Book Image

Implementing Azure DevOps Solutions

By : Henry Been, Maik van der Gaag
Book Image

Implementing Azure DevOps Solutions

By: Henry Been, Maik van der Gaag

Overview of this book

Implementing Azure DevOps Solutions helps DevOps engineers and administrators to leverage Azure DevOps Services to master practices such as continuous integration and continuous delivery (CI/CD), containerization, and zero downtime deployments. This book starts with the basics of continuous integration, continuous delivery, and automated deployments. You will then learn how to apply configuration management and Infrastructure as Code (IaC) along with managing databases in DevOps scenarios. Next, you will delve into fitting security and compliance with DevOps. As you advance, you will explore how to instrument applications, and gather metrics to understand application usage and user behavior. The latter part of this book will help you implement a container build strategy and manage Azure Kubernetes Services. Lastly, you will understand how to create your own Azure DevOps organization, along with covering quick tips and tricks to confidently apply effective DevOps practices. By the end of this book, you’ll have gained the knowledge you need to ensure seamless application deployments and business continuity.

Related Content you might be interested in

Current Title:

Small book image
Implementing Azure DevOps Solutions
Henry Been | Maik van der Gaag
Jun, 2020 | 432 pages
Small book image
Azure DevOps Explained
Stefano Demiliani | Sjoukje Zaal | Amit Malik
Dec, 2020 | 438 pages
Small book image
Implementing CI/CD Using Azure Pipelines
Roberto Mardeni | Piti Champeethong
Dec, 2023 | 326 pages
Small book image
Accelerate DevOps with GitHub
Michael Kaufmann
Sep, 2022 | 540 pages
Table of Contents (21 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
1
Section 1: Getting to Continuous Delivery
Section 1: Getting to Continuous Delivery
Free Chapter
2
Introduction to DevOps
Introduction to DevOps
Technical requirements
What is DevOps?
Creating your ideal DevOps organization
Exploring DevOps practices and habits
Five stages of the DevOps evolution
Summary
Questions
Further reading
3
Everything Starts with Source Control
Everything Starts with Source Control
Technical requirements
Types of source control in Azure DevOps
Source control systems
Selecting a branching and merging strategy
Managing repositories
Other tools for source control
Summary
Questions
Further reading
4
Moving to Continuous Integration
Moving to Continuous Integration
Technical requirements
Introducing continuous integration
Creating a build definition in Azure DevOps
Running a build
Working with YAML pipelines
Agents and agent queues
Other tools
Summary
Questions
Further reading
5
Continuous Deployment
Continuous Deployment
Technical requirements
Continuous delivery and continuous deployment
Working with Azure DevOps releases
Writing multi-stage YAML pipelines
Implementing continuous deployment strategies
Deploying mobile applications
Automating release notes
Other tools
Summary
Questions
Further reading
6
Section 2: Expanding your DevOps Pipeline
Section 2: Expanding your DevOps Pipeline
7
Dependency Management
Dependency Management
Technical requirements
Identifying shared components
Creating a feed
Publishing packages
Consuming packages
Working with universal packages
Exploring other tools
Summary
Questions
Further reading
8
Infrastructure and Configuration as Code
Infrastructure and Configuration as Code
Technical requirements
Having everything as code
Working with ARM templates
Using Azure Automation
Managing application settings
Other tools
Summary
Questions
Further reading
9
Dealing with Databases in DevOps Scenarios
Dealing with Databases in DevOps Scenarios
Technical requirements
Managing a database schema as code
Applying database schema changes
Going schema-less
Other approaches and concerns
Summary
Questions
Further reading
10
Continuous Testing
Continuous Testing
Technical requirements
Defining quality
Understanding test types
Executing tests in a pipeline
Maintaining quality
Summary
Questions
Further reading
11
Security and Compliance
Security and Compliance
Technical requirements
Applying DevOps principles to security and compliance
Working with secrets
Detecting application code vulnerabilities
Working with dependencies
Ensuring infrastructure compliance
Monitoring and detecting runtime security risks and threats
Other tools you can use
Summary
Questions
Further reading
12
Section 3: Closing the Loop
Section 3: Closing the Loop
13
Application Monitoring
Application Monitoring
Technical requirements
Investigating application crashes
Instrumenting web applications
Integrating with other tools
Summary
Questions
Further reading
14
Gathering User Feedback
Gathering User Feedback
Technical requirements
Understanding continuous feedback
Asking for direct feedback
Gathering indirect feedback
Implementing hypothesis-driven development
Summary
Questions
Further reading
15
Section 4: Advanced Topics
Section 4: Advanced Topics
16
Containers
Containers
Technical requirements
An introduction to containers
Building a container image
Building images in Azure DevOps and running them in Azure
An introduction to Kubernetes
Kubernetes in action
Upgrading containers
Scaling containers and Kubernetes
Deploying to Kubernetes with Azure DevOps
Summary
Questions
Further reading
17
Planning Your Azure DevOps Organization
Planning Your Azure DevOps Organization
Technical requirements
Setting up an Azure DevOps organization
Ensuring traceability
Consolidating tools
Accepting there is no end state
Summary
Questions
Further reading
18
AZ-400 Mock Exam
AZ-400 Mock Exam
Designing a DevOps Strategy
Implementing DevOps Development Processes
Implementing Continuous Integration
Implementing Continuous Delivery
Implementing Dependency Management
Implementing Application Infrastructure
Implementing Continuous Feedback
Answers
19
Assessments
Assessments
Chapter 1
Chapter 2
Chapter 3
Chapter 4
Chapter 5
Chapter 6
Chapter 7
Chapter 8
Chapter 9
Chapter 10
Chapter 11
Chapter 12
Chapter 13
20
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Detecting application code vulnerabilities

The security assessments that are often conducted at regular intervals in the pre-DevOps era cannot be just left out when moving to a DevOps culture. This means that, instead of leaving them out, they must be conducted in some other way. There are two approaches for doing this.

The first approach is to keep doing pen tests, security reviews, and other security inspections at regular intervals just as before. However, instead of waiting for an OK from the tests before moving to production, the code is deployed to production separate from the security assessment(s). This implies that there is an accepted risk that there might be vulnerabilities shipped to production that are found only during the next security scan and will be addressed in the next release. Using this approach, it is possible to achieve speed, but then it also needs to...

Previous Section
End of Section 5
Next Section