Web Apps

Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.

More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.

Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. [Linux] Ability to move a Web App to a different App Service plan

    Enable the 'Change App Service Plan' blade for Linux web apps in order to allow Linux apps to be moved to a different App Service plan in the way Windows apps can be moved now.

    26 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  2. [Linux] - Set Docker Image Tag as a slot setting in Application Settings of a Web App for Containers

    When swapping between staging and production slots of a Web App for Containers, it would be really handy to have the option of keeping the tag of each image in its respective slot (e.g. image:latest for production, image:dev for staging) and not get them to swap after each slot swap.
    Imagine you setup Continuous Deployment through Dockerhub. You push code changes on GitHub, and image build is triggered and then an image pull request from Azure to Dockerhub. If a swap has preceded the above flow, then newly build images would end up in the opposite from desired deployment slots. …

    26 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  3. Enable application logging in ILB ASE

    Currently there is no way to access our applications trace logs in an ILB ASE environment. I understand the Log Stream button is greyed out in the portal, but even using Kudu, FTP, blob, or streaming in VS, none of these are working in ILB ASE, and support tells us this is a known issue. This is a huge downside for us because we depend on our customized application log messages for troubleshooting.

    26 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  4. Strict-Transport-Security

    With the ability now to force HTTPS, it would be nice if Strict-Transport-Security HTTP Header should also be set and knock another finding off of the security report:

    Details on The Header:
    https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  5. Rewriting to /public is absolutely not the right way to change the document root

    After doing some reading, I'm seeing Azure actually suggesting to people running Laravel (and any others that don't host out of the root project structure) applications to use mod_rewrite to rewrite requests to point to "/public".

    This is an absolutely ridiculous suggestion and is effectively some of the worst advice you could give. Forcing people to have "/public" in their URL structure because you guys didn't take the time to research the bare-minimum configuration options for your offering is not in any way acceptable.

    I suggest you urgently add support for the ability to configure the document root. Not only…

    25 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  6. Let Web Apps to be PCI compliance

    Despite that PCI compliance is promoted at Azure, a Web App created at Azure is non compliant by default, and cannot be set-up appropriately.

    I understand that a Web App is not as isolated as an ASE (that still is not compliance by default, needs advanced set-up), with instances sharing system level settings with other clients (so cannot be changed independently), and I understand some set-up changes that apply to all clients, even ones that do not require PCI, can lead to problems to some of them.

    I propose an option to opt-in to PCI compliance at Web App level;…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. Offer higher memory / RAM app service plans

    I can see this has been raised before but we would really like to see plan options with higher memory. We could host about twice as many applications on the same plan if memory was increased to something like 32gb. Our apps aren't CPU intensive but need more memory, nor any more up.

    Thanks!

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Version data for deployed slot

    I'm using ARM template to deploy a new slot to an existing webapp, the problem is that there is no way of seeing or passing the version of the build that the slot has.

    It would be really useful to have a "Version" -field in the portal where I can pass the version data of the build so that you could easily see which slot has which build version.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Limit number of accepted client certificates when doing mutual TLS

    I want to be able to control the trusted issuers list sent to the web browser so that list of allowed certificates can be filtered in the browser. This was possible in IIS and with Azure Cloud Service I believe but how can we do it in a Azure web app?

    What I basically want to do is set the content of the certificate_authorities field in CertificateRequest sent by the server to the browser in the TLS handshake as stated in RFC5246.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Flag idea as inappropriate…  ·  Admin →
  10. Request to manage diagnostic settings for App Service Plan from Azure portal.

    We need to manage diagnostic settings for App Service Plan from the Azure portal like other resources.
    You can manage diagnostic settings for Many Azure services on the Azure portal. Some cx basically creates diagnostic settings on the Azure portal and checks the settings. This is because such a cx would like to easily manage them thanks to GUI operations.

    However, currently, you cannot manage diagnostic settings for App Service Plan on Azure portal. For this reason, it would be nice if we could create and read thes setting from the Azure portal like other diagnostic settings.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Diagnostics  ·  Flag idea as inappropriate…  ·  Admin →
  11. Add support for NetworkWatcher / NSG Flow logs for App Service with Regional Vnet Integration enabled

    At the moment, if one uses an App Service with Vnet Integration there is NO way to monitor the traffic that traverses this path. For organizations with requirements to monitor ALL network traffic for integrity / Security / Audit purposes - this presents a significant challenge as ALL traffic that traverses this integration is not able to be monitored. Since the App Service presents itself as on a given subnet within the Vnet - there should be NO reason that NetworkWatcher or NSG flow logs shouldn't be usable.

