Apply suggestions from code review

Author: maartenba

src/content/docs/bff/architecture/multi-frontend.md

@@ -2,58 +2,64 @@
 title: "Multi-frontend support"
 description: Overview on what BFF multi-frontend support is, how it works and why you would use it. 
 date: 2024-06-11T08:22:12+02:00
+sidebar:
+  label: "Multiple Frontends"
+  order: 5
+  badge:
+    text: v4
+    variant: tip
 ---
 
 BFF V4.0 introduces the capability to support multiple BFF Frontends in a single host. This helps to simplify your application landscape by consolidating multiple physical BFF Hosts into a single deployable unit. 
 
 A single BFF setup consists of:
-1. A browser based application, typically built using technology like React, Angular or VueJS. This is typically deployed to a CDN. 
+1. A browser based application, typically built using technology like React, Angular or VueJS. This is typically deployed to a Content Delivery Network (CDN). 
 2. A BFF host, that will take care of the OpenID Connect login flows. 
-3. An api surface, exposed and protected by the BFF. 
+3. An API surface, exposed and protected by the BFF. 
 
-With the BFF Multi-frontend support, you can logically host multiple of these BFF Setups in a single host. The concept of a single frontend (with OpenID Connect configuration, an api surface and a browser based app) is now codified inside the BFF. By using a flexibile frontend selection mechanism (using Origins or Paths to distinguish), it's possible to create very flexible setups. 
+With the BFF Multi-frontend support, you can logically host multiple of these BFF Setups in a single host. The concept of a single frontend (with OpenID Connect configuration, an API surface and a browser based app) is now codified inside the BFF. By using a flexible frontend selection mechanism (using Origins or Paths to distinguish), it's possible to create very flexible setups. 
 
-The BFF dynamically configures the aspnet core authentication pipeline according to recommended practices. For example, when doing Origin based routing, it will configure the cookies using the most secure settings and with the prefix [__Host](https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Set-Cookie). 
+The BFF dynamically configures the aspnet core authentication pipeline according to recommended practices. For example, when doing Origin based routing, it will configure the cookies using the most secure settings and with the prefix [`__Host`](https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Set-Cookie). 
 
 Frontends can be added or removed dynamically from the system, without having to restart the system. You can do this via configuration (for example by modifying a configuration file) or programmatically. 
 
 :::note
-The duende BFF V4 library doesn't ship with an abstraction to store or read frontends from a database. It's possible to implement this by creating your own store (based on your requirements), then modify the **FrontendCollection** at run-time. 
+The Duende BFF V4 library doesn't ship with an abstraction to store or read frontends from a database. It's possible to implement this by creating your own store (based on your requirements), then modify the `FrontendCollection` at run-time. 
 :::
 
 ## A typical example
 
-Consider an enterprise who hosts multiple browser based applications. Each of these applications is developed by a separate team and as such, has it's own deployment schedule. 
+Consider an enterprise that hosts multiple browser based applications. Each of these applications is developed by a separate team and as such, has it's own deployment schedule. 
 
-There are some 'internally facing' applications that are exclusively used by internal employees. These internal employees are all present in Microsoft Entra ID, so these internally facing applications should directly authenticate against Microsoft Entra ID. These applications also use several internal api's, that due to the sensitivity, should not be accessible by external users. However, they also use some of the more common api's. These apps are only accessible via an internal DNS name, such as https://app1.internal.company.com. 
+There are some 'internally facing' applications that are exclusively used by internal employees. These internal employees are all present in Microsoft Entra ID, so these internally facing applications should directly authenticate against Microsoft Entra ID. These applications also use several internal api's, that due to the sensitivity, should not be accessible by external users. However, they also use some of the more common api's. These apps are only accessible via an internal DNS name, such as `https://app1.internal.example.com`. 
 
-There are also several public facing applications, that are used directly by customers. These users should be able to log in using their own identity, such as a GMail, Twitter or other provider. This authentication process is handled by Duende Identity Server. There is constant development ongoing on these applications and it's not uncommon for new applications to be introduced. There should be single signon across all these public facing applictions. They are all available on the same domain name, but use path based routing to distinguish themselves, such as https://app.company.com/app1
+There are also several public facing applications, that are used directly by customers. These users should be able to log in using their own identity, such as a GMail, Twitter or other provider. This authentication process is handled by Duende IdentityServer. There is constant development ongoing on these applications and it's not uncommon for new applications to be introduced. There should be single sign-on across all these public facing applications. They are all available on the same domain name, but use path based routing to distinguish themselves, such as `https://app.example.com/app1`
 
-Then there is a partner portal. This partner portal can only be accessed by employees of the partners. Each partner should be able to bring their own identity provider. This is implemented using the Dynamic Providers feature of Duende Identity Server. 
+There is also a partner portal. This partner portal can only be accessed by employees of the partners. Each partner should be able to bring their own identity provider. This is implemented using the [Dynamic Providers](/identityserver/ui/login/dynamicproviders/) feature of Duende IdentityServer. 
 
