Azure Functions
An Azure service that provides an event-driven serverless compute platform.
5,933 questions
Why are we suddenly getting an error (possibly a red herring) regarding a CORS issue when trying to execute a function app HTTP endpoint via the Test/Run feature in Azure?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 95%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAW%3C/text%3E%3C/svg%3E)
Andrew Webster
35
Reputation points
We have many function apps in our portal. Late last year (2023) we configured their access restrictions to only allow "AzureCloud" and "ApiManagement" (via the Service Tag dropdown in the rule selection).
At that time we were still able to use the Test/Run feature of a function with no issues.
Earlier this week we became aware that we can no longer use the Test/Run feature unless we add our own personal IP addresses to the list of allowed IP addresses. When we invoke a request that previously worked we are met with the below response and error message.
However, we do have https://portal.azure.com configured in the CORS section.
I suppose we have a few questions related to this.
- Why do we need to add our client IP addresses to the whitelist for a request initiated in Azure to be accepted by Azure? I understand why we'd need to do so if we were using a third party tool like Postman, but it seems the Test/Run request should be coming from Azure and not from our local machines.
- Did something change recently (within the last week) that could have affected this feature? Everything was working last week, but since Tuesday (6/11) it hasn't worked.
- If we are going to have to whitelist individual IP addresses, is there a way to do so globally so we don't need to add multiple individual addresses to many function apps?
Azure Functions
{count} votes
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 4%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Roccuzzo, Matt 5 Reputation points2024-07-09T19:51:28.2633333+00:00 Come on Microsoft, no response to this? You've broken Function App functionality for how many customers? Multiple function apps we use in production have run into this issue all of a sudden due to what seems like a change made in Azure without any warning to customers with these settings currently in place. Why was this change done and why do we now need to whitelist every single IP address that may initial requests when this wasn't a requirement previously?
Sign in to comment
Sign in to answer