How can we improve Azure Storage?

make it possible to use SSL on blob storage using custom domains

Currently you can use SSL but you have to user the standard URL. You can create a CNAME to your storage account but most browsers complain that the traffic was rerouted and is possibly an attack. There should be a way to install a domain certificate to your containers.

4,214 votes
Vote
Sign in
Check!
(thinking…)
Reset
or sign in with
  • facebook
  • google
    Password icon
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Tobin Rysenga shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    You can now use the Azure CDN to access blobs with custom domains over HTTPS. See the following article for instructions on how to do so: https://docs.microsoft.com/en-us/azure/storage/storage-https-custom-domain-cdn. Having talked to a number of customers, we concluded that this solution addresses many scenarios where the need for HTTPS access to blobs with custom domains exists.

    Native Azure Storage support for using SSL to access blobs at custom domains is still on our backlog. We would love to hear about your scenarios where using the Azure CDN is not an acceptable solution, either by posting on this thread or sending us an email at azurestoragefeedback@microsoft.com.

    127 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Julien Cantinos commented  ·   ·  Flag as inappropriate

        It's shame after 6years that this feature isn't implemented!
        CDN solution is just a profitable workaround...

      • Bjørn commented  ·   ·  Flag as inappropriate

        Once support for SSL and custom domains have been added, we also need automatic redirect from any http requests to https to provide the best possible experience for users that access static web sites hosted in storage (or the option to turn it on)

      • Jonas Feller commented  ·   ·  Flag as inappropriate

        Static websites need definitely custom domains with SSL. They don't necessarily need CDN. For a small project/website CDN is just overkill

      • Michael Iantosca commented  ·   ·  Flag as inappropriate

        We need a solution that supports HTTPS, Custom Domain and SAS tokens for private access to blobs - the CDN does not support the SAS requirement.

        Chrome displays (the ever so subtle, and commonly missed by our users) pop-up blocker for cross domain file download requests.

      • Claus commented  ·   ·  Flag as inappropriate

        I concur with the others; CDN is often an unnecessary expense, not just the billed cost but all the hidden costs as well (complexity, configuration, maintenance) for simpler setups.

      • Alain commented  ·   ·  Flag as inappropriate

        It is very much a business requirement for many of our projects, so this is a priority 1 feature request on our side.

      • Anonymous commented  ·   ·  Flag as inappropriate

        Please add as others had said i need it for my static website and dont have a need for a CDN.

      • Peter Lillevold commented  ·   ·  Flag as inappropriate

        Native Azure Storage support for using SSL to access blobs at custom domains makes even more sense now, in combination with the static websites feature. We could use this as the primary serving point for many of our web sites.

      • Craig commented  ·   ·  Flag as inappropriate

        Static websites need custom domains with SSL. They don't necessarily need CDN. My current project is for users in one city. CDN is an unnecessary expense. Please add the ability to use SSL with custom domains and static websites.

      • ZippyV commented  ·   ·  Flag as inappropriate

        The amount of CDN's you can create per subscription is too limited, thus we would rather have custom domains with SSL support. Also, we have customers in mainly one country so a CDN is not useful.

      • Freek Van Mensel commented  ·   ·  Flag as inappropriate

        This is a very important business requirement for our organization.

        @MS: When will this feature request become available?

      • ZippyV commented  ·   ·  Flag as inappropriate

        Static websites on Azure Storage without a custom domain and SSL is worthless.

      • Anonymous commented  ·   ·  Flag as inappropriate

        Like mentionned by others here, we are in the situation where we don't want any cache on our files, but are constrained to use CDN just to get a freaking custom domain with SSL, so we have to pay twice for each download ... Fix this please !

      • Ben Coleman commented  ·   ·  Flag as inappropriate

        Definitely much needed now with the static web hosting features coming to storage. CDN isn't a good alternative IMO

      • Clint Mann commented  ·   ·  Flag as inappropriate

        Looks like this ain’t happening. Microsoft obviously is going for big profits with this one since they are pushing their HIGH DOLLAR CDN instead of just implementing this feature request. This is one of the highest voted feature requests ever and its still just “under review”. WHATS THE POINT OF VOTING THEN??

      • Ike Ellis commented  ·   ·  Flag as inappropriate

        Can we revisit this? Chrome is going to flag any file not over SSL as unsecured. Users will get an error if they open a file from Azure Blob Storage in Chrome. We really need SSL certs for custom domains.

      • Heather Lattanzio commented  ·   ·  Flag as inappropriate

        Our blob storage accounts are private, not public and we use SAS tokens with expiration to give user access to individual files. We don't need a CDN and the CDN doesn't support expiration of SAS tokens. The only way that might work would be to setup the query string caching rules to never cache URLs with query strings, so that all request with a SAS token (a query string) would go back to the origin server to evaluate the sas token and the expiration. This completely negates any value of a CDN. If it would even work, it is extra overhead and extra cost and a huge workaround solely to be able to use a custom domain to access storage account blobs over https.

      ← Previous 1 3 4 5 6 7

      Feedback and Knowledge Base