We're migrating an apim public instance to a private apim instance (vnet internal) publicly accessible via application gateway. Everything is working except the try it functionality in the developer ...

All, I had to re-write this post since there has been significant changes in the requirements. The objective is to invoke Auth0 management APIs such as /v2/users /userinfo etc.. through APIM. This ...

I created an Azure API Management (APIM) fragment policy that defines variables for the JWT header and payload to manually generate an unsigned JWT and I tested it successfully. However, when I copied ...

I want to read all subscription on my Azure tenant. https://learn.microsoft.com/en-us/graph/api/subscription-list gives a list of scopes/permissions. list requires Sites.ReadWrite.All on the endpoint ...

I am working on an API, global policy for our Azure APIM. For API with a specific tag, I need to allow access to users only if they come from some IP Ranges: I have this: <inbound> <base /...

I am managing an Azure APIM where developers creates API with CI/CD and swagger files, we accept both YAML and JSON format. In a report, I want to include a link to download a JSON format of the ...

I’m building a FastAPI application in Python. When I navigate to the /openapi.json endpoint, FastAPI generates an OpenAPI 3.1 specification. However, Azure API Management (APIM) only supports OpenAPI ...

I want to restrict a given Subscription name to only a single API. I have the following policy in place, but can't get it to work. Every API call with the Subscription name's key is succeeding. I have ...

var credential = new ManagedIdentityCredential(managedIdentityClientId); var token = await credential.GetTokenAsync(new TokenRequestContext(new[] {"<MY-API-SCOPE>/.default"}), ...

We’re beginners with Azure API Management (APIM) and Entra ID. Context: Users are on an intranet using Windows 11. A new ReactJS SPA needs to call our Azure APIM. Access to the backend should be ...

I have a policy that is generating a JWT token based on a private key certificate. I have placed the certificate in APIM using a reference to it from Key Vault. In the policy though I can only ...

I'm encountering an error in Azure API Management when trying to use a conditional expression to set a proxy URL based on the deployment region. The proxy URL is constructed using named values. The ...

I have APIM with an AOAI backend. APIM authenticates to AOAI using a separate Managed Identity by way of the following API policy plus AOAI IAM roles: <authentication-managed-identity resource=&...

I am trying to expose my API as an MCP server through Azure API Manager. The API has a POST endpoint which accepts a simple body of 2 numbers { "number1": 10, "number2": 20 ...

This is probably a really simple one, but I can't find any documentation. I am trying "presumably in the inbound policy" to extract the value "appid" from my JWT before it is ...