Hi @john john ,
Thanks for reaching out.
I understand you are trying to authenticate using Azure AD within Azure function and want to secure application parameters to exposed.
The security of the client ID and tenant ID is maintained by Azure Active Directory. When you pass the client ID and tenant ID to your application, they are used to authenticate the application with Azure Active Directory. Azure Active Directory provides secure storage for the client ID and tenant ID and ensures that only authorized applications can access them.
The certificate thumbprint is encrypted and stored securely in the Azure Active Directory App. The certificate thumbprint is used to verify the identity of the Azure function and ensure that only the Azure function can access the Azure Active Directory App.
You can also use Azure Key Vault to store the client ID and tenant ID. Azure Key Vault provides secure storage for secrets and ensures that they are stored securely and are not exposed in your code.
Hope this will help.
Please remember to "Accept Answer" if answer helped you.