API Management

Microsoft Azure API Management is a turnkey solution for publishing APIs to external and internal consumers. Quickly create consistent and modern API gateways for existing backend services hosted anywhere, secure and protect them from abuse and overuse, and gain insights into usage and health. Plus, automate and scale developer onboarding to help get your API program up and running in no time.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Groups within Groups

    There seems to be no way to add groups to groups. This makes granular control of access difficult

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    need-feedback  ·  2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  2. APIM Environments

    Image we have two APIM instances
    APIM-memberaccount-Staging forwards requests to Staging memberaccount API
    APIM-memberaccount-Production forwards requests to Production memberaccount API

    One day Devops wants to make changes to APIM-memberaccount-Staging, what he / she needs to do
    1) Delete all APIM-memberaccount-Staging configuration
    2) Get all the APIM-memberaccount-Production configuration, and import them into APIM-memberaccount-Staging, so staging APIM has same configuration as production APIM
    3) Update APIM-memberaccount-Staging to point to Staging memberaccount API
    4) Make changes til QA is passed
    5) Delete all APIM-memberaccount-Production configuration
    6) Get all the APIM-memberaccount-Staging configuration, and import them into APIM-memberaccount-Production, so production APIM has same configuration as…

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    planned  ·  1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  3. Integration with azure data catalog and event hubs - enable swagger definitions to be inherited by data stores and pipelines

    Integration with azure data catalog and event hubs - enable swagger definitions to be inherited by data stores and pipelines

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Integration  ·  Flag idea as inappropriate…  ·  Admin →
  4. Working with Policies in Ibiza

    Hi all,

    here are few recommendations related to user experience when working with policy editor in Ibiza.


    1. Click on 'Save' should save but not close policy editor. How about additional Save and Close button?


    2. FrontEnd blade of an operation should not be empty. It could show all required parameters for operation. Right now, we have to click Edit and see empty screen. Same issue for policies.



    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  5. CORS headers

    When CORS policy is configured all responses should return CORS headers. Currently if a 4xx response is returned, headers are not returned.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
  6. Provide UI to manage Loggers

    It would be useful to have UI for managing of loggers

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    planned  ·  0 comments  ·  Integration  ·  Flag idea as inappropriate…  ·  Admin →
  7. Support API definition updates as part of Visual Studio builds

    For applications developed in Visual Studio and leveraging Swashbuckle, can we get the ability to update the API definitions in APIm on each build and deploy (CI) rather than having to hand-update APIm each time.

    14 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  2 comments  ·  Lifecycle  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add file name to deployment error.

    When I edited my git repo locally and then pushed it back to the server there was a typo error in my code, opps... The error message was as follows and it tells me what was wrong, even what line number the error was on, but it does not tell me what policy file the error occurred in. Would be nice if you told me what file the error is in.

    Deployment operation failed due to invalid data: One or more fields contain incorrect values: Error in element 'send-request' on line 10, column 4: ; expected.

    Thanks

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Lifecycle  ·  Flag idea as inappropriate…  ·  Admin →
  9. Support additional filters on the GET /subscriptions endpoint

    Currently, the GET /subscriptions endpoint in the Management API doesn't support OData filtering on the primary/secondary subscription key. This would make a nice enhancement.

    For example:

    https://myservice.management.azure-api.net/subscriptions?api-version=2014-02-14-preview&$filter=primaryKey eq '12345'

    Current documentation for this endpoint:
    https://docs.microsoft.com/en-us/rest/api/apimanagement/subscriptions#Subscriptions_ListByService

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Service management  ·  Flag idea as inappropriate…  ·  Admin →
  10. Add support for IPV6

    Due to new Apple requirements (all apps must works over IPV6) we need to reach our Azure API Management through this protocol. Actually the AAAA is not present for any endpoint.

    12 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Service management  ·  Flag idea as inappropriate…  ·  Admin →
  11. Allow specifying Google Tag Manager container id in Settings

    Currently in the publisher portal you can specify universal analytics id under Settings > Analytics.

    However it is more important to allow specifying Google Tag Manager container id as that will not only allow the inclusion of Google Analytics but also a plethora of other tools. Including A/B-testing, chat, support etc. scripts to the API management pages.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Recover deleted blog posts and blogs from Git or by using Management API

    Recover deleted blog posts and blogs from Git or by using Management API

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  13. Utilize Power BI for analytics

    It would be great to have the option to use Power BI for analysis of data that today is available through the webinterface/apis.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  14. Making people API managers

    The method described here, which seems to be the only way, to make people API managers do not work:
    https://azure.microsoft.com/en-us/documentation/articles/api-management-faq/#how-do-i-add-a-user-to-the-administrators-group

    The developers might have tested the applications with accounts that are already admin on the subscription, and found it working.
    What needs to happen is, ideally to be able manage users, both developers and admin, in the API portal - not in Azure Portal which it doesn it work, anyways.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  15. Ability to specify notification email proxy

    We use an external API to generate, style and send all our systems' emails. To replicate those email templates in APIM requires a copy/paste in several different template fields. It would be great to specify some endpoint that we can POST/GET to send the APIM email values to a service. We can model the service endpoints to match whatever APIM sends.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add Support for Properties in the OAuth Servers

    Add support for Properties (e.g. {{TokenEndpoint}}) for the OAuth server endpoints.

    Currently, the UI and the actual server do not function when you update (via REST API) the OAuth server to have a tokenEndpoint = '{{TokenEndpoint}}' as the value. The REST API accepts the value but then the actual server cannot acquire a token.

    This is needed to support clone/merge/pull promotion of the config from one environment to another, e.g. from dev instance to prod instance.

    Currently the only option is to exclude that file during merge as they must have unique environment values.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  Lifecycle  ·  Flag idea as inappropriate…  ·  Admin →
  17. Security: OCSP Stapling support

    When using OCSP stapling, the web server will send its certificate combined with a signed proof from the OCSP responder about its certificate status.

    8 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  18. Add AzureAD users

    Allow the admin to add users from AzureAD so they can be configured before the user actually logs in.

    With having to wait for the user to login, then the admin to configure them with appropriate groups within APIM (not AzureAD groups) this increases the time before the user can actually make use of APIM depending on how long it takes the user to get around to logging in and the admin to add them to the right groups.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  19. Automation of subscription request

    After an account is created and verified, the user has to go back to the developer page, click on products and then subscribe for the product.

    We hope that the subscription request can be automated, that when an account is generated, a subscription request is automatically generated for the account.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  20. Provide a GUI for editing subscription key parameter names

    Currently, APIM supports the ability to rename (on a per-API basis) the subscription key header/query parameter. This functionality is only available via the REST API, and we’ve made use of this feature to rename the parameter so that it more closely aligns with our company’s brand.

    While using the REST API is reasonable, it would be more convenient to surface these fields in the UI, perhaps on the API page Settings tab or even better as an instance-level setting to serve as the default for any new APIs.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    under review  ·  0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base