Web Apps

Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.

More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.

Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. FTP accounts tied to subscription, not user. Not enough auditing

    In the current model, FTP credentials are tied to a user's azure login. Thus, we have no visibility into credentials that are set, as we cannot see other people's FTP credentials they've set. Furthermore, when an FTP account is created or deleted, nothing is logged. This makes it difficult to audit who has access. With the logins being tied to the user, when the user leaves, there is no way for us to reclaim that username unless they delete their ftp credentials first. This doesn't always work, as a user may depart abruptly or not on good terms. Although the…

    50 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Deployment  ·  Flag idea as inappropriate…  ·  Admin →
  2. Fix export of resource type 'Microsoft.Web/sites/config'

    get error :"Could not get resources of the type 'Microsoft.Web/sites/config'. Resources of this type will not be exported. (Code: ExportTemplateProviderError)"

    Among the obvious it would be nice to see how to set various app settings like turning off PHP and activating 'Always On' or maybe turning off 'ARR Affinity'.

    48 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Automatically rebind SSL Certs that have Auto-Renew

    Right now there is a way to purchase and Auto-Renew SSL-Certs for Web Apps. Unfortunately, the Auto-Renew does _NOT_ also bind the new cert to the WebApps where the cert it is replacing is currently bound to.

    This makes Auto-Renew more or less useless, as one still has to manually bind the new cert once it becomes available.

    A cert with Auto-Renew should automatically bind to all WebApps where the cert it replaces is used.

    47 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    10 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →

    Hi Thomas,

    Some feedback from our team:

    We do not update the SSL binding on rare cases, and we do have the code working just that it happens on a different task. This is definitely a bug we will be fixing as soon as we can. Most likely will be dealt with in June.

    Thanks,
    Oded

  4. Provide acceptable scale out time for instances in ASE Isolated instance types

    Scaling is a core feature of App Services. We used ASE for the additional features however it means we are stuck with 40 mins scale out time to add an instance. Per support this is by design, however this is not documented anywhere in public domain.
    Scaling is supposed to help us get customers on to Azure, if it takes 40 mins to add an instance, it will not meet the business needs, we abandoned ASE only due to this issue. Kindly document current scale out time in public documentation so that user know this before hand.
    Ultimate goal should…

    45 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →

    Thanks for the feedback!

    You’re right that ASE scaling operations take longer than the common plans on multi-tenant App Service. We are looking at ways to decrease the time so it will on par with multi-tenant but this means a new infrastructure is needed with managing a pool or pre-assigned VMs to the ASEs.

    This is documented here, though without a time frame mentioned as it depends on a numbers of factors: https://docs.microsoft.com/en-us/azure/app-service/environment/using-an-ase#how-scale-works.

    We will update when there is more information here.

    Thanks,
    Oded

  5. Linux Static Site on Nginx

    One of the most common web techniques today is static generated web sites. Ideally, there would be an option along with Node, Php etc for Static HTML. This would allow configuration for just running Nginx web servers to host static sites.

    44 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  6. Support Availability Zones for App Service Environment

    With Azure SQL and Storage having zone redundant capabilities and Application Gateway in preview, App Service Environment is soon to be the only thing keeping us from fully PaaS, zone redundant web applications.

    44 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  7. implement a graceful restart an Azure Web App with multiple instance

    We would like to have feature through which we can perform the configuration changes through portal without down time when there are multiple instances are available. The similar stuff is available in advanced restart where you can define the delay between restart of each instance.

    43 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Deployment  ·  Flag idea as inappropriate…  ·  Admin →

    Hi everyone, we have some long-term plans to improve the restart speed and experience.

    For this scenario we suggest creating a new slot, applying your changes there, validating they work, and swapping your changes. This pattern will avoid downtime on your production site.

  8. Vapor Support

    Add support for Vapor under the App Services / Starter Web Apps section. This brings support to the Swift server side developer and will be one of the providers of the Vapor Red project (https://vapor.red/)

    Thanks.

    43 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  App Gallery  ·  Flag idea as inappropriate…  ·  Admin →
  9. Make App Settings KeyVault Reference default to latest Secret Version

    KeyVault references in App Settings is a welcome improvement in KeyVault integration.
    One lingering aspect to improve, I think, is to allow us to expect the latest secret version - such that we can specify the secret name and can forget about versioning if we wish. Clearly versioning also supports a stricter process.

    40 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  10. DNS resolution is not working in Azure Web App for Containers (linux)

    DNS resolution is not working in Web App for Containers (linux) when using custom docker image. The DHCP generated resolv.conf is broken. After using SSH to log in to the container trying nslookup google.com also fails with DNS resolution error.

    See my sample project for more details:

    https://github.com/henkosch/azure-webapp-dnstest

    The problem is also mentioned in the comments section on this page:

    https://docs.microsoft.com/en-us/azure/app-service/containers/app-service-linux-faq

    Does anyone have an idea how to fix this?

