Web Apps
Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.
More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.
Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.
-
The Always On setting should have an option to make it sticky to the slot when swapping
This is odd it isn't this way by default but should at the very least have an option to make it sticky so as to not break anyone's current practices (in fact, shouldn't more settings have the option to be sticky?).
The issue here is that an always on slot consumes resources. If for example each app consumes 200Megs of RAM, and I have 5 app services running on a service plan, each app service has 2 slots for swapping, then I need to have Always On turned on unnecessarily for 10 slots (2gigs of RAM consumed for nothing). The…
123 votesMoving the feature request to under review. When we have a clear timeline to share, we’ll update the status.
Thanks,
Oded -
Provide acceptable scale out time for instances in ASE Isolated instance types
Scaling is a core feature of App Services. We used ASE for the additional features however it means we are stuck with 40 mins scale out time to add an instance. Per support this is by design, however this is not documented anywhere in public domain.
Scaling is supposed to help us get customers on to Azure, if it takes 40 mins to add an instance, it will not meet the business needs, we abandoned ASE only due to this issue. Kindly document current scale out time in public documentation so that user know this before hand.
Ultimate goal should…94 votesThanks for the feedback!
You’re right that ASE scaling operations take longer than the common plans on multi-tenant App Service. We are looking at ways to decrease the time so it will on par with multi-tenant but this means a new infrastructure is needed with managing a pool or pre-assigned VMs to the ASEs.
This is documented here, though without a time frame mentioned as it depends on a numbers of factors: https://docs.microsoft.com/en-us/azure/app-service/environment/using-an-ase#how-scale-works.
We will update when there is more information here.
Thanks,
Oded -
Allow Custom URL Rewrite Handler for Database
Allow installation of a GAC custom rewrite handler for doing URL rewrites on Web Apps using a database backend.
90 votesHi there,
Thanks for bringing this up once more. We will have an internal conversation again about implementing for App Service.
Thanks,
Oded -
App Service - Allow Named Pipe Activation to be enabled
We would like to use named pipes to communicate between services on the same app service, but this doesn't seem to be possible since named pipe activation isn't enabled in .Net on the app service.
90 votesThanks for the entry. We’re taking a look.
Oded
-
Allow scale up to Premium V3 without redeploy or cloning
When using an existing App Hosting Plan like S or Pv2 you can't scale to the new P*v3. It just says "Premium V3 is not supported for this scale unit." That last part is an easy sentence to write, but a much harder thing for us to execute.
It would be great if we could have an option to migrate seamlessly to Pv3. Yes, it needs to migrate to a new scale unit that support Pv3, but it's much easier for Azure to manage all the things than doing it from User-Side.88 votes -
Permission for accessing Performance counters
We would like create a custom monitoring solution for our Azure Web Site based projects. Unfortunately the web site and job processes do not have permission to read performance counters.
I understand that this is mandatory for a shared hosting environment. However I see nothing against having such functionality if the user has dedicated instances.
Would it be possible to remove this restriction?
87 votesThis isn’t available yet and we’re leaving the ask under review for now. We’ll come back to the idea when we have news.
Thanks,
Oded -
Azure App Service Certificate : Add support for EV certificates (Extended Validation)
Azure App Service Certificate permit to have standard SSL and Wildcard. But need to add a new SKU for permit customers to register an EV Certificate too (Extended Validation)
82 votesYou can get EV certificates from Azure Key Vault service today or bring your own certificate from external CA and import it via “Upload Certificate”. You would then have to upload the certificate from Key Vault as documented here https://docs.microsoft.com/en-us/azure/key-vault/key-vault-use-from-web-application
We are looking into how to improve the experience in Azure portal .
-
Provide more secure TLS ciphers
Currently Chrome flags the CBC ciphers as obsolete. CBC ciphers are at the top of the cipher preference list of Azure Web Apps as you can see there: https://www.ssllabs.com/ssltest/analyze.html?d=test.azurewebsites.net
More info: https://www.chromium.org/Home/chromium-security/education/tls#TOC-Cipher-SuitesSo please provide some more secure ciphers from the ECDHE cipher suite like TLSECDHERSAWITHAES256GCMSHA384, TLSECDHERSAWITHAES128GCMSHA256, TLSECDHERSAWITHCHACHA20POLY1305SHA256.
80 votesHi there,
We are constantly reviewing cipher suites and will update more in the future.
Thanks,
Oded -
Add alerts/notification for Auto heal application.
Adding alerts or notification when the there is a Proactive auto healing or Mitigation rules in the application.
80 votes -
Web App for Containers - ACR access requires admin account enabled on repository
It looks as though Web App for Containers requires the use of the admin account on the repository in ACR.
