API Management

Microsoft Azure API Management is a turnkey solution for publishing APIs to external and internal consumers. Quickly create consistent and modern API gateways for existing backend services hosted anywhere, secure and protect them from abuse and overuse, and gain insights into usage and health. Plus, automate and scale developer onboarding to help get your API program up and running in no time.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow asymmetric key validation with validate-jwt policy

    Currently Validate-JWT policy does not support asymmetric key validation.
    The JWT token is encrypted for various reasons with asymmetric key specially in case of B2B scenarios.

    We need a way to specify the IssuerSigningKey to validate-jwt policy.

    https://devblogs.microsoft.com/aspnet/jwt-validation-and-authorization-in-asp-net-core/

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
  2. Provide health endpoint in self-hosted agent

    Provide health endpoint in self-hosted agent so that this can be used to verify if the running container is still considered healthy or has to be recreated.

    9 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Support Array Parameters

    Current: There's no way to designate a query parameter as an "array" parameter (which indicates more than one instance of that parameter may appear in the query string)

    Desired: Add an option to designate a query parameter to be an array parameter, such that when the API is serialized into an OpenAPI format, its status of an array parameter is captured. (See "schema vs content" on this page to see how array parameters are represented in OpenAPI: https://swagger.io/docs/specification/describing-parameters/)

    This is important for us because our APIM API needs to map to our backend API Controllers, which define some parameters…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Defining APIs  ·  Flag idea as inappropriate…  ·  Admin →
  4. Custom Domain certificate at no cost. Same as App Service

    Please also implement possibility to use free certificate who is auto renewed. Same function as is possible in App Service now:

    https://azure.microsoft.com/en-us/updates/secure-your-custom-domains-at-no-cost-with-app-service-managed-certificates-preview/

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Allow free trail to create service principal

    When creating a service principal I get
    command used : az ad sp create-for-rbac
    Directory permission is needed for the current user to register the application. For how to configure, please refer 'https://docs.microsoft.com/azure/azure-resource-manager/resource-group-create-service-principal-portal'. Original error: Insufficient privileges to complete the operation.
    I'm on a free trail, and I need the service principal details to allow for automation (using terraform)

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  6. 3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  7. APIM integration with AKS

    A seamless integration of APIM with the AKS Cluster. The process now in place seems complicated and needs to go through trial/error to get it done.
    Moreover the APIM fails to recognize the swagger definition as the APIs exposed via AKS load-balancer is internal. Azure DevOps though creates the APIM service but fails to map it to the AKS ILB.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Integration  ·  Flag idea as inappropriate…  ·  Admin →
  8. Display OpenAPI 3.0 callbacks in Developer Portal

    The operations page does not display details of "Callbacks" section included in Open API 3.0:
    https://swagger.io/docs/specification/callbacks/

    Please could any callbacks defined against an operation be displayed in the new developer portal, in a similar way to Swagger UI

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  9. Manage Backends with Azure Portal

    There doesn't seem to be a way to manage Backends with the Azure Portal. You must import a Function App to get the function app as a backend (or ARM Template and create the backend), but there's no way to manually hook up a Backend. There's also no way to clean out old backends.

    Could we add a new item under API Management below APIs called Backends?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  10. Control developer template data

    Currently we cannot control developer portal template data. Because of that we cannot customize as much as we would like the developer portal.

    If we could have access to all, or most of the data, in a single template we could build richer pages. Also the data itself could be better organized.

    What I am aiming for, is something like:
    {
    apis: [
    {
    properties: ...,
    operations: [
    {
    properties: ...
    }
    ]

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. APIM should be able to access open api definition using internal domain.

    Our services are deployed on AKS, and we have our APIM on the same virtual network. Now APIM can use our internal domain to reach our services. Each of our services have an endpoint where we expose our swagger definition (swagger.json file). When we try to create an API using our the accessible endpoint (internal), it doesn't find it. Why it's not possible although APIM belongs to the same network?

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  12. Automatically create new revision on swagger definition change

    It wold be very nice if through a CI/CD pipeline there was an option to have an ARM template or CLI flag that could check the API Swagger definitions, or just automatically re-import them and create a revision of them if different. This would make the CI/CD Pipeline much more simple as you wont need the special tools to extract this, then update the git repo, etc.

    Ideally the pipeline would change to ->

    Publish API changes
    Publish APIM Artifacts
    Azure CLI to update APIM with flag to update schema if swagger uri is specified.
    etc... Considering I don't really…

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Describe what a member is and must have

    Describe what restrictions are put on members. Must member be users with accounts in some local active directory? Are members just strings so any name can be entered?

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Defining APIs  ·  Flag idea as inappropriate…  ·  Admin →
  14. Export variables reporting throttling information from rate-limit policy

    There are ongoing RFC to give clients the capability to throttle calls rate to avoid hitting the capping imposed by rate-limit policies.

    A possible way to implement this is to return in the response header 4 variables containing:

    - The current limit set by the policy
    - Amount of remaining calls before hitting the limit
    - Number of seconds to wait before getting the limit reset to the maximum
    - Number of seconds to wait before retrying (only when calls are blocked)

    113 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
  15. Having the ability to

    Having the ability to see which ciphers are active within the APIM. At the moment you can disable 3DES in the Portal and 9 other ciphers using a PATCH/PUT command but you cannot see which ciphers are actually active anywhere.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  16. List and operation all the products for the Groups(Administrators, Developers, etc)

    We are able to find out which groups the product belongs to in product blade, However, if we could find the products in Groups blade and operation(add, remove) in batch, it's will be much better. sorting is also needed for Groups blade if product is integreted.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  17. APIM Publisher Portal link is broken

    On the blade for APIM, the "Publisher Portal" link no longer brings up the Publisher Portal as of 20190911. It now brings up the non-GA Developer Portal. Please restore the previous functionality, or provide another means to access the trend information.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    triaged  ·  2 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  18. API Management more control with mail sending

    Currently there are very few options to set, when it comes to mailing about API Management events (new subscriptions, new developers, etc.).
    It would be great, if following could be included for e-mail configuration (some of these things help avoid e-mail being recognized as spam by some spam filters, as in our case):
    - optionally removing "on behalf of" when sending e-mail
    - including text/plain representation in sent e-mails (besides default text/html)
    - using SendGrid as a e-mail sender (as in other Azure services)
    - using custom reply address (instead of "on behalf of")

    Any maybe some other things that…

    53 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  Service management  ·  Flag idea as inappropriate…  ·  Admin →
  19. Search by API Key within API Management blade from Subscriptions Tab

    It is currently possible to view all subscriptions and filter by Display Name and Owner.
    It is also possible to view individual keys from show/hide keys

    it would be helpful to be able to paste in a subscription key, and have the list filtered to show the subscription the key belongs to.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  20. Reader roles should not be able to see subscription keys

    Currently, users assigned the "Reader" or "Monitoring Reader" role are able to reveal subscription keys in the API Management portal. As is the case with other Azure products, secrets should not be accessible to members of these roles.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 21 22
  • Don't see your idea?

Feedback and Knowledge Base