Merge pull request #228015 from spelluru/egridroles0221

prmerger-automator[bot] · web-flow · commit 8fd11a94316b · 2023-02-21T16:46:13.000Z
Event Grid RBAC roles
diff --git a/articles/event-grid/security-authorization.md b/articles/event-grid/security-authorization.md
@@ -15,7 +15,7 @@ For a list of operation supported by Azure Event Grid, run the following Azure C
 az provider operation show --namespace Microsoft.EventGrid
 ```
 
-The following operations return potentially secret information, which gets filtered out of normal read operations. It's recommended that you restrict access to these operations. 
+The following operations return potentially secret information, which gets filtered out of normal read operations. We recommend that you restrict access to these operations. 
 
 * Microsoft.EventGrid/eventSubscriptions/getFullUrl/action
 * Microsoft.EventGrid/topics/listKeys/action
@@ -32,10 +32,10 @@ The Event Grid Contributor role allows you to create and manage Event Grid resou
 
 | Role | Description |
 | ---- | ----------- | 
-| [Event Grid Subscription Reader](../role-based-access-control/built-in-roles.md#eventgrid-eventsubscription-reader) | Lets you read Event Grid event subscriptions. |
-| [Event Grid Subscription Contributor](../role-based-access-control/built-in-roles.md#eventgrid-eventsubscription-contributor) | Lets you manage Event Grid event subscription operations. |
-| [Event Grid Contributor](../role-based-access-control/built-in-roles.md#eventgrid-contributor) | Lets you create and manage Event Grid resources. |
-| [Event Grid Data Sender](../role-based-access-control/built-in-roles.md#eventgrid-data-sender) | Lets you send events to Event Grid topics. |
+| [`EventGrid EventSubscription Reader`](../role-based-access-control/built-in-roles.md#eventgrid-eventsubscription-reader) | Lets you read Event Grid event subscriptions. |
+| [`EventGrid EventSubscription Contributor`](../role-based-access-control/built-in-roles.md#eventgrid-eventsubscription-contributor) | Lets you manage Event Grid event subscription operations. |
+| [`EventGrid Contributor`](../role-based-access-control/built-in-roles.md#eventgrid-contributor) | Lets you create and manage Event Grid resources. |
+| [`EventGrid Data Sender`](../role-based-access-control/built-in-roles.md#eventgrid-data-sender) | Lets you send events to Event Grid topics. |
 
 
 > [!NOTE]
@@ -90,7 +90,7 @@ The following are sample Event Grid role definitions that allow users to take di
 }
 ```
 
-**EventGridContributorRole.json**: Allows all event grid actions.
+**EventGridContributorRole.json**: Allows all Event Grid actions.
 
 ```json
 {
@@ -126,14 +126,14 @@ If you're using an event handler that isn't a WebHook (such as an event hub or q
 You must have the **Microsoft.EventGrid/EventSubscriptions/Write** permission on the resource that is the event source. You need this permission because you're writing a new subscription at the scope of the resource. The required resource differs based on whether you're subscribing to a system topic or custom topic. Both types are described in this section.
 
 ### System topics (Azure service publishers)
-For system topics, if you are not the owner or contributor of the source resource, you need permission to write a new event subscription at the scope of the resource publishing the event. The format of the resource is:
+For system topics, if you aren't the owner or contributor of the source resource, you need permission to write a new event subscription at the scope of the resource publishing the event. The format of the resource is:
 `/subscriptions/{subscription-id}/resourceGroups/{resource-group-name}/providers/{resource-provider}/{resource-type}/{resource-name}`
 
 For example, to subscribe to an event on a storage account named **myacct**, you need the Microsoft.EventGrid/EventSubscriptions/Write permission on:
 `/subscriptions/####/resourceGroups/testrg/providers/Microsoft.Storage/storageAccounts/myacct`
 
 ### Custom topics
-For custom topics, you need permission to write a new event subscription at the scope of the event grid topic. The format of the resource is:
+For custom topics, you need permission to write a new event subscription at the scope of the Event Grid topic. The format of the resource is:
 `/subscriptions/{subscription-id}/resourceGroups/{resource-group-name}/providers/Microsoft.EventGrid/topics/{topic-name}`
 
 For example, to subscribe to a custom topic named **mytopic**, you need the Microsoft.EventGrid/EventSubscriptions/Write permission on:
