Web Apps
Web Apps in Azure App Service provides a scalable, reliable, and easy-to-use environment for hosting web applications. Select from a range of frameworks and templates to create a web site in seconds. Use any tool or OS to develop your site with .NET, PHP, Node.js, Python and more. Choose from a variety of source control options including TFS, GitHub, BitBucket and others to set up continuous integration and develop as a team.
More details about the services are available in the App Service documentation. If you have a technical issue, please open a post on the developer forums through Stack Overflow or MSDN.
Products that we listen to in this space include: App Service, Web Apps, API Apps and Web App for Containers.
-
App Service Public SSL Certificates persist When Swapping Slot
Currently, if a Web App slot (ex: "staging") is created from an existing Web App that has Public SSL Certificates configured, these are not present on the new slot.
In addition during a slot swap, the "production" slot does not persist the Public SSL Certificates. The configuration for the Public SSL Certificate moves to the "staging" slot.
This behavior does not appear for other configurations such as Private SSL Certificates or AppSettings and could lead to "production" issues if the Public SSL Certificate is expected on the Web App.
The consumer recourse currently is to re-apply the Public SSL Certificates…
37 votes -
Enable 'Resource Health' Feature for Isolated App Service Plans
Enable 'Resource Health" feature for Isolated App Service Plans.
Currently, it shows error message "incorrect health status - not supported"
"
Resource health status is not available for Free, Shared or Isolated App Service plan. To enable health status, consider upgrading to a Basic, Standard, or Premium App Service plan.
Report incorrect health status "Instead, users of the most expensive plan, Isolated, in an ASE, are encouraged to change their plan?
Please add the feature or adjust the message. Thank you.
35 votes -
Request to manage diagnostic settings for App Service Plan from Azure portal.
We need to manage diagnostic settings for App Service Plan from the Azure portal like other resources.
You can manage diagnostic settings for Many Azure services on the Azure portal. Some cx basically creates diagnostic settings on the Azure portal and checks the settings. This is because such a cx would like to easily manage them thanks to GUI operations.However, currently, you cannot manage diagnostic settings for App Service Plan on Azure portal. For this reason, it would be nice if we could create and read thes setting from the Azure portal like other diagnostic settings.
34 votes -
Web App built-on CORS header Access-Control-Max-Age
Using the built-in CORS support in App Service for an API Web App, we can't specify header 'Access-Control-Max-Age' or any other headers besides 'Access-Control-Allow-Credentials' and 'Access-Control-Allow-Origin'.
We would like to use the App Service built-in CORS because it's easy to manage all the different allowed origins from there, but we need to be able to set headers like 'Access-Control-Max-Age', 'Cache-Control', and 'Vary' to optimize the OPTIONS calls.
34 votesThank you for the feedback! We will keep this item open, but at this time we do not have plans for this feature.
Thanks,
Jason -
Please support PHP 7.4 for Linux App Services
Please update the stack for Linux App Services.
Thanks!33 votes -
PowerShell and CLI support for the management of App Service Environments
Azure PowerShell and Azure CLI commands to support the management of an App Service Environments (at least v2). Hopefully this could include the ability to get management IP information, do scaling, and if it is an ILB ASE update the ILB Certificate.
33 votesCLI and Poweshell for scaling is available in ASE v2 through the same App Service commands.
We are expanding CLI and PowerShell support more down the road.
Thanks,
Oded -
Upgrade CPUs in Azure App Service Premium Tier
Currently the "Premium" tier on App Service offers this three options:
P1: 1VCore DSV2
P2: 2VCores DSv2
P3: 4VCores DSv2I wouldn't call this a premium tier now that we are getting into 2020...
App service is one of the most useful services offered in Azure and it really needs an upgrade.
Amazon's Beanstalk does not have such limitations.
I would suggest that to upgrade the hardware/resources of the Premium tier to at least:
P1: 2 VCores
P2: 4 VCores
P3: 8 VCoresThe processors model should be upgraded as well to use DSv3 or even better the F series.
33 votes -
Option to hide/anonymize IPs in webserver logs to be GDPR compliant
It would be very helpfull if there would be an option to hide/anonymize IPs in webapps webserver logs. Right now you have to disable webserver logs completely to be GDPR compliant which might be not best practice.
33 votesHi all,
Thank you for the feedback and recommendations on this important topic!
We will look at adding this to our feature roadmap though we don’t have any timing to share right now.
For additional guidance please refer to “Azure Data Subject Request GDPR Documentation” under the Service Trust Portal: https://servicetrust.microsoft.com/ViewPage/GDPRDSR. Specifically read through, Part 1 – Step 5, which discusses the removal of personal data and timing in which you can leverage retention period settings for the logs.
Thanks,
Oded -
Support for deploying R Shiny App to Azure Web App Container
What I’m looking for is a guide/tutorial/dockerfile on how to accomplish deploying a shiny app to Azure Web Apps (a tutorial for Flask already exists https://docs.microsoft.com/en-us/azure/app-service/containers/quickstart-python). I think this would be a great addition to the App Service Linux lineup, since Shiny (https://shiny.rstudio.com/) is very popular. A somewhat similar solution exists here https://www.shinyproxy.io/.
32 votes -
Auto-scale up and down not just out, for web apps
Hi
Can you expand the auto-scaling feature to include up and down scaling as well as in / out?
so for example, scale the web app up a tier in peak and down a tier i off hours. Or something to that effect.
