API Management

Microsoft Azure API Management is a turnkey solution for publishing APIs to external and internal consumers. Quickly create consistent and modern API gateways for existing backend services hosted anywhere, secure and protect them from abuse and overuse, and gain insights into usage and health. Plus, automate and scale developer onboarding to help get your API program up and running in no time.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Provide API Management in the German Cloud

    German companies are starting to deploy their workloads in the Cloud but in the German one and many of our clients ask about the availability of the API Management in this region. Actually is a very important service for them.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  2. Search API across entire site

    It would be very useful to have the search button functionality on entire site. For example, when searching an API by a word to display all related results from all available pages.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  3. named values git

    Add Named Values information to the Git integration feature

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  4. Increase renewal period limit of 'rate-limit-by-key'

    Increase the upper limit on' renewal period' attribute of 'rate-limit-by-key' policy. Currently it accepts maximum 300 seconds.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
  5. Display details of YAML importing error

    Importing YAML file, the message "Internal Server Error" is displayed if there is an invalid error response definition as following.

    responses:
    '200':
    description: Successfully updated a user
    content:
    application/json:
    schema:
    $ref: '#/components/schemas/User'
    '400':
    $ref: '#/components/schemas/User' # <-- it has to be set Error Response compornent

    It's useful to display if the details of error, not only "Internal Server error", for troubleshooting.

    Regards,

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  6. Sorting API by "API URL Suffix"

    Hi,
    It will be really interesting to a kind of a tree view that shows us all the api url suffix and the api in it
    e.g:

    /
    /clients/
    >API Name
    >> List of operations
    /employees/
    >API Name
    >> List of operations

    Regards

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  7. Groups within Groups

    There seems to be no way to add groups to groups. This makes granular control of access difficult

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    need-feedback  ·  2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  8. allow group

    Allow restricting groups to specific operations vs per api. Maybe a policy editor entry?

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
  9. Conditional OAUTH prompt

    Conditional Authorization - There are situations where OAUTH prompt to be conditional based. For eg, in a money transfer scenario, if the transfer is < some amount, no authorization is required. In this case, can we add a feature in the developer portal / security to prompt OAuth based on some business rule, when a user hits try it button in developer portal

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  10. Ability to route/exclude requests form APIM, based on url, due to bandwidth cost

    We have a few API methods that transfer ~50TB of bandwidth monthly, need to be able to exclude these from API Management, based on path/query of the request url. The host name on the request must stay the same so DNS routing is not an option. Currently this makes API Managment not feasible for us because of the added bandwidth cost.

    I understand that APIM decrypts the SSL request before any routing, so processing still occurs, but perhaps there is some room to optimize for specific bandwidth intensive requests?

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Issue and retrieve secrets for signing and validating JWT tokens

    The Mashape Kong product issues secrets for signing JWT keys. Could this be added so API Management could then validate the token without another roundtrip request to a JWT validation service?

    Even if we could store these in cache (by exposing cache via REST) or by adding it as a property that could be reference by the policy would be a good first step. The problem with the latter approach is that I think the {{propertyName}} has to be a string literal and cannot be composed from a variable like {{context.Subscription.Id+"naming-convention"}|}.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  12. Missing of test to check the configuration with Application Gateway

    This documentation is very good. However, I feeling missing of a test set cast to valid the configuration with Application Gateway.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  13. Improve APIM --> Function integration

    store the function name that was imported and what end point operations where checked when imported. Then when a new version of the API is created, you can change the function name (would refresh end point operations), and then add/remove (if needed) operations by checkbox. Finally, if a new version of a function is uploaded, an event would fire off to rebuild all the API interfaces that have operations are pointing to it (like when importing) so it can keep in sync with the back end.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    need-feedback  ·  0 comments  ·  Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  14. Split Azure API Manager into two main products

    Split Azure API Manager into two main products

    The Publish and Subscribe should be Enterprise wide while the SOA aspect can be deployed independently by department or application.
    . Enterprise capable Publish and Subscribe
    . Operational SOA layer for Relay and workflow

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  15. Allow custom identity provider portal account creation/login

    This is the same issue as as this 'completed' one: https://feedback.azure.com/forums/248703-api-management/suggestions/5947766-custom-identity-provider-for-the-developer-portal. That is only completed if you can use Azure B2C. We want to use a different identity provider (OAuth 2.0 based) to enable SSO between multiple web applications. We are currently using delegation, but that requires some integration that could go away if we could use a custom identity provider. Since there is already support for other OAuth based providers, it seems like this would be a 'easy win' for the platform.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  16. BUG: Uri for appID is required to be a Url in the management console (instead of any Uri)

    An API has an appID. According to the label over the field this is an URI but the user interface does not allow us to put anything else but an url. We use a custom uri scheme to identify all of our applications and it would be really nice if we can continue to use this. The custom scheme we use is intended to end the confusion on our integrators of when to use a url and when to use an ID.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  17. Ability to read certificate stored under secrets in APIM

    Ability to read certificates stored under secrets in APIM is required. If Certificate is created using App Service Certificate, certificate is getting stored under secrets. APIM in ability to read certificate under secrets of Key vault is becoming bottleneck for us.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Service management  ·  Flag idea as inappropriate…  ·  Admin →
  18. Group, filter, and sort Products

    I propose to support Product grouping, filtering and sorting like APIs. One way that this can be implemented is by populating the tags of the products and make them available in the portal models (Views).
    Currently the available tags property is empty regardless of the attached to the products tags.
    The assignment of tags to products should also be supported in the relative Product edit interface of the azure portal.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    need-feedback  ·  0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  19. Allow creating network traces for API Management instances

    It should be possible to create a packet capture containing all traffic to/from API Management

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Search by keywords across all APIs in a APIM instance

    It would be great if we can search for a particular keyword across all operations in all APIs of a particular APIM instance in a subscription.
    Say, I would like to search if a particular operation is called within the other operations of the APIM instance, I should be able to search based on a keyword that lists out all the instances where this is referenced.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base