The azurerm_windows_function_app resource provider defaults to scm_use_main_ip_restriction = false, therefore I propose including a setting to restrict the Advanced tool site to the same IP addresses as specified in the main site restrictions to preemptively curtail any possible misuse as well as explicitly restricting it to TLS 1.2 only.
The
azurerm_windows_function_app
resource provider defaults toscm_use_main_ip_restriction = false
, therefore I propose including a setting to restrict the Advanced tool site to the same IP addresses as specified in the main site restrictions to preemptively curtail any possible misuse as well as explicitly restricting it to TLS 1.2 only.