API Management

Microsoft Azure API Management is a turnkey solution for publishing APIs to external and internal consumers. Quickly create consistent and modern API gateways for existing backend services hosted anywhere, secure and protect them from abuse and overuse, and gain insights into usage and health. Plus, automate and scale developer onboarding to help get your API program up and running in no time.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. A Developer Free Tier

    We need a developer free tier to dabble around with API Management.

    476 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    8 comments  ·  Pricing  ·  Flag idea as inappropriate…  ·  Admin →
  2. Price API Management so that it falls within reasonable reach of the BizSpark monetary caps

    While the features of API management are nice the current pricing model would excludes those who are in BizSpark trying to stay within the monthly $150 monetary cap. Based on the current pricing of ~$49/month for dev and ~$349/month for standard, dev would consume about a 1/3rd of the monetary cap and standard would completely nuke it from orbit exceeding the cap by 2.3x all by itself.

    I’d be nice to see pricing come down to some reasonable limits preferably with a free dev and standard tier matching the current pricing of the dev tier.

    185 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Pricing  ·  Flag idea as inappropriate…  ·  Admin →
  3. raml support

    Add support to import raml specs

    125 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  Defining APIs  ·  Flag idea as inappropriate…  ·  Admin →
  4. Allow for optional URL fragments.

    I'm attempting to front a ASP.NET WebAPI with the Azure API Management service. My WebAPI supports the notion of optional URL fragments.

    See my Q on the User forum:
    http://social.msdn.microsoft.com/Forums/windowsazure/en-US/e2faaf9c-b9d1-4ef9-9c35-b466f3b95a82/how-can-i-specify-optional-url-template-parameters?forum=azureapimgmt

    The workaround suggested works, but will end up bloating my API operations significantly.

    113 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    5 comments  ·  Defining APIs  ·  Flag idea as inappropriate…  ·  Admin →

    In addition to the workaround suggested in the reply to your forum post you can define the template as:

    /settings/{environment}/*

    where “*” means ignore the rest of the URL. You will need to validate the URL fragment in lieu of the “*” in your backend code to ensure that it contains a single path segment which has an allowed value.

  5. Enable role-based access control in the admin (publisher) portal

    Managing APIs should not require co-admin rights. Provide a reasonable set of default roles (admin, reader, writer) and enable admins to define custom roles giving users granular rights to entities (apis, products) and actions over them.

    67 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  6. REST API Add support for Client operations

    Azure Developer portal allows to configure a new clients (Apps) and generate the Client ID and Secret. To use 3rd party OAuth 2.0 Server makes it to configure same App again with Auth Server.
    Azure API Management REST API will help to export the Clients and reconfigure with Authorization Server.

    55 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  7. Extract JWT claims to variables during validation

    I'd like to be able to extract specific claims from a JWT while validating it. Here's some policy that won't work today but that I'd like to be able to write:

    <validate-jwt header-name="Authorization">
    <openid-config url="https://login.windows.net/contoso.onmicrosoft.com/.well-known/openid-configuration&quot; />
    <extract-claims-to-variables>
    <claim name="appid" variable="azureAppId" exists-action="override"/>
    <claim name="cloud_instance_name" variable="cloudInstanceName" exists-action="override"/>
    <claim name="email" variable="emailAddress" exists-action="override"/>
    </extract-claims-to-variables>
    </validate-jwt>

    With various JWT claims extracted to variables during validation, I could drive other bits of policy logic from them and pass them to the backend as required.

    52 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  8. Dynamic Property References

    API Management properties can be accessed in policy like this:

    <set-variable name="siteKey" value="{{KEY_100}}"/>

    Only literal property names may be specified between the double curly braces. However, I'd like to be able to dynamically compose the property names from other parameters like this:

    <set-variable name="siteKey" value="{{@{return "KEY_" + context.Request.MatchedParameters["siteId"];}}}"/>

    If this were possible, I could make use of new properties programatically without having to edit long, messy <choose> statements each time a new one is added.

    41 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Policies  ·  Flag idea as inappropriate…  ·  Admin →
  9. Allow partial git commit

    The "Save configuration to repository" action now saves the full API Management configuration to the Git repo. When multiple developers are working at the same moment, the different features are mixed in one commit and the feature branch should be cleaned manually.

    It would be nice if a developer could commit a single API and API Management would determine what files were changed for that API (for example, which line was added to products configuration.json) and commit only those.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  Lifecycle  ·  Flag idea as inappropriate…  ·  Admin →
  10. Health monitoring and heartbit single operation

    If we can define URI for operations, it is good to know is operation is available now or not. And not only for us as api developers but available for api's consumers. It could be based on some sort of heart. We do not know now, how to alert our consumers that api will be unavailable since january 1 till 10 of january.

