Move deployment section to a separate file and combining deployment g… (#157)

* Move deployment section to a separate file and combining deployment guide from https://github.com/microsoft/Multi-Agent-Custom-Automation-Engine-Solution-Accelerator

* update

* resolved comments and update resource section

Author: howieleung

README.md

@@ -0,0 +1,33 @@
+# Set Up Authentication in Azure App Service
+
+This document provides step-by-step instructions to configure Azure App Registrations for a front-end application.
+
+## Prerequisites
+
+- Access to **Microsoft Entra ID**
+- Necessary permissions to create and manage **App Registrations**
+  
+## Step 1: Add Authentication in Azure App Service configuration
+
+1. Click on `Authentication` from left menu.
+
+![Authentication](./images/azure-app-service-auth-setup/AppAuthentication.png)
+
+2. Click on `+ Add identity provider` to see a list of identity providers.
+
+![Authentication Identity](./images/azure-app-service-auth-setup/AppAuthenticationIdentity.png)
+
+3. Click on `Identity Provider` dropdown to see a list of identity providers.
+
+![Add Provider](./images/azure-app-service-auth-setup/AppAuthIdentityProvider.png)
+
+4. Select the first option `Microsoft Entra Id` from the drop-down list and select `client secret expiration` under App registration.
+> NOTE: If `Create new app registration` is disabled, then go to [Create new app registration](create_new_app_registration.md) and come back to this step to complete the app authentication.
+
+![Add Provider](./images/azure-app-service-auth-setup/AppAuthIdentityProviderAdd.png)
+
+5. Accept the default values and click on `Add` button to go back to the previous page with the idenity provider added.
+
+![Add Provider](./images/azure-app-service-auth-setup/AppAuthIdentityProviderAdded.png)
+
+6. You have successfully added app authentication, and now required to log in to access the application.

docs/azure-app-service-auth-setup.md

@@ -0,0 +1,14 @@
+## Azure account setup
+
+1. Sign up for a [free Azure account](https://azure.microsoft.com/free/) and create an Azure Subscription.
+2. Check that you have the necessary permissions:
+    * Your Azure account must have `Microsoft.Authorization/roleAssignments/write` permissions, such as [Role Based Access Control Administrator](https://learn.microsoft.com/azure/role-based-access-control/built-in-roles#role-based-access-control-administrator-preview), [User Access Administrator](https://learn.microsoft.com/azure/role-based-access-control/built-in-roles#user-access-administrator), or [Owner](https://learn.microsoft.com/azure/role-based-access-control/built-in-roles#owner).
+    * Your Azure account also needs `Microsoft.Resources/deployments/write` permissions on the subscription level.
+
+You can view the permissions for your account and subscription by following the steps below: 
+- Navigate to the [Azure Portal](https://portal.azure.com/) and click on `Subscriptions` under 'Navigation' 
+- Select the subscription you are using for this accelerator from the list. 
+    - If cannot find the subscription, make sure no filters are selected.
+- Select `Access control (IAM)` and you can see the roles that are assigned to your account for this subscription. 
+    - If you want to see more information about the roles, you can go to the `Role assignments`
+     tab and search by your account name and then click the role you want to view more information about.

docs/azure_account_setup.md

@@ -0,0 +1,35 @@
+# Creating a new App Registration
+
+1. Click on `Home` and select `Microsoft Entra ID`.
+
+![Microsoft Entra ID](images/azure-app-service-auth-setup/MicrosoftEntraID.png)
+
+2. Click on `App registrations`.
+
+![App registrations](images/azure-app-service-auth-setup/Appregistrations.png)
+
+3. Click on `+ New registration`.
+
+![New Registrations](images/azure-app-service-auth-setup/NewRegistration.png)
+
+4. Provide the `Name`, select supported account types as `Accounts in this organizational directory only(Contoso only - Single tenant)`, select platform as `Web`, enter/select the `URL` and register.
+
+![Add Details](images/azure-app-service-auth-setup/AddDetails.png)
+
+5. After application is created successfully, then click on `Add a Redirect URL`.
+
+![Redirect URL](images/azure-app-service-auth-setup/AddRedirectURL.png)
+
+6. Click on `+ Add a platform`.
+
+![+ Add platform](images/azure-app-service-auth-setup/AddPlatform.png)
+
+7. Click on `Web`.
+
+![Web](images/azure-app-service-auth-setup/Web.png)
+
+8. Enter the `web app URL` (Provide the app service name in place of XXXX) and Save. Then go back to [Set Up Authentication in Azure App Service](azure_app_service_auth_setup.md) Step 1 page and follow from _Point 4_ choose `Pick an existing app registration in this directory` from the Add an Identity Provider page and provide the newly registered App Name.
+
+E.g. <<https://<< appservicename >>.azurewebsites.net/.auth/login/aad/callback>>
+
+![Add Details](images/azure-app-service-auth-setup/WebAppURL.png)