Web Apps

Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.

More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.

Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Support for Docker on Windows App Service

    Similar to the Linux App Service Docker support. Having support for a Windows Docker container running in an App Service Plan.

    71 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  2. Larger VM Sizes Avaialble

    We like the Azure Websites infrastructure, but would like to have additional size VM's available, particularly ones with larger memory offerings

    70 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. 67 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  4. First-Class Support for Composer and PIP

    Azure Websites supports NuGet and NPM as first party package managers. It would be nice to see first class support for Composer, a PHP package manager, on Azure Websites to make PHP consistent with the rest of the platform.

    Here is an example of how to support Composer: https://github.com/syntaxc4-msft/waws-composer

    While the exercise should be fairly straight forward, it would also be nice to support pip on the platform as well to make sure that there is a consistent story for all supported languages.

    64 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Flag idea as inappropriate…  ·  Admin →

    We’re happy to share that composer has been enabled on Web App on Linux. You can just run composer on a Kudu session.

    In addition, we added Linux-only PHP Composer deployment support to Kudu and Kuduscript. During git-triggered deployment, if Kudu finds a composer.lock file, it will run composer install.

    For more details and to ask specific technical questions about this, ask away at the developer forum for Web App on Linux: https://social.msdn.microsoft.com/Forums/office/en-US/home?forum=windowsazurewebsitespreview

    Thanks,
    Oded

  5. Extend Deployment Slots Functionality from Web Apps to API Apps

    It's as important to be able to stage API functionality as it is Web App functionality, but there appears to be no way to create a deployment slot for an API App in the portal.

    63 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  API Apps  ·  Flag idea as inappropriate…  ·  Admin →

    This functionality has been implemented in Azure API Apps v2, which leverage the same infrastructure as Azure Web Apps. These instructions for creating deployment slots will be the same inside an Azure API App: https://azure.microsoft.com/en-us/documentation/articles/web-sites-staged-publishing/

    If you do not see the above steps you must create a new API App through the portal and redeploy to be upgraded to v2

  6. Secure sites using SSL certificates

    Once a site has been made reserved would be great to be able to secure such sites using one or more SSL certs. I say one or more, because sometimes multiple CNAME records have been mapped to a single reserved instance.

    63 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. [Linux} Enable VNET integration for App Service on Linux

    Please extend the VNET integration functionality to App Service on Linux.

    Are there any workarounds ?

    63 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    14 comments  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  8. Support for node-gyp in NodeJS applications

    Some NPM packages is dependent on node-gyp to build. For example the SailsJS framework. This means that you can't use a packages.json file to NPM install on deploy. You have to include the whole node_modules directory in you deployment.
    This would be a lovely feature!

    62 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Access-Control-Allow-Credentials not set in credentialed CORS request

    Not sure if this is a bug or a feature request. This is affecting me when using Azure Functions, but I beleive this has to do with the CORS implementation in Web Apps.

    Basically, the Access-Control-Allow-Credentials header is not being set in response to credentialed requests.
    https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials

    Someone else posted this issue in the azure functions github, but @lindydonna said this was to do with Web Apps. Original github issue is here:
    https://github.com/Azure/azure-webjobs-sdk-script/issues/620

    The problem is also documented on the official MS developer blog here:
    https://blogs.msdn.microsoft.com/benjaminperkins/2017/04/12/azure-functions-access-control-allow-credentials-with-cors/

    62 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    9 comments  ·  Bugs  ·  Flag idea as inappropriate…  ·  Admin →
  10. Make API Apps only available internal on network level

    The only way to make an API accessible only to other Web Apps and API Apps is currently to publish the API on an internal endpoint Worker Role, and use a VNet.

    Internal API Apps are only protected by authentication. It should also be possible to protect API Apps using a VNet or similar to provide multiple layers of protection.

