Skip to content

Instantly share code, notes, and snippets.

@paulyuk

paulyuk/how-to-secure-functions.md

Created July 22, 2024 22:34
Show Gist options
  • Save paulyuk/f9e5377632ba93b066c8bb4a655809f4 to your computer and use it in GitHub Desktop.
Save paulyuk/f9e5377632ba93b066c8bb4a655809f4 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
how-to-secure-functions.md

How to - Securing your Azure Function

Paul's secret mision "do this, and dont do that"

Using indentity

Using identity for AzureWebJobsStorage

Using identity for Bindings

Using identity for Deployment

Networking

Setting up vnet in your function app

Private storage endpoints & DNS

Bindings specific VNET/endpoints (Top N)

Deployment

Use Flex consumption

Use RFP=url + blob url (no azure files)

HTTP Access

Function keys

Easy auth

APIM

CORS (portal has to be fixed)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment