Production Certified · v2.5.0

Azure Governance
Platform

Multi-tenant Azure governance, cost optimization, and compliance monitoring — built for enterprise scale, running on a startup budget.

A+Grade
94.75%Full Send
3,997Tests
~$53/moInfrastructure
API Explorer → Explore Architecture

Platform Capabilities

Enterprise-grade governance tools

Zero-Secrets Auth

Azure AD B2C with OIDC, User-Assigned Managed Identity, and zero secrets in code. Defense-in-depth authentication.

Cost Optimization

Automated cost analysis and recommendations. 63% savings achieved — from $145/mo to ~$53/mo with continuous monitoring.

Compliance Monitoring

Continuous governance assessment against regulatory frameworks. Custom compliance rules with real-time scoring.

Resource Discovery

Automated Azure resource inventory across subscriptions. Cross-tenant visibility via Azure Lighthouse integration.

Identity Governance

Multi-tenant identity management with row-level security. Role-based access control with department-based personas.

Alerting & Monitoring

Real-time anomaly detection with Application Insights and OpenTelemetry. /api/v1/health/data monitors 10 sync domains; alerts escalate to the governance-alerts action group.

Platform Architecture

5 tenants, 2 environments, zero secrets

Architecture diagram showing Users, Production and Staging environments, 5 managed Azure AD tenants, and CI/CD pipeline

Technology Stack

Modern, proven, cost-effective

BackendFastAPI · Python 3.12
FrontendHTMX · Tailwind · Chart.js
AuthAzure AD B2C · OIDC · UAMI
DataAzure SQL (Basic)
InfrastructureApp Service · Key Vault · Bicep
CI/CDGitHub Actions · GHCR
ObservabilityApp Insights · OpenTelemetry
Design SystemMulti-brand tokens · WCAG AA

Documentation

Everything you need to build, operate, and extend

Architecture
System design, components, data flow, and deployment topology.
Explore →
Operations
Runbooks, playbooks, cost analysis, and day-to-day procedures.
Explore →
API Reference
Endpoints, schemas, authentication, and integration guides.
Explore →
Decisions
Architecture Decision Records documenting key technical choices.
Explore →

Architecture

How it all fits together

┌─────────────────────────────────────────────────────────────────┐
│                          CLIENTS                                │
│     Web UI · Mobile · API Consumers · Admin Portal              │
└───────────────────────────┬─────────────────────────────────────┘
                            │
                ┌───────────▼───────────┐
                │    Azure Front Door   │
                │   WAF · CDN · HTTPS   │
                └───────────┬───────────┘
                            │
┌───────────────────────────▼─────────────────────────────────────┐
│                    App Service (FastAPI)                         │
│   ┌──────────┐  ┌───────────┐  ┌──────────┐  ┌─────────────┐  │
│   │ API Layer│  │ Services  │  │ Workers  │  │ Scheduler   │  │
│   │ (REST)   │  │ (Business)│  │(Background)│ │ (Cron)      │  │
│   └──────────┘  └───────────┘  └──────────┘  └─────────────┘  │
└──────┬──────────────┬──────────────┬──────────────┬─────────────┘
       │              │              │              │
  ┌────▼────┐   ┌─────▼─────┐  ┌────▼────┐  ┌─────▼──────┐
  │Azure SQL│   │ Azure AD  │  │Key Vault│  │App Insights│
  │ (Data)  │   │  (Auth)   │  │(Secrets)│  │(Telemetry) │
  └─────────┘   └───────────┘  └─────────┘  └────────────┘
       │
  ┌────▼──────────────────────────────────┐
  │         Azure Lighthouse              │
  │   Cross-Tenant Governance Plane       │
  │   ┌─────────┐ ┌─────────┐ ┌────────┐ │
  │   │Tenant A │ │Tenant B │ │Tenant C│ │
  │   └─────────┘ └─────────┘ └────────┘ │
  └───────────────────────────────────────┘

Quick Start

Get up and running in minutes

git clone https://github.com/HTT-BRANDS/azure-governance-platform.git
cd azure-governance-platform
pip install uv
uv sync --dev
uv run uvicorn app.main:app --reload
Production App ↗ Health Check ↗ API Explorer → GitHub ↗ Azure Portal ↗

Production Status

Live system metrics

Availability99.9%
Response Time~532ms
Error Rate<0.1%
Monthly Cost~$53
Alert Rules2
Open Issues4