Blog Post

Apps on Azure Blog
5 MIN READ

Introducing the 'Session Affinity Proxy' setting in App Service Configuration.

Gonzalo_Murillo's avatar
Gonzalo_Murillo
Icon for Microsoft rankMicrosoft
Jan 22, 2025

Simplifying the configuration of an App Service behind an Azure reverse proxy (Azure Front Door or Application Gateway) without custom domains.

From our own metadata and experience at Microsoft, we know that a considerable number of our customers use App Service behind one of our reverse proxy solutions, such as Azure Application Gateway or ...
Updated Jan 23, 2025
Version 2.0
azure app configuration
azure app service
Gonzalo_Murillo's avatar
Gonzalo_Murillo
Icon for Microsoft rankMicrosoft
Feb 05, 2025

Hello John
We are in process of adding it to the open api spec - after that, new SDKs need to be generated for e.g. TF to adopt it. However, even if ARM/Bicep will not validate it - it will still work when sending it as part of the payload.

Jan_Internet's avatar
Jan_Internet
Copper Contributor
Feb 26, 2025

How to send it using bicep, what property to send?

  • gabecook's avatar
    gabecook
    Copper Contributor
    Apr 16, 2025

    Jan, this worked for me.

    resource lsmawebApp 'Microsoft.Web/sites@2024-04-01'={
  name: helpers.webAppName(IsProd, IsBlazor)
  location: helpers.location 
  tags: helpers.tags(IsProd)
  identity:{
    type:'SystemAssigned'
  }
  properties:{
    serverFarmId: appServicePlan.id
    httpsOnly: true
    virtualNetworkSubnetId: vnet::appServicesSubnet.id
    // Only enable client affinity for Blazor apps
    // It is not needed for the API because it is stateless
    clientAffinityEnabled: IsBlazor
    clientAffinityProxyEnabled: IsBlazor
    siteConfig: {
      alwaysOn: true
      detailedErrorLoggingEnabled: true
      httpLoggingEnabled: true
      requestTracingEnabled: true
      ftpsState: 'Disabled'
      minTlsVersion: '1.3'
      minTlsCipherSuite: minTlsCipherSuiteValue
      linuxFxVersion: 'DOTNETCORE|8.0'
    }
  }
}