Skip to content

Commit 957dbac

Browse files
anthonychuanthonychu
authored
Add warning for session identifiers
1 parent 9cb3c8d commit 957dbac

File tree

1 file changed

+3
-0
lines changed

1 file changed

+3
-0
lines changed

articles/container-apps/sessions.md

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -75,6 +75,9 @@ You pass the session identifier in a query parameter named `identifier` in the U
7575

7676
For code interpreter sessions, you can also use an integration with an [LLM framework](./sessions-code-interpreter.md#llm-framework-integrations). The framework handles the token generation and management for you. Ensure that the application is configured with a managed identity that has the necessary role assignments on the session pool.
7777

78+
> [!IMPORTANT]
79+
> The session identifier is critical and sensitive information that must be securely created and managed. Secure your application to ensure each user only has access to their own sessions, and a malicious user cannot access another user's session.
80+
7881
### Authentication
7982

8083
Authentication is handled using Microsoft Entra (formerly Azure Active Directory) tokens. Valid Microsoft Entra tokens are generated by an identity belonging to the *Azure ContainerApps Session Executor* and *Contributor* roles on the session pool.

0 commit comments

Comments
 (0)