Skip to content

[DTOSS-11202] Add Application Insights with Azure Monitor Private Link Scope integration #510

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
josielsouzanordcloud wants to merge 2 commits into from
Closed

[DTOSS-11202] Add Application Insights with Azure Monitor Private Link Scope integration #510

josielsouzanordcloud wants to merge 2 commits into from

Conversation

@josielsouzanordcloud
Copy link
Contributor

@josielsouzanordcloud josielsouzanordcloud commented Oct 7, 2025

Description

Adds comprehensive monitoring infrastructure with Application Insights and secure connectivity through Azure Monitor Private Link Scope (AMPLS) for the breast screening application.

Changes:

  • Add Application Insights module for web application telemetry and performance monitoring
  • Configure private link scoped service for Log Analytics Workspace
  • Configure private link scoped service for Application Insights
  • Integrate monitoring services with existing hub-based private endpoint architecture
  • Enable secure data ingestion through AMPLS to prevent data exfiltration

Infrastructure components added:

  • app_insights_audit - Application Insights instance configured for web applications
  • private_link_scoped_service_law - Private link scope for Log Analytics Workspace
  • private_link_scoped_service_app_insights - Private link scope for Application Insights

Security benefits:

  • Monitoring data flows through private endpoints only
  • Prevents data exfiltration to public monitoring endpoints
  • Maintains compliance with NHS Digital security requirements
  • Integrates with existing hub network architecture

Jira link

[Link to related Jira ticket]

Review notes

  • Hub integration: Uses existing hub provider configuration for private link resources
  • Naming convention: Follows established patterns using shared_config module
  • Resource placement: Private link scoped services created in hub resource group as per architecture
  • Dependencies: Application Insights depends on Log Analytics Workspace for data retention
  • Monitoring scope: Configured for web application type to capture appropriate telemetry
  • Network security: Both monitoring services added to AMPLS scope for secure data ingestion

Post-deployment steps:

  • Configure application code to use Application Insights connection string
  • Verify data flow through private endpoints

@josielsouzanordcloud
feat: add Application Insights and Azure Monitor Private Link Scope i…
09edac8 
…ntegration

- Add Application Insights module for web application monitoring
- Configure private link scoped services for Log Analytics Workspace
- Configure private link scoped services for Application Insights
- Integrate monitoring services with hub-based private endpoint architecture
- Enable secure monitoring data flow through Azure Monitor Private Link Scope (AMPLS)
@josielsouzanordcloud
Adding missing argument
70ee83f
@josielsouzanordcloud josielsouzanordcloud deleted the DTOSS-11202-application-insights branch October 7, 2025 16:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

deploy

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@josielsouzanordcloud