The purpose of this project is to provide a baseline bicep and JAVA function example that has a private endpoint connection to both the function and the key vault with easyauth turned on.
To create a service that can call the function utilizing an access token please follow the steps below.
At this point all service can call this function. To restrict access to specific users and services please follow the steps below.
-
Navigate to Enterprise applications and select the application registration created in step 1 for the EasyAuth function.
-
Navigate back to Application registrations that aligns to the function and select the application created in step 1 for the EasyAuth function. Then navigate to App Roles and create a new application role for both (Users/Groups + Applications)
-
Navigate to Application that aligns to the application calling the function and select API permissions and add a permission.