    61 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  API Apps  ·  Flag idea as inappropriate…  ·  Admin →
  11. Ability to have Primary/Secondary setup that stays in sync

    The ability to setup an Azure Websites plan (VM) and have it replicate to another plan (VM) in another region (or multiple regions) would be great. And keep any changes made in sync (similar to how Websites keeps any auto scaled servers in the same region in sync now). Additionally, if could use traffic manager to balance domains between regions in this setup. Say have "primary" server in East and "secondary" in South Central with domains A.com and B.com. Ability with this setup to configure traffic manager so A.com routed to east/primary and B.com to secondary/south central with the other…

    61 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Dev/Staging environments

    Allow users to create dev or staging environments that can be deployed to first to validate changes and then swapped with the production site.

    60 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  13. Allow one click cloning of websites

    Would be helpful to have a single button that would allow you to clone a website. The only field that would be required would be the new domain name.

    57 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    completed  ·  6 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Support deployment from Git repos on Team Foundation Service

    Git support is offered for codeplex, github, bitbucket, and even local repos but not for git repos hosted on Team Foundation Service. That seems really strange.

    Can you please add support for them ASAP.

    54 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Support TypeScript in deployments from source control

    Currently, if you have TypeScript files in your project and try to publish your solution to Azure via a source control enrollment (i.e., via Kudu), you'll run into an error about "Microsoft.TypeScript.targets was not found" (see https://github.com/projectkudu/kudu/issues/556). It's possible to work around it, but it's complex, and it would be great if TypeScript compilation was supported out of the box.

    54 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Flag idea as inappropriate…  ·  Admin →
    completed  ·  Erez Benari responded

    Thanks for the suggestion, smithkl42. Please see David’s comment – we believe this should provide for your needs.

  16. Convert existing Web App to API App

    Add an option to convert an existing Web App to an API App, that keeps the existing configuration, including domain etc.

    52 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  API Apps  ·  Flag idea as inappropriate…  ·  Admin →
  17. Return 40x for "http://....azurewebsites.net/:"

    Return 40x for "http://....azurewebsites.net/:"

    When we request a WebApps URL adding ":" in it's tail, we will get HTTP 500.19 error. It should return HTTP 40x (400 Bad request or 404 Not found) as same as OnPremiss IIS.

    I have concern about this response has a server header and we can't remove it. And also this can trigger Alert rule and/or AutoHealing rule for HTTP 500 from the outside.

    Additional info: we could not change this behavior with any settings (RequestFiltering, URLRewrite and so on). FREB shows that this error comes from IIS Web Core as the following.

    51 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    11 comments  ·  Bugs  ·  Flag idea as inappropriate…  ·  Admin →
  18. 49 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. Move ECDHE ciphers to top of server-preferred ciphers

    www.ssllabs.com detected that old ciphers are used first when the client&server are negotiating what SSL cipher to use:

    https://www.ssllabs.com/ssltest/analyze.html?d=hsts.azurewebsites.net

    Cipher Suites (SSL 3+ suites in server-preferred order, then SSL 2 suites where used)

    TLSRSAWITHRC4128SHA (0x5) 128
    TLS
    RSAWITHAES128CBCSHA256 (0x3c) 128
    TLS
    RSAWITHAES128CBCSHA (0x2f) 128
    TLS
    RSAWITHAES256CBCSHA256 (0x3d) 256
    TLS
    RSAWITHAES256CBCSHA (0x35) 256
    TLS
    RSAWITH3DESEDECBCSHA (0xa) 112
    TLS
    ECDHERSAWITHAES128CBCSHA256 (0xc027) ECDH 256 bits (eq. 3072…

    46 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow unlimited (or bump the limit much higher) SNI certificates for web apps

    I can't think of a good reason to limit SNI certs to 5. Right now we have to use VMs or Cloud Services because web site certificate pricing makes no sense. I understand price per IP but SNI is essentially 'free', why is there a limit? I am paying for the server so let me use as many certs as I want.

    Allow us to use unlimited SNI certs on websites. That would make Azure website much more useful for scenarios where we have multiple light weight static sites that require ssl.

    Azure websites have some amazing features compared to…

    46 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base