question

rima avatar image
rima asked

Azure Function API Policy

Is it Possible to Target a Specific Azure Function via the API Policy?. We have a Multiple azure functions registered. Most of them are meant to be invoked by Clients . But some are only to be Called from a Secure Game Server which has the playfab secret key.

What's the best method to approach this via the API Policy?

Thanks.

apisCloudScriptAuthentication
10 |1200
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

1 Answer

·
brendan avatar image
brendan answered

There isn't, but why not just take a secret key as a parameter to the call, and check it in the script?

2 comments
10 |1200
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.

rima avatar image rima commented ·

Hi Brendan,

Right good idea, so We do a secret key AUTH/Check within the Azure Function. Just making sure that this isn't possible within API Policy before we implement it.

Also do you think on top of the secret key check, Checking the Entity Type is also a Good idea? Since if a Player is Executing it , the entity type would be title_player_account


Cheers,
Amir

0 Likes 0 ·
brendan avatar image brendan rima commented ·

There's certainly no harm in checking that, as well.

0 Likes 0 ·

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 2 attachments (including images) can be used with a maximum of 512.0 KiB each and 1.0 MiB total.