API Management

Microsoft Azure API Management is a turnkey solution for publishing APIs to external and internal consumers. Quickly create consistent and modern API gateways for existing backend services hosted anywhere, secure and protect them from abuse and overuse, and gain insights into usage and health. Plus, automate and scale developer onboarding to help get your API program up and running in no time.

How can we improve Azure API Management?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Authorize developer accounts using Azure Active Directory with *GUEST* users

    Authentication on the APIM developer portal using Azure AD is possible using this documentation: https://docs.microsoft.com/en-us/azure/api-management/api-management-howto-aad

    Currently only native users of the AAD tenant that is hosted the AAD App are supported. Trying to login with AAD guest users of the same tenant but whose identities are stored inside a different tenant, is not supported.

    Behaviour of the APIM authentication in this case will be to lookup for the AAD App in the wrong tenant and obviously fails to find it.

    Could you provide some UI change to define the AAD tenant that is hosted the AAD App and make sure…

    3 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      I agree to the terms of service
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
    • Change authenticaion cookie domain for username/password authentication

      When working with delegated authentication and the developer portal of the API manager, you will often be working with multiple websites. E.g. developers.example.com for the developer portal and site.example.com for the rest of your site. The issue is that we cannot reliably log a user out from the site.example.com side, because we cannot remove the '.AspNet.AuthenticationCookie' from that site. If that was a cookie at the domain '.example.com' the site.example.com application could manage it to make sure a user is signed out both sites.

      3 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        I agree to the terms of service
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
      • Allow custom identity provider portal account creation/login

        This is the same issue as as this 'completed' one: https://feedback.azure.com/forums/248703-api-management/suggestions/5947766-custom-identity-provider-for-the-developer-portal. That is only completed if you can use Azure B2C. We want to use a different identity provider (OAuth 2.0 based) to enable SSO between multiple web applications. We are currently using delegation, but that requires some integration that could go away if we could use a custom identity provider. Since there is already support for other OAuth based providers, it seems like this would be a 'easy win' for the platform.

        3 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          I agree to the terms of service
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          1 comment  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
        • Send an email to a user once their subscription has been activated

          When a developer subscribes to a product that requires activation, they're not currently notified when their subscription is approved.

          15 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            I agree to the terms of service
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
          • Customisable template data [not the HTML template]

            Existing customisation experience does not allow us to edit the default set of string values etc and hence the experience to be able to truly customise the portal is somewhat limited.

            Consider referring to screenshot where I want to replace the string "Azure Active Directory B2C" to read as "Developer Login".

            4 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              I agree to the terms of service
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
            • Ability to assign public static IP address to public endpoint

              When the API consumer is adding firewall rules, the changes to public IP address causes maintenance churn. There are some instances where the API management is used under test and qa controlled by devops and the endpoint address changes every time the resource is recreated. Requesting the ability for API management to be treated like any other resource in the devops process.

              1 vote
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                I agree to the terms of service
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                0 comments  ·  Integration  ·  Flag idea as inappropriate…  ·  Admin →
              • Use wildcard url in backend entity

                Could you support wildcard in the url of backend entity?

                Take following backend for example, we would like to use https://*.contoso.com/ instead of https://abc.contoso.com/.

                {
                "id": "/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.ApiManagement/service/apimService1/backends/proxybackend",
                "type": "Microsoft.ApiManagement/service/backends",
                "name": "proxybackend",
                "properties": {
                "description": "description5308",
                "url": "https://abc.contoso.com/",
                "protocol": "http",
                "credentials": {},
                "header": {},
                "authorization": {
                "scheme": "Basic",
                "parameter": "opensesma"
                }
                },
                "proxy": {},
                "tls": {
                "validateCertificateChain": false,
                "validateCertificateName": false
                }
                }
                }

                1 vote
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  I agree to the terms of service
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  0 comments  ·  Service management  ·  Flag idea as inappropriate…  ·  Admin →
                • Supply a feed of management events to subscribe to

                  When a user signs up I want to receive an event, such that I can create an accompanying resource/s in my back-end domain

                  When a user subscribes to a product I want to receive an event, such that I can create an accompanying resource/s in my back-end domain.

                  When a user cancels a subscription I want to receive an event, such that I can tear-down resources in my back-end domain.

                  How do I want to receive the event?

