Is there a way of achieving SSL pinning with Azure Application Gateway. I have some APIs deployed on AKS exposed through APIM. The APIM is private and the APIs are publicly exposed through Application Gateway. Is there a way of achieving SSL pinning in my custom android app in this scenario?
SSL pinning with Azure App gateway + APIM
571 views Asked by Vaibhav Singla At
1
There are 1 answers
Related Questions in AZURE
- How to update to the latest external Git in Azure Web App?
- I need an azure product that executes my intensive ffmpeg command then dies, and i only get charged for the delta. Any Tips?
- Inject AsyncCollector into a service
- mutual tls authentication between app service and function app
- Azure Application Insights Not Displaying Custom Logs for Azure Functions with .NET 8
- Application settings for production deployment slot in Azure App Services
- Encountered an error (ServiceUnavailable) from host runtime on Azure Function App
- Implementing Incremental consent when using both application and delegated permissions
- Invalid format for email address in WordPress on Azure app service
- Producer Batching Service Bus Vs Kafka
- Integrating Angular External IP with ClusterIP of .NET microservices on AKS
- Difficulty creating a data pipeline with Fabric Datafactory using REST
- Azure Batch for Excel VBA
- How to authenticate only Local and Guest users in Azure AD B2C and add custom claims in token?
- Azure Scale Sets and Parallel Jobs
Related Questions in AZURE-API-MANAGEMENT
- How to set up the link for the paginated files in the Get Rows(V2) Logic App connector and pass it via Azure API call?
- What's the difference between Microsoft.ApiManagement/service/portalsettings and Microsoft.ApiManagement/service/portalconfigs
- How to read agent application data to azure sql using apim and logic apps
- Enabling minimum apiVersion to 2021-08-01 in Azure API Management causing saving issues or deployment errors for existing logic apps
- How to LIMIT cost to 100 API calls max in a day even if someone has my API endpoint details
- Connect Azure front door with APIM and Azure Web App
- Azure APIM Policy, managed identity resource value from namevalue
- Azure OpenAI and load balancer configuration using APIM
- Prefer not to manually pass the Authorization header after logging in to the Azure APIM developer portal
- Azure APIM: check if parameter already exsit in dictionary
- Issue accessing Azure APIs in Visual Studio Code
- Create multiple subscription keys for one API in Azure
- Problem when trying to update the Azure API Gateway operation backend via Terraform
- Azure APIM Import OpenAPI Spec Failing in GitHub Build Actions
- How to read the API error message from Azure APIM using the qusto query hit from c# code in Rest API
Related Questions in AZURE-APPLICATION-GATEWAY
- Azure Analysis Service, with an on prem gateway, in vnet
- Azure Application Gateway http/2 not working
- Azure Application Gateway ByPass
- App gateway closing connection after 100 requests
- Connect Azure front door with APIM and Azure Web App
- How to set AzureIngressProhibitedTarget without hostname?
- How to change from AGIC Addon to AGIC via helm?
- Azure App Gateway Session Affinity - Third-party Cookie
- How to prevent AKS Ingress from overwriting Application Gateway's existing services?
- Azure - Configuring authentication to a blob storage in an Azure Storage Account from an Application Gateway
- Connection failure when using SignalR with Azure APIM and an Application Gateway
- Allow access to robots.txt in Azure Web application Firewall
- Azure B2C SSO to protect Azure Application Gateway
- How to setup ingress for Azure Kubernetes cluster using AGIC?
- Azure Application Gateway backendpool to Azure Container Apps internal load balancer
Related Questions in SSLPINNING
- How to embed client certificate into react native iOS app
- How to Embed Cloudflare Client Certificate and Private Key in a React Native iOS App?
- How to do Identity Pinning(iOS) and networkSecurityConfig(Android) for enabling SSL pinning on a React Native application
- How much secure is the Public Key SSL pinning?
- Android unsecure HTTPS request
- Getting certificate chain in Android webview
- I want to do React native dynamic ssl pinning
- Can not install react-native-ssl-pinning manually on IOS
- SSL pinning validation failed: javax.net.ssl.SSLHandshakeException
- Can't read traffic through one specific app with Burp
- Extracting ssl certificate or expiry date from publickey in swift ios
- Platform exception while using Ssl pinning plugin in flutter
- SSL pinning flutter using Dio package throws HandshakeException
- SSL pinning in React Native
- SSL public key pinning is not working with HttpClientHandler for Xamarin.iOS, can still be eavesdropped. How do I secure the app against MITM attacks?
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Application Gateway supports TLS termination at the gateway, after which traffic typically flows unencrypted to the backend servers.
1.Transport Layer Security (TLS), previously known as Secure Sockets Layer (SSL), is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and encrypted. Application gateway supports both TLS termination at the gateway as well as end to end TLS encryption.
2.End-to-end TLS allows you to encrypt and securely transmit sensitive data to the backend while you use Application Gateway's Layer-7 load-balancing features. These features include cookie-based session affinity, URL-based routing, support for routing based on sites, the ability to rewrite or inject X-Forwarded-* headers, and so on.
3.When configured with end-to-end TLS communication mode, Application Gateway terminates the TLS sessions at the gateway and decrypts user traffic. It then applies the configured rules to select an appropriate backend pool instance to route traffic to. Application Gateway then initiates a new TLS connection to the backend server and re-encrypts data using the backend server's public key certificate before transmitting the request to the backend. Any response from the web server goes through the same process back to the end user
Reference: https://learn.microsoft.com/en-us/azure/application-gateway/end-to-end-ssl-portal