Web Apps

Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.

More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.

Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.

We welcome user feedback and feature requests!

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow IP Restrictions to be a Slot Setting

    In the same way as we have with App Settings it should be possible to make the IP Restrictions a slot setting (sticky) so that they don't migrate when you swap slots. This could be per IP even....

    110 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  2. 59 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Support Availability Zones for App Service Environment

    With Azure SQL and Storage having zone redundant capabilities and Application Gateway in preview, App Service Environment is soon to be the only thing keeping us from fully PaaS, zone redundant web applications.

    44 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  4. Automatically rebind SSL Certs that have Auto-Renew

    Right now there is a way to purchase and Auto-Renew SSL-Certs for Web Apps. Unfortunately, the Auto-Renew does _NOT_ also bind the new cert to the WebApps where the cert it is replacing is currently bound to.

    This makes Auto-Renew more or less useless, as one still has to manually bind the new cert once it becomes available.

    A cert with Auto-Renew should automatically bind to all WebApps where the cert it replaces is used.

    41 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →

    Hi Thomas,

    Some feedback from our team:

    We do not update the SSL binding on rare cases, and we do have the code working just that it happens on a different task. This is definitely a bug we will be fixing as soon as we can. Most likely will be dealt with in June.

    Thanks,
    Oded

  5. Pipenv and Pipfile Support

    Support for Pipenv and Pipfiles, the new recommended standard for environment management for Python.

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  6. Provide acceptable scale out time for instances in ASE Isolated instance types

    Scaling is a core feature of App Services. We used ASE for the additional features however it means we are stuck with 40 mins scale out time to add an instance. Per support this is by design, however this is not documented anywhere in public domain.
    Scaling is supposed to help us get customers on to Azure, if it takes 40 mins to add an instance, it will not meet the business needs, we abandoned ASE only due to this issue. Kindly document current scale out time in public documentation so that user know this before hand.
    Ultimate goal should…

    24 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the feedback!

    You’re right that ASE scaling operations take longer than the common plans on multi-tenant App Service. We are looking at ways to decrease the time so it will on par with multi-tenant but this means a new infrastructure is needed with managing a pool or pre-assigned VMs to the ASEs.

    This is documented here, though without a time frame mentioned as it depends on a numbers of factors: https://docs.microsoft.com/en-us/azure/app-service/environment/using-an-ase#how-scale-works.

    We will update when there is more information here.

    Thanks,
    Oded

  7. PowerShell and CLI support for the management of App Service Environments

    Azure PowerShell and Azure CLI commands to support the management of an App Service Environments (at least v2). Hopefully this could include the ability to get management IP information, do scaling, and if it is an ILB ASE update the ILB Certificate.

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  8. Make Web App Timeout of 230 seconds configurable

    Currently there is a 230 second hard timeout in web apps. We have certain reporting functions that run for a large dataset and they timeout. I've seen plenty of workarounds for this, but they all involve a substantial rearchitecting of the app. Since you can put a web app in its own app service plan, this 230 second timeout seems highly arbitrary and against the general flexibility that should be left to the developer and administrator.

    Please make this timeout a configurable value and leave it defaulted to 230 seconds.

    19 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  9. Enable application logging in ILB ASE

    Currently there is no way to access our applications trace logs in an ILB ASE environment. I understand the Log Stream button is greyed out in the portal, but even using Kudu, FTP, blob, or streaming in VS, none of these are working in ILB ASE, and support tells us this is a known issue. This is a huge downside for us because we depend on our customized application log messages for troubleshooting.

    17 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  10. Azure App Service Environment ILB - Support for Internal Certificate Authorities

    Currently the documentation for Azure App Service Environment with ILB claims it supports internal certificate authorities.

    Per - https://docs.microsoft.com/en-us/azure/app-service/environment/create-ilb-ase#post-ilb-ase-creation-validation

    As part of the documentation it is recommended that a user bundles their server auth certificate with the full certificate chain - thus producing a PFX file or base64 encoding it and uploading through powershell.

    However when testing with OpenSSL or on an iOS device, the first request never sees the full certificate chain and fails with "invalid server certificate". It is on a subsequent request the full chain is delivered - leaving users to hit refresh once in their browser…

    16 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Outbound ip addresses as an environment variable

    We can get web app outbound ip addresses as a environment variable. It s too much simplier to get ip adresses from application.

    Environment.GetVariable("OUTBOUND_IP_ADDRESS")

    13 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    planned  ·  1 comment  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  12. Enable users to isolate an App Service Plan instance in order to perform offline debug

    It’s difficult to balance root causing live fails with keeping a production application running. This feature request attempts to address this by asking for a way to isolate an ASP instance in a running application.

    By isolating a misbehaving instance you can prevent it from affecting the behavior of the application overall. It can be studied for root cause without app devs or support being pressured to do this live on a production app. When debug is complete it could be terminated.

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  13. Make App Settings KeyVault Reference default to latest Secret Version

    KeyVault references in App Settings is a welcome improvement in KeyVault integration.
    One lingering aspect to improve, I think, is to allow us to expect the latest secret version - such that we can specify the secret name and can forget about versioning if we wish. Clearly versioning also supports a stricter process.

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  14. Enable AAD Authentication for Multi-container Apps

    A common (if not best) practice is to compose applications of multiple containers for the sake of separation of concerns. However, Azure doesn't support authentication with Azure Active Directory for multi-container apps. Until this is in place, we can't deploy our applications to Azure in a clean way.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  15. Support Healthcheck for Docker on App Service

    We just learned the hard way that HEALTHCHECK declarations in Docker containers stop working if the container is running in App Service, because App Service for some reason seems to alter the behavior of our containers to do some "internal" healtchecks.

    I believe that this goes very much against the spirit of containerized applications. I have to trust that my container behaves the same no matter who runs it.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  16. App Service Environment End-to-End Encryption

    Hi - Could you add a feature which enables the end-to-end encryption of traffic within an App Service whereby communication between the frontend and worker roles can be secured using customer controlled TLS certificates.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  17. ASE creation validation UI assumptions to be reviewed

    In current implementation ASE basic tab validation assumes that VNET and ASE should be deployed in different RG's. When RBAC in organisation is arranged on RG level and DevOps team is expected to deploy everything in one RG, ASE UI gives false-positive privilege validation errors (as it assumes privileges on subscription level), while you are actually able deploy using download/deploy the template. Quite confusing to see Create button disabled in this case. Hopefully this scenario could be taken into account in the future implementations. (support case 119031524002148 suggested to post it here).

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  18. Enable Azure Web App's Console, Extensions, Log Stream, Process Explorer features in App Service Environment (ASE)

    Hi
    Long back in Feb 2017, an user raised an issue regarding enabling Console, Extensions, Log Stream, Process Explorer features in Azure App Service Environment (ASE) and the response from MS team was that this is a known issue and MS is working on it. But after that there was no update on this issue and it looks like that thread was not updated for a while.

    I am still facing this issue in the Web App inside my ASE. Could you please give an update when will this feature be available inside ASE? These are all handy features in…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  19. Generate internally-issued certificates

    There should be a way to generate internally-issued certificates for ASE so ASE's have no legacy-dependency. Currently one has to have CA running in a VM to generate that for the domain.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  20. Enable Docker Content Trust on Linux ASE

    Now that Notary/Content Trust in available in ACR, it would be useful if it could also be enabled in the ASE so it could only pull signed images.

    I can't see a way to currently do this - is it possible?

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: oidc
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1
  • Don't see your idea?

Web Apps

Feedback and Knowledge Base