SaibabaBalapur-MSFT
commented
2 years ago @kogepanh Thanks for your feedback! We will investigate and update as appropriate.
Open kogepanh opened 2 years ago
SaibabaBalapur-MSFT
commented
2 years ago @kogepanh Thanks for your feedback! We will investigate and update as appropriate.
It is my understanding that the scope of this article is to lock down storage accounts with Service Bus triggered or HTTP triggered Functions.
https://review.learn.microsoft.com/en-us/azure/azure-functions/functions-create-vnet
Therefore, it is noted that you need to enable private endpoints on your storage account for Azure Files Storage, Azure Blob Storage and Azure Table Storage.
However, it is difficult to read from the title of the article that the scope of this article is Service Bus triggers or HTTP triggers. For example, since the Blob trigger Functions uses Queue storage, it should be necessary to enable private endpoints for Queue storage as well when locking down the storage account.
I would like to discuss how to make it easier to understand that this article is scoped for Service Bus triggers or HTTP triggers. Also, there is no page I could find that mentioned storage that needs to be enabled for private endpoints in order to lock down the storage account used by Blob Trigger Functions.
FYI, it can be confirmed from the link in the following article that Queue storage is used in Blob Trigger Functions.
Document Details
⚠ Do not edit this section. It is required for learn.microsoft.com ➟ GitHub issue linking.