How can we improve Azure API Management?

← API Management

We would like to have OWASP security features as part of API Management rather than using API gateway/WAF.

We would like to have OWASP security features as part of API Management rather than using API gateway/WAF.

52 votes

Vote

Sign in

(thinking…)

Sign in with:

Microsoft

Forgot password?

Create a password

Signed in as (Sign out)

You have left! (?) (thinking…)

Jayesh Sonawane shared this idea · September 02, 2018 · Flag idea as inappropriate… · Admin →

2 comments

Add a comment…

Sign in

(thinking…)

Sign in with:

Microsoft

Forgot password?

Create a password

Signed in as (Sign out)

Submitting...

An error occurred while saving the comment

Chad commented · July 11, 2019 11:04 · Flag as inappropriate

Consider adding built in policy definitions similar to apigee:

https://docs.apigee.com/api-platform/reference/policies/xml-threat-protection-policy
https://docs.apigee.com/api-platform/reference/policies/json-threat-protection-policy
https://docs.apigee.com/api-platform/reference/policies/regular-expression-protection

Submitting...
Chad commented · July 09, 2019 23:37 · Flag as inappropriate

This is especially critical for a native azure solution since you cannot put an App Gateway in front of APIM and still support Mutual Authentication with certificate checks.

Submitting...

API Management: Security

Searching…

No results.
Clear search results

Give feedback
- (General Feedback) 3,423 ideas
- Additional Services 323 ideas
- Analytics Platform System 12 ideas
- API Apps 8 ideas
- API Management 452 ideas
- Automation 408 ideas
- Azure Active Directory 3,453 ideas
- Azure Active Directory Application Requests 221 ideas
- Azure Advisor 15 ideas
- Azure Analysis Services 145 ideas
- Azure API for FHIR 3 ideas
- Azure App Configuration 17 ideas
- Azure Backup 417 ideas
- Azure Blockchain Service 4 ideas
- Azure Bot Service 62 ideas
- Azure Cloud Shell 312 ideas
- Azure Confidential Compute 3 ideas
- Azure Container Instances 96 ideas
- Azure Container Registry 60 ideas
- Azure Cosmos DB 232 ideas
- Azure CycleCloud 1 idea
- Azure Data Explorer 56 ideas
- Azure Data Share (Public Preview) 2 ideas
- Azure Database for MariaDB 7 ideas
- Azure Database for MySQL 56 ideas
- Azure Database for PostgreSQL 86 ideas
- Azure Database Migration Service 46 ideas
- Azure Databricks 59 ideas
- Azure Dev Spaces 3 ideas
- Azure Digital Twins 26 ideas
- Azure Event Grid 56 ideas
- Azure Functions 148 ideas
- Azure FXT Edge Filer 0 ideas
- Azure Governance 103 ideas
- Azure Government 83 ideas
- Azure HPC Cache 0 ideas
- Azure IoT 249 ideas
- Azure IoT Central 87 ideas
- Azure IoT Device Catalog 17 ideas
- Azure IoT Edge 63 ideas
- Azure IoT Solution Accelerators 28 ideas
- Azure Key Vault 118 ideas
- Azure Kinect DK 43 ideas
- Azure Kubernetes Service (AKS) 150 ideas
- Azure Lighthouse 9 ideas
- Azure Management Groups 25 ideas
- Azure Maps 40 ideas
- Azure Marketplace 388 ideas
- Azure Media Services 206 ideas
- Azure Migrate 34 ideas
- Azure mobile app 228 ideas
- Azure Monitor 97 ideas
- Azure Monitor- Alert Management 87 ideas
- Azure Monitor-Application Insights 568 ideas
- Azure Monitor-Log Analytics 890 ideas
- Azure Pack 325 ideas
- Azure portal 1,814 ideas
- Azure Red Hat OpenShift 13 ideas
- Azure Resource Manager 436 ideas
- Azure Search 233 ideas
- Azure Security Center 196 ideas
- Azure Sentinel 33 ideas
- Azure Service Health 19 ideas
- Azure SignalR Service 9 ideas
- Azure Spatial Anchors 16 ideas
- Azure Sphere 65 ideas
- Azure Stack 159 ideas
- Azure TCO Calculator 28 ideas
- Azure Time Series Insights 9 ideas
- Batch 48 ideas
- Batch AI 9 ideas
- Biztalk Services 23 ideas
- Blockchain 44 ideas
- Cache 53 ideas
- Change Tracking 9 ideas
- Cloud Services (Web and Worker Role) 286 ideas
- Cost Management 177 ideas
- Cross region move for Azure resources 11 ideas
- Customer Insights 13 ideas
- Customer Lockbox for Microsoft Azure 1 idea
- Data Catalog 129 ideas
- Data Factory 730 ideas
- Data Lake 336 ideas
- Data Science VM 20 ideas
- Diagnostics and Monitoring 189 ideas
- Event Hubs 23 ideas
- Global Infrastructure 45 ideas
- HDInsight 125 ideas
- Lab Services 253 ideas
- Logic Apps 1,339 ideas
- Machine Learning 83 ideas
- Mobile Engagement 19 ideas
- Networking 932 ideas
- Notification Hubs 33 ideas
- Scheduler 47 ideas
- Scripting and Command Line Tools 109 ideas
- SDK and Tools 138 ideas
- Security and Compliance 87 ideas
- Service Bus 184 ideas
- Service Fabric 281 ideas
- Signup and Billing 1,470 ideas
- Site Recovery 244 ideas
- SQL Data Sync 69 ideas
- SQL Data Warehouse 257 ideas
- SQL Database 664 ideas
- SQL Managed Instance 99 ideas
- SQL Server 9,815 ideas
- Storage 771 ideas
- StorSimple 46 ideas
- Stream Analytics 234 ideas
- Support Feedback 269 ideas
- System Center Data Protection Manager 112 ideas
- Update Management 117 ideas
- Virtual Machines 1,438 ideas
- Web Apps 380 ideas
Microsoft Azure