Web Apps

Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.

More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.

Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.

We welcome user feedback and feature requests!

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow Azure App Service IP Restriction configuration by PowerShell Script

    At the moment an Azure App service has the ability to white list IP addresses through the Networking > IP Restriction blade. It would be useful if this could be configured through PowerShell.

    9 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Flag idea as inappropriate…  ·  Admin →
    • Linux / Docker for ASE

      We are using ASE and would like to deploy Web Apps using docker containers with linux to be able to run NodeJS applications on Azure.

      For now, with our configuration, there is a limitation => we can only deploy NodeJS applications on Windows with IIS, not docker/linux.

      We need linux too ! <3

      8 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        0 comments  ·  Flag idea as inappropriate…  ·  Admin →
      • app service authentication - support convergence login for MicrosoftAccount defined at apps.dev.microsoft.com

        Allow app service to support authentication from microsoft accounts apps configured with convergence...

        3 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
        • App Service Environments Architecture and Cost

          I love using App Service Environments; however, the cost is shocking. We like that our App service can communicate over our express route to our data center. I gained some new understandings with how these services work on the back-end and it seems confusing. I have an understanding that normal App Service Plans operate such that a fault tolerant pair is available in a different part of the data center and in the event of a failure, your code is moved to the other pair. This is great and I love that. With ASE's the architecture changes and the use…

          6 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            under review  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
          • Way to monitor Web App connections regardless of state

            I had an issue where my web app was unable to open new connections because too many were open. The metrics-per-instance reports for monitoring connections only show open and close-wait state connections. For whatever reason the connections impacting my app were in another state and hence were not shown.

            I believe I have resolved my issue, but I cannot check on the health of the app without asking an Azure support technician to assist.

            It can also be misleading when troubleshooting to see 80 connections in the report, when there are actually 3500 in use.

            Thanks!

            9 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              0 comments  ·  Flag idea as inappropriate…  ·  Admin →
            • A method to allow folks to access the FTP transfer logs when ftp is used to deploy code changes to their azure web apps.

              Allow site admins to access the ftp transfer logs when ftp is the selected method used to make web site deployment updates. We use ftp to allow site updates, and we've had an incident where having access to those logs would be very helpful.

              4 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                0 comments  ·  Flag idea as inappropriate…  ·  Admin →
              • DNS resolution is not working in Azure Web App for Containers (linux)

                DNS resolution is not working in Web App for Containers (linux) when using custom docker image. The DHCP generated resolv.conf is broken. After using SSH to log in to the container trying nslookup google.com also fails with DNS resolution error.

                See my sample project for more details:

                https://github.com/henkosch/azure-webapp-dnstest

                The problem is also mentioned in the comments section on this page:

                https://docs.microsoft.com/en-us/azure/app-service/containers/app-service-linux-faq

                Does anyone have an idea how to fix this?

                33 votes
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  2 comments  ·  Bugs  ·  Flag idea as inappropriate…  ·  Admin →
                • [LINUX] Provide node.js 8.9 LTS as an available runtime

                  Node 8.9 is now the LTS version and 6.x is in maintenance. Please add Node 8.9 to the list of available runtime stacks for App Service Docker containers.

                  16 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
                  • HTTPS only without redirect

                    This feature has been requested multiple times (like here: https://feedback.azure.com/forums/169385-web-apps/suggestions/6868536-provide-require-ssl-setting-for-azure-websites), but has been closed time after time with the same workaround. The workaround consists of adding a redirect rule to web.config.

                    We however want a way to disable insecure HTTP requests completely.

                    Think of an API that gets called by a React or Angular app. Calling the HTTP endpoint of the API would be a bug and might lead to sensitive information like the access token being send over HTTP. It would appear to work, because the request gets redirected to HTTPS, so the bug would be harder to…

                    30 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                    • Linux Static Site on Nginx

                      One of the most common web techniques today is static generated web sites. Ideally, there would be an option along with Node, Php etc for Static HTML. This would allow configuration for just running Nginx web servers to host static sites.

                      30 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        1 comment  ·  Flag idea as inappropriate…  ·  Admin →
                      • Display slots should list their full name in the resource lists.

                        When you are viewing resources in the "All Resources" blade or in the "Resource Group" blade all slots are just listed using only their slot name, if you have many different web apps that all use slots you will see the same name repeated several times (see "Example Resource Group.PNG").

                        I suggest you display the name from the resources blade the same way you display it in the delete menu if you are deleting the base web app "BaseName-SlotName" (See "delete example.PNG")

                        14 votes
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          1 comment  ·  Flag idea as inappropriate…  ·  Admin →
                        • Azure Web App auth customize WWW-Authenticate challenge

                          Support authorization_uri in Azure AD Pre-Auth for Web Apps

                          https://stackoverflow.com/questions/46908858/azure-web-app-auth-customize-www-authenticate-challenge

                          According to some docs (https://docs.microsoft.com/en-us/azure/active-directory/develop/active-directory-protocols-oauth-code#use-the-access-token-to-access-the-resource), the WWW-authenticate header should return authorization_uri like this:

                          HTTP/1.1 401 Unauthorized
                          WWW-Authenticate: Bearer authorization_uri="https://login.microsoftonline.com/contoso.com/oauth2/authorize", error="invalid_token", error_description="The access token is missing.",

                          But since we use the pre-authentication features of Azure Web Apps, we can't control that directly from code.

