captcha - address review comments

kengaderdus · kengaderdus · commit 101bc70beb89 · 2024-01-17T18:02:44.000+03:00
diff --git a/articles/active-directory-b2c/add-captcha.md b/articles/active-directory-b2c/add-captcha.md
@@ -5,21 +5,21 @@ author: kengaderdus
 manager: mwongerapk
 ms.service: active-directory
 ms.topic: how-to
-ms.date: 12/11/2023
+ms.date: 01/17/2024
 ms.custom: project-no-code
 ms.author: kengaderdus
 ms.subservice: B2C
 zone_pivot_groups: b2c-policy-type
 
-#Customer intent: As a developer, I want to learn how to enable CAPTCHA in consumer-facing applications secured by Azure Active Directory B2C.
+#Customer intent: As a developer, I want to enable CAPTCHA in consumer-facing application that is secured by Azure Active Directory B2C.
 
 ---
 
 # Enable CAPTCHA in Azure Active Directory B2C
 
 [!INCLUDE [active-directory-b2c-choose-user-flow-or-custom-policy](../../includes/active-directory-b2c-choose-user-flow-or-custom-policy.md)]
 
-Azure Active Directory B2C (Azure AD B2C) allows you to enable CAPTCHA prevent automated attacks on your consumer-facing applications. Azure AD B2C’s CAPTCHA supports both audio and visual captcha challenges. You can enable this security feature in both sign-up and sign-in flows of your local accounts. CAPTCHA isn't applicable for social identity providers' sign-in.   
+Azure Active Directory B2C (Azure AD B2C) allows you to enable CAPTCHA prevent to automated attacks on your consumer-facing applications. Azure AD B2C’s CAPTCHA supports both audio and visual captcha challenges. You can enable this security feature in both sign-up and sign-in flows for your local accounts. CAPTCHA isn't applicable for social identity providers' sign-in.   
 
 > [!NOTE]
 > This feature is in public preview
@@ -317,8 +317,8 @@ To enable CAPTCHA in MFA flow, you need to make an update in two technical profi
 ::: zone-end
 
 > [!NOTE]
-> - You can't add CAPTCHA to an MFA step in Sign up only user flow.
-> - In an MFA flow, CAPTCHA is applicable where the MFA method selected is SMS or phone call, SMS only or Phone call only.
+> - You can't add CAPTCHA to an MFA step in a sign-up only user flow.
+> - In an MFA flow, CAPTCHA is applicable where the MFA method you select is SMS or phone call, SMS only or Phone call only.
 
 ::: zone pivot="b2c-user-flow"
 ## Upload the custom policy files
@@ -328,4 +328,9 @@ Use the steps in [Upload the policies](tutorial-create-user-flows.md?pivots=b2c-
 ## Test the custom policy
 
 Use the steps in [Test the custom policy](tutorial-create-user-flows.md?pivots=b2c-custom-policy#test-the-custom-policy) to test and confirm that CAPTCHA is enabled for your chosen flow. You should be prompted to enter the characters you see or hear depending on the CAPTCHA type, visual or audio, you choose.
-::: zone-end
+::: zone-end
+
+## Next steps 
+
+- Learn how to [Define a CAPTCHA technical profile](captcha-technical-profile.md).
+- Learn how to [Configure CAPTCHA display control](display-control-captcha.md).
diff --git a/articles/active-directory-b2c/captcha-technical-profile.md b/articles/active-directory-b2c/captcha-technical-profile.md
@@ -1,17 +1,19 @@
 ---
 title: Define a CAPTCHA technical profile in a custom policy
 titleSuffix: Azure AD B2C
-description: Define a captcha technical profile in a custom policy in Azure Active Directory B2C.
+description: Define a captcha technical profile custom policy in Azure Active Directory B2C.
 
 author: kengaderdus
 manager: mwongerapk
 
 ms.service: active-directory
 
 ms.topic: reference
-ms.date: 12/11/2023
+ms.date: 01/17/2024
 ms.author: kengaderdus
 ms.subservice: B2C
+
+#Customer intent: As a developer integrating a customer-facing application with Azure Active Directory B2C, I want to define a CAPTCHA technical profile, so that I can secure sign-up and sign-in flows from automated attacks.
 ---
 
 # Define a CAPTCHA technical profile in an Azure Active Directory B2C custom policy
@@ -39,7 +41,7 @@ The following example shows a self-asserted technical profile for email sign-up:
 
 CAPTCHA technical profile operations has two operations:
 
-- **Get challenge operation** generates the captcha code string, then displays it on the user interface by using a [captcha display control](). The display includes a textbox. This operations request the user to input the characters they see or hear into the textbox. The user can switch between visual and audio challenge types as needed.
+- **Get challenge operation** generates the captcha code string, then displays it on the user interface by using a [captcha display control](display-control-captcha.md). The display includes an input textbox. This operation directs the user to input the characters they see or hear into the input textbox. The user can switch between visual and audio challenge types as needed.
 
