Merge branch 'master' into patch-154

Author: BhargaviAnnadevara

.github/workflows/stale.yml

@@ -2,7 +2,7 @@ name: Mark stale pull requests
 
 on:
   schedule:
-  - cron: "0 */6 * * *"
+  - cron: "0 */4 * * *"
 
 jobs:
   stale:
@@ -18,9 +18,8 @@ jobs:
         stale-pr-label: inactive
         close-pr-label: auto-close
         exempt-pr-labels: keep-open
-        operations-per-run: 700
-        ascending: true
-        start-date: '2020-12-17'
+        operations-per-run: 1000
+        ascending: false
         stale-pr-message: >
           This pull request has been inactive for at least 14 days.
           If you are finished with your changes, don't forget to sign off. See the [contributor guide](https://review.docs.microsoft.com/help/contribute/contribute-how-to-write-pull-request-automation) for instructions.

.openpublishing.publish.config.json

@@ -357,6 +357,12 @@
       "branch": "main",
       "branch_mapping": {}
     },
+    {
+      "path_to_root": "media-services-v3-dotnet-core-functions-integration",
+      "url": "https://github.com/Azure-Samples/media-services-v3-dotnet-core-functions-integration",
+      "branch": "main",
+      "branch_mapping": {}
+    },
     {
       "path_to_root": "samples-javascript",
       "url": "https://github.com/Microsoft/tsiclient",
@@ -816,6 +822,7 @@
     ".openpublishing.redirection.healthcare-apis.json",
     ".openpublishing.redirection.media-services.json",
     ".openpublishing.redirection.security-benchmark.json",
+    ".openpublishing.redirection.synapse-analytics.json",
     ".openpublishing.redirection.key-vault.json",
     ".openpublishing.redirection.iot-hub.json",
     "articles/azure-relay/.openpublishing.redirection.relay.json",

.openpublishing.redirection.healthcare-apis.json

@@ -454,7 +454,7 @@
     },
     {
         "source_path_from_root": "/articles/healthcare-apis/azure-api-for-fhir/access-fhir-postman-tutorial.md",
-        "redirect_url": "/azure/healthcare-apis/fhir/using-postman",
+        "redirect_url": "/azure/healthcare-apis/use-postman",
         "redirect_document_id": true
     }
   ]

.openpublishing.redirection.json

@@ -489,6 +489,22 @@
       "source_path_from_root": "/articles/key-vault/general/key-vault-integrate-kubernetes.md",
       "redirect_url": "/azure/aks/csi-secrets-store-driver",
       "redirect_document_id": false
+    },
+
+    {
+      "source_path_from_root": "/articles/key-vault/general/assign-access-policy-portal.md",
+      "redirect_url": "/azure/key-vault/general/assign-access-policy",
+      "redirect_document_id": false
+    },
+    {
+      "source_path_from_root": "/articles/key-vault/general/assign-access-policy-cli.md",
+      "redirect_url": "/azure/key-vault/general/assign-access-policy",
+      "redirect_document_id": false
+    },
+    {
+      "source_path_from_root": "/articles/key-vault/general/assign-access-policy-powershell.md",
+      "redirect_url": "/azure/key-vault/general/assign-access-policy",
+      "redirect_document_id": false
     }
 
   ]

.openpublishing.redirection.key-vault.json

@@ -0,0 +1,44 @@
+{
+    "redirections": [
+        {
+            "source_path_from_root": "/articles/synapse-analytics/sql-data-warehouse/sql-data-warehouse-partner-browse-partners.md",
+            "redirect_url": "/azure/synapse-analytics/partner/browse-partners",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/synapse-analytics/sql-data-warehouse/sql-data-warehouse-partner-business-intelligence.md",
+            "redirect_url": "/azure/synapse-analytics/partner/business-intelligence",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/synapse-analytics/sql-data-warehouse/sql-data-warehouse-partner-compatibility-issues.md",
+            "redirect_url": "/azure/synapse-analytics/partner/compatibility-issues",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/synapse-analytics/sql-data-warehouse/sql-data-warehouse-partner-data-integration.md",
+            "redirect_url": "/azure/synapse-analytics/partner/data-integration",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/synapse-analytics/sql-data-warehouse/sql-data-warehouse-partner-data-management.md",
+            "redirect_url": "/azure/synapse-analytics/partner/data-management",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/synapse-analytics/sql-data-warehouse/sql-data-warehouse-partner-machine-learning-ai.md",
+            "redirect_url": "/azure/synapse-analytics/partner/machine-learning-ai",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/synapse-analytics/sql-data-warehouse/sql-data-warehouse-partner-system-integration.md",
+            "redirect_url": "/azure/synapse-analytics/partner/system-integration",
+            "redirect_document_id": false
+        },
+        {
+            "source_path_from_root": "/articles/synapse-analytics/sql-data-warehouse/guidance-for-loading-data.md",
+            "redirect_url": "/azure/synapse-analytics/sql/data-loading-best-practices",
+            "redirect_document_id": false
+        }
+    ]
+}