-This setup, where there are multiple frontends, which different authentication requirements and different api surfaces, is now supported by the BFF. 
+This setup, with multiple frontends, each having different authentication requirements and different API surfaces, is now supported by the BFF. 
 
-Each frontend can either rely on the 'global' configuration or override (parts of) this configuration, such as the identity provider or the Client ID and Client Secret to use. 
+Each frontend can either rely on the global configuration or override (parts of) this configuration, such as the identity provider or the Client ID and Client Secret to use. 
 
 It's also possible to dynamically add or remove frontends, without restarting the BFF host. 
 
 ## Internals
 
-BFF V4 still allows you to manually configure the asp.net authentication options, by calling .AddAuthentication().AddOpenIdConnect().AddCookies(). However, if you wish to use the multi-frontend features, then this setup needs to become dynamic. 
+BFF V4 still allows you to manually configure the ASP.NET Core authentication options, by calling `.AddAuthentication().AddOpenIdConnect().AddCookies()`. However, if you wish to use the multi-frontend features, then this setup needs to become dynamic. 
 
-To achieve this, the BFF automatically configures the AspNet pipeline:
+To achieve this, the BFF automatically configures the ASP.NET Core pipeline:
 
 ![BFF Multi-Frontend Pipeline](../images/bff_multi_frontend_pipeline.svg)
 
-1. FrontendSelectionMiddleware. This middleware performs the frontend selection by seeing which frontend's selection criteria best matches the incoming request route. It's possible to mix both path based routing origin based routing, so the most specific will be selected. 
-2. PathMappingMiddlweare. If you use path mapping, in the selected frontend, then it will automatically *map()* the frontend's path so none of the subsequent middlewares know (or need to care) about this fact. 
-3. OpenIdCallbackMiddlware. To dynamically perform the openid connect authentication without explicitly adding each frontend as a scheme, we inject a middleware that will handle the openid connect callbacks. This only kicks in for dynamic frontends.
-4. Your own applications logic is executed in this part of the pipeline. For example, calling .UseAuthentication(), .UseRequestLogging(), etc. 
+1. `FrontendSelectionMiddleware` - This middleware performs the frontend selection by seeing which frontend's selection criteria best matches the incoming request route. It's possible to mix both path based routing origin based routing, so the most specific will be selected. 
+2. `PathMappingMiddleware` - If you use path mapping, in the selected frontend, then it will automatically map the frontend's path so none of the subsequent middlewares know (or need to care) about this fact. 
+3. `OpenIdCallbackMiddleware` - To dynamically perform the OpenID Connect authentication without explicitly adding each frontend as a scheme, we inject a middleware that will handle the OpenID Connect callbacks. This only kicks in for dynamic frontends.
+4. Your own applications logic is executed in this part of the pipeline. For example, calling `.UseAuthentication(), .UseRequestLogging()`, etc. 
 
 After your application's logic is executed, there are two middlewares registered as fallback routes:
 
-5. MapRemoteRoutesMiddlware. This will handle any configured remote routes. Note, it will not handle plain yarp calls, only routes that are specifically added to a frontend.
+5. `MapRemoteRoutesMiddleware` - This will handle any configured remote routes. Note, it will not handle plain YARP calls, only routes that are specifically added to a frontend.
 
-6. ProxyIndexMiddleware. If configured, this proxy the IndexHTML to start the browser based app.  
+6. `ProxyIndexMiddleware` - If configured, this proxy the `index.html` to start the browser based app.  
 
 

src/content/docs/bff/extensibility/tokens.md

@@ -111,8 +111,8 @@ Implementations of the *IAccessTokenRetriever* can be added to endpoints when th
 
 ```cs
 app.MapRemoteBffApiEndpoint(
-        "/API/impersonation", 
-        "https://API.example.com/endpoint/requiring/impersonation"
+        "/api/impersonation", 
+        "https://api.example.com/endpoint/requiring/impersonation"
     ).WithAccessToken(RequiredTokenType.User)
      .WithAccessTokenRetriever<ImpersonationAccessTokenRetriever>();
 ```

