Troubleshooting Azure Function App Proxy with Private Blob Container Access for Static Web App
Recently, I shared a problem I’m facing in my testing environment with a friend. I’ve decided to bring this issue to an open forum discussion to gather additional insights. I hope you can help me figure out what might be missing in my configuration. **Context:** I’m trying to replicate a solution in my test environment but encountering difficulties in a specific scenario. **Scenario:** I have a Function App acting as a proxy for a Static Web App hosted in a Blob Container. This Blob Container is set to private access, meaning public access is disabled. **The Problem:** The goal is for my Function App to authorize users and direct them correctly to the Static Web App. However, it’s not working as expected. **What I’ve tried so far:** 1. Configured Managed Identity for the Function App and granted the necessary permissions to the Blob Container. 2. Properly set up authentication and created the App Registration, which works flawlessly. 3. Verified that the proxy functions correctly when the Blob Container’s public access is enabled. **Current behavior:** - When public access to the Blob Container is enabled, everything works fine. - When public access is disabled, even with the proxy configured, access fails, and an error message "resource not found" is returned. **My questions are:** 1. Do I need to configure something additional in the proxy definition file? 2. Is there a specific setting, like a private endpoint or something similar, that I should implement to resolve this issue? **Additional considerations:** I haven’t configured a private endpoint yet, but I’m considering whether this would be the most appropriate solution for my case. My initial expectation was that granting the necessary permissions to the Function App via Managed Identity would solve the issue, but it hasn’t. I appreciate any guidance or suggestions you can provide!
Former Employer Abuse
My former employer, Albert Williams, president of American Security Force Inc., keeps adding my outlook accounts, computers and mobile devices to the company's azure cloud even though I left the company more than a year ago. What can I do to remove myself from his grip? Does Microsoft have a solution against abusive employers?
Creating Logic App to Identify Low Storage Devices from Intune
Hello everyone, I’m seeking some assistance with creating a Logic App. I need to identify devices in Intune that have 5GB or less of available space and receive an email with the details of these devices, including their names. Is this achievable?Azure durable function that run once each day
i want to create an azure durable function which run once a day, now using visual studio 2022 , i create a new azure function of type durable function orchestration using .net 8.0 isolated, as follow:- , and i got this default code:- using Microsoft.Azure.Functions.Worker; using Microsoft.Azure.Functions.Worker.Http; using Microsoft.DurableTask; using Microsoft.DurableTask.Client; using Microsoft.Extensions.Logging; namespace FunctionApp1 { public static class Function1 { [Function(nameof(Function1))] public static async Task<List<string>> RunOrchestrator( [OrchestrationTrigger] TaskOrchestrationContext context) { ILogger logger = context.CreateReplaySafeLogger(nameof(Function1)); logger.LogInformation("Saying hello."); var outputs = new List<string>(); // Replace name and input with values relevant for your Durable Functions Activity outputs.Add(await context.CallActivityAsync<string>(nameof(SayHello), "Tokyo")); outputs.Add(await context.CallActivityAsync<string>(nameof(SayHello), "Seattle")); outputs.Add(await context.CallActivityAsync<string>(nameof(SayHello), "London")); // returns ["Hello Tokyo!", "Hello Seattle!", "Hello London!"] return outputs; } [Function(nameof(SayHello))] public static string SayHello([ActivityTrigger] string name, FunctionContext executionContext) { ILogger logger = executionContext.GetLogger("SayHello"); logger.LogInformation("Saying hello to {name}.", name); return $"Hello {name}!"; } [Function("Function1_HttpStart")] public static async Task<HttpResponseData> HttpStart( [HttpTrigger(AuthorizationLevel.Anonymous, "get", "post")] HttpRequestData req, [DurableClient] DurableTaskClient client, FunctionContext executionContext) { ILogger logger = executionContext.GetLogger("Function1_HttpStart"); // Function input comes from the request content. string instanceId = await client.ScheduleNewOrchestrationInstanceAsync( nameof(Function1)); logger.LogInformation("Started orchestration with ID = '{instanceId}'.", instanceId); // Returns an HTTP 202 response with an instance management payload. // See https://learn.microsoft.com/azure/azure-functions/durable/durable-functions-http-api#start-orchestration return client.CreateCheckStatusResponse(req, instanceId); } } } my question is how i can configure the durable function to run on schedule bases and not on http request? Thanks.PFX file not showing
Why imported .PFX file from key vault not showing on Bring your own certificates (.pfx) list? updating SSL here Has anyone tried this problem? Also how to easily search all the subdomains in Azure is their a way to search to show all of them would show up in the list it is hard open different APIs to locate different domains.Conditional access policy or User risk policy set to force password at high risk doesnt work
Hi all, When setting Conditional access policy or User risk policy set to force password at high risk doesn't work instead I get a blocked windows on users. I have set SSPR too and I think this is a requirement What am I doing wrong?
IoTHub Unauthorised Response
We work with small handheld devices that send events and general info to our backend using Azure IoT Hub and MQTT with self-made SAS Tokens. On the 24th of September we received over 1 million Unauthorized responses when trying to connect to the hub, using our handsets that had not had any code/protocol changes. From there, the number of Unauthorized responses have dropped dramatically to be in the ten thousands, but we are still getting the Unauthorized response on handsets that have the correct provisioning info (keys, hub address). When discussing with Microsoft support team they have said it is due to an expired Sas token, but our Sas tokens have been regenerated and still the problem persists. They also said they didn't make any code/structural changes to the hub, but the sudden unexpected behavior persists. Has anyone had similar issues? We have regenerated Sas tokens, sent new keys and provisioning info, but any handsets we get back into our hands do not show the problem.Microsoft System Center DPM 2019 and Azure Backup Services
Microsoft System Center Data Protection Manager 2019 In a Earlier blogpost I wrote about Backup – Restore – DR Strategy in a fast changing world Microsoft Products for Backup – Restore -DR, we have: Microsoft System Center Data Protection Manager Microsoft Azure Backup Microsoft Azure Site Recovery (DR) 1. Microsoft System Center Data Protection Manager (DPM) You can install Microsoft SCDPM on different solutions, like: As a physical standalone server As a Hyper-V virtual machine As a Windows virtual machine in VMWare As an Azure virtual machine If you don’t want to manage hardware like a physical Server, you can virtualize your DPM Server on-Premises on Hyper-V or VMware but you can also install DPM into the Cloud as an Azure VM. Here you can read What’s New in System Center DPM 2019 Before you begin you should know what Microsoft System Center Data Protection Manager support and can protect by Backup. Here you find the highlights. 2. Microsoft Azure Backup Use Azure Backup to protect the data for on-premises servers, virtual machines, virtualized workloads, SQL server, SharePoint server, and more. Because this is a Microsoft Cloud Service, you don’t have to buy expensive hardware like Physical Servers, Storage, Tape Library, you just pay for what you are using in Azure, Here you find the Microsoft Azure Calculator to calculate your Backup costs. Read the complete Blogpost on System Center DPM 2019 and Azure Backup here
