When talking about the custom domain name and SSL for the Azure Storage Static website, ms docs mentioned about using Azure CDN to achieve it. Besides Azure CDN, another option is to use an Application Gateway in front of the storage static website.
To integrate the Azure Storage Static Website with an Application Gateway, the following configurations need to be applied.
- On the storage account, allow the traffic from the VNET and subnet of the application gateway. Enable the service endpoint,
Microsoft.Storage, on the subnet of the application gateway. - In the configurations of the application gateway, configure the backend pool as follows:
- Target type:
IP address or FQDN - Target: FQDN of the static website. e.g. <web-name>.<zone>.web.core.windows.net
- Target type:
- Configure the HTTP Settings as follows:
- Backend protocol:
HTTPS - Use well known CA certificate:
Yes - Override with new host name:
Yes - Override with specific domain name: FQDN of the static website. e.g. <web-name>.<zone>.web.core.windows.net
- Backend protocol:
- Create a request routing rule with the above backend pool and the http settings.
With the above settings, check the backend health, it should shows the healthy status. And the static website should be accessible through the application gateway.