Merge pull request #222000 from LFZ96/patch-5

prmerger-automator[bot] · web-flow · commit 6646fff10316 · 2023-01-03T19:00:10.000Z
Update Limitations for AuthorizationsOverview
diff --git a/articles/api-management/authorizations-overview.md b/articles/api-management/authorizations-overview.md
@@ -46,6 +46,8 @@ The feature consists of two parts, management and runtime:
 
 For public preview the following limitations exist:
 
+- Authorizations feature only supports Service Principal and Managed Identity as access policies.
+- Authorizations feature only supports /.default app-only scopes while acquire token for https://.../authorizationmanager audience.
 - Authorizations feature is not supported in the following regions: swedencentral, australiacentral, australiacentral2, jioindiacentral.
 - Authorizations feature is not supported in National Clouds.
 - Authorizations feature is not supported on self-hosted gateways.
@@ -54,8 +56,6 @@ For public preview the following limitations exist:
 - Maximum configured number of authorizations per authorization provider: 10,000
 - Maximum configured number of access policies per authorization: 100
 - Maximum requests per minute per service: 250
-- Authorization code PKCE flow with code challenge isn't supported.
-- API documentation is not available yet. Please see [this](https://github.com/Azure/APIManagement-Authorizations) GitHub repository with samples.  
 
 ### Authorization providers
  
