I am trying to connect my apps together privately. Here is the setup:
- Webapp FrontEnd (Node 18) :
- Webapp Backend (.NET7)
- webApp CosmosDb (Azure Cosmos DB account)
Network Configuration:
- the frontend and backend are in the same app service plan Linux Basic: B2.
- frontEnd is public exposed
- backend is public blocked but has private endpoint
- frontEnd is trying to call backend using the https://backend-dev.azurewebsites.net
- All the subnets have the Micrsoft.Web service added. The frontend subnet has the webfarms delegation
- backend has the CORS with "*" added.
- The DNS are setup for all private links
Status:
- From the Frontend SCM I can do a curl to this backend url. I get proper response
- from browser I am getting 403
- Request has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.
- tried with "https://backend-dev.privatelink.azurewebsites.net" in frontnend code but did not work
Can someone help me out please. I tried the setups in this post as well. No luck
here is the resource graph
nslookup from frontend ssh
One thing I would check - are the private DNS zones linked to the vNet? This has cost me more pain than anything else in setups like this. Does the frontend resolve backend-dev.azurewebsites.net to the expected private IP?