Blog Post

Apps on Azure Blog
4 MIN READ

How to deploy your Web App from Azure Pipeline with restricted access.

Raven_Zhang's avatar
Raven_Zhang
Icon for Microsoft rankMicrosoft
Mar 18, 2022
More and more users now choose to integrate App Service with Azure DevOps to streamline build and deployment process of their applications. The SCM site is the engine behind App Service for de...
Updated Mar 26, 2024
Version 2.0
azure app service
azure functions
devops
powershell
web apps
Derek_Wade's avatar
Derek_Wade
Copper Contributor
Jun 12, 2023

Raven_Zhang, you can retrieve the IP address of the Microsoft-hosted agent with the following line of PowerShell.

 

 

$ip = (Invoke-WebRequest -uri "http://ifconfig.me/ip").Content

 

 

Because each Azure Pipeline Job may end up on a different agent, and each agent will have a different IP address, it's important that all of the following items occur within the same Pipeline Job.

  1. Download build artifact
  2. Retrieve the IP address of the Microsoft-hosted agent
  3. Add the access restriction rule
  4. Deploy the build artifact to app service
  5. Remove the access restriction rule

 

I recommend applying the https://learn.microsoft.com/en-us/azure/devops/pipelines/process/conditions condition for the step that removes the access restriction rule so that if something goes wrong and the deployment fails, the access restriction rule will still be removed.