Azure Linux Function App allows HTTP access, this may lead to MiTM and a host of other attacks.
In Azure Console -
In Terraform -
References:
https://learn.microsoft.com/en-us/azure/azure-functions/
https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/linux_function_app#https_only