Document Details
App Service Web Configure Tls Mutual Auth
β
This page contains Windows bias
About This Page
This page is part of the Azure documentation. It contains code examples and configuration instructions for working with Azure services.
Bias Analysis
Bias Types:
β οΈ
windows_first
β οΈ
missing_linux_example
Summary:
The documentation demonstrates a moderate Windows bias. While the configuration steps are generally platform-agnostic (using Azure Portal, CLI, Bicep, ARM), the only detailed application code samples for direct certificate access and validation in .NET are for ASP.NET Core and ASP.NET Web Formsβboth Windows-centric frameworks. There are no Linux-native web server (e.g., Nginx, Apache) configuration examples, nor are there any command-line examples for Linux (such as using OpenSSL or curl for testing mutual TLS). The documentation assumes the use of the X-ARR-ClientCert header, which is specific to Azure App Service's reverse proxy, but does not discuss how to set up or validate client certificates in a Linux-native environment outside of .NET or Node/Java/Python frameworks.
Recommendations:
- Add examples for configuring mutual TLS on Linux-native web servers such as Nginx and Apache, including relevant configuration snippets.
- Include Linux command-line examples for testing mutual TLS endpoints (e.g., using curl with client certificates).
- Provide parity in code samples for popular Linux-first frameworks (e.g., FastAPI for Python, Ktor for Kotlin, Go net/http).
- Clarify that the X-ARR-ClientCert header is Azure-specific and provide guidance for scenarios where apps are hosted on Linux containers or outside Azure App Service.
- Ensure that any references to Windows-specific frameworks or tools are balanced with Linux equivalents, or at least mention alternatives.
Create pull request
Scan History
| Date | Scan ID | Status | Bias Status |
|---|---|---|---|
| 2025-09-15 00:00 | #112 | completed | β Clean |
| 2025-08-15 00:01 | #81 | in_progress | β Clean |
| 2025-08-12 00:00 | #78 | in_progress | β Clean |
| 2025-08-11 00:00 | #77 | completed | β Biased |
| 2025-08-10 00:00 | #76 | completed | β Biased |
| 2025-08-09 00:00 | #75 | completed | β Biased |
| 2025-08-08 00:00 | #74 | completed | β Clean |
| 2025-08-07 00:00 | #73 | completed | β Clean |
| 2025-08-06 00:00 | #72 | completed | β Clean |
| 2025-08-05 00:00 | #71 | completed | β Biased |
| 2025-08-04 00:00 | #70 | in_progress | β Biased |
| 2025-08-03 00:00 | #69 | completed | β Clean |
| 2025-08-02 00:00 | #68 | in_progress | β Biased |
| 2025-08-01 00:00 | #67 | completed | β Clean |
| 2025-07-31 00:00 | #66 | completed | β Clean |
| 2025-07-30 00:00 | #65 | completed | β Biased |
| 2025-07-29 00:01 | #64 | completed | β Biased |
| 2025-07-28 00:00 | #63 | completed | β Biased |
| 2025-07-27 00:00 | #62 | completed | β Biased |
| 2025-07-26 00:01 | #61 | completed | β Clean |
| 2025-07-25 00:00 | #60 | completed | β Biased |
| 2025-07-24 00:00 | #59 | completed | β Clean |
| 2025-07-23 00:00 | #58 | completed | β Biased |
| 2025-07-22 00:01 | #57 | completed | β Biased |
| 2025-07-13 21:25 | #47 | cancelled | β Biased |
| 2025-07-13 20:48 | #44 | cancelled | β Clean |
| 2025-07-09 13:09 | #3 | cancelled | β Clean |
| 2025-07-08 04:23 | #2 | cancelled | β Biased |