Azure function requires code query parameter, even if protected with Microsoft identity provider

Henri Koelewijn 1 Reputation point
2022-09-22T06:49:29.99+00:00

1: Create azure function
2: Add identity provider (I used Microsoft AD)
3: get function url
4: It still requires the code parameter in its url.
I'd like to be able to remove that, as the function app is protected by Azure AD now.

Allowing anonymous access is not an option

Azure Functions
Azure Functions
An Azure service that provides an event-driven serverless compute platform.
4,403 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,874 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. MuthuKumaranMurugaachari-MSFT 22,236 Reputation points
    2022-09-28T17:20:32.757+00:00

    @Henri Koelewijn Thank you for reaching out to Microsoft Q&A. Sorry for the delay in response.

    From your statement, I assume you would like to remove function key requirement without setting it to anonymous for Http triggered Function. Unfortunately, this is not possible with the current design and refer docs: Function access keys that describes it.

    245586-image.png

    Also, Authorization level talks about the different levels you can set and refer docs for more info.

    245628-image.png

    245672-image.png

    Even when you set anonymous for Http triggered Function, you can still reject authenticated requests for your application with Authorization behavior. Does that address your question?

    I would recommend submitting your feedback to our product team directly via https://feedback.azure.com/d365community/forum/9df02822-f224-ec11-b6e6-000d3a4f0da0 so that others can upvote it too. I would be happy to assist you for any questions.

    0 comments No comments