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Supportability  ·  Flag idea as inappropriate…  ·  Admin →
  12. minWorkerThreads : But it was difficult to determine this value

    We managed to resolve the “Poor Performance”, but we had to do a lot of reading, it was good that the profiler pointed us in the right direction suggesting to set this value MinWorkerThread
    • This request is spending time waiting in the CLR Thread pool queue. This has happen if there is a burst load of requests coming to the process or if there is HIGH CPU on the overall instance.
    • Recommendations : Increase minWorkerThreads setting if your application is getting burst load of requests.

    But it was difficult to determine this value.

    The following Very old link…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Documentation  ·  Flag idea as inappropriate…  ·  Admin →
  13. Option to block TOR traffic from Azure WebSites

    Looking through my web logs, most traffice coming from TOR is unfortunately only used for trying to hack my site.
    Blocking TOR traffic is not trivial, since you must compare the IP to the long list of TOR exit servers.
    For websites that are really not used by e.g. dissidents it would be great to have a simple option to block it on Azure WebSites.

    Something like "Allow TOR traffice" On/Off

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Display multibyte characters on Web SSH

    Currently Web SSH cannot display multibyte character content (i.e. Japanse characters in log files) by cat command etc (see jpcharswebssh.jpg).
    But Kudu (bash) can do it (see jpchars
    kudu.jpg).

    Please support do it on Web SSH and provide current limitation about displaying text.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  15. Manage HTTP Headers for Azure static website

    There doesn't seem to be a clear and defined way to manage HTTP headers with an Azure static website. I know this feature is still in preview but my team and I are attempting to make this into a production ready web application.

    I think most people utilizing the static website feature will be using javascript frameworks like Reactjs or Angular. Since there isnt a web.config to manage http headers it becomes unclear on how to approach this. The headers in question are Content Security Policy, X-Content-Type-Options, and X-XSS-Protection.

    Thanks!

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Supportability  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow azure websites to reverse proxy to hybrid connections

    I am trying to connect an azure website using reverse proxy to an internal site over a BizTalk hybrid connection. I have setup the reverse proxy web.config file to point the azure website to my internal site over the hybrid connection. Example www.mysite.com points to http://server1:8080 Seeing this error when I attempt this:

    The specified CGI application encountered an error and the server terminated the process.

    Is this supported? What address should I point my reverse proxy too?

    Sample config:

    configuration>
    <system.webServer>
    <rewrite>
    <rules>
    <rule name="ReverseProxyInboundRule1" stopProcessing="true">
    <match url="(.*)"/>
    <action type="Rewrite" url="http://SERVER1:8080/{R:1}"/>
    </rule>
    </rules>
    </rewrite>
    <urlCompression doStaticCompression="false"/>
    </system.webServer> …

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  17. Allow importing 3rd party ssl certs for use as app service certificates in app services/web apps

    Currently if I have an ssl certificate being used in multiple app services, when I renew that certificate I have to update the app services one by one or via powershell. It looks like using an app service certificate would solve this by allowing me to renew in one place and have it update each of the app services automatically. The problem being that I use 3rd party issued ssl certs vs ones created as app service certs in azure.

    Ideal would be to either allow uploading 3rd party ssl certs to be used as app service certs or offer…

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  18. Slot swapping should check if cache is ready (applicationInitialization ignored)

    After we incurred some downtime in our app service due to infrastructure updates on azure storage, we implemented the local cache feature to combat this. In doing so, this meant that we had to implement slots with preview in order to warm up the cache, ensuring that it is ready to serve before swapping. In implementing this we found that we had to also implement applicationInitialization in our web config.

    Our experience shows that this configuration is being ignored. So that first applyingSlotConfig and then Slotsswap operations via powershell swaps slots without ensuring that the site is ready.

    Our suggestion…

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. Let me arrange web app settings by alphabetical order!

    Currently the web app settings have no option for order control in either the old or new portals. Allowing administrators to arrange these alphabetically or at least have a default alphabetical order would be very helpful.

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  20. Custom Attributes Zendesk Gallery App

    We need to be able to build custom attributes to push over to Zendesk. Other gallery apps allow for it and Zendesk supports it. Please make this happen!!!

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Gallery  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base