Challenge: Securing an Azure Function

Test yourself by increasing the security of a function app.

We'll cover the following


The interactive playground at the bottom of this page contains a function app with a basic HTTP trigger endpoint. Change some of its security configurations as per the requirements.


The specific requirements to apply are as follows:

  • Ensure that the function endpoint can only be accessed via a function-level security key

  • Ensure that the endpoint can be accessed from any origin, and that the Access-Control-Allow-Credentials header is disabled.

Get hands-on with 1200+ tech skills courses.