az webapp config access-restriction does not support more than one Front Door ID in X-Azure-FDID #24285
Labels
app-service-networking
Auto-Assign
Auto assign by bot
customer-reported
Issues that are reported by GitHub users external to the Azure organization.
CXP Attention
This issue is handled by CXP team.
Web Apps
az webapp
This is autogenerated. Please review and update as needed.
Describe the bug
When adding a Networking Access Restriction rule for an App Service or Function App in the Azure Portal, the informational pop-up for the X-Azure-FDID field of the "Edit rule" window says "You can specify a unique instance id of Azure Font Door or reverse proxies supporting unique header identification. Enter up to 8 ids separated by a comma". And it works as described. When I try the equivalent in the Azure CLI, it fails if I use more than one Front Door ID.
Specifically, the
az webapp config access-restriction add
incorrectly limits the length of the --http-header parameter value to 64 characters, when it should be much longer. With each Front Door ID being 36 characters in length, the CLI should allow a value at least 295 characters in length. I only need to specify two Front Door IDs, but even that (74 characters) is too long for a 64-character limit. I can only currently specify one Front Door ID via the Azure CLI.Command Name
az webapp config access-restriction add
Errors:
To Reproduce:
Steps to reproduce the behavior. Note that argument values have been redacted, as they may contain sensitive information.
az webapp config access-restriction add --resource-group myRG --name myApp --action Allow --rule-name "Allow FrontDoor" --description "Some description" --priority 100 --service-tag AzureFrontDoor.Backend --http-header "x-azure-fdid=2876cff1-35e4-4d99-3ab2-e7a58ceb29c8,57904174-937f-4efb-b94f-4c03dbb675d0"
Expected Behavior
Creates a Network Access Restriction Rule with multiple, comma-delimited Front Door IDs in the X-Azure-FDID field.
Environment Summary
Additional Context
The text was updated successfully, but these errors were encountered: