This article provides an overview of deploying secure applications using the Azure App Service Environment. To restrict application access from the internet, the Azure Application Gateway service and Azure Web Application Firewall are used. This article also provides guidance about continuous integration and continuous deployment (CI/CD) for App Service Environments using Azure DevOps.
https://learn.microsoft.com/en-us/azure/architecture/example-scenario/apps/fully-managed-secure-apps
