E-commerce website running in secured App Service Environment

Azure Active Directory
App Service
Cache for Redis
Content Delivery Network
SQL Database

Solution Idea

If you'd like to see us expand this article with more information, such as potential use cases, alternative services, implementation considerations, or pricing guidance, let us know with GitHub Feedback!

Keep sensitive user and payment data from an e-commerce website secure by using the Microsoft Azure App Service Environment.


Architecture diagram Download an SVG of this architecture.

Data flow

  1. Customer accesses the public website in browser.
  2. Browser pulls static resources and product images from Azure Content Delivery Network.
  3. Content Delivery Network pulls product images from blob storage.
  4. Customer searches for products.
  5. Public website pulls product catalog from product database.
  6. Page output is cached in the Azure Cache for Redis.
  7. Customer creates new orders.
  8. Public website invokes orders web service.
  9. Orders web service saves/loads orders from Azure SQL Database.
  10. Employee accesses the admin website in browser.
  11. Employee authenticates against Azure Active Directory (Azure AD).
  12. Employee searches orders.
  13. Admin website invokes orders web service.


  • App Service: Quickly create powerful cloud apps for web and mobile
  • Web Apps: An App Service Web App runs in a single region, accessible to web and mobile browsers
  • Azure SQL Database: Managed, intelligent SQL in the cloud
  • API Apps: Publish APIs to external, partner, and employee developers securely and at scale.
  • Application Insights: Detect, triage, and diagnose issues in your web apps and services
  • Application Gateway: Build secure, scalable, and highly available web front ends in Azure
  • Azure Cache for Redis: Power applications with high-throughput, low-latency data access
  • Content Delivery Network: Ensure secure, reliable content delivery with broad global reach
  • Azure Active Directory: Synchronize on-premises directories and enable single sign-on
  • Blob Storage: Azure Blob storage is a Massively scalable object storage for any type of unstructured data-images, videos, audio, documents, and more-easily and cost-effectively.

Next steps