How to deploy a web app to azure-mobile.net? - mobile

I have an azure mobile services account and that gives me .azure-mobile.net web site URL for accessing mobile services APIs using REST.
I would like to deploy an ASP.NET MVC 5 web app to that domain which is basically the admin web site for my mobile app.
Using VS 2013, I am able to deploy to an azure web site .azurewebsites.net. But I would like to keep all stuff in the same domain. How can I deploy a web app to .azure-mobile.net ?

You can't!
azure-mobile.net is reserved for mobile services projects. The same way cloudapp.net is reserved for cloud services and azurewebsites.net for Azure Web Sites.
As for keeping stuff under same domain, I would use my own domain. The only small deviation from this mantra is that currently there is no support for custom domain for Mobile Services. While the compute and storage services (Cloud Services, Virtual Machines, Web Sites, Storage Accounts) do support custom domains. The good thing is that Mobile services also support CORS, so you shall not have issues consuming your APIs from another domain via JavaScript.
Learn more about:
HTML5 and Mobile Services.
Custom Domains for Azure Web Sites
Custom Domains for Cloud Services
Custom Domains for Storage Accounts

Related

ASP.Net Core Hosted Blazor Webassembly with Azure AD authentication - Separate app registrations for server and client apps

I am trying to create ASP.Net Core Hosted Blazor Webassembly with Azure AD authentication. As per this document, Microsoft suggests creating separate app registrations for the server api and the client app.
My question is: is it possible to use the same client id instead of the 2 separate mentioned in the document, since it really is 1 project/artifact (containing the static blazor site + web api) that will be deployed into Azure. Will there be an issue if only 1 app registration is used?
There shouldn't be an issue. The one thing I was thinking of that could have issues was the on-behalf-of flow but the article says basically no issues: https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-oauth2-on-behalf-of-flow#use-of-a-single-application.
The new application model allows an app registration to have multiple platforms in it, so you can register reply URLs for desktop apps, mobile apps and API scopes all in the same app.
There might be some weird corner cases if it is a multi-tenant application, but if it is single-tenant there should be no issues with using a single app.

.net core MVC app on Azure: how to limit access

I've just uploaded my first app on Azure: it is a .net core MVC site + webapi + sql server. This app will be used by one user.
How can I limit the access to the app using a login, without developing that part on .net core?
One service you could use for this is App Service Authentication.
Azure App Service provides built-in authentication and authorization support, so you can sign in users and access data by writing minimal or no code in your web app, RESTful API, and mobile back end, and also Azure Functions.
If the user is from a specific location, you could also look into how you can configure Azure App Service Access Restrictions.

How do I configure ADFS 3.0 Relying Party Trust and update my AngularJS & ASP.NET Web API applications to use ADFS with my company’s Active Directory?

I am a beginner with ADFS and do not know where to begin. I have an AngularJS 1.4.9 application which makes Ajax calls to an ASP.NET Web API 2.2 service.
Both applications are hosted within IIS under the same site and both use Windows Authentication on my company’s intranet. I’d like to modify them to use ADFS so that these applications can be accessed from the internet without a VPN.
You are better off looking into using the web application proxy (WAP)functionality for now. WAP allows publishing internal resources and making them internet accessible.
Once you get AD FS and WAP deployed, see step 3 in https://technet.microsoft.com/en-us/library/dn280943.aspx#BKMK_3
You can then look to slowly updating your applications to use federated authentication with AD FS.

Why goagent can work through google app engine but not '*.appspot.com'

I can access some forbidden websites in China like Youtube, Facebook, Twitter by GoAgent, which uses the Google App Engine, but why can't I access my own app published in *.appspot.com without any proxy or VPN?
Because GoAgent connects the servers of Google in Beijing and HongKong, not the servers of *.appspot.com which in US. Many servers of Google can serve Google App Engine services even if they originally not in *.appspot.com servers.

google app engine, Google Apps and custom domain

If you have a google app engine application you want to have on a certain domain for this application, you control this domain but if this domain is used already used for e-mail (not on Google Business Apps), does this mean you have to switch your e-mail to Google Business Apps in order to have this domain for your google app engine application?
As far as I know you have to add the domain to google apps, but you don't have to use google mail.

Resources