                  Easiest would be for me to receive HTTP webhooks from API-M, but I'd be okay with anything, A service bus queue, EventHub…

                  3 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    I agree to the terms of service
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    0 comments  ·  Service management  ·  Flag idea as inappropriate…  ·  Admin →
                  • Enable the 'invite' experience in the APIM REST API

                    Currently you can use the 'invite' feature in the API-M portal to invite a potential developer to join. This is a great experience and sits at the heart of our use-case for on-boarding developers to use our API.

                    The problem is we need to programmatically trigger the 'invite' experience via the APIM REST API, as we want to build this feature into our multi-tenant SaaS product.

                    Please can you urgently expose this feature through the REST API for API-M.

                    3 votes
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      I agree to the terms of service
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
                    • Add Developer Portal Content to repository

                      When adding some new pages using the Content option in the Publisher Portal, I want these html pages saved in the repository like the template and style changes are.

                      8 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        I agree to the terms of service
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
                      • Reset password captcha breaks when the placeholder contains a single quote

                        In javascript console I get:

                        Bindings value: { hipUrl: .... placeholder: 'Immettere l'immagine CAPTCHA qui' } -> Message: Unexpected identifier

                        as the placeholder is not escaped and contains a single quote.

                        1 vote
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          I agree to the terms of service
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                        • Return status code 405 instead of 404 when wrong method is used

                          Defining an API involves creating the resources and the allowed methods for each resource. When invoking the operation (accessing the resource) with a wrong HTTP method (for example, PUT instead of GET), the API Management service returns a 404 Resource Not Found instead of a 405 Method Not Allowed. Passing an OWASP test implies to return the correct code (https://www.owasp.org/index.php/REST_Security_Cheat_Sheet#HTTP_Return_Code).

                          Is it possible to return this code with API Management right now? Will it be included in future releases

                          6 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            I agree to the terms of service
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
                          • Support/force TLS 1.3

                            As the new TLS 1.3 will be released soon, it would be great to support and possibly force TLS 1.3 on all connection on the front and back-end.

                            6 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              I agree to the terms of service
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
                            • In Diagnostic log, can we capture the Request input which the client has send

                              In Diagnostic log, can we capture the Request input which the client has send. I can see the request Size but not the Request Input. I want to capture JSON input parameter send by the client.

                              4 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                I agree to the terms of service
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                0 comments  ·  Service management  ·  Flag idea as inappropriate…  ·  Admin →
                              • Allow SOAP services with complex WSDL to be manually built

                                My organization has a large number of legacy SOAP services that have large complex WSDL based on external XSDs. Currently the APIM product is not able to manage the service operations given the complexity. Allow for the type structures to be manually created so that the management tools can function.

                                1 vote
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  I agree to the terms of service
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  0 comments  ·  Defining APIs  ·  Flag idea as inappropriate…  ·  Admin →
                                • Provide API Management in the German Cloud

                                  German companies are starting to deploy their workloads in the Cloud but in the German one and many of our clients ask about the availability of the API Management in this region. Actually is a very important service for them.

                                  6 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    I agree to the terms of service
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Add "Version" property support in a "context"

                                    Add "Version" property support in a "context" interface to be able, for example, to rewite backend URL with a policy expression.

                                    1 vote
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      I agree to the terms of service
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      0 comments  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Base an API revision off a git branch

                                      This may be possible I'm not sure but it would be useful if you could add a revision to an API or the entire API management and have it based of a branch in the git repository. This would allow a side by side API based on your staged changes and allow you to test in a blue/green scenario. Once the API is tested if you could make it public.

                                      1 vote
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        I agree to the terms of service
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        0 comments  ·  Integration  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Conditional OAUTH prompt

                                        Conditional Authorization - There are situations where OAUTH prompt to be conditional based. For eg, in a money transfer scenario, if the transfer is < some amount, no authorization is required. In this case, can we add a feature in the developer portal / security to prompt OAuth based on some business rule, when a user hits try it button in developer portal

                                        4 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          I agree to the terms of service
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Edit portal templates programmatically through ARM REST API

                                          Provide a way to edit portal templates programmatically through ARM REST API.

                                          Actually to just add a link in the developer portal that differs in production / development environments requires pushing two whole different scm git respositories to the two different instances.

                                          6 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            I agree to the terms of service
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 13 14
                                          • Don't see your idea?

                                          Feedback and Knowledge Base