Projects

AAII — Azure AI + IaC Inference

Outcome: Production-grade AI inference platform with secure CI/CD, real-time semantic search, and cloud-native scalability.

What it proves:

• End-to-end AI inference deployed to Azure using modern, secretless CI/CD (GitHub OIDC + Terraform).
• Real transformer-based embeddings powering semantic search over structured JSON data.
• Platform-level thinking: bootstrap vs runtime separation, least-privilege RBAC, and reproducible infrastructure.
• Full-stack integration: cloud API, containerized model service, and Blazor UI consuming live inference.

Core Capabilities:

• Infrastructure bootstrap with Entra Workload Identity Federation (OIDC)
• Terraform IaC with AAD-authenticated remote state (no access keys)
• Containerized FastAPI inference service with cached embeddings
• Azure Container Apps deployment with health checks and observability
• Blazor Server UI supporting local and cloud inference endpoints

Tech

• .NET · C# · Blazor Server
• Python · FastAPI · PyTorch (CPU) · sentence-transformers
• Terraform · GitHub Actions · Docker
• Azure Container Apps · Azure Container Registry
• Azure Entra ID (OIDC) · Log Analytics · Application Insights

Static App Demo

Outcome: Template-quality Azure Static Web Apps baseline (static Blazor WASM + Functions API) with Entra ID auth and a clean agent-backend seam.

What it proves:

• Static-first web delivery with a single-domain API surface via Azure Static Web Apps (`/api/*`).
• Built-in authentication using Microsoft Entra ID (SWA `/.auth/*`) with protected routes and principal flow to the API.
• Agent-ready backend seam (`IChatAgent`) plus correlation IDs for debuggable chat-style requests.

Core Capabilities:

• Protected UI routes (e.g., `/chat`) with sign-in enforced by SWA configuration.
• Identity surfaced to the API via `x-ms-client-principal` and exposed through `/api/me`.
• Chat API contract at `/api/chat` with an `IChatAgent` seam for future real model providers.
• Shared DTO/contracts between UI and API to prevent drift during iteration.
• Correlation IDs returned in responses to support troubleshooting and tracing.

Tech

• .NET 8 · C# · Blazor WebAssembly (static)
• Azure Functions v4 (isolated worker)
• Azure Static Web Apps (static + `/api/*`)
• Microsoft Entra ID (SWA built-in auth)
• GitHub Actions (SWA deploy)