.openpublishing.redirection.synapse-analytics.json

@@ -332,15 +332,23 @@
       href: configure-tokens.md
   - name: Define custom attributes
     href: user-flow-custom-attributes.md
-  - name: Security and threat management
+  - name: Security
     items:
-    - name: Investigate risk with Identity Protection
-      href: identity-protection-investigate-risk.md
-    - name: Configure Conditional Access
-      href: conditional-access-user-flow.md
-    - name: Mitigate credential attacks
-      displayName: smart lockout, account lockout, password attack
-      href: threat-management.md
+    - name: Monitoring and threat management
+      items:
+      - name: Azure Monitor
+        href: azure-monitor.md
+      - name: Azure Sentinel
+        href: azure-sentinel.md
+        displayName: log, logs, logging, events, Azure Monitor, Azure Sentinel, SIEM, threat hunting, Security, Security Orchestration
+    - name: Web Application Firewall partners
+      items:
+      - name: Akamai
+        href: partner-akamai.md
+      - name: Azure WAF
+        href: partner-azure-web-application-firewall.md
+      - name: Cloudflare
+        href: partner-cloudflare.md
     - name: Fraud protection partners
       items: 
       - name: Arkose Labs
@@ -352,6 +360,28 @@
       - name: Microsoft Dynamics 365 Fraud Protection
         href: partner-dynamics-365-fraud-protection.md
         displayName: m365 dynamics, dynamics fraud protection, fraud, 365 protection
+    - name: Investigate risk with Identity Protection
+      href: identity-protection-investigate-risk.md
+    - name: Configure Conditional Access
+      href: conditional-access-user-flow.md
+    - name: Mitigate credential attacks
+      displayName: smart lockout, account lockout, password attack
+      href: threat-management.md
+    - name: Secure phone-based MFA
+      href: phone-based-mfa.md
+      displayName: multi-factor authentication, Azure Monitor, Log Analytics, reports, reporting, dashboard
+    - name: Secure access to legacy and on-premises apps
+      items:
+      - name: Datawiza
+        href: partner-datawiza.md
+      - name: Ping Identity
+        href: partner-ping-identity.md
+      - name: Strata
+        href: partner-strata.md
+        displayName: AAD b2c access, legacy app, onpremises apps
+      - name: Zscaler
+        href: partner-zscaler.md
+        displayName: zscaler b2c, vpn, sdp b2c
   - name: Configure age gating
     href: age-gating.md
   - name: API connectors
@@ -394,32 +424,12 @@
       href: partner-lexisnexis.md
     - name: Onfido
       href: partner-onfido.md
-  - name: Secure access to legacy and on-premises apps
-    items:
-    - name: Datawiza
-      href: partner-datawiza.md
-    - name: Ping Identity
-      href: partner-ping-identity.md
-    - name: Strata
-      href: partner-strata.md
-      displayName: AAD b2c access, legacy app, onpremises apps
-    - name: Zscaler
-      href: partner-zscaler.md
-      displayName: zscaler b2c, vpn, sdp b2c
   - name: Domain name
     items:
     - name: b2clogin.com overview
       href: b2clogin.md
     - name: Configure a custom domain
       href: custom-domain.md
-    - name: Web Application Firewall partners
-      items:
-      - name: Akamai
-        href: partner-akamai.md
-      - name: Azure WAF
-        href: partner-azure-web-application-firewall.md
-      - name: Cloudflare
-        href: partner-cloudflare.md
     - name: Configure web API domains 
       href: multiple-token-endpoints.md
       displayName: migrate, b2clogin, owin
@@ -430,6 +440,8 @@
       displayName: account, accounts, msgraph, ms graph, graph
     - name: Deploy with Azure Pipelines
       href: deploy-custom-policies-devops.md
+    - name: Deploy with GitHub Actions
+      href: deploy-custom-policies-github-action.md
       displayName: azure devops, ci/cd, cicd, custom policy, policies
     - name: Manage policies with PowerShell
       href: manage-custom-policies-powershell.md
@@ -448,23 +460,14 @@
         href: partner-n8identity.md
       - name: Saviynt 
         href: partner-saviynt.md
-  - name: Logs and monitoring
+  - name: Logs 
     items:
     - name: Audit logs
       href: view-audit-logs.md
-      displayName: log, logs, logging, usage, events, reports, reporting
-    - name: Azure Monitor
-      href: azure-monitor.md
       displayName: log, logs, logging, usage, events, reports, reporting, dashboard
-    - name: Azure Sentinel
-      href: azure-sentinel.md
-      displayName: log, logs, logging, events, Azure Monitor, Azure Sentinel, SIEM, threat hunting, Security, Security Orchestration
     - name: Usage analytics
       href: analytics-with-application-insights.md
       displayName: application insights, app insights, reports, reporting
-    - name: Secure phone-based MFA
-      href: phone-based-mfa.md
-      displayName: multi-factor authentication, Azure Monitor, Log Analytics, reports, reporting, dashboard
   - name: Compliance
     items:
     - name: User access

