Reputation: 1524
Access Azure web app through reverse proxy
Can you tell me whether the following scenario could be possible?
I want to access an Azure web app through a reverse proxy running on-premise. The proxy will be responsible to authenticate the users, add a JWT (or SAML) to the request and forward it to my Azure Web App. The Azure Web App will authorize (or not) the user to perform the request. Potentially, there can be multiple reverse proxies on different sites.
Anybody has experience with such a setup? Of course, this prevent the Web App to be globally available but that is not an issue.
Thanks,
Upvotes: 0
Views: 1414
Answers (1)
Reputation: 3421
An Azure Web App always has a public name and IP, therefor it is possible to bypass your reverse proxy and access directly the app using its public name, or IP.
However, if you need to make the traffic between your reverse proxy and the app private, you got a few options. You can either run your app in a VM or in an App Service Environment. Both offer private network access, i.e. can be added to a virtual network and a VPN tunnel be built to your on-premises network.
Difference between an ASE and a VM is that the VM you manage and maintain, while the ASE is a private PaaS service, i.e. private app service managed and maintained by Microsoft, thus more limited in capabilities than a VM.
Pricewise, a normal Azure Web App is the cheapest option. VM or an ASE are considerably more expensive.
Upvotes: 2
Related Questions
- Azure Web App Service: IIS Reverse proxy possible?
- How to path-based reverse proxy app service behind application gateway?
- Reverse proxy in Azure with Web Apps
- achieve azure application gateway reverse proxy capability similar to nginx
- Azure App Service Reverse Proxy works only on port 80 http
- how to add forward proxy to azure app service
- Reverse Proxy with Azure Websites
- Azure app service running .net and node/express app
- IIS reverse proxy not working in Azure Web App
- Reverse Proxy with ARR using Azure platform