English for Azure Container Apps Developers

Learn the English vocabulary for Azure Container Apps: environments, revisions, ingress, KEDA autoscaling, Dapr integration, managed identity, and secrets.

Azure Container Apps is Microsoft’s managed platform for running containerised microservices and event-driven workloads without managing Kubernetes directly. The service has its own terminology that differs subtly from raw Kubernetes, and knowing the correct English terms is essential for writing clear runbooks, architecture documents, and incident reports in international engineering teams.

Key Vocabulary

Environment — a shared boundary that groups one or more container apps together, providing a common virtual network, logging workspace, and Dapr configuration. “Deploy the API and the background worker to the same environment so they can communicate over the internal virtual network without exposing a public endpoint.”

Revision — an immutable snapshot of a container app configuration that is created each time you update the app’s code, environment variables, or scaling rules. “The new revision is receiving 10% of traffic; once we confirm there are no errors in Application Insights, we’ll shift 100% and deactivate the old one.”

Ingress — the configuration that controls how a container app receives external or internal HTTP traffic, including TLS termination and custom domain binding. “Set ingress to external and allow traffic on port 8080; the platform will handle TLS automatically with a managed certificate.”

KEDA autoscaling — event-driven autoscaling powered by the Kubernetes-based Event Driven Autoscaler, which scales replicas up or down based on external event sources such as queue depth or HTTP request rate. “We configured KEDA autoscaling against our Service Bus queue so the processing app scales from zero to 20 replicas as messages accumulate.”

Dapr integration — built-in support for the Distributed Application Runtime sidecar, which provides service invocation, pub/sub messaging, and state management through a standardised API. “With Dapr integration enabled, the order service publishes events using the Dapr pub/sub API without any cloud-specific SDK dependency.”

Managed identity — an Azure-managed service principal that grants a container app access to other Azure resources without storing credentials in code or configuration. “Assign a managed identity to the container app and grant it Key Vault Secrets User so we can remove the hard-coded connection string from the image.”

Secret — a named, encrypted value stored at the container app level and injected into containers as environment variables or mounted as volume files at runtime. “Store the database password as a secret and reference it in the environment variable definition rather than embedding it in the revision configuration.”

Scale rule — a KEDA-backed definition that specifies which metric triggers scaling and the thresholds that determine when to add or remove replicas. “Add an HTTP scale rule with a concurrent-requests threshold of 100 so the app never queues requests during traffic spikes.”

Common Phrases

  • “Promote the staging revision to production by shifting traffic gradually.”
  • “The app is currently pinned to a single revision; enable multiple-revision mode to support blue-green deployments.”
  • “Dapr handles retries and circuit breaking at the sidecar layer, so our application code stays clean.”
  • “We need to rotate the database secret; update it at the environment level and trigger a new revision.”
  • “The ingress target port must match the EXPOSE directive in your Dockerfile.”

Example Sentences

When writing a deployment runbook: “Create a new revision by updating the container image tag. Route 20% of ingress traffic to the new revision and monitor error rates in Log Analytics for 30 minutes before completing the cutover.”

When explaining managed identity to a security auditor: “The container app uses a system-assigned managed identity to authenticate against Azure SQL Database. No credentials are stored in the image, the revision configuration, or the repository.”

When describing autoscaling architecture in a design document: “We rely on KEDA autoscaling with a Service Bus scaler. The minimum replica count is zero during off-peak hours, reducing cost by approximately 60% compared to a fixed-size deployment.”

Professional Tips

  • Use revision rather than “deployment” when discussing Container Apps specifically — the immutability and traffic-splitting semantics are distinct from a standard Kubernetes deployment rollout.
  • When discussing KEDA, mention the specific scaler (HTTP, Service Bus, Storage Queue) — “event-driven autoscaling” alone is too vague for architecture reviews.
  • Prefer managed identity over “service principal with client secret” in any security discussion; it signals awareness of credential hygiene.
  • In Dapr conversations, clarify whether you are using the sidecar for service invocation, state management, or pub/sub — each has different reliability characteristics.

Practice Exercise

  1. A colleague asks what the difference is between an environment and a container app. Write two sentences clarifying the relationship.
  2. You need to deploy a new version of your API with zero downtime. Describe the revision and traffic-splitting steps you would take in three sentences.
  3. Explain to a junior developer why managed identity is preferable to storing connection strings in environment variables.