about the authentication parameters. Remember, Bicep acts as an abstraction layer for ARM templates, so we can still define our Bicep template with the properties that will be converted, even if those properties are not explicitly defined in the reference.

JSON view of the API connection in the Azure Portal

API connection Bicep template with gateway property

Conclusion

While Microsoft’s documentation provides a solid foundation for deploying Azure resources using Bicep, it is a continuously evolving knowledge base. This growth is fueled by sharing our small wins and valuable insights from trial and error beyond the official documentation. Adding a dedicated section to the API connections Bicep reference site, detailing authentication types and their associated parameters from a Bicep perspective for each connector could be highly beneficial. This addition would help individual developers and enrich the entire Azure development community.

TRENDING STORIES
Group Created with Sketch.
Jose Andres is a passionate Azure specialist originally from Caracas, Venezuela, now thriving in Brussels, Belgium. Starting with the Power Platform, he quickly transitioned to mastering the Azure ecosystem. Jose's expertise and enthusiasm have led him to work on a...
Read more from Jose Andres Rodriguez Perez
SHARE THIS STORY
TRENDING STORIES
TRENDING STORIES
TNS DAILY NEWSLETTER Receive a free roundup of the most recent TNS articles in your inbox each day.