    40 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Bugs  ·  Flag idea as inappropriate…  ·  Admin →
  11. Document healthcheck URL requirement for custom containers

    With Web App for Containers, it seems Azure uses a special URL "/robots933456.txt" to check when the container has started, and expects a valid HTTP response (404 is fine). This requirement for custom containers should be mentioned in the documentation! (and preferably, it should be configurable)

    37 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  3 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. [Linux] Allow to access certicate store within linux app services

    It is currently not possible to use certificates in Linux App Services as described in this blog post:

    https://azure.microsoft.com/en-us/blog/using-certificates-in-azure-websites-applications/

    Please add access to the azure certificate store within a linux container.

    37 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Linux  ·  Flag idea as inappropriate…  ·  Admin →
  13. Allow AAD multi-tenant Apps using App Service Authentication and Authorization

    Allow Azure Active Directory (AAD) multi-tenant Apps using App Service Authentication and Authorization.

    After on-boarding a tenant with a multi tenant AAD App (Client), the tenant is not able to login to protected Web/Api Apps on App Services.

    The ClientId used is the same in AAD Multitenant App.
    The STS url is/can only be configured for the App/Client primary tenant GUID.

    There are no options to enable-multi tenant STS on App Service Authentication and authorization interface.

    37 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Programmatically associating a Hybrid Connection to an Azure App Service is not possible

    I believe that there should be a capability added to Azure App Services to allow for programmatically associating existing Hybrid Connections to an App Service instance. This can be done manually via the portal as shown in the attached image but cannot be done via Powershell, Azure CLI, or Azure REST API. Any upcoming features for this? Or is this already possible but I haven't yet been able to find out how? Thank you.

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  API Apps  ·  Flag idea as inappropriate…  ·  Admin →
  15. Pipenv and Pipfile Support

    Support for Pipenv and Pipfiles, the new recommended standard for environment management for Python.

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  App Service Environment  ·  Flag idea as inappropriate…  ·  Admin →
  16. Option to hide/anonymize IPs in webserver logs to be GDPR compliant

    It would be very helpfull if there would be an option to hide/anonymize IPs in webapps webserver logs. Right now you have to disable webserver logs completely to be GDPR compliant which might be not best practice.

    33 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →

    Hi all,

    Thank you for the feedback and recommendations on this important topic!

    We will look at adding this to our feature roadmap though we don’t have any timing to share right now.

    For additional guidance please refer to “Azure Data Subject Request GDPR Documentation” under the Service Trust Portal: https://servicetrust.microsoft.com/ViewPage/GDPRDSR. Specifically read through, Part 1 – Step 5, which discusses the removal of personal data and timing in which you can leverage retention period settings for the logs.

    Thanks,
    Oded

  17. Auto-scale up and down not just out, for web apps

    Hi

    Can you expand the auto-scaling feature to include up and down scaling as well as in / out?

    so for example, scale the web app up a tier in peak and down a tier i off hours. Or something to that effect.

    Thanks

    28 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  18. Display slots should list their full name in the resource lists.

    When you are viewing resources in the "All Resources" blade or in the "Resource Group" blade all slots are just listed using only their slot name, if you have many different web apps that all use slots you will see the same name repeated several times (see "Example Resource Group.PNG").

    I suggest you display the name from the resources blade the same way you display it in the delete menu if you are deleting the base web app "BaseName-SlotName" (See "delete example.PNG")

    28 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  19. API Apps with AllowAnonymous

    Have a mix of authentication levels for different endpoints in the underlying Web API?

    API App to have access level of 'Public (authenticated)' but one of the endpoints needs to be accessible as an anonymous user. Previously I would have just applied the AllowAnonymous attribute on the method, but the gateway still intercepts and returns an unauthenticated response.

    Would be great to mark a specific method as allowing anonymous and the default behaviour to respect the gateway authentication level.

    27 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  API Apps  ·  Flag idea as inappropriate…  ·  Admin →

    Thank you for your feedback!

    Right now the workaround is to set your authentication/authorization option to enabled, but set the action for unauthenticated requests to “allow.” Then manually redirect unauthenticated requests to the secured endpoints to the authorization flow at /.auth/login/done.
    https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-how-to-configure-active-directory-authentication#optional-configure-a-native-client-application

    We would like to add more robust support for multiple auth levels in the future. I am placing this item in “unplanned” to be used in future planning sessions.

    Thanks!
    Alex
    Azure App Service Team

  20. Add feedback on the Portal on Automatic Swaps

    When we configure a staging slot with Continuous Deployment and Auto-Swap we need some sort of visual feedback to know when the swap was done. Right now what we see is that the Active Deployment of the staging slot changes to the previous deploy checkpoint and that's how we know it swapped.
    It would be great if on the production slot we could get at least some sort of message saying the current Active Deployment that was swapped or at least some sort of visual aid.

    26 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base