By Enabling Authentication, every incoming HTTP request passes through it before being handled by the application code. It also handles authentication of users with the specified provider, validation, storing and refreshing of tokens, managing the authenticated sessions and injecting identity information into request headers.
Recommended Mitigation
Enable Authentication for your app service by adding an identity provider.
Authentication
