Synopsis
The reported data includes Azure app names, container image digests and creation timestamps. For Azure Function apps or Web apps which uses zip deployment the fingerprint is calculated based on the content of the zip file. This is the same as unzipping the file and then running
kosli fingerprint -t dir yourDirName.
When doing zip deployment the WEBSITE_RUN_FROM_PACKAGE must NOT be set to 1. This will cause the azure
API calls to not return the content of what is running on the server and fingerprint calculations
will not match. See
https://learn.microsoft.com/en-us/azure/azure-functions/functions-app-settings#website_run_from_package
To authenticate to Azure, you need to create Azure service principal with a secret
and provide these Azure credentials via flags or by exporting the equivalent KOSLI env vars (e.g. KOSLI_AZURE_CLIENT_ID).
The service principal needs to have the following permissions:
- Microsoft.Web/sites/Read
- Microsoft.ContainerRegistry/registries/pull/read
Flags
Flags inherited from parent commands
Examples Use Cases
These examples all assume that the flags--api-token, --org, --host, (and --flow, --trail when required), are set/provided.
Use Azure Container Registry to get the digests for artifacts in a snapshot
Use Azure Container Registry to get the digests for artifacts in a snapshot
Use Docker logs of Azure apps to get the digests for artifacts in a snapshot
Use Docker logs of Azure apps to get the digests for artifacts in a snapshot
Report digest of an Azure Function app
Report digest of an Azure Function app