Merge pull request #243001 from MicrosoftDocs/repo_sync_working_branch

Confirm merge from repo_sync_working_branch to main to sync with https://github.com/MicrosoftDocs/azure-docs (branch main)

Author: huypub

articles/active-directory/conditional-access/concept-continuous-access-evaluation.md

@@ -21,7 +21,7 @@ Token expiration and refresh are a standard mechanism in the industry. When a cl
 
 Customers have expressed concerns about the lag between when conditions change for a user, and when policy changes are enforced. Azure AD has experimented with the "blunt object" approach of reduced token lifetimes but found they can degrade user experiences and reliability without eliminating risks.
 
-Timely response to policy violations or security issues really requires a "conversation" between the token issuer (Azure AD), and the relying party (enlightened app). This two-way conversation gives us two important capabilities. The relying party can see when properties change, like network location, and tell the token issuer. It also gives the token issuer a way to tell the relying party to stop respecting tokens for a given user because of account compromise, disablement, or other concerns. The mechanism for this conversation is continuous access evaluation (CAE). The goal for critical event evaluation is for response to be near real time, but latency of up to 15 minutes may be observed because of event propagation time; however, IP locations policy enforcement is instant.
+Timely response to policy violations or security issues really requires a "conversation" between the token issuer (Azure AD), and the relying party (enlightened app). This two-way conversation gives us two important capabilities. The relying party can see when properties change, like network location, and tell the token issuer. It also gives the token issuer a way to tell the relying party to stop respecting tokens for a given user because of account compromise, disablement, or other concerns. The mechanism for this conversation is continuous access evaluation (CAE), an industry standard based on [Open ID Continuous Access Evaluation Profile (CAEP)](https://openid.net/specs/openid-caep-specification-1_0-01.html). The goal for critical event evaluation is for response to be near real time, but latency of up to 15 minutes may be observed because of event propagation time; however, IP locations policy enforcement is instant.
 
 The initial implementation of continuous access evaluation focuses on Exchange, Teams, and SharePoint Online.
 

articles/active-directory/conditional-access/concept-filter-for-applications.md

@@ -57,7 +57,7 @@ Follow the instructions in the article, [Add or deactivate custom security attri
 :::image type="content" source="media/concept-filter-for-applications/custom-attributes.png" alt-text="A screenshot showing custom security attribute and predefined values in Azure AD." lightbox="media/concept-filter-for-applications/custom-attributes.png":::
 
 > [!NOTE] 
-> Conditional Access filters for devices only works with custom security attributes of type "string".
+> Conditional Access filters for devices only works with custom security attributes of type "string". Custom Security Attributes support creation of Boolean data type but Conditional Access Policy only supports "string".
 
 ## Create a Conditional Access policy
 

articles/active-directory/devices/faq.yml

@@ -60,6 +60,7 @@ sections:
           - User disables the device from the My Apps portal. 
           - An administrator (or user) deletes or disables the device in the Azure portal or by using PowerShell
           - Hybrid Azure AD joined only: An administrator removes the devices OU out of sync scope resulting in the devices being deleted from Azure AD
+          - Hybrid Azure AD joined only: An administrator disables the computer account on premises, resulting in the device being disabled in Azure AD
           - Upgrading Azure AD connect to the version 1.4.xx.x. [Understanding Azure AD Connect 1.4.xx.x and device disappearance](/troubleshoot/azure/active-directory/reference-connect-device-disappearance).
 
           

articles/aks/csi-migrate-in-tree-volumes.md

@@ -279,10 +279,11 @@ Before proceeding, verify the following:
               DISK_URI="$(kubectl get pv $PV -n $NAMESPACE -o jsonpath='{.spec.azureDisk.diskURI}')"
               TARGET_RESOURCE_GROUP="$(cut -d'/' -f5 <<<"$DISK_URI")"
               echo $DISK_URI
+              SUBSCRIPTION_ID="$(echo $DISK_URI | grep -o 'subscriptions/[^/]*' | sed 's#subscriptions/##g')"
               echo $TARGET_RESOURCE_GROUP
               PERSISTENT_VOLUME_RECLAIM_POLICY="$(kubectl get pv $PV -n $NAMESPACE -o jsonpath='{.spec.persistentVolumeReclaimPolicy}')"
-              az snapshot create --resource-group $TARGET_RESOURCE_GROUP --name $PVC-$FILENAME --source "$DISK_URI"
-              SNAPSHOT_PATH=$(az snapshot list --resource-group $TARGET_RESOURCE_GROUP --query "[?name == '$PVC-$FILENAME'].id | [0]")
+              az snapshot create --resource-group $TARGET_RESOURCE_GROUP --name $PVC-$FILENAME --source "$DISK_URI" --subscription ${SUBSCRIPTION_ID}
+              SNAPSHOT_PATH=$(az snapshot list --resource-group $TARGET_RESOURCE_GROUP --query "[?name == '$PVC-$FILENAME'].id | [0]" --subscription ${SUBSCRIPTION_ID})
               SNAPSHOT_HANDLE=$(echo "$SNAPSHOT_PATH" | tr -d '"')
               echo $SNAPSHOT_HANDLE
               sleep 10

articles/aks/dapr-settings.md

@@ -199,10 +199,10 @@ az k8s-extension upgrade --cluster-type managedClusters \
 --resource-group myResourceGroup \
 --name dapr \
 --extension-type Microsoft.Dapr \
---set global.tag=1.10.0-AzureLinux
+--set global.tag=1.10.0-mariner
 ```
 
-- [Learn more about using AzureLinux-based images with Dapr][dapr-azurelinux].
+- [Learn more about using Mariner-based images with Dapr][dapr-mariner].
 - [Learn more about deploying AzureLinux on AKS][aks-azurelinux].
 
 
@@ -262,4 +262,4 @@ Once you have successfully provisioned Dapr in your AKS cluster, try deploying a
 [dapr-supported-version]: https://docs.dapr.io/operations/support/support-release-policy/#supported-versions
 [dapr-troubleshooting]: https://docs.dapr.io/operations/troubleshooting/common_issues/
 [supported-cloud-regions]: https://azure.microsoft.com/global-infrastructure/services/?products=azure-arc
-[dapr-azurelinux]: https://docs.dapr.io/operations/hosting/kubernetes/kubernetes-deploy/#using-azurelinux-based-images
+[dapr-mariner]: https://docs.dapr.io/operations/hosting/kubernetes/kubernetes-deploy/#using-mariner-based-images

articles/app-service/configure-authentication-provider-openid-connect.md

@@ -19,7 +19,7 @@ You can configure your app to use one or more OIDC providers. Each must be given
 Your provider will require you to register the details of your application with it. One of these steps involves specifying a redirect URI. This redirect URI will be of the form `<app-url>/.auth/login/<provider-name>/callback`. Each identity provider should provide more instructions on how to complete these steps. `<provider-name>` will refer to the friendly name you give to the OpenID provider name in Azure.
 
 > [!NOTE]
-> Some providers may require additional steps for their configuration and how to use the values they provide. For example, Apple provides a private key which is not itself used as the OIDC client secret, and you instead must use it craft a JWT which is treated as the secret you provide in your app config (see the "Creating the Client Secret" section of the [Sign in with Apple documentation](https://developer.apple.com/documentation/sign_in_with_apple/generate_and_validate_tokens))
+> Some providers may require additional steps for their configuration and how to use the values they provide. For example, Apple provides a private key which is not itself used as the OIDC client secret, and you instead must use it to craft a JWT which is treated as the secret you provide in your app config (see the "Creating the Client Secret" section of the [Sign in with Apple documentation](https://developer.apple.com/documentation/sign_in_with_apple/generate_and_validate_tokens))
 >
 
 You will need to collect a **client ID** and **client secret** for your application.

articles/azure-maps/how-to-use-services-module.md

@@ -1,9 +1,10 @@
 ---
-title: Use the Azure Maps Services module | Microsoft Azure Maps
+title: Use the Azure Maps Services module
+titleSuffix:  Microsoft Azure Maps
 description: Learn about the Azure Maps services module. See how to load and use this helper library to access Azure Maps REST services in web or Node.js applications.
-author: eriklindeman
-ms.author: eriklind
-ms.date: 03/25/2019
+author: dubiety
+ms.author: yuchungchen
+ms.date: 06/26/2023
 ms.topic: how-to
 ms.service: azure-maps
 services: azure-maps
@@ -34,7 +35,7 @@ The Azure Maps Web SDK provides a *services module*. This module is a helper lib
       import * as service from "azure-maps-rest";
       ```
 
-1. Create an authentication pipeline. The pipeline must be created before you can initialize a service URL client endpoint. Use your own Azure Maps account key or Azure Active Directory (Azure AD) credentials to authenticate an Azure Maps Search service client. In this example, the Search service URL client will be created. 
+1. Create an authentication pipeline. The pipeline must be created before you can initialize a service URL client endpoint. Use your own Azure Maps account key or Azure Active Directory (Azure AD) credentials to authenticate an Azure Maps Search service client. In this example, the Search service URL client will be created.
 
     If you use a subscription key for authentication:
 
@@ -150,16 +151,85 @@ The Azure Maps Web SDK provides a *services module*. This module is a helper lib
     });
     ```
 
-    Here's the full, running code sample:
+Here's the full, running code sample:
 
-<br/>
+```javascript
+<html>
+ <head>
+
+  <script src="https://atlas.microsoft.com/sdk/javascript/service/2/atlas-service.min.js"></script>
+
+  <script type="text/javascript">
+    
+    // Get an Azure Maps key at https://azure.com/maps.
+    var subscriptionKey = '{Your-Azure-Maps-Subscription-key}';
+
+    // Use SubscriptionKeyCredential with a subscription key.
+    var subscriptionKeyCredential = new atlas.service.SubscriptionKeyCredential(subscriptionKey);
+
+    // Use subscriptionKeyCredential to create a pipeline.
+    var pipeline = atlas.service.MapsURL.newPipeline(subscriptionKeyCredential, {
+      retryOptions: { maxTries: 4 } // Retry options
+    });
 
+    // Create an instance of the SearchURL client.
+    var searchURL = new atlas.service.SearchURL(pipeline);
+
+    // Search for "1 microsoft way, redmond, wa".
+    searchURL.searchAddress(atlas.service.Aborter.timeout(10000), '1 microsoft way, redmond, wa')
+      .then(response => {
+      var html = [];
+
+      // Display the total results.
+      html.push('Total results: ', response.summary.numResults, '<br/><br/>');
+
+      // Create a table of the results.
+      html.push('<table><tr><td></td><td>Result</td><td>Latitude</td><td>Longitude</td></tr>');
+
+      for(var i=0;i<response.results.length;i++){
+        html.push('<tr><td>', (i+1), '.</td><td>', 
+        response.results[i].address.freeformAddress, 
+        '</td><td>', 
+        response.results[i].position.lat,
+        '</td><td>', 
+        response.results[i].position.lon,
+        '</td></tr>');
+      }
+
+      html.push('</table>');
+
+      // Add the resulting HTML to the body of the page.
+      document.body.innerHTML = html.join('');
+    });
+
+  </script>
+</head>
+
+<style>
+  table {
+    border: 1px solid black;
+    border-collapse: collapse;
+  }
+  td, th {
+    border: 1px solid black;
+    padding: 5px;
+  }
+</style>
+
+<body> </body>
+
+</html>
+```
+
+The following image is a screenshot showing the results of this sample code, a table with the address searched for, along with the resulting coordinates.
+
+:::image type="content" source="./media/how-to-use-services-module/services-module-in-webpage.png"alt-text="A screenshot of an HTML table showing the address searched and the resulting coordinates.":::
+
+<!-------------------------------------------------------
 <iframe height="500" scrolling="no" title="Using the Services Module" src="//codepen.io/azuremaps/embed/zbXGMR/?height=500&theme-id=0&default-tab=js,result&editable=true" frameborder='no' loading="lazy" allowtransparency="true" allowfullscreen="true">
   See the Pen <a href='https://codepen.io/azuremaps/pen/zbXGMR/'>Using the Services Module</a> by Azure Maps
-  (<a href='https://codepen.io/azuremaps'>@azuremaps</a>) on <a href='https://codepen.io'>CodePen</a>.
-</iframe>
-
-<br/>
+  (<a href='https://codepen.io/azuremaps'>@azuremaps</a>) on <a href='https://codepen.io'>CodePen</a>.</iframe>
+--------------------------------------------------------->
 
 ## Azure Government cloud support
 
@@ -209,4 +279,4 @@ For more code samples that use the services module, see these articles:
 > [Get information from a coordinate](./map-get-information-from-coordinate.md)
 
 > [!div class="nextstepaction"]
-> [Show directions from A to B](./map-route.md)
+> [Show directions from A to B](./map-route.md)

articles/azure-maps/map-accessibility.md

@@ -118,7 +118,7 @@ Any additional information that is placed on the base map should have correspond
 
 A marker or symbol is often used to represent a location on the map. Additional information about the location is typically displayed in a popup when the user interacts with the marker. In most applications, popups appear when a user selects a marker. However, clicking and tapping require the user to use a mouse and a touch screen, respectively. A good practice is to make popups accessible when using a keyboard. This functionality can be achieved by creating a popup for each data point and adding it to the map.
 
-The [Accessible popups] example loads points of interests on the map using a symbol layer and adds a popup to the map for each point of interest. A reference to each popup is stored in the properties of each data point. It can also be retrieved for a marker, such as when a marker is selected. When focused on the map, pressing the tab key allows the user to step through each popup on the map.
+The [Accessible popups] example loads points of interests on the map using a symbol layer and adds a popup to the map for each point of interest. A reference to each popup is stored in the properties of each data point. It can also be retrieved for a marker, such as when a marker is selected. When focused on the map, pressing the tab key allows the user to step through each popup on the map. For the source code for this sample, see [Accessible popups source code].
 
 :::image type="content" source="./media/map-accessibility/accessible-popups.png" alt-text="A screenshot showing a maps with accessible popups.":::
 
@@ -179,5 +179,6 @@ Take a look at these useful accessibility tools:
 > [No Coffee Vision Simulator](https://uxpro.cc/toolbox/nocoffee/)
 
 [Accessible popups]: https://samples.azuremaps.com/popups/accessible-popups
+[Accessible popups source code]: https://github.com/Azure-Samples/AzureMapsCodeSamples/blob/main/Samples/Popups/Accessible%20popups/Accessible%20popups.html
 [Accessibility Conformance Reports]: https://cloudblogs.microsoft.com/industry-blog/government/2018/09/11/accessibility-conformance-reports/
 [Accessible Rich Internet Applications (ARIA)]: https://www.w3.org/WAI/standards-guidelines/aria/

articles/azure-maps/map-add-bubble-layer.md

@@ -120,7 +120,7 @@ This code shows you how to use a bubble layer to render a point on the map and a
 
 ## Customize a bubble layer
 
-The Bubble layer only has a few styling options. Use the [Bubble Layer Options] sample to try them out.
+The Bubble layer only has a few styling options. Use the [Bubble Layer Options] sample to try them out. For the source code for this sample, see [Bubble Layer Options source code].
 
 :::image type="content" source="./media/map-add-bubble-layer/bubble-layer-options.png" alt-text="Screenshot showing a the Bubble Layer Options sample that shows a map with bubbles and selectable bubble layer options to the left of the map.":::
 
@@ -156,4 +156,5 @@ See the following articles for more code samples to add to your maps:
 > [Code samples](/samples/browse/?products=azure-maps)
 
 [Bubble Layer Options]: https://samples.azuremaps.com/bubble-layer/bubble-layer-options
+[Bubble Layer Options source code]: https://github.com/Azure-Samples/AzureMapsCodeSamples/blob/main/Samples/Bubble%20Layer/Bubble%20Layer%20Options/Bubble%20Layer%20Options.html
 [bubble layer]: /javascript/api/azure-maps-control/atlas.layer.bubblelayer

articles/azure-maps/map-add-controls.md

@@ -93,7 +93,7 @@ The style picker control is defined by the [StyleControl] class. For more inform
 
 ## Customize controls
 
-The [Navigation Control Options] sample is a tool to test out the various options for customizing the controls.
+The [Navigation Control Options] sample is a tool to test out the various options for customizing the controls. For the source code for this sample, see [Navigation Control Options source code].
 
 :::image type="content" source="./media/map-add-controls/map-navigation-control-options.png" alt-text="Screenshot showing the Map Navigation Control Options sample, which contains a map displaying zoom, compass, pitch and style controls and options on the left side of the screen that enable you to change the Control Position, Control Style, Zoom Delta, Pitch Delta, Compass Rotation Delta, Picker Styles, and Style Picker Layout properties.":::
 
@@ -146,6 +146,7 @@ See the following articles for full code:
 [CompassControl]: /javascript/api/azure-maps-control/atlas.control.compasscontrol
 [StyleControl]: /javascript/api/azure-maps-control/atlas.control.stylecontrol
 [Navigation Control Options]: https://samples.azuremaps.com/controls/map-navigation-control-options
+[Navigation Control Options source code]: https://github.com/Azure-Samples/AzureMapsCodeSamples/blob/main/Samples/Controls/Map%20Navigation%20Control%20Options/Map%20Navigation%20Control%20Options.html
 [choose a map style]: choose-map-style.md
 [Add a pin]: map-add-pin.md
 [Add a popup]: map-add-popup.md