Merge pull request #49793 from KarlErickson/karler-ropc

v-regandowner · web-flow · commit b1b8998e3ffd · 2025-03-31T17:05:32.000-04:00
ROPC fixes
diff --git a/learn-pr/advocates/deploy-java-ee-app-to-jboss-app-service/includes/3-exercise-deploy-azure-database-mysql.md b/learn-pr/advocates/deploy-java-ee-app-to-jboss-app-service/includes/3-exercise-deploy-azure-database-mysql.md
@@ -100,6 +100,8 @@ export MYSQL_USER=<MySQL-admin-user-name>
 export MYSQL_PASSWORD=<MySQL-password>
 ```
 
+[!INCLUDE [security-note](../../../includes/security-note.md)]
+
 ## Get data from the sample database
 
 In this module, you use a sample database called `world` from the official MySQL website. To get the data, use the following steps:
diff --git a/learn-pr/azure/deploy-java-quarkus-azure-container-app-postgres/includes/5-exercise-rg-postgres.md b/learn-pr/azure/deploy-java-quarkus-azure-container-app-postgres/includes/5-exercise-rg-postgres.md
@@ -94,8 +94,7 @@ echo "POSTGRES_CONNECTION_STRING_SSL=$POSTGRES_CONNECTION_STRING_SSL"
 
 Note the connection string that's returned.
 
-> [!NOTE]
-> Microsoft recommends using the most secure authentication flow available. The authentication flow described in this procedure, such as for databases, caches, messaging or AI services, requires a very high degree of trust in the application and carries risks not present in other flows. Use this flow only when more secure options, like managed identities for passwordless or keyless connections, are not viable. For local machine operations, prefer user identities for passwordless or keyless connections.
+[!INCLUDE [security-note](../../../includes/security-note.md)]
 
 ## Configure the Quarkus application to connect to the PostgreSQL database
 
diff --git a/learn-pr/includes/security-note.md b/learn-pr/includes/security-note.md
@@ -0,0 +1,8 @@
+---
+author: KarlErickson
+ms.author: karler
+ms.date: 03/31/2025
+---
+
+> [!NOTE]
+> Microsoft recommends using the most secure authentication flow available. The authentication flow described in this procedure, such as for databases, caches, messaging, or AI services, requires a high degree of trust in the application and carries risks not present in other flows. Use this flow only when more secure options, like managed identities for passwordless or keyless connections, aren't viable. For local machine operations, prefer user identities for passwordless or keyless connections.
