E-commerce website running in secured App Service Environment

Microsoft Entra ID
Azure App Service
Azure Cache for Redis
Azure Content Delivery Network
Azure SQL Database

Solution ideas

This article describes a solution idea. Your cloud architect can use this guidance to help visualize the major components for a typical implementation of this architecture. Use this article as a starting point to design a well-architected solution that aligns with your workload's specific requirements.

Keep sensitive user and payment data from an e-commerce website secure by using the Microsoft Azure App Service Environment. This solution is ideal for the retail industry.

Potential use cases

This solution is optimized for the retail industry.

Other relevant use cases include:

  • Building an application that needs elastic scale to handle bursts of users at different times.
  • Building an application that is designed to operate at high availability in different Azure regions around the world.

Architecture

Architecture diagram shows flow from customer to ASE environment: ecommerce website running in secured ASE.

Download a Visio file of this architecture.

Dataflow

  1. Customer accesses the public website in browser.
  2. Browser pulls static resources and product images from Azure Content Delivery Network.
  3. Content Delivery Network pulls product images from blob storage.
  4. Customer searches for products.
  5. Public website pulls product catalog from product database.
  6. Page output is cached in the Azure Cache for Redis.
  7. Customer creates new orders.
  8. Public website invokes orders web service.
  9. Orders web service saves/loads orders from Azure SQL Database.
  10. Employee accesses the admin website in browser.
  11. Employee authenticates against Microsoft Entra ID.
  12. Employee searches orders.
  13. Admin website invokes orders web service.

Components

  • App Service: Quickly create powerful cloud apps for web and mobile
  • Web Apps: An App Service Web App runs in a single region, accessible to web and mobile browsers
  • Azure SQL Database: Managed, intelligent SQL in the cloud
  • API Apps: Publish APIs to external, partner, and employee developers securely and at scale.
  • Application Insights: Detect, triage, and diagnose issues in your web apps and services
  • Application Gateway: Build secure, scalable, and highly available web front ends in Azure
  • Azure Cache for Redis: Power applications with high-throughput, low-latency data access
  • Content Delivery Network: Ensure secure, reliable content delivery with broad global reach
  • Microsoft Entra ID: Synchronize on-premises directories and enable single sign-on
  • Blob Storage: Azure Blob storage is a Massively scalable object storage for any type of unstructured data-images, videos, audio, documents, and more-easily and cost-effectively.

Next steps