Building and Deploying Azure Functions in .NET/

...

Applying Different Authorization Levels

Learn how to apply different authorization levels in Azure Functions to allow anonymous access, function key access, and admin-only access.

We'll cover the following...

Anonymous access
Function key access
Admin-only access

using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Azure.WebJobs;
using Microsoft.Azure.WebJobs.Extensions.Http;
using Microsoft.AspNetCore.Http;
using Microsoft.Extensions.Logging;

namespace AuthenticationExample;

public static class Functions
{
    [FunctionName("AnonymousAccess")]
    public static async Task<IActionResult> AnonymousAccess(
        [HttpTrigger(AuthorizationLevel.Anonymous, "get", "post")] HttpRequest req,
        ILogger log)
    {
        log.LogInformation("Anonymous function triggered.");
        return new OkResult();
    }

    [FunctionName("FunctonLevelAccess")]
    public static async Task<IActionResult> FunctonLevelAccess(
        [HttpTrigger(AuthorizationLevel.Function, "get", "post")] HttpRequest req,
        ILogger log)
    {
        log.LogInformation("Function triggered with function-level authorization.");
        return new OkResult();
    }

    [FunctionName("AppAdminAccess")]
    public static async Task<IActionResult> AppAdminAccess(
        [HttpTrigger(AuthorizationLevel.Admin, "get", "post")] HttpRequest req,
        ILogger log)
    {
        log.LogInformation("Function triggered with admin-level authorization.");
        return new OkResult();
    }
}

Authorization examples in Azure Functions

Introduction

Azure Functions Basics

Azure Functions Triggers and Bindings

Using Durable Functions For Long-Running Operations

Azure Functions Reliability and Availability

Scaling Azure Functions

Securing Azure Functions

Conclusion

Appendix

Applying Different Authorization Levels