 - **Verify code operation** verifies the characters input by the user.
 
@@ -54,6 +56,7 @@ The **InputClaims** element contains a list of claims to send to Azure AD B2C's
  | ClaimReferenceId | Required | Description |
 | --------- | -------- | ----------- |
 | challengeType | No | The CAPTCHA challenge type, Audio or Visual (default).|
+| azureregion | Yes | The service region that will serve the CAPTCHA challenge request. |
 
 ### Display claims
 
@@ -63,6 +66,7 @@ The **DisplayClaims** element contains a list of claims to be presented on the s
 | --------- | -------- | ----------- |
 | challengeString | Yes | The CAPTCHA challenge code.|
 
+
 ### Output claims
 
 The **OutputClaims** element contains a list of claims returned by the captcha technical profile.
@@ -71,7 +75,7 @@ The **OutputClaims** element contains a list of claims returned by the captcha t
 | --------- | -------- | ----------- |
 | challengeId | Yes | A unique identifier for CAPTCHA challenge code.|
 | challengeString | Yes | The CAPTCHA challenge code.|
-| azureregion | Yes | TODO|
+| azureregion | Yes | The service region that will serve the CAPTCHA challenge request.|
 
 
 ### Metadata
diff --git a/articles/active-directory-b2c/display-control-captcha.md b/articles/active-directory-b2c/display-control-captcha.md
@@ -1,17 +1,19 @@
 ---
 title: Verify CAPTCHA code using CAPTCHA display controls
 titleSuffix: Azure AD B2C
-description: Learn how to use Azure AD B2C display controls to verify CAPTCHA code in custom policies.
+description: Learn how to define a CAPTCHA display controls custom policy in Azure AD B2C.
 
 author: kengaderdus
 manager: mwongerapk
 
 ms.service: active-directory
 
 ms.topic: reference
-ms.date: 12/11/2023
+ms.date: 01/17/2024
 ms.author: kengaderdus
 ms.subservice: B2C
+
+#Customer intent: As a developer integrating customer-facing apps with Azure AD B2C, I want to learn how to define a CAPTCHA display control so that I can enable CAPTCHA in my authentication using Azure AD B2C's custom policies. 
 ---
 
 # Verify CAPTCHA challenge string using CAPTCHA display control
@@ -34,7 +36,7 @@ This table summarizes the elements that a CAPTCHA display control contains.
 |  InputClaims  |  Yes  |  One or more claims required as input to specify the captcha challenge type and to uniquely identify the challenge.  |
 |  DisplayClaims  |  Yes  |  The claims to be shown to the user such as the captcha challenge code, or collected from the user, such as code input by the user  |
 |    OutputClaim    |  No  | Any claim to be returned to the self-asserted page after the user completes captcha code verification process.   |
-|  Actions  |  Yes  |  CAPTCHA display control contains two actions, *GetChallenge* and *VerifyChallenge*. <br> *GetChallenge* action generate, then displays the captcha challenge code on the interface. This action contains a validation technical profile, which is usually the GetChallenge[CAPTCHA technical profile](captcha-technical-profile.md), to generate and display the CAPTCHA challenge string. <br> *VerifyChallenge* action verifies the CAPTCHA challenge code that the user inputs. This action contains a validation technical profile, which is usually the VerifyChallenge [CAPTCHA technical profile](captcha-technical-profile.md), to validate the CAPTCHA code that the user inputs.  |
+|  Actions  |  Yes  |  CAPTCHA display control contains two actions, *GetChallenge* and *VerifyChallenge*. <br> *GetChallenge* action generates, then displays a captcha challenge code on the user interface. <br> *VerifyChallenge* action verifies the CAPTCHA challenge code that the user inputs. |
 
 The following XML snippet code shows an examples of CaptchaProvider display control:
 
@@ -72,4 +74,8 @@ The following XML snippet code shows an examples of CaptchaProvider display cont
     </DisplayControl>
     ...
 </DisplayControls>
-```
+```
+
+## Next steps
+
+- [Enable CAPTCHA in Azure Active Directory B2C](add-captcha.md).
