Authentication (EasyAuth) on Linux consumption plan
Is support for authentication (EasyAuth) on Linux consumption plan in the works? Is there an alternative right now? I'm currently utilising the premium plan to get the authentication functionality...fortunately I need the hot start for this use case, but there are other use cases coming up where a pure consumption plan approach would be more appropriate.
Best way to secure Azure Function
So far, I am able to create azure functions that are accessible anonymously. However I'd like to secure those functions so that they only run from a specific Microsoft Flow. I am reading the docs and watching videos and am kinda lost on how to secure azure functions. What I did was I went to my function app, to Authentication / Authorization, and set the "App Service Authentication" to "On". I chose Log in with Azure Active Directory, and choose Advanced. In the client ID, I pasted the client ID that's added in app registrations. However I left the "issuer url" and "Allowed Token Audiences" empty as the docs aren't really clear on what these values should be. However when trying to execute the Azure function this way, am getting "id_token" is not enabled for your app. So I went to my app registration, and clicked on "Token configuration" from the left menu, I clicked on "Add optional claim" and chose ID and checked all the claims, and hit Add. But that didn't solve the issue. Is there a clear documentation of what should be done exactly? A lot of talking in the docs about theories and how authentication works but nothing practical to actually teach people to secure their functions step by step.
Application Consent when all are blocked?
Hi, When the consents for Enterprise Applications are set into very restricted level: User consent for applications: Users can request admin consent to apps they are unable to consent to Then come the application xyz which needs to be registered into company's tenant, and when users are trying to do this, they just get the following: Or they go to the web services like Microsoft's own msrc portal, they get the following when trying to sign-in with they work accout: Is there a way to avoid these? And how such a consent should be done so that end users does not need to be disturbed, is there a way to Administrators to do this before hand for end users?
