How can we improve Azure API Management?

← API Management

We would like to have OWASP security features as part of API Management rather than using API gateway/WAF.

We would like to have OWASP security features as part of API Management rather than using API gateway/WAF.

18 votes

Vote

Sign in

(thinking…)

Sign in with:

Microsoft

Forgot password?

Create a password

Signed in as (Sign out)

You have left! (?) (thinking…)

Jayesh Sonawane shared this idea · Sep 2, 2018 · Flag idea as inappropriate… · Admin →

2 comments

Add a comment…

Sign in

(thinking…)

Sign in with:

Microsoft

Forgot password?

Create a password

Signed in as (Sign out)

Submitting...

Chad commented · July 11, 2019 11:04 AM · Flag as inappropriate

Consider adding built in policy definitions similar to apigee:

https://docs.apigee.com/api-platform/reference/policies/xml-threat-protection-policy
https://docs.apigee.com/api-platform/reference/policies/json-threat-protection-policy
https://docs.apigee.com/api-platform/reference/policies/regular-expression-protection
Chad commented · July 9, 2019 11:37 PM · Flag as inappropriate

This is especially critical for a native azure solution since you cannot put an App Gateway in front of APIM and still support Mutual Authentication with certificate checks.

API Management: Security

Searching…

No results.
Clear search results

Give feedback
- (General Feedback) 3,466 ideas
- Additional Services 294 ideas
- Analytics Platform System 12 ideas
- API Apps 7 ideas
- API Management 422 ideas
- Automation 390 ideas
- Azure Active Directory 3,201 ideas
- Azure Active Directory Application Requests 213 ideas
- Azure Advisor 16 ideas
- Azure Analysis Services 136 ideas
- Azure API for FHIR 2 ideas
- Azure App Configuration 12 ideas
- Azure Backup 398 ideas
- Azure Bastion 9 ideas
- Azure Blockchain Service 2 ideas
- Azure Bot Service 58 ideas
- Azure Cloud Shell 303 ideas
- Azure Confidential Compute 3 ideas
- Azure Container Instances 91 ideas
- Azure Container Registry 56 ideas
- Azure Cosmos DB 216 ideas
- Azure CycleCloud 1 idea
- Azure Data Explorer 48 ideas
- Azure Data Share (Public Preview) 2 ideas
- Azure Database for MariaDB 7 ideas
- Azure Database for MySQL 53 ideas
- Azure Database for PostgreSQL 84 ideas
- Azure Database Migration Service 36 ideas
- Azure Databricks 55 ideas
- Azure DDoS Protection 6 ideas
- Azure Digital Twins 22 ideas
- Azure Event Grid 50 ideas
- Azure Functions 148 ideas
- Azure FXT Edge Filer 0 ideas
- Azure Governance 82 ideas
- Azure Government 76 ideas
- Azure IoT 239 ideas
- Azure IoT Central 77 ideas
- Azure IoT Device Catalog 14 ideas
- Azure IoT Edge 65 ideas
- Azure IoT Solution Accelerators 25 ideas
- Azure Key Vault 106 ideas
- Azure Kinect DK 26 ideas
- Azure Kubernetes Service (AKS) 127 ideas
- Azure Lighthouse 0 ideas
- Azure Management Groups 16 ideas
- Azure Maps 39 ideas
- Azure Marketplace 380 ideas
- Azure Media Services 209 ideas
- Azure Migrate 30 ideas
- Azure mobile app 221 ideas
- Azure Monitor 86 ideas
- Azure Monitor- Alert Management 66 ideas
- Azure Monitor-Application Insights 542 ideas
- Azure Monitor-Log Analytics 876 ideas
- Azure Pack 324 ideas
- Azure portal 1,776 ideas
- Azure Red Hat OpenShift 11 ideas
- Azure Resource Manager 415 ideas
- Azure Search 225 ideas
- Azure Security Center 176 ideas
- Azure Sentinel 18 ideas
- Azure Service Health 16 ideas
- Azure SignalR Service 7 ideas
- Azure Spatial Anchors 16 ideas
- Azure Sphere 48 ideas
- Azure Stack 145 ideas
- Azure TCO Calculator 28 ideas
- Azure Time Series Insights 6 ideas
- Batch 42 ideas
- Batch AI 8 ideas
- Biztalk Services 23 ideas
- Blockchain 40 ideas
- Cache 50 ideas
- CDN 88 ideas
- Change Tracking 7 ideas
- Cloud Services (Web and Worker Role) 283 ideas
- Cost Management 166 ideas
- Customer Insights 13 ideas
- Customer Lockbox for Microsoft Azure 1 idea
- Data Catalog 125 ideas
- Data Factory 681 ideas
- Data Lake 334 ideas
- Data Science VM 19 ideas
- Diagnostics and Monitoring 186 ideas
- Event Hubs 17 ideas
- Global Infrastructure 41 ideas
- HDInsight 122 ideas
- Lab Services 237 ideas
- Logic Apps 1,274 ideas
- Machine Learning 60 ideas
- Mobile Engagement 19 ideas
- Networking 773 ideas
- Notification Hubs 27 ideas
- Scheduler 47 ideas
- Scripting and Command Line Tools 105 ideas
- SDK and Tools 138 ideas
- Security and Compliance 82 ideas
- Service Bus 179 ideas
- Service Fabric 276 ideas
- Signup and Billing 1,377 ideas
- Site Recovery 238 ideas
- SQL Data Sync 67 ideas
- SQL Data Warehouse 244 ideas
- SQL Database 623 ideas
- SQL Managed Instance 85 ideas
- SQL Server 9,533 ideas
- Storage 720 ideas
- StorSimple 45 ideas
- Stream Analytics 224 ideas
- Support Feedback 260 ideas
- System Center Data Protection Manager 109 ideas
- Update Management 102 ideas
- Virtual Machines 1,407 ideas
- Web Apps 352 ideas
Microsoft Azure