A Function Compute function is compliant if its custom domain name is publicly accessible and has HTTPS enabled.
Scenarios
Enabling HTTPS for a Function Compute function encrypts data in transit and improves data security.
Threat level
Default threat level: Medium.
You can change the threat level based on your requirements.
Detection logic
- A Function Compute function is considered compliant if its attached custom domain name is accessible from the public network and has HTTPS enabled.
- A Function Compute function is considered non-compliant if it is not attached to a custom domain name, or if the attached custom domain name is accessible from the public network but does not have HTTPS enabled. For more information, see Remediation.
Rule details
| Parameter | Description |
| Rule name | A Function Compute function is attached to a custom domain name and has HTTPS enabled |
| Rule identifier | fc-function-custom-domain-and-https-enable |
| Labels | FC, Log |
| Automatic remediation | Not supported |
| Trigger mechanism | Periodic |
| Trigger frequency | 24 hours |
| Supported resource types | Function Compute function |
| Input parameters | None |
Remediation
Configure a custom domain name for the function and ensure that the domain is publicly accessible with HTTPS enabled. For more information, see Configure a custom domain name.
该文章对您有帮助吗?