src/content/docs/bff/fundamentals/apis/remote.md

@@ -43,7 +43,7 @@ The `MapRemoteBffApiEndpoint` extension method maps a path and all sub-paths bel
 
 ```csharp
 // Program.cs
-app.MapRemoteBffApiEndpoint("/API/users", "https://remoteHost/users")
+app.MapRemoteBffApiEndpoint("/api/users", "https://remoteHost/users")
     .WithAccessToken(RequiredTokenType.User);
 ```
 

src/content/docs/bff/getting-started/index.mdx

@@ -6,7 +6,7 @@ sidebar:
   label: Overview
 ---
 
-Currently, the most recent version is 4 (preview 1). If you're upgrading from a previous version, please checkout our [upgrade guides](/bff/upgrading). 
+Currently, the most recent version is 4 (preview 1). If you're upgrading from a previous version, please check our [upgrade guides](/bff/upgrading). 
 
 If you're starting a new BFF project, consider the following startup guides:
 

src/content/docs/bff/getting-started/multi-frontend.mdx

@@ -1,7 +1,10 @@
 ---
-title: Getting Started - Multiple frontends
-description: A guide on how to create a BFF application with a single frontend. 
+title: Getting Started - Multiple Frontends
+description: A guide on how to create a BFF application with multiple frontends. 
 sidebar:
   order: 20
-  label: Multiple frontends
+  label: "Multiple Frontends"
+  badge:
+    text: v4
+    variant: tip
 ---

src/content/docs/bff/getting-started/single-frontend.mdx

@@ -3,25 +3,25 @@ title: Getting Started - Single Frontend
 description: A guide on how to create a BFF application with a single frontend. 
 sidebar:
   order: 10
-  label: Single frontend
+  label: "Single Frontend"
 ---
 import { Code } from "astro/components";
 import { Tabs, TabItem } from "@astrojs/starlight/components";
 
 Duende.BFF (Backend for Frontend) is a library that helps you build secure, modern web applications by acting as a security gateway between your frontend and backend APIs. This guide will walk you through setting up a simple BFF application with a single frontend.
 
 :::note
-Duende.BFF V4 introduces this new way of configuring the BFF, which automatically configures the BFF using recommended practices. If you're upgrading from V3, please refer to the [upgrade guide](/bff/upgrading/bff-v3-to-v4)
+Duende.BFF V4 introduced a new way of configuring the BFF, which automatically configures the BFF using recommended practices. If you're upgrading from V3, please refer to the [upgrade guide](/bff/upgrading/bff-v3-to-v4).
 :::
 
 ## Prerequisites
 
 - .NET 8.0 or later
 - A frontend application (e.g., React, Angular, Vue, or plain JavaScript)
 
-## Setting up a BFF project
+## Setting Up A BFF project
 
-### 1. Create a New ASP.NET Core Project
+### 1. Create A New ASP.NET Core Project
 
 Create a new ASP.NET Core Web Application:
 
@@ -30,15 +30,15 @@ dotnet new web -n MyBffApp
 cd MyBffApp
 ```
 
-### 2. Add the Duende.BFF NuGet Package
+### 2. Add The Duende.BFF NuGet Package
 
 Install the Duende.BFF package:
 
 ```sh
 dotnet add package Duende.BFF
 ```
 
-### 3. Configure BFF in `Program.cs`
+### 3. Configure BFF In `Program.cs`
 
 Add the following to your `Program.cs`:
 
@@ -136,15 +136,15 @@ Add the following to your `Program.cs`:
 
 Make sure to replace the Authority, ClientID and ClientSecret with values from your identity provider. Also consider if the scopes are correct. 
 
-## Adding local api's
+## Adding Local APIs
 
-If your browser based application uses local api's, you can add those directly to your BFF app. The BFF supports both controllers and minimal api's to create local api's.
+If your browser-based application uses local APIs, you can add those directly to your BFF app. The BFF supports both controllers and minimal APIs to create local API endpoints.
 
 
 
 
 
-## Adding remote api's
+## Adding Remote APIs
 
 ## Adding Server Side Sessions
 

src/content/docs/bff/index.mdx

@@ -41,9 +41,9 @@ The source code for the BFF framework can be found on GitHub. Builds are distrib
   />
 </CardGrid>
 
-## Getting started
+## Getting Started
 
-Currently, the most recent version is 4 (preview 1). If you're upgrading from a previous version, please checkout our [upgrade guides](/bff/upgrading). 
+Currently, the most recent version is 4 (preview 1). If you're upgrading from a previous version, please check our [upgrade guides](/bff/upgrading). 
 
 If you're starting a new BFF project, consider the following startup guides:
 * [Single frontend BFF](/bff/getting-started/single-frontend)