Ensure function apps are only accessible over HTTPS

Error: Function apps are not only accessible over HTTPS

Bridgecrew Policy ID: BC_AZR_NETWORKING_21
Checkov Check ID: CKV_AZURE_70
Severity: MEDIUM

Function apps are not only accessible over HTTPS

Description

By ensuring that function apps are only accessible over HTTPS, you can help to protect the data transmitted to and from your app from being accessed or modified by unauthorized parties. This can help to improve the security of your app and protect it from potential threats such as man-in-the-middle attacks or data breaches.

Fix - Buildtime

Terraform

  • Resource: azurerm_app_service
  • Argument:https_only
resource "azurerm_app_service" "example" {
							...
 +            https_only          = true
            }