cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Azure Function Keys

Bhargav1985
Copper Contributor

‎Oct 29 2020 09:08 AM - last edited on ‎Feb 01 2021 04:20 PM by

‎Oct 29 2020 09:08 AM - last edited on ‎Feb 01 2021 04:20 PM by

Azure Function Keys

Planning to design a simple azure function for multiple clients.

 

each client will have a separate function key.

 

In Serverless Function, I want to write a custom security check ( extra layer), to ensure that key is passed from desired tenant or client only. Hence I want to check, Key name of the value being passed while calling the function.

 

Example:

Function Name : SecureFunction

Authentication : Function level Security

Keys

Client1 : Key1

Client2 : Key2

 

User Calls SecureFunction with Key2 ( using x-functions-key header) : I want to derive the keyname of passd key

 

Expected output is Client2

 

 

 

Labels:
3,482 Views
0 Likes
3 Replies
Reply
3 Replies
CloudyRyan

‎Oct 29 2020 09:22 AM

‎Oct 29 2020 09:22 AM

Re: Azure Function Keys

@Bhargav1985 One thing to think about is API management - it's designed to do exactly what you're outlining: Create subscriptions in Azure API Management | Microsoft Docs

 

You can have 'subscriptions' created for each customer and you would know who the caller is and what they're allowed to do based on the passed in key.  I think it would be easier to have this managed by a product that performs these tasks versus needing to maintain this look-up table in code.

1 Like
Reply
Bhargav1985

‎Nov 05 2020 01:28 AM

‎Nov 05 2020 01:28 AM

Re: Azure Function Keys

@CloudyRyan : I tried APIM Subscriptions. But concept is same, it passes the key in header as Ocp-Apim-Subscription-Key.

 

As it's in header, I can just get the value. To identify the key Name, I need to have the lookup.

 

Correct me if  I have misunderstood the concept. 

 

My requirement is identify the product based on the key value.

0 Likes
Reply
CloudyRyan

‎Nov 05 2020 05:01 AM

‎Nov 05 2020 05:01 AM

Re: Azure Function Keys

Hello,

My suggestion was to use api management instead of passing keys on the header. What you are proposing sounds overly complex and would be challenging to scale as more clients come aboard. Api management would simple be another key you could issue on the product and would never require code changes. You could even correlated the issued key to a customer by storing that in a table or dB. I wouldn't overly complex it with the header inspection and just use the passed in key to discern between authorized clients.
0 Likes
Reply