Home About Resume Contact
Projects
Office Survey
Personal Cloud Engineering Lab · Azure

What is
Sky Forged Labs?

Sky Forged Labs is my personal Azure home lab, built to bridge the gap between my certification knowledge and real hands-on experience. I designed everything with cost as the first priority, then security, then functionality, and tried to use serverless architecture wherever I could to keep the monthly bill as low as possible.

$10
Monthly Azure spend target
100%
Infrastructure as Code via Terraform
8+
Azure services in production
Background

A Little About Me

My background is in enterprise IT support. I spent several years working across Microsoft 365, Entra ID, Exchange Online, and hybrid Active Directory at various companies, ranging from a large healthcare organization, a major univeristy, and at an MSP for Apple. Most of my day-to-day was owning the escalations that nobody else could figure out, working with Microsoft engineers on identity and licensing issues, and generally being the person the team came to when something did not have an obvious answer. I really enjoyed that work, but I knew I wanted to move toward building and designing things rather than supporting them.

The certifications were part of that transition. I went through AZ-900, SC-900, AZ-104, and AZ-305 while this lab was being built, and having both going at the same time made a big difference. A lot of the exam material made more sense once I had actually tried to build the things being tested, and the lab gave me somewhere to apply ideas I picked up while studying. This has been an awesome journey so far, and I am excited to continue building this project. What started as a portfolio piece has really turned into something I find a lot of joy in (and pain, looking at you front-end deveoplment).

Origin Story

How it Started

The Office Survey app was the first "real" project I built here. I picked it because it forced me to work across a real full stack: a frontend that people could actually use, a backend API, a database, AI integration, and some automated reporting. It was complex enough to be worth doing but not so large that it would never get finished (or cost hundreds of dollars). I tried to do something with office culture for the sake of this project being a portfolio piece, and later decided to integrate the persona-schema to add some personality to it.

From the start, I made a few decisions that I have stuck with throughout the whole lab. Everything is managed with Terraform. I use serverless and consumption-based pricing wherever it is available so costs stay low. No secrets ever go into source control or application configuration in plaintext. Those rules have not, and will never change.

Architecture

The Current Stack

The diagram below shows what is currently deployed and running in the lab.

Sky Forged Labs architecture diagram showing Azure Static Web Apps, Functions, Cosmos DB, Key Vault, AI Language, Application Insights, Log Analytics, Logic Apps, and GitHub Actions CI/CD
Current production architecture · All resources managed via Terraform · East US
Roadmap

What I am Working on Next

The lab is always expanding. Here is what is currently in progress or coming up soon.

APIM in front of Function App
API Management gateway for rate limiting, auth, and lifecycle management
Azure Monitor Alerts and KQL
Proactive alerting and custom KQL queries against the Log Analytics workspace
Azure Service Bus
Async messaging between the Function App and Cosmos DB for decoupled writes
Azure Data Factory and Synapse
Export Cosmos DB to Blob Storage and query it with Synapse serverless SQL
Defender for Cloud
Free tier enabled with recommendations reviewed and documented
Azure Policy and Drift Detection
Governance policies on the resource group and Terraform drift detection in the pipeline
See the Office Survey View Resume