Security / Platform

Auth & Observability Across Every Environment

Auth FlowsAPI SecurityAzureOpenTelemetry

Problem

Auth flows between the frontend SPA and backend APIs needed secure implementation across multiple environments. Configuration was inconsistent and secrets were handled ad-hoc.

Ownership

Implemented frontend auth integration. Collaborated on token flow and session management. Defined environment configuration and secrets handling approach.

Architecture

Token-based frontend-to-API auth. Environment-aware configuration resolves API endpoints, auth providers, and feature states per deployment target. Azure Key Vault for secrets with environment-scoped access.

Highlights

•Token-based auth flow across SPA and API layers
•OpenTelemetry instrumentation for distributed tracing and monitoring
•Environment-aware configuration per deployment target
•Azure Key Vault integration for secrets management
•Consistent auth and observability patterns reused across services

Deployment

Auth configuration deployed through CI/CD pipelines. Secrets rotate without code changes.

Impact

Secured all merchant-facing auth flows. Established reusable patterns for environment configuration and secrets management adopted by other teams.

← Automated Pipeline From PR to Production Shipwise — Ship Your Webapp Wisely →

Interested in working together?