About This Architecture

PBI Diagnostic Platform demonstrates an enterprise zero-trust architecture spanning OKTA identity, Cloudflare WAF, Azure Front Door, and Azure Firewall as the security perimeter. User requests flow through the SPA (React + TypeScript) to Azure API Management, then to .NET Core 8 APIs running on Azure Container Apps and Azure Functions, with event-driven processing via Azure Event Grid. Data flows through Databricks medallion architecture (bronze, silver, gold layers) into Azure SQL Database or data lakehouse, with Redis caching and real-time updates via SignalR. This architecture demonstrates defense-in-depth, least-privilege access, and separation of concerns—critical for regulated enterprises handling HR, finance, and risk data. Fork and customize this diagram on Diagrams.so to adapt the security perimeter, API gateway policies, or data serving layer for your compliance requirements.

People also ask

How do I design a zero-trust enterprise architecture on Azure with identity, API gateway, and data processing layers?

This diagram shows a complete enterprise zero-trust platform: OKTA IdP + MFA authenticate users through Cloudflare WAF and Azure Front Door, requests route through Azure API Management to .NET Core 8 APIs on Container Apps, events trigger Databricks medallion pipelines, and data serves from SQL Database or lakehouse with Redis caching. Each layer enforces least-privilege access and device trust.