Web Apps

Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.

More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.

Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add service health notifications for planned maintenance on App Services

    Currently, no notification for planned maintenance are sent for App Services when service health alerts are activated. Such notifications would be helpful to prepare for potential outages if the platform maintenance impacts availability or performance of the service.

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. app service change

    Change App Service Plan for a Web App does not always provide existing App Service Plans that are in the same location and resource group. Apparently if the app service plan is in another "webspace" it's not available. Cloning or redeploying is time consuming. We find this very limiting. Please enhance Change App Service Plan to work across web spaces.

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Update Web App ModSecurity module to 2.9.2

    The current version of the ModSecurity module that is integrated in the IIS of the Web App Services is 2.8.0.
    This version of ModSecurity has issues with the IP + Port formatting of the AlwaysOnline service. Please update it to 2.9.2.

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  4. Allow importing 3rd party ssl certs for use as app service certificates in app services/web apps

    Currently if I have an ssl certificate being used in multiple app services, when I renew that certificate I have to update the app services one by one or via powershell. It looks like using an app service certificate would solve this by allowing me to renew in one place and have it update each of the app services automatically. The problem being that I use 3rd party issued ssl certs vs ones created as app service certs in azure.

    Ideal would be to either allow uploading 3rd party ssl certs to be used as app service certs or offer…

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  5. VNet NAT Gateway on App Service delegated subnet


    1. Delegate 'subnet1' to app services (webfarms).

    2. Create a VNet NAT service and assign it to 'subnet1'.

    3. Connect an app service to 'subnet1' using Regional VNet integration.

    4. Set web app setting WEBSITEVNETROUTE_ALL to 1.

    This should in theory route all outbound traffic from the web app into 'subnet1' and then out through the VNet NAT service.

    This would be a huge benefit for those who are stuck whitelisting an web app's outbound IP addresses which are tied to the App Service Plan. You can not easily move web apps between plans or just re-create your web app infrastructure because…

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  6. Let me arrange web app settings by alphabetical order!

    Currently the web app settings have no option for order control in either the old or new portals. Allowing administrators to arrange these alphabetically or at least have a default alphabetical order would be very helpful.

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  7. Custom Attributes Zendesk Gallery App

    We need to be able to build custom attributes to push over to Zendesk. Other gallery apps allow for it and Zendesk supports it. Please make this happen!!!

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Gallery  ·  Flag idea as inappropriate…  ·  Admin →
  8. WebApp custom DNS with private DNS Name

    Custom DNS HostName for a WebApp is working exactly in the same way in both Azure and Azure Stack, with both ownership and record check against a public Internet DNS server. That's pretty cool for public facing web applications, but represents a security issue for :
    1)Intranet applications.(hosted on Azure or AzureStack)
    - Custom Domain Names makes sence not only for Internet but Intranet too.
    - We don't want to expose intranet application names publicly to the wild...
    2)Multi-tenant AzureStack
    - Each customer would like to have it's own custom domain for its applications, and not use the *.appservice.local.azurestack.external or…

    21 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. Allow Powershell Set-AzureWebsite to toggle Always On

    It seems like every option is available EXCEPT this. Seems like it could be bolted on similarly to the others, like -WebSocketsEnabled<Boolean>.

    https://msdn.microsoft.com/en-us/library/dn495207.aspx

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  CLI/Powershell  ·  Flag idea as inappropriate…  ·  Admin →
  10. Provide private dns zone support for app services

    If I add a cname record to a private dns zone called "testdns.com" - for example app1.testdns.com -> app1.azurewebsite.net

    Then I would like to add a custom domain name to my app service "app1" for that custom domain. Currently this does not work.

    However this does work if I add the dns record to a public dns zone.

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. Certificate Authentication

    From what I can see clients can only authenticate to API apps interactively. This, like others said, makes automated authentication difficult. It would be great to support certificate authentication, much like the Azure Management API does, i.e. https://msdn.microsoft.com/en-us/library/azure/ee460782.aspx#bk_cert

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API Apps  ·  Flag idea as inappropriate…  ·  Admin →

    Thank you for your feedback!

    For the time being you can use service principle auth to programmatically authenticate with an API if you are using AAD auth. https://docs.microsoft.com/en-us/azure/app-service-api/app-service-api-dotnet-service-principal-auth

    We would like to add general cert auth to App Service authentication/authorization in the future. I am placing this item in “unplanned” to be used in future planning sessions.

    Thanks!
    Alex
    Azure App Service Team

  12. Divert with a custom error page when an app service configured with IP Restrictions

    When an App Service is configured with an IP Restriction, only whitelisted IP's can access the App service URL/site. Other users cant access the URL. By default the blacklisted IP's or denied IP's will receive
    Error 403 - This web app is stopped. Many SR's can been be seen with this requirement to divert or return custom error message instead of 403 error. It would be great if we have a feature in portal to divert with custom message when the IP restrictions are configured for a web app.

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Supportability  ·  Flag idea as inappropriate…  ·  Admin →
  13. Multi container app with Docker Compose - generally available?

    What is the plan for making multi container app through docker compose generally available?

    20 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  14. PowerShell to retrieve the details of an existing App Service Environment

    I am trying to get the Virtual Network details in which App Service Environment is deployed.
    I have tried with Get-AzResource -Name AppServiceEnvironmentName -ResourceType Microsoft.Web/hostingEnvironments

    It's giving me the basic App Service Environment details and not having the linked Virtual Network details.

    Can you please help me if there is any command/module which helps me to retrive an existing App Service Environment details.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  CLI/Powershell  ·  Flag idea as inappropriate…  ·  Admin →
  15. Enable AAD Authentication for Multi-container Apps

    A common (if not best) practice is to compose applications of multiple containers for the sake of separation of concerns. However, Azure doesn't support authentication with Azure Active Directory for multi-container apps. Until this is in place, we can't deploy our applications to Azure in a clean way.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  16. Support sending web server logs to OMS Log Analytics workspace

    Web Server logs can currently be written to a Blob storage account. However, it would be great if the logs could be sent directly to an OMS Log Analytics workspace.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  17. Ability to set different machinekey for each deployment slot

    There must be a way to set different machinekey element for different deployment slots. So that user authenticated on one slot don't get authenticated on all slots.

    Currently machinekey can only be configured in web.config. and web.config gets also gets swapped when slots are swapped.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  18. Providing alerting mechanism for ASE goes unhealthy

    Current ASE options for alerting does not have any an option to alert and monitor unhealthy ASE, We need this option to proactively monitor ASE's
    Alerting and monitoring application is very much essential for running any application on production basis. Recently we have come-across situation where our ASE got suspended because it was unhealthy, upon checking with Microsoft support they have said currently there is no alert rule for Unhealthy ASE at the moment.

    And also, existing alerts are unable to send data to the backend systems, hence unable to generate any alerts as well.

    As an enterprise product Microsoft…

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  19. Support Healthcheck for Docker on App Service

    We just learned the hard way that HEALTHCHECK declarations in Docker containers stop working if the container is running in App Service, because App Service for some reason seems to alter the behavior of our containers to do some "internal" healtchecks.

    I believe that this goes very much against the spirit of containerized applications. I have to trust that my container behaves the same no matter who runs it.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  20. Remove Weak SSL Cyphers from App Services

    App Services currently supports the following Cyphers:

    HKEYLOCALMACHINE\SYSTEM\CurrentControlSet\Control\Cryptography\Configuration\Local\SSL\00010002

    (Default)    REG_SZ    NCRYPT_SCHANNEL_INTERFACE
    
    Functions REG_MULTI_SZ

    TLSECDHERSAWITHAES256CBCSHA384P256\
    0TLSECDHERSAWITHAES256CBCSHA384P384\
    0TLSECDHERSAWITHAES128CBCSHA256P256\
    0TLSECDHERSAWITHAES128CBCSHA256P384\
    0TLSECDHERSAWITHAES256CBCSHAP256\
    0TLSECDHERSAWITHAES256CBCSHAP384\
    0TLSECDHERSAWITHAES128CBCSHAP256\
    0TLSECDHERSAWITHAES128CBCSHAP384
    \0TLSDHERSAWITHAES256GCMSHA384\
    0TLS
    DHERSAWITHAES

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base