Category
Azure Container Apps 本番運用ガイド(環境・KEDAゼロスケール・Ingress自動HTTPS・リビジョン・SIGTERM・マネージドID・コスト/AWS Fargate比較)
Azure Container Appsは『サーバー構成・コンテナオーケストレーション・デプロイの詳細を気にせずにコンテナを動かす』サーバーレス基盤で、Kubernetes・KEDA・Dapr・EnvoyというOSSの上に建てられつつKubernetes APIは直接公開しません。本クラスタは、ACAを採用した後の『どう本番で作るか』に集中します——環境=セキュリティ境界の設計、KEDAによる水平オートスケールとHTTP/イベント駆動のゼロスケール(Ingress無効ワーカーの自爆回避)、ロードバランサも証明書も要らない自動HTTPS Ingressと240秒タイムアウト、startup/liveness/readinessプローブ、単一/複数リビジョンによるゼロダウンタイムとBlue/Green・カナリア、SIGTERMを30秒以内に処理するグレースフルシャットダウンと冪等性、マネージドID+Key Vault参照で認証情報をコードから消すセキュリティ、Jobs(バッチ/スケジュール/イベント)、Consumption/Dedicated/Flexと無料枠・idleレートのコスト設計、Bicep/Terraform/鍵レスCI/CDまでを体系化します。AWS ECS on Fargateで221エンドポイントのB2B SaaSと本番二重課金0件の決済基盤を運用した知見を根拠に、Fargateとのクロスクラウド比較(ゼロスケール・サーバーレスGPU・Spot・分離粒度)まで含めて、Microsoft Learn公式ドキュメントに忠実な実コードで解説します。
8 articles in total
Foundational guide
Foundational guide (start here)
Azure Container Apps Production Operations Guide: Designing, Scaling, Deploying, Costing, and Securing Serverless Containers, with Real Code
A production operations guide for Azure Container Apps faithful to the official Microsoft Learn docs. From the configuration of environments, revisions, and replicas, to zero-scaling with KEDA, Ingress (automatic HTTPS, 240-second timeout), graceful shutdown via SIGTERM, managed identities and Key Vault references, and Consumption/Dedicated cost design — systematized with Bicep, Terraform, az CLI, and real code.
Related practical articles
- AzureContainer AppsCI/CDGitHub ActionsBicep
Azure Container Apps CI/CD guide: deploy safely and automatically with GitHub Actions, OIDC keyless, Bicep, and Blue/Green revisions
An implementation guide for building Azure Container Apps CI/CD at production quality. It explains, with YAML/Bicep/az CLI faithful to Microsoft Learn official docs: azure/container-apps-deploy-action, keyless authentication via OIDC (federated credentials), a managed identity for ACR pull, declarative deployment with Bicep, Blue/Green and canary via revision traffic splitting, and automatic rollback.
7 min read - AzureContainer AppsジョブバッチKEDA
Azure Container Apps Jobs implementation guide: production design for batch, schedule (cron), and event-driven
An implementation guide to designing Azure Container Apps Jobs at production quality. With az CLI/ARM faithful to the official Microsoft Learn docs, it explains the three triggers Manual/Schedule/Event, cron expressions (UTC), the replicaTimeout/retry/parallelism/completion settings, KEDA event-driven jobs, self-hosted CI Runners, idempotent design, and monitoring execution history.
8 min read - AzureContainer AppsKEDAサーバーレスオートスケール
The complete Azure Container Apps autoscaling guide: scale-to-zero and event-driven with KEDA (HTTP, queue, CPU)
A thorough explanation of Azure Container Apps KEDA autoscaling in real code. Faithful to Microsoft Learn official docs, it shows in Bicep/az CLI: the scale rules for HTTP/TCP/custom (CPU, memory, Service Bus, Event Hubs, Kafka, Redis), the design of scale-to-zero and the self-destruct trap, capacity planning via the scaling algorithm, managed-identity authentication, and ScaledJob for jobs.
9 min read - AzureContainer AppsネットワークセキュリティVNet
Azure Container Apps network-design guide: VNet integration, internal environment, Private Endpoint, WAF, and egress lockdown
An implementation guide to designing Azure Container Apps networking at production quality. Faithful to the official Microsoft Learn docs, it explains the dedicated subnet (/27) of a workload-profile environment, the internal environment and External/Internal, going private with Private Endpoint, fronting with Application Gateway + WAF, egress lockdown via UDR + Azure Firewall, and DNS (168.63.129.16).
7 min read - AzureContainer Appsトラブルシューティング可観測性信頼性
Azure Container Apps troubleshooting: diagnosing and fixing revision Failed/Degraded, exit code 137, probes, and image-pull failures
A systematic guide to diagnosing and fixing when Azure Container Apps won't start or crashes. From revision Failed/Degraded, exit code 137 (OOMKilled), immediate container exit, health-probe failures, image-pull failures, 403/unreachable, DNS (168.63.129.16), to scaler-unreachable — it explains, by system-log message, with procedures faithful to the official Microsoft Learn docs.
8 min read - AzureContainer AppsAKSアーキテクチャ設計コンテナ
Azure Container Apps vs AKS vs App Service vs Functions vs ACI: a selection guide for Azure container platforms
An in-depth comparison of the five options for running containers/apps on Azure — Container Apps, AKS, App Service, Functions, and Container Instances — from the perspectives of operational load, scale, cost, and lock-in. Faithful to the official positioning, it explains which to choose for which requirement with a decision flow and real examples.
8 min read - AzureContainer AppsAWSFargateコンテナ
Azure Container Apps vs AWS ECS on Fargate: a thorough serverless-container comparison (scale-to-zero, GPU, cost, migration)
A thorough comparison of Azure Container Apps and AWS ECS on Fargate from a production-operations standpoint. From the knowledge of Microsoft Learn official docs and Fargate production operation, it explains, with a judgment axis of which to choose when: scale-to-zero, KEDA event-driven, serverless GPU, automatic HTTPS, Jobs, deployment/rollback, the cost model (free tier, idle rate vs. Spot, Graviton), networking, and identity.
12 min read