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. postphone or adjust API Management upgrade time

    Our customer business been impact by API management upgrade caused issue. Customer have big concern that If services go down in the middle of the day, it interrupts some critical functionalities.

    Can we add a feature so that we can postphone or adjust APIM upgrade time.

    Thank you!

    15 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    declined  ·  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. APIM proxy deployed on App service environment front-end pool

    It's not clear yet how App service environment front-end pool works, but looks like that it's doing SSL offload for all back-end pools(maximum of 3 back-end pools). It's already connected with VNET, and could provide local access to back-end APIs.
    This could be high scalable as well. Maybe one way to integrate App services and APIM in the future.
    Logic Apps is a workflow, but each step is running in a separate API app. APIM logic could be all running on the same layer(with better performance).
    Is APIM already using Azure Application gateway?
    What you guys think?

    14 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    declined  ·  2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Provide a Q and A Forum within the developer portal.

    I build an API proxy using Azure API Management.
    A third party developer uses the API proxy.
    A third party developer wants to ask a question about my API.
    A developer on my API team wants to answer the question about the API.
    Provide developers who use the API a forum to ask questions and receive answers.

    8 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Developer portal  ·  Flag idea as inappropriate…  ·  Admin →
  14. Schedule the service upgrade of APIM

    Hi Team,

    As we have known developer tier does not provide SLA and many users choose it for their UAT environment. In some cases, users deploy their apps to UAT before releasing it, but the APIM instance is down due to a service upgrade.

    We are wondering if it is possible to schedule the service upgrade or inform the users 24 hours in advance.

    Much appreciate for any insights!

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  15. Adding voting / feedback section to api portal pages

    We need to get use feedbacks about the how to pages, product details, API services/ methods in order to understand what users need or like. It is kinda what you are trying to do here.

    Is there a way to implenent such a feature with existing system or integrating our custom feedback provider which will be designed just for Api Management.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
  16. Provide a option to disable TLS 1.2 for APIM backend pool

    We have legacy websites only support TLS 1.0 and SSL 3.0, and it can't recognize the clienthello extensions while the TLS shake process, and this cause we can't use APIM to access our backend websites. So is it possible to disable TLS 1.2 or disable the clienthello extensions

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    declined  ·  0 comments  ·  Security  ·  Flag idea as inappropriate…  ·  Admin →
  17. Support for Service Bus policies.

    Currently there is not a simple way to expose a API that in turn then post a message to a Service Bus queue or topic. It would be helpful to have a advanced policy that would expose something like the following.

    <servicebus connection="EndPoint=sb://..." topic="cool-topic">
    <contenttype>application/json<contenttype>
    <label>MyLabel</label>
    <property name="SpecialProperty">special value</property>
    <property name="CoolProperty">cool value</property>
    <body>
    { "Name" : "CustomerName", "CustomerId" : 12345 }
    </body>
    </servicebus>

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Integration  ·  Flag idea as inappropriate…  ·  Admin →
  18. Azure Portal's own API's Unavailability should be reported.

    Have a 3 phase API call procedure: ‘connecting‘, ‘unavailable’ and ‘success’: for all the API consumers on the Portal to display progress to the user.

    Otherwise you will continue to get Support Requests like mine every time there is an update in progress.

    Similar to https://feedback.azure.com/forums/248703-api-management/suggestions/10441185-communicate-unavailability-of-backend-services, but for Microsoft's own API's that run the Portal.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Service management  ·  Flag idea as inappropriate…  ·  Admin →
  19. Bing Image Search API: ImageFilters: Filter by Size extensions

    The Image Search API currently supports filtering images through ImageFilters query option. One such filter is "Size", which has Small, Medium, Large values. Need an
    1. ability to combine one or more of these
    2. ability to exclude one of more of these

    Additionally it would be nice to have both width and height specified so the images returned are close to the size specified.
    Ex: ImageFilters='Size:Width:640+Size:Height=480" will only return images close to 640x480

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
    declined  ·  Miao Jiang responded

    Apologies for the delay, but this forum is dedicated for Azure API Management product, rather than APIs provided by Microsoft.

  20. Attach API management to vnet and allow to consume services on an ASE with an Internal Load Balancer

    With ASE's now supporting Internal Load Balancers, sites can be private (ie no public access) however we need to expose our API's to allow API Management to access them. It would be good to allow API Management to attach to a subnet and then allow access to an API which is hosted within an ASE which is attached to an internal load balancer. This would ensure the API's are more secure and only can be accessed via API management and not directly outside the coporate network.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Microsoft
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  API management experience  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3
  • Don't see your idea?

Feedback and Knowledge Base