The problem
I have an app service and I want people with specific certificates to be able to call me and then also send the thumbprint of the Certificate to the service. How should I do it in Azure?
More explanation
So lets say there is 10 different systems that should be able to call my service using their own Certificate (signed by). I would want to check them with the ones in my certificate store and if it was one of them put the Thumbprint in the HTTP header and send it to my app service.
What I've found until now:
It seems like a job of a firewall to me, so I've checked the "Application Gateway" seems to be the solution. But I couldn't find where I could set it to add the thumbprint to HTTP headers.
Any ideas?