The notes on use of the admin account suggest to use that account only for testing purposes and describe some of the downsides to having it enabled.
Is there a plan to support Service Principal access to the ACR repository for Web App for Containers?
78 votesWe have started work to enable use of Service Identities to authenticate between App Service and ACR
-
Need a read-only role or operation for Web App Kudu logs.
Developers need to be able to access the KUDU logs for deployment and diagnostic troubleshooting without having contributor access to the web app. Can a read-only role or resource provider operation be created in order to grant this level of access?
77 votesThanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature
-
Easy Auth OpenID Connect Provider - Support a Bearer Token
We would like to use the Easy Auth OIDC provider with a Bearer token so that we can use client credentials grants with our API's.
We tested the easy auth OIDC provider and were able to get code flow working with our IDP using these instructions:
https://docs.microsoft.com/en-us/azure/app-service/configure-authentication-provider-openid-connectAdding bearer token support would allow us to leverage Easy Auth with our preferred IDP for both user and machine auth flows.
70 votes -
Programmatically associating a Hybrid Connection to an Azure App Service is not possible
I believe that there should be a capability added to Azure App Services to allow for programmatically associating existing Hybrid Connections to an App Service instance. This can be done manually via the portal as shown in the attached image but cannot be done via Powershell, Azure CLI, or Azure REST API. Any upcoming features for this? Or is this already possible but I haven't yet been able to find out how? Thank you.
69 votesThe feature in planned for support and we will update as development proceeds.
Thanks,
Oded -
Access to a populated User.Identity
It would be very valueable to have Access to a "populated" User.Identity in the Controllers. Most of the the time, at least in my apps, my Apis will present user specific Content. Having a populated User.Identity would help alot.
59 votesHello!
At the moment our recommended method for checking the identity of the current user is to check several attributes added to incoming requests. This is to allow your application to go completely in and out of memory on lower priced tiers without “always-on.” Check out the tutorial below for the header names.
https://docs.microsoft.com/en-us/azure/app-service-api/app-service-api-authenticationWe would like to have language specific auth functionality like this in the future. I am placing this item in “unplanned” to be used in future planning sessions.
thanks for your feedback!
Alex
Azure App Service Team -
Linux Static Site on Nginx
One of the most common web techniques today is static generated web sites. Ideally, there would be an option along with Node, Php etc for Static HTML. This would allow configuration for just running Nginx web servers to host static sites.
56 votesThanks for your suggestion, we will evaluate the suggestion and post an update when we have news to share.
Ahmed
App Service Team -
Support SSH to specific container in multi-container setup (Compose or Kubernetes)
Currently the docs (https://docs.microsoft.com/en-us/azure/app-service/containers/app-service-linux-ssh-support) only describe setting up SSH access to a single container. But what if I have a multi container setup? For example PHP-FPM with an Nginx reverse proxy.
It seems the SSH access is only supported for the public facing container (in this case Nginx).
It would be great if I could setup SSH access to all containers.
56 votesThanks for the feedback! We are looking to include SSH support for multi-containers soon. Follow our team blog for updates here: aka.ms/AppServiceBlog
Thanks,
Oded -
55 votes
With the release of Azure App Service on Linux, we are looking in supporting Golang as a built-in runtime stack. In the meanwhile you can create a custom container that supports Go.
A link of how to use a custom docker container with Web App for Containers:
https://docs.microsoft.com/en-us/azure/app-service/containers/quickstart-custom-docker-imageThanks,
Ahmed, App Service -
Send shutdown HTTP request for graceful termination
There is no way to gracefully shutdown a Node Windows App Service. It would be great if iisnode sent a shutdown/cooldown request, just like it sends a warmup request (https://michaelcandido.com/app-service-warm-up-demystified/). This would allow us to close DB connections and stop processing Azure Service Bus messages, for example.
55 votes -
Fix export of resource type 'Microsoft.Web/sites/config'
get error :"Could not get resources of the type 'Microsoft.Web/sites/config'. Resources of this type will not be exported. (Code: ExportTemplateProviderError)"
Among the obvious it would be nice to see how to set various app settings like turning off PHP and activating 'Always On' or maybe turning off 'ARR Affinity'.
54 votes -
Increase the custom host name limit on App Service
Right now, there is a limit of 500 custom home name on app service. We've an app service where in we configure custom hostname for each of our client. And we hit the limti of 500. Work around is to host multiple app service but that is too much overhead.
We hit similar limit on AWS Cloud front and they increase the limit right away. We may need to think as an alternate if this is the hard limit on Azure.
Looking forward for positive response.52 votesHello,
Thank you for your feedback. Currently, we do not have plans to increase the custom host name limit. We will leave this request “open” for users to vote/comment.
Best,
Jason
- Don't see your idea?