Gate keeper design pattern

Category: azure security

Question

ssharon on Thu, 12 Jul 2012 14:44:12


Hi

I'm trying to implement the gatekeeper design pattern.

what is the best way to implement the design pattern with queues or service bus or none of them?

how do i load balance the calls between instances of the gatekeeper and the keymaster ?

Replies

Arwind - MSFT on Fri, 13 Jul 2012 03:10:16


I don't know much about gatekeeper design pattern. But according to http://blogs.msdn.com/b/usisvde/archive/2012/03/15/windows-azure-security-best-practices-part-7-tips-tools-coding-best-practices.aspx, it has nothing to do with queue or service bus. You need a partial trust web role and a full trust worker role. The web role should not know anything about storage. In particular, it should not know the storage account key (and thus it cannot use queue storage). To communicate with the worker role, you can use internal endpoints. Internal endpoints allows you to connect to a specific worker role instance, and thus you can try to balance the work load among multiple instances.