Description

By default, clients can connect to App Service by using both HTTP or HTTPS. HTTP should be disabled enabling the HTTPS Only setting.

Resolution: enable HTTPS only.

Examples

Example of incorrect code:

resource "azurerm_app_service" "bad_example" {
        name                       = "example-app-service"
        location                   = azurerm_resource_group.example.location
        resource_group_name        = azurerm_resource_group.example.name
        app_service_plan_id        = azurerm_app_service_plan.example.id
      }

Example of correct code:

resource "azurerm_app_service" "good_example" {
        name                       = "example-app-service"
        location                   = azurerm_resource_group.example.location
        resource_group_name        = azurerm_resource_group.example.name
        app_service_plan_id        = azurerm_app_service_plan.example.id
        https_only                 = true
      }

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Files

azure-appservice-enable-https-only.md

azure-appservice-enable-https-only.md

Description

Examples

Files

azure-appservice-enable-https-only.md

Latest commit

History

azure-appservice-enable-https-only.md

File metadata and controls

Description

Examples