Skip to content

Commit 09928ed

Browse files
dlepowdlepow
authored
Update validate-azure-ad-token-policy.md
Edit
1 parent cf4c556 commit 09928ed

File tree

1 file changed

+2
-2
lines changed

1 file changed

+2
-2
lines changed

articles/api-management/validate-azure-ad-token-policy.md

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,7 @@ The `validate-azure-ad-token` policy enforces the existence and validity of a JS
3030
header-name="name of HTTP header containing the token (alternatively, use query-parameter-name or token-value attribute to specify token)"
3131
query-parameter-name="name of query parameter used to pass the token (alternative, use header-name or token-value attribute to specify token)"
3232
token-value="expression returning the token as a string (alternatively, use header-name or query-parameter attribute to specify token)"
33-
authentication-endpoint="Microsoft Entra ID environment endpoint"
33+
authentication-endpoint="Microsoft Entra environment endpoint"
3434
failed-validation-httpcode="HTTP status code to return on failure"
3535
failed-validation-error-message="error message to return on failure"
3636
output-token-variable-name="name of a variable to receive a JWT object representing successfully validated token">
@@ -67,7 +67,7 @@ The `validate-azure-ad-token` policy enforces the existence and validity of a JS
6767
| header-name | The name of the HTTP header holding the token. Policy expressions are allowed. | One of `header-name`, `query-parameter-name` or `token-value` must be specified. | `Authorization` |
6868
| query-parameter-name | The name of the query parameter holding the token. Policy expressions are allowed. | One of `header-name`, `query-parameter-name` or `token-value` must be specified. | N/A |
6969
| token-value | Expression returning a string containing the token. You must not return `Bearer` as part of the token value. Policy expressions are allowed. | One of `header-name`, `query-parameter-name` or `token-value` must be specified. | N/A |
70-
| authentication endpoint | Microsoft Entra ID environment endpoint. Prefix `https://` is optional. Example: `https://login.microsoftonline.us` for Microsoft Azure Government environment. | No | `https://login-microosftonline.com` |
70+
| authentication endpoint | Microsoft Entra endpoint used to acquire tokens in environments such as national clouds. Prefix `https://` is optional. Example: `https://login.microsoftonline.us` for Microsoft Entra ID for US Government. | No | `https://login-microosftonline.com` |
7171
| failed-validation-httpcode | HTTP status code to return if the JWT doesn't pass validation. Policy expressions are allowed. | No | 401 |
7272
| failed-validation-error-message | Error message to return in the HTTP response body if the JWT doesn't pass validation. This message must have any special characters properly escaped. Policy expressions are allowed. | No | Default error message depends on validation issue, for example "JWT not present." |
7373
| output-token-variable-name | String. Name of context variable that will receive token value as an object of type [`Jwt`](api-management-policy-expressions.md) upon successful token validation. Policy expressions aren't allowed. | No | N/A |

0 commit comments

Comments
 (0)