Thanks
31 votesThis is an interesting idea, though not feasible at the moment. We will leave this on the roadmap to review later on.
Thanks,
Oded -
Provide access to HTTPERR logs
Currently, enabling "Web Server Logging" appears to archive only the W3C request logs. The HTTPERR logs are the only way to see any requests that failed or were rejected by the server due to TCP timeouts, idle connections, filled request queues, and similar circumstances.
30 votesJust an update that we still have this on our backlog. If it gains more user support, we will look to prioritize this and add the view to our internal support center.
Thanks,
Oded -
API Apps with AllowAnonymous
Have a mix of authentication levels for different endpoints in the underlying Web API?
API App to have access level of 'Public (authenticated)' but one of the endpoints needs to be accessible as an anonymous user. Previously I would have just applied the AllowAnonymous attribute on the method, but the gateway still intercepts and returns an unauthenticated response.
Would be great to mark a specific method as allowing anonymous and the default behaviour to respect the gateway authentication level.
30 votesThank you for your feedback!
Right now the workaround is to set your authentication/authorization option to enabled, but set the action for unauthenticated requests to “allow.” Then manually redirect unauthenticated requests to the secured endpoints to the authorization flow at /.auth/login/done.
https://docs.microsoft.com/en-us/azure/app-service-mobile/app-service-mobile-how-to-configure-active-directory-authentication#optional-configure-a-native-client-applicationWe would like to add more robust support for multiple auth levels in the future. I am placing this item in “unplanned” to be used in future planning sessions.
Thanks!
Alex
Azure App Service Team -
Create Function level Keys for Azure Functions in ARM template
ARM templates currently allow to create functionKeys on host level as:
{
"type": "Microsoft.Web/sites/host/functionKeys",
"apiVersion": "2018-11-01",
"name": "[concat(parameters('appServiceName'), '/default/MyFunctionKey')]",
"properties": {
"name": "MyFunctionKey"
}
}Which is great, but does not allow a very granular level of security.
It is possible to create FunctionKeys on Function level through the admin API (/admin/functions/$($function.functionName)/keys) but not via ARM template.Ideally I would like to be able to do the following in my ARM template:
{
"type": "Microsoft.Web/sites/functions/functionKeys",
"apiVersion": "2018-11-01",
"name": "[concat(parameters('appServiceName'), '/MYFUNCTIONNAME/MyFunctionKey')]",
"properties": {
"name": "MyFunctionKey"
}
}I do understand the main difficulty is that the function is most likely created…
30 votes -
Allow to NGEN an Azure Web App
When deploying an Azure Web App, allow to NGEN some DLLs like EntityFramework to save on startup time. Currently, this requires administrator rights to which we don't have access. Even better would be to automatically NGEN it after a deployment.
29 votesThank you for the feedback! We will keep this item open, but at this time we do not have plans to add this feature.
Thanks,
Jason -
[Linux] Ability to move a Web App to a different App Service plan
Enable the 'Change App Service Plan' blade for Linux web apps in order to allow Linux apps to be moved to a different App Service plan in the way Windows apps can be moved now.
29 votesThanks for the feedback. We’re reviewing this request, and we consider to enable moving Linux app to a different App Service plan which only has Linux apps. Any feedbacks to the limitation would be appreciated.
Thanks,
Yi -
Option to block TOR traffic from Azure WebSites
Looking through my web logs, most traffice coming from TOR is unfortunately only used for trying to hack my site.
Blocking TOR traffic is not trivial, since you must compare the IP to the long list of TOR exit servers.
For websites that are really not used by e.g. dissidents it would be great to have a simple option to block it on Azure WebSites.Something like "Allow TOR traffice" On/Off
29 votes -
Enable application logging in ILB ASE
Currently there is no way to access our applications trace logs in an ILB ASE environment. I understand the Log Stream button is greyed out in the portal, but even using Kudu, FTP, blob, or streaming in VS, none of these are working in ILB ASE, and support tells us this is a known issue. This is a huge downside for us because we depend on our customized application log messages for troubleshooting.
29 votesThanks for the request. This is under review and we will discuss internally how to support.
Thanks,
Oded -
Enable AAD Authentication for Multi-container Apps
A common (if not best) practice is to compose applications of multiple containers for the sake of separation of concerns. However, Azure doesn't support authentication with Azure Active Directory for multi-container apps. Until this is in place, we can't deploy our applications to Azure in a clean way.
28 votes -
Rewriting to /public is absolutely not the right way to change the document root
After doing some reading, I'm seeing Azure actually suggesting to people running Laravel (and any others that don't host out of the root project structure) applications to use mod_rewrite to rewrite requests to point to "/public".
This is an absolutely ridiculous suggestion and is effectively some of the worst advice you could give. Forcing people to have "/public" in their URL structure because you guys didn't take the time to research the bare-minimum configuration options for your offering is not in any way acceptable.
I suggest you urgently add support for the ability to configure the document root. Not only…
28 votes -
Gradle plugin support on Azure App Service
Wish to see Gradle plugin support on Azure Apps Service.
This available plugin here -https://github.com/lenala/azure-gradle-plugins -is for testing purpose only (not recommended for production).28 votes
- Don't see your idea?