dotnet
diff --git a/‎aspnetcore/fundamentals/servers/yarp/diagnosing-yarp-issues.md‎
Lines changed: 71 additions & 53 deletions b/‎aspnetcore/fundamentals/servers/yarp/diagnosing-yarp-issues.md‎
Lines changed: 71 additions & 53 deletions
diff --git a/‎aspnetcore/fundamentals/servers/yarp/extensibility-transforms.md‎
Lines changed: 74 additions & 49 deletions b/‎aspnetcore/fundamentals/servers/yarp/extensibility-transforms.md‎
Lines changed: 74 additions & 49 deletions
diff --git a/‎aspnetcore/fundamentals/servers/yarp/extensibility.md‎
Lines changed: 11 additions & 12 deletions b/‎aspnetcore/fundamentals/servers/yarp/extensibility.md‎
Lines changed: 11 additions & 12 deletions
diff --git a/‎aspnetcore/fundamentals/servers/yarp/getting-started.md‎
Lines changed: 5 additions & 6 deletions b/‎aspnetcore/fundamentals/servers/yarp/getting-started.md‎
Lines changed: 5 additions & 6 deletions
diff --git a/‎aspnetcore/fundamentals/servers/yarp/grpc.md‎
Lines changed: 8 additions & 7 deletions b/‎aspnetcore/fundamentals/servers/yarp/grpc.md‎
Lines changed: 8 additions & 7 deletions
diff --git a/‎aspnetcore/fundamentals/servers/yarp/header-guidelines.md‎
Lines changed: 33 additions & 31 deletions b/‎aspnetcore/fundamentals/servers/yarp/header-guidelines.md‎
Lines changed: 33 additions & 31 deletions
@@ -9,7 +9,6 @@ ms.topic: article
 content_well_notification: AI-contribution
 ai-usage: ai-assisted
 ---
-
 # Overview of YARP extensibility
 
 There are 2 main styles of extensibility for YARP, depending on the routing behavior desired:
@@ -23,24 +22,24 @@ YARP uses the concept of [Routes](xref:fundamentals/servers/yarp/config-files#ro
 
 ![Middleware pipeline diagram](~/fundamentals/servers/yarp/media/yarp-pipeline.png)
 
-Most of the pre-built pipeline can be customized through code:
+Most of the prebuilt pipeline can be customized through code:
 
-- [Configuration Providers](xref:fundamentals/servers/yarp/config-providers)
-- [Destination Enumeration](xref:fundamentals/servers/yarp/destination-resolvers)
-- [Session Affinity](xref:fundamentals/servers/yarp/session-affinity)
-- [Load Balancing](xref:fundamentals/servers/yarp/load-balancing)
-- [Health Checks](xref:fundamentals/servers/yarp/dests-health-checks)
-- [Request Transforms](xref:fundamentals/servers/yarp/transform-extensibility)
-- [HttpClient configuration](./http-client-config.md#code-configuration)
+* [Configuration Providers](xref:fundamentals/servers/yarp/config-providers)
+* [Destination Enumeration](xref:fundamentals/servers/yarp/destination-resolvers)
+* [Session Affinity](xref:fundamentals/servers/yarp/session-affinity)
+* [Load Balancing](xref:fundamentals/servers/yarp/load-balancing)
+* [Health Checks](xref:fundamentals/servers/yarp/dests-health-checks)
+* [Request Transforms](xref:fundamentals/servers/yarp/transform-extensibility)
+* [HttpClient configuration](./http-client-config.md#code-configuration)
 
 You can also change the pipeline definition to replace modules with your own implementation(s) or add additional modules as needed. For more information see [Middleware](xref:fundamentals/servers/yarp/middleware).
 
-## Http Forwarder
+## HTTP Forwarder
 
-If the YARP pipeline is too rigid for your needs, or the scale of routing rules and destinations is not suitable for loading into memory, then you can implement your own routing logic and use the HTTP Forwarder to direct requests to your chosen destination. The HttpForwarder component takes the HTTP context and forwards the request to the supplied destination.
+If the YARP pipeline is too rigid for your use case or the scale of routing rules and destinations isn't suitable for loading into memory, then you can implement your own routing logic and use the HTTP Forwarder to direct requests to your chosen destination. The `HttpForwarder` component takes the HTTP context and forwards the request to the supplied destination.
 
 ![HTTP forwarder diagram](~/fundamentals/servers/yarp/media/yarp-forwarder.png)
 
-The transform component can still be used with the forwarder is needed.
+The transform component can still be used if the forwarder is needed.
 
