This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(163.2, 2%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
We have a web app that is working fine internally and then failing when going through Azure App Proxy. The app sends a basic authentication header from the client. (This can be be seen in a wireshark trace - SSL decode) correctly formatted. When you look at a log file on the web app server we can see the same basic header as purely lower case. This of course breaks base64 and the credentials are invalid. So my question is that why should Azure App Proxy change the http header to lower case ?
This does not happen for internal access of the application and the case of header is preserved.
The app is based on websockers and is configured as passthrough currently.
We did indeed raise a support ticket. The root cause was a code fault in Azure App Proxy and its web socket support where all headers were being normalised which broke any form of authentication.
A Preview fix was provided from Microsoft and the issue is resolved.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 53%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECH%3C/text%3E%3C/svg%3E)
Can I please check how you configured the basic authentication header to be passed on to the local web server using AAP ?
Do you start as a Header-based sign-on and then create the base64 ? I couldn't figure out how to do the base64 encoding and how to obtain the password.
I have configured the local web app to authenticate with basic authentication in IIS.
@Shepherd, David (Technical Specialist) forgot to tag you earlier
Please raise a support request so that we can investigate this properly.