I'm wanting to register an Azure Event Hubs as a WebHook to a third-party application which does not support any header/body authentication, just a simple URL.
I can't see anywhere in the Azure Event Hubs documentation or portal that allows me to set up a listener without a SAS? I understand this would make the Event Hub insecure, however, since it's only listening and writing the payload to Azure Blob Storage, I am happy to accept the risk.
If it's not possible to set up an Azure Event Hubs without any authentication, I thought about setting up an Azure Automation Runbook to expose a Webhook. The runbook would pass the payload to the Azure Event Hubs handling the authentication on the way through. Is this acceptable practice?
Are there any other known workarounds?
No, you must listen the event hubs with some authentications.
Your solution is feasible. You can use runbook to receive data and interact and verify with event hub. Of course, as the comments said, functions and other services are also feasible methods.
In short, it is impossible without any authentication at all.