 For more information see [Direct forwarding](xref:fundamentals/servers/yarp/direct-forwarding).
@@ -9,10 +9,9 @@ ms.topic: article
 content_well_notification: AI-contribution
 ai-usage: ai-assisted
 ---
+# Getting started with YARP
 
-# Getting Started with YARP
-
-YARP is designed as a library that provides the core proxy functionality which you can then customize by adding or replacing modules. YARP is currently provided as a NuGet package and code snippets. We plan on providing a project template and prebuilt executable (`.exe`) in the future.
+YARP is designed as a library that provides the core proxy functionality, which you can customize by adding or replacing modules. YARP is currently provided as a NuGet package and code samples. We plan on providing a project template and prebuilt executable (`.exe`) in the future.
 
 YARP is implemented on top of .NET Core infrastructure and is usable on Windows, Linux or MacOS. Development can be done with the SDK and your favorite editor, [Microsoft Visual Studio](https://visualstudio.microsoft.com/vs/) or [Visual Studio Code](https://code.visualstudio.com/).
 
@@ -24,7 +23,7 @@ You can download the .NET SDK from https://dotnet.microsoft.com/download/dotnet/
 
 A complete version of the project built using the steps below can be found at [Basic YARP Sample](https://github.com/microsoft/reverse-proxy/tree/release/latest/samples/BasicYarpSample).
 
-Start by creating an "Empty" ASP.NET Core application using the command line:
+Start by creating an empty ASP.NET Core application using the command line:
 
 ```dotnetcli
 dotnet new web -n MyProxy
@@ -97,6 +96,6 @@ Learn more about the available configuration options by looking at <xref:Yarp.Re
 
 ## Run the project
 
-When using the .NET CLU, use `dotnet run` called within the sample's directory or `dotnet run --project <path to .csproj file>`.
+When using the .NET CLI, use `dotnet run` within the sample's directory or `dotnet run --project <path to .csproj file>`.
 
-In Visual Studio, start the app with the **Run** button.
+In Visual Studio, start the app by clicking the **Run** button.
@@ -1,16 +1,15 @@
 ---
 uid: fundamentals/servers/yarp/grpc
-title: YARP Proxing gRPC
-description: YARP Proxing gRPC
+title: YARP Proxying gRPC
+description: YARP Proxying gRPC
 author: samsp-msft
 ms.author: samsp
 ms.date: 2/6/2025
 ms.topic: article
 content_well_notification: AI-contribution
 ai-usage: ai-assisted
 ---
-
-# YARP Proxing gRPC
+# YARP Proxying gRPC
 
 ## Introduction
 
@@ -20,9 +19,10 @@ ai-usage: ai-assisted
 
 gRPC requires HTTP/2 for most scenarios. HTTP/1.1 and HTTP/2 are enabled by default on ASP.NET Core servers (YARP's front end) but they require https (TLS) for HTTP/2 so YARP needs to be listening on a `https://` URL.
 
-HTTP/2 over http (non-TLS) is only supported on Kestrel and requires specific settings. For details see [here](/aspnet/core/grpc/aspnetcore#server-options).
+HTTP/2 over http (non-TLS) is only supported on Kestrel and requires specific settings. For more information, see <xref:grpc/aspnetcore#server-options>.
 
 This shows configuring Kestrel to use HTTP/2 over http (non-TLS):
+
 ```json
 {
   "Kestrel": {
@@ -38,9 +38,10 @@ This shows configuring Kestrel to use HTTP/2 over http (non-TLS):
 
 ## Configure YARP's Outgoing Protocols
 
-YARP automatically negotiates HTTP/1.1 or HTTP/2 for outgoing proxy requests, but only for https (TLS). HTTP/2 over http (non-TLS) requires additional settings. Note outgoing protocols are independent of incoming ones. E.g. https can be used for the incoming connection and http for the outgoing one, this is called TLS termination. See [here](http-client-config.md#httprequest) for configuration details.
+YARP automatically negotiates HTTP/1.1 or HTTP/2 for outgoing proxy requests, but only for https (TLS). HTTP/2 over http (non-TLS) requires additional settings. Note that outgoing protocols are independent of incoming ones. E.g. https can be used for the incoming connection and http for the outgoing one, this is called TLS termination. For configuration details, see <xref:fundamentals/servers/yarp/http-client-config#httprequest>.
+
+The following shows how to configure the outgoing proxy request to use HTTP/2:
 
-This shows configuring the outgoing proxy request to use HTTP/2 over http.
 ```json
 "cluster1": {
   "HttpRequest": {
 
@@ -1,87 +1,89 @@
 ---
 uid: fundamentals/servers/yarp/header-guidelines
-title: YARP HTTP Headers
-description: YARP HTTP Headers
+title: YARP HTTP header guidelines
+description: Learn about YARP HTTP header guidelines.
 author: samsp-msft
 ms.author: samsp
 ms.date: 2/6/2025
 ms.topic: article
 content_well_notification: AI-contribution
 ai-usage: ai-assisted
 ---
+