                          18 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                          • Add "Allow access to Azure services" in Azure App Service IP restrictions

                            Re this thread

                            https://www.yammer.com/azureadvisors/#/Threads/show?threadId=945875058

                            I'd used PowerShell to manually add IP restrictions a couple of weeks ago. Right away my App Insights availability tests started failing so I narrowed the test location down to Dublin IE and allowed those IP/Subnets.

                            Add an option similar to SQL Server "Allow access to Azure services" That white lists Azure App insights availability tests for selected regions.

                            Thanks

                            Luke

                            21 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  Deployment  ·  Flag idea as inappropriate…  ·  Admin →

                              There was some confusion about this feature due to the documentation for it and UX originally released had a bug.

                              The IP Restrictions feature works as an ALLOW list, rather than a DENY list as originally stated.

                              The ask here is still valid, there are other services in azure (like SQL) that have UI to explicitly allow other azure services to reach the database. While this is convenient for development scenarios, it’s not a good idea for securing the resource.

                              We’ll keep an eye on this request and see if it gathers more up-votes.

                              -Byron

                            • Provide more secure TLS ciphers

                              Currently Chrome flags the CBC ciphers as obsolete. CBC ciphers are at the top of the cipher preference list of Azure Web Apps as you can see there: https://www.ssllabs.com/ssltest/analyze.html?d=test.azurewebsites.net
                              More info: https://www.chromium.org/Home/chromium-security/education/tls#TOC-Cipher-Suites


                              So please provide some more secure ciphers from the ECDHE cipher suite like TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256.

                              58 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                6 comments  ·  Flag idea as inappropriate…  ·  Admin →
                              • Enable 'client certificate authentication' per directory

                                I have a site that only part of it needs to be secured with client certificate authentication, it is able to be enabled on the site level but not the directory level as per this article.

                                https://docs.microsoft.com/en-us/azure/app-service-web/app-service-web-configure-tls-mutual-auth

                                69 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  3 comments  ·  Flag idea as inappropriate…  ·  Admin →

                                  Hi,
                                  thanks for the feedback. This is not currently possible as client cert auth on App Service is in require mode and as such cannot be delegated to folder level.

                                  We will review this item and your feedback, we may look to implement this capability based on customer prioritization.

                                  Thanks

                                  Andrew

                                • Metric and alert for Web App file system used quota

                                  We would like to setup an automatic alert that fires when the file storage of an app plan is reaching its limits.

                                  Ideally it will be great to have a metric that tells the % of storage (quota) consumed so we can set an alert on top of that metric.

                                  26 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    3 comments  ·  Notifications  ·  Flag idea as inappropriate…  ·  Admin →

                                    This is a great idea and we would like to implement it though there are a few dependencies we need to meet first. We are leaving this on the roadmap for now to see if it gains more customer support which will help with prioritization.

                                    Thanks,
                                    Oded

                                  • Aggregated logs for Linux App Service instances

                                    To access logs for my Linux App Service instance i have to go to myapp.scm.azurewebsites.net/api/logs/docker and it lists all the instances i have running with a link to the log file for each node. This is cumbersome when trying to debug an issue. Could we have an option under diagnostic logs to target a storage Table and have these aggregated as one source

                                    7 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Near-realtime consolidated web app consumption

                                      We need a consolidated way to see near-realtime CPU and Memory consumption for each Web App per App Service Plan. This way we can quickly identify which apps are consuming the most resources (specifically CPU and Memory) in that App Service Plan.

                                      These are the 2 scenarios we run into often:

                                      1. We run many web apps in each App Service Plan. We don't want to pay for a new App Service Plan until all memory (or CPU) is consumed on what we currently have. I could rebalance the sites (move some to another plan) if I could easily see…

                                      34 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        6 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Ability to use the Swedish payment solution Swish in App Services.

                                        Hello,

                                        We would like to use the Swedish payment solution Swish but their Root CA does not appear to be trusted when we use App Services. Can this be added? Swish is the largest mobile payment in Sweden and all the biggest banks are behind it. It is really a drawback if it can't be used with App Services.

                                        https://www.getswish.se/handel/

                                        We have solved it temporarily by hosting it as a Virtual machine and from there add their certificate to Trusted Root Certification Authorities.

                                        Best Regards,
                                        Oscar

                                        46 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          1 comment  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Document healthcheck URL requirement for custom containers

                                          With Web App for Containers, it seems Azure uses a special URL "/robots933456.txt" to check when the container has started, and expects a valid HTTP response (404 is fine). This requirement for custom containers should be mentioned in the documentation! (and preferably, it should be configurable)

                                          4 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            under review  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 6 7 8
                                          • Don't see your idea?

                                          Web Apps

                                          Feedback and Knowledge Base