Azure Function App doesn't redirect HTTP to HTTPS

Description

By ensuring that function apps are only accessible over HTTPS, you can help to protect the data transmitted to and from your app from being accessed or modified by unauthorized parties. This can help to improve the security of your app and protect it from potential threats such as man-in-the-middle attacks or data breaches.

Code Example

resource "azurerm_app_service" "example" {
                            ...
 +            https_only          = true
            }

Remediation

Terraform

Resource: azurerm_app_service
Arguments: https_only

Rule Details

Field	Value
ID	IAC-0578
Severity	MEDIUM
IaC Type	arm
Frameworks	Terraform,
Checkov ID	CKV_AZURE_70

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Azure Function App doesn't redirect HTTP to HTTPS

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Azure Function App doesn't redirect HTTP to HTTPS ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Azure Function App doesn't redirect HTTP to HTTPS

Description

Code Example

Remediation

Rule Details

References