Hey guys,
I have an azure function with Authorization Level set to Function.
When I access it through the API Management URL, it returns "Hello World". When I access it through the Azure Function url, it returns 401.

How come API Management bypass security? I have set no inbound policy to have this behavior, just imported the function into API management.

How do I disable such bypass?
