API Management

Microsoft Azure API Management is a turnkey solution for publishing APIs to external and internal consumers. Quickly create consistent and modern API gateways for existing backend services hosted anywhere, secure and protect them from abuse and overuse, and gain insights into usage and health. Plus, automate and scale developer onboarding to help get your API program up and running in no time.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. New Portal - Ability to expand 'object' and 'object[]' to see nested fields

    With the currently developer portal when you're viewing an API endpoint, you are only seeing the parent fields, so if something is nested or an array, you're only seeing the top level. See the attached screenshot.
    We would like to be able to expand the object or array to see the fields contained within as well.

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  2. Adding custom parameters for Notification Templates

    Provide an option to add custom parameters inside the notification templates.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add option to add relative URLs/paths to all API Product and API and link the “latest” API version

    Use Case: We are using one master instance and are deploying this one to multiple instances. We have multiple teams working on multiple APIs therefore we follow a continuous integration which results in release independent published portals.
    Request:
    My request contains an option to link to an API via the Hyperlink window.
    Perhaps something like in the attached screenshot

    Our main request would be to be able to create Links (containing the Path and which version – latest or an absolute number) to API products and APIs which currently are not imported into the Instance but will be soon.
    For…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  4. Allow people to provide feedback without asking for access to their GitHub account

    I would like to provide feedback on Azure but the feedback link requires me to grant access to my GitHub account. Since my feedback and my use of Azure do not involve my GitHub account I am not willing to grant access, so I am unable to provide feedback.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Log http request with policy execution

    By current design, application insight collect requests log after the policy execution.

    For example, request table can't record x-user-ids values correctly in the request table, but it can record in the dependencies table.

    but for some cases, the request hit the cache, there will be no request record in dependencies table.

    <set-header name="x-user-ids" exists-action="override">

            &lt;value&gt;@(context.Subscription.Name)&lt;/value&gt;
    
    &lt;/set-header&gt;

    Is it possible to adjust it, make to collect the APIM request log to requests table after policy execution?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
  6. API Management Analytics blade sorting ability


    1. Allow the Analytics Blade to be able to sort a column. The grid currently cannot be sorted by clicking on a column.

    2. Add a search box to search through the data in the grid.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  7. users documentation in multiple languages

    We need to maintain the developer portal on 2 languages (English and French). We want to have every single page in these languages: all content pages and all templated pages like products pages apis pages etc. .
    Can you direct me to the right documentation to implement this task for both the legacy Developer Portal and for the new Developer Poratl

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  8. Use NamedValues within C# expression

    In the existing implementaiton it is not possible to directly access data from NamedValue table within C# policy expressions, for ex: a code like "var x = {{dataStoredInNamedValue}}" will not work. The only way to access the namedValue it appears is to use XML Policy templates, for ex: '<set-variable value="{{some-value}}"/>'. So to use the data stored in namedValue, it should be first fetched using <set-variable/> and later this variable need to be accessed in C# expression, this is roundabout, and there should be a direct way to access these values.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add indicator for which item is used

    When working with the new DevPortal checking which images are used in a certain widget comes in handy, when having many images uploaded

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  10. Display the given name of styles during editing

    Example Header names: Heading 1 renamed to FooBar.
    When creating a new Text widget with a Heading the Style is still displayed as Heading 1 instead of FooBar. For working in a team it is necessary to use the internal style guides for a clear design. It would facilitate communicating in a group if those were the Names of the Style.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  11. Copy/Clone whole pages

    Create a feature to copy whole pages to easily recreate content and edit only small Parts.
    Currently only available by adding each section to the library (if it's working) or create an own template.
    But adding a feature e.g. to add a whole page to the library, would facilitate the process of recreating pages.
    The current possibility of creating a template or adding everything to the library is for some use cases (e.g. Wiki/Documentation pages) not flexible enough.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  12. API Details page does not display correctly when importing OpenAPI operations with long "summary" values

    If you import an OpenAPI file, the first 300 characters of an API operation's "summary" value (if one exists) gets mapped into the Display Name of an API operation in APIM.

    Typically the summary is a long value. The API Details page for the API displays incorrectly as a result. The Display Name does not wrap and a scroll bar appears on screen.

    In addition, the Display Name is displayed three times on the API Details page: on the left hand menu that contains the operations, the operation title and the operation description.

    My suggestion is to map the "summary"…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Defining APIs  ·  Flag idea as inappropriate…  ·  Admin →
  13. User administration through event

    Today there is no good way to get a signal that a User has signed up on the Developer Portal. It would be good to be able to set an alert on this type of event to be able to react and assign the new user to othe right groups as soon as possible.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  14. Disable the Developer portal

    Could you please provide a feature to disable the Developer portal (a feature to hide the login page) for users who do not use the developer portal.
    -The feature to disable the Developer portal
    -The feature to restrict access to Developer portal by IP address
    etc.

    51 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  15. Publish and group APIs according to resource path.

    To better understand the relation of the resources, it would be nice to be able to publish the APIs according to resource path rather then operation.

    Could also be nice to be able to group them according to resource path in API Management as well.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  16. Remove TLS_RSA_WITH_AES_256_GCM_SHA384 from available TLS 1.2 ciphers

    Api Management is REQUIRING a WEAK CIPHER be enabled: TLSRSAWITHAES256GCMSHA384

    The documentation to remove ciphers excludes TLSRSAWITHAES256GCMSHA384 with no mention as to WHY: https://docs.microsoft.com/en-us/rest/api/apimanagement/2019-01-01/apimanagementservice/update#request-body

    Further, running command specifying this cipher as False is having no change on the API management gateway:

    Name: TLSRSAWITHAES256GCMSHA384
    Value: False

    SSLLABS is identifying cipher suites using TLS_RSA as weak: https://discussions.qualys.com/thread/17971-tlsrsawithaes256cbcsha-comes-to-be-weak-cipher

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  17. Custom approval for subscription requests based on product ownership

    Currently only admins can approve product subscription requests in APIM. Usually an admin should not be bothered with the approval of subscription requests. Instead this tasks should be handled by an API owner within APIM. The RBAC of APIM should be more precise to have more flexibility for companies needs. It should be possible to define a custom role API Owner and assign the approval process for subscription to this role.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Service management  ·  Flag idea as inappropriate…  ·  Admin →
  18. Full-text search that covers all web pages of the DevPortal

    To enable all users/visitors of the DevPortal to search for key terms, the DevPortal shall
    - provide a google-like full-text search function that searches in all pages of the DevPortal including the meta data for each page
    - For each page, meta data can be entered (e.g. synonyms) to improve the search results
    - provide a web widget with a customizable search field that can be easily added on pages and layouts/templates on any place.
    - offer options on how to display the search results, e.g., on the same page, in a new window, or in a new browser tab…

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  19. Azure API Management - UI/html files not present in Git - These files should be saved in Git to automate CI/CD process

    We are having one issue in Azure API Management Portal. We have created clone from APIM Publisher portal by using the instructions given in publisher portal.

    however we don't see the html changes which we have made in developer portal/publisher portal in Git repository.

    We can see few folders like APIs, Products etc. and in these folders we can see only configuration file and description file(html) however we don't find the html changes which we have made in developer portal.

    When we have to move html changes from one environment to another (Development environment to QA environment), we have to…

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow customization of Password Complexity for simple sign-on on the Developer Portal

    Essentially the idea would be to allow a field in the XML for the developer portal simple sign-in or sign-on sections to allow for custom password strength requirements, instead of the current option which is just 8 characters. For instance, you could specify using at least one Capital letter and custom length such as 12 characters.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base