Update: Microsoft will be moving away from UserVoice sites on a product-by-product basis throughout the 2021 calendar year. We will leverage 1st party solutions for customer feedback. Learn more here.

Web Apps

Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.

More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.

Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Provide acceptable scale out time for instances in ASE Isolated instance types

    Scaling is a core feature of App Services. We used ASE for the additional features however it means we are stuck with 40 mins scale out time to add an instance. Per support this is by design, however this is not documented anywhere in public domain.
    Scaling is supposed to help us get customers on to Azure, if it takes 40 mins to add an instance, it will not meet the business needs, we abandoned ASE only due to this issue. Kindly document current scale out time in public documentation so that user know this before hand.
    Ultimate goal should…

    102 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the feedback!

    You’re right that ASE scaling operations take longer than the common plans on multi-tenant App Service. We are looking at ways to decrease the time so it will on par with multi-tenant but this means a new infrastructure is needed with managing a pool or pre-assigned VMs to the ASEs.

    This is documented here, though without a time frame mentioned as it depends on a numbers of factors: https://docs.microsoft.com/en-us/azure/app-service/environment/using-an-ase#how-scale-works.

    We will update when there is more information here.

    Thanks,
    Oded

  2. Allow Custom URL Rewrite Handler for Database

    Allow installation of a GAC custom rewrite handler for doing URL rewrites on Web Apps using a database backend.

    93 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Deployment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add alerts/notification for Auto heal application.

    Adding alerts or notification when the there is a Proactive auto healing or Mitigation rules in the application.

    92 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  API Apps  ·  Flag idea as inappropriate…  ·  Admin →
  4. App Service - Allow Named Pipe Activation to be enabled

    We would like to use named pipes to communicate between services on the same app service, but this doesn't seem to be possible since named pipe activation isn't enabled in .Net on the app service.

    90 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Permission for accessing Performance counters

    We would like create a custom monitoring solution for our Azure Web Site based projects. Unfortunately the web site and job processes do not have permission to read performance counters.

    I understand that this is mandatory for a shared hosting environment. However I see nothing against having such functionality if the user has dedicated instances.

    Would it be possible to remove this restriction?

    87 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. Need a read-only role or operation for Web App Kudu logs.

    Developers need to be able to access the KUDU logs for deployment and diagnostic troubleshooting without having contributor access to the web app. Can a read-only role or resource provider operation be created in order to grant this level of access?

    82 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Supportability  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the valid suggestion. Your feedback is now open for the user community to upvote which allows us to effectively prioritize your request against our existing feature list and also gives us insight into the potential impact of implementing the suggested feature

  7. Azure App Service Certificate : Add support for EV certificates (Extended Validation)

    Azure App Service Certificate permit to have standard SSL and Wildcard. But need to add a new SKU for permit customers to register an EV Certificate too (Extended Validation)

    82 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  App Gallery  ·  Flag idea as inappropriate…  ·  Admin →
  8. Provide more secure TLS ciphers

    Currently Chrome flags the CBC ciphers as obsolete. CBC ciphers are at the top of the cipher preference list of Azure Web Apps as you can see there: https://www.ssllabs.com/ssltest/analyze.html?d=test.azurewebsites.net
    More info: https://www.chromium.org/Home/chromium-security/education/tls#TOC-Cipher-Suites

    So please provide some more secure ciphers from the ECDHE cipher suite like TLSECDHERSAWITHAES256GCMSHA384, TLSECDHERSAWITHAES128GCMSHA256, TLSECDHERSAWITHCHACHA20POLY1305SHA256.

    80 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    7 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Easy Auth OpenID Connect Provider - Support a Bearer Token

    We would like to use the Easy Auth OIDC provider with a Bearer token so that we can use client credentials grants with our API's.

    We tested the easy auth OIDC provider and were able to get code flow working with our IDP using these instructions:
    https://docs.microsoft.com/en-us/azure/app-service/configure-authentication-provider-openid-connect

    Adding bearer token support would allow us to leverage Easy Auth with our preferred IDP for both user and machine auth flows.

    74 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  10. Programmatically associating a Hybrid Connection to an Azure App Service is not possible

    I believe that there should be a capability added to Azure App Services to allow for programmatically associating existing Hybrid Connections to an App Service instance. This can be done manually via the portal as shown in the attached image but cannot be done via Powershell, Azure CLI, or Azure REST API. Any upcoming features for this? Or is this already possible but I haven't yet been able to find out how? Thank you.

    69 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    10 comments  ·  API Apps  ·  Flag idea as inappropriate…  ·  Admin →
  11. Support SSH to specific container in multi-container setup (Compose or Kubernetes)

    Currently the docs (https://docs.microsoft.com/en-us/azure/app-service/containers/app-service-linux-ssh-support) only describe setting up SSH access to a single container. But what if I have a multi container setup? For example PHP-FPM with an Nginx reverse proxy.

    It seems the SSH access is only supported for the public facing container (in this case Nginx).

    It would be great if I could setup SSH access to all containers.

    61 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  12. Access to a populated User.Identity

    It would be very valueable to have Access to a "populated" User.Identity in the Controllers. Most of the the time, at least in my apps, my Apis will present user specific Content. Having a populated User.Identity would help alot.

    59 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API Apps  ·  Flag idea as inappropriate…  ·  Admin →

    Hello!

    At the moment our recommended method for checking the identity of the current user is to check several attributes added to incoming requests. This is to allow your application to go completely in and out of memory on lower priced tiers without “always-on.” Check out the tutorial below for the header names.
    https://docs.microsoft.com/en-us/azure/app-service-api/app-service-api-authentication

    We would like to have language specific auth functionality like this in the future. I am placing this item in “unplanned” to be used in future planning sessions.

    thanks for your feedback!
    Alex
    Azure App Service Team

  13. Unable to use subnet when VNET Integrated App is deleted

    When an app service is integrated into Regional VNET the subnet is delegated with Microsoft.Web/Server Farm and if we delete app service we are unable to remove the service association link from the subnet. subnet goes waste and needs to raise a ticket with Microsoft. Either don't allow people to delete the function app/App Service, forcing them to disconnect from VNET prior or if it gets deleted to also clean up the delegation on the subnet.

    58 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Supportability  ·  Flag idea as inappropriate…  ·  Admin →
  14. Add support for NetworkWatcher / NSG Flow logs for App Service with Regional Vnet Integration enabled

    At the moment, if one uses an App Service with Vnet Integration there is NO way to monitor the traffic that traverses this path. For organizations with requirements to monitor ALL network traffic for integrity / Security / Audit purposes - this presents a significant challenge as ALL traffic that traverses this integration is not able to be monitored. Since the App Service presents itself as on a given subnet within the Vnet - there should be NO reason that NetworkWatcher or NSG flow logs shouldn't be usable.

    57 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Supportability  ·  Flag idea as inappropriate…  ·  Admin →
  15. WebApp custom DNS with private DNS Name

    Custom DNS HostName for a WebApp is working exactly in the same way in both Azure and Azure Stack, with both ownership and record check against a public Internet DNS server. That's pretty cool for public facing web applications, but represents a security issue for :
    1)Intranet applications.(hosted on Azure or AzureStack)
    - Custom Domain Names makes sence not only for Internet but Intranet too.
    - We don't want to expose intranet application names publicly to the wild...
    2)Multi-tenant AzureStack
    - Each customer would like to have it's own custom domain for its applications, and not use the *.appservice.local.azurestack.external or…

    56 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Flag idea as inappropriate…  ·  Admin →
  16. implement a graceful restart an Azure Web App with multiple instance

    We would like to have feature through which we can perform the configuration changes through portal without down time when there are multiple instances are available. The similar stuff is available in advanced restart where you can define the delay between restart of each instance.

    56 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Deployment  ·  Flag idea as inappropriate…  ·  Admin →

    Hi everyone, we have some long-term plans to improve the restart speed and experience.

    For this scenario we suggest creating a new slot, applying your changes there, validating they work, and swapping your changes. This pattern will avoid downtime on your production site.

  17. 55 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Increase the custom host name limit on App Service

    Right now, there is a limit of 500 custom home name on app service. We've an app service where in we configure custom hostname for each of our client. And we hit the limti of 500. Work around is to host multiple app service but that is too much overhead.
    We hit similar limit on AWS Cloud front and they increase the limit right away. We may need to think as an alternate if this is the hard limit on Azure.
    Looking forward for positive response.

    55 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. Send shutdown HTTP request for graceful termination

    There is no way to gracefully shutdown a Node Windows App Service. It would be great if iisnode sent a shutdown/cooldown request, just like it sends a warmup request (https://michaelcandido.com/app-service-warm-up-demystified/). This would allow us to close DB connections and stop processing Azure Service Bus messages, for example.

    55 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow FrontDoor CNAME for App Service Managed Certificate validation

    When creating an App Service Managed Certificate, it should allow validation if the CNAME is pointing to a FrontDoor with the same domain (or the FrontDoor's backend is the same Web App).

    Currently it gives the error "Hostname not eligible for App Service Managed Certificates creation" since the CNAME is not directly pointing to the web app.

    55 votes
    Vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  4 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base