articles/active-directory-b2c/TOC.yml

@@ -8,7 +8,7 @@ manager: celestedg
 ms.service: active-directory
 ms.workload: identity
 ms.topic: how-to
-ms.date: 08/04/2021
+ms.date: 08/29/2021
 ms.author: mimart
 ms.subservice: B2C
 zone_pivot_groups: b2c-policy-type
@@ -88,7 +88,6 @@ Content-type: application/json
  "objectId": "ab3ec3b2-a435-45e4-b93a-56a005e88bb7",
  "extension_<extensions-app-id>_CustomAttribute1": "custom attribute value",
  "extension_<extensions-app-id>_CustomAttribute2": "custom attribute value",
- "objectId": "ab3ec3b2-a435-45e4-b93a-56a005e88bb7",
  "client_id": "231c70e8-8424-48ac-9b5d-5623b9e4ccf3",
  "step": "PreTokenIssuance",
  "ui_locales":"en-US"
@@ -320,7 +319,8 @@ Save the files you changed: *TrustFrameworkBase.xml*, and *TrustFrameworkExtensi
 ## Test the custom policy
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
-1. Make sure you're using the directory that contains your Azure AD tenant by selecting the **Directory + subscription** filter in the top menu and choosing the directory that contains your Azure AD tenant.
+1. Make sure you're using the directory that contains your Azure AD tenant by selecting the **Directories + subscriptions** icon in the portal toolbar.
+1. On the **Portal settings | Directories + subscriptions** page, find your Azure AD directory in the **Directory name** list, and then select **Switch**.
 1. Choose **All services** in the top-left corner of the Azure portal, and then search for and select **App registrations**.
 1. Select **Identity Experience Framework**.
 1. Select **Upload Custom Policy**, and then upload the policy files that you changed: *TrustFrameworkBase.xml*, and *TrustFrameworkExtensions.xml*, *SignUpOrSignin.xml*, *ProfileEdit.xml*, and *PasswordReset.xml*. 

articles/active-directory-b2c/add-api-connector-token-enrichment.md

@@ -572,7 +572,8 @@ To return the promo code claim back to the relying party application, add an out
 ## Test the custom policy
 
 1. Sign in to the [Azure portal](https://portal.azure.com).
-1. Make sure you're using the directory that contains your Azure AD tenant by selecting the **Directory + subscription** filter in the top menu and choosing the directory that contains your Azure AD tenant.
+1. Make sure you're using the directory that contains your Azure AD tenant by selecting the **Directories + subscriptions** icon in the portal toolbar.
+1. On the **Portal settings | Directories + subscriptions** page, find your Azure AD directory in the **Directory name** list, and then select **Switch**.
 1. Choose **All services** in the top-left corner of the Azure portal, and then search for and select **App registrations**.
 1. Select **Identity Experience Framework**.
 1. Select **Upload Custom Policy**, and then upload the policy files that you changed: *TrustFrameworkExtensions.xml*, and *SignUpOrSignin.xml*.