Web Apps

Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.

More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.

Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.

We welcome user feedback and feature requests!

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. web apps backup alarm

    We have a lot of web apps with daily schedulled backup. We need to be able to set up an alarm to know when a backup fails

    2 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      1 comment  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →
    • [Linux] In "Drupal on Linux Web App with MySQL" it doesn't allow you to use local on instance DB but template states it have local MYSQL DB

      Either the template is having some issues or it's wrongly stated in the template and local MySQL DB is not available in this template.
      In either case, you need to correct either the template or template description.

      2 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        0 comments  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
      • Warnings for App Service Backups

        If App Service backups fail we should receive a mail about that so that we can check and solve the problem. Right now we only see that we have no backups when it's too late (normally because we lost data)!

        1 vote
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
        • IPv6 - Create IP Restrictions

          I would like the ability to create IPv6 restrictions for the web application. We're using a proxy in front of the web apps and it will pass traffic over both IPv4 and IPv6. We've setup the IPv4 restrictions to ensure everything is flowing through the proxy to get to the website but we're now having to disable IPv6 due to the limitation of Azure's inability to write IPv6 rules.

          25 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            5 comments  ·  Flag idea as inappropriate…  ·  Admin →
          • Allow importing 3rd party ssl certs for use as app service certificates in app services/web apps

            Currently if I have an ssl certificate being used in multiple app services, when I renew that certificate I have to update the app services one by one or via powershell. It looks like using an app service certificate would solve this by allowing me to renew in one place and have it update each of the app services automatically. The problem being that I use 3rd party issued ssl certs vs ones created as app service certs in azure.

            Ideal would be to either allow uploading 3rd party ssl certs to be used as app service certs or offer…

            2 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              0 comments  ·  Flag idea as inappropriate…  ·  Admin →
            • [Linux] Ability to move a Web App to a different App Service plan

              Enable the 'Change App Service Plan' blade for Linux web apps in order to allow Linux apps to be moved to a different App Service plan in the way Windows apps can be moved now.

              18 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                1 comment  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
              • Add comment field to IP Restrictions list

                Would be helpful to be able to associate a comment or description with each IP address/range similar to the firewall UX in Azure SQL DB.

                18 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                • [Linux] Add some container orchestration features to App Service to provide high density

                  Azure App Service is the Easy Button for app deployment and hosting, whereas Service Fabric and containers add significant complexity. However, Service Fabric and containers scale much more efficiently. It would be amazing if you could add some basic container orchestration features in a way that would make App Service the Easy Button for container-based deployments, including high density. I realize this is a challenging request, but like I said, it would be amazing!

                  Thanks!
                  Vince

                  5 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    2 comments  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
                  • App Service - Allow Named Pipe Activation to be enabled

                    We would like to use named pipes to communicate between services on the same app service, but this doesn't seem to be possible since named pipe activation isn't enabled in .Net on the app service.

                    84 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                    • 13 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        1 comment  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
                      • Document the clock syncronization between App Service

                        I couldn't find anywhere about the clock synchronization between different instances of an App Service and also between App Service and other Azure services (e.g. Azure Storage, Service Bus etc.)

                        What we need to know is if there is any grantee that if we take DateTime.UtcNow on two instances of App Service (website), to which degree they will be comparable.

                        Also to which degree the clocks of App Service (website) match with other Azure infrastructure. As currently I think there is miss-match in seconds. Take a look at following example of what we are currently seeing in our system on…

                        5 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                        • Update Web App ModSecurity module to 2.9.2

                          The current version of the ModSecurity module that is integrated in the IIS of the Web App Services is 2.8.0.
                          This version of ModSecurity has issues with the IP + Port formatting of the AlwaysOnline service. Please update it to 2.9.2.

                          12 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            under review  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                          • Access-Control-Allow-Credentials not set in credentialed CORS request

                            Not sure if this is a bug or a feature request. This is affecting me when using Azure Functions, but I beleive this has to do with the CORS implementation in Web Apps.

                            Basically, the Access-Control-Allow-Credentials header is not being set in response to credentialed requests.
                            https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials

                            Someone else posted this issue in the azure functions github, but @lindydonna said this was to do with Web Apps. Original github issue is here:
                            https://github.com/Azure/azure-webjobs-sdk-script/issues/620

                            The problem is also documented on the official MS developer blog here:
                            https://blogs.msdn.microsoft.com/benjaminperkins/2017/04/12/azure-functions-access-control-allow-credentials-with-cors/

                            38 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              7 comments  ·  Bugs  ·  Flag idea as inappropriate…  ·  Admin →
                            • App services should show the max supported version of ASP.NET core

                              If you deploy an app with a version of .NET Core that isn't deployed on Azure yet, you get horrible to debug errors that you have to enable stdout logging on to get to the bottom of.

                              (Ultimatly editing csproj with PublishWithAspNetCoreTargetManifest set to false)

                              Confusing and time consuming. It would be great if Azure showed you some where on the app, a max supported version of .NET core and some kind of publishing warning if you try to push something higher.

                              1 vote
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                0 comments  ·  Deployment  ·  Flag idea as inappropriate…  ·  Admin →
                              • Remove Weak SSL Cyphers from App Services

                                App Services currently supports the following Cyphers:

                                HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Cryptography\Configuration\Local\SSL\00010002
                                (Default) REG_SZ NCRYPT_SCHANNEL_INTERFACE
                                Functions REG_MULTI_SZ
                                TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256\
                                0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384\
                                0TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256\
                                0TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P384\
                                0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P256\
                                0TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA_P384\
                                0TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P256\
                                0TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA_P384
                                \0TLS_DHE_RSA_WITH_AES_256_GCM_SHA384\
                                0TLS_DHE_RSA_WITH_AES_128_GCM_SHA256\
                                0TLS_RSA_WITH_AES_256_GCM_SHA384\
                                0TLS_RSA_WITH_AES_128_GCM_SHA256\
                                0TLS_RSA_WITH_AES_256_CBC_SHA256\
                                0TLS_RSA_WITH_AES_128_CBC_SHA256\
                                0TLS_RSA_WITH_AES_256_CBC_SHA\
                                0TLS_RSA_WITH_AES_128_CBC_SHA\
                                0TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384_P384\
                                0TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256_P256\
                                0TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256_P384\
                                0TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384_P384\
                                0TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P256\
                                0TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256_P384\
                                0TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P256\
                                0TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA_P384\
                                0TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P256\
                                0TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA_P384\
                                0TLS_DHE_DSS_WITH_AES_256_CBC_SHA256\
                                0TLS_DHE_DSS_WITH_AES_128_CBC_SHA256\
                                0TLS_DHE_DSS_WITH_AES_256_CBC_SHA\
                                0TLS_DHE_DSS_WITH_AES_128_CBC_SHA\
                                0TLS_RSA_WITH_3DES_EDE_CBC_SHA\
                                0TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA\
                                0TLS_RSA_WITH_RC4_128_SHA\
                                0TLS_RSA_WITH_RC4_128_MD5\
                                0TLS_RSA_WITH_NULL_SHA256\
                                0TLS_RSA_WITH_NULL_SHA\
                                0SSL_CK_RC4_128_WITH_MD5\
                                0SSL_CK_DES_192_EDE3_CBC_WITH_MD5

                                All Old/Weak Cyphers should be removed to increase security of the service.

                                12 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
                                • app service authentication - support convergence login for MicrosoftAccount defined at apps.dev.microsoft.com

                                  Allow app service to support authentication from microsoft accounts apps configured with convergence...

                                  3 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Allow Azure App Service IP Restriction configuration by PowerShell Script

                                    At the moment an Azure App service has the ability to white list IP addresses through the Networking > IP Restriction blade. It would be useful if this could be configured through PowerShell.

                                    81 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      9 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Document healthcheck URL requirement for custom containers

                                      With Web App for Containers, it seems Azure uses a special URL "/robots933456.txt" to check when the container has started, and expects a valid HTTP response (404 is fine). This requirement for custom containers should be mentioned in the documentation! (and preferably, it should be configurable)

                                      14 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        under review  ·  3 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                      • WebApp custom DNS with private DNS Name

                                        Custom DNS HostName for a WebApp is working exactly in the same way in both Azure and Azure Stack, with both ownership and record check against a public Internet DNS server. That's pretty cool for public facing web applications, but represents a security issue for :
                                        1)Intranet applications.(hosted on Azure or AzureStack)
                                        - Custom Domain Names makes sence not only for Internet but Intranet too.
                                        - We don't want to expose intranet application names publicly to the wild...
                                        2)Multi-tenant AzureStack
                                        - Each customer would like to have it's own custom domain for its applications, and not use the *.appservice.local.azurestack.external or…

                                        1 vote
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Aggregated logs for Linux App Service instances

                                          To access logs for my Linux App Service instance i have to go to myapp.scm.azurewebsites.net/api/logs/docker and it lists all the instances i have running with a link to the log file for each node. This is cumbersome when trying to debug an issue. Could we have an option under diagnostic logs to target a storage Table and have these aggregated as one source

                                          12 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            0 comments  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Web Apps

                                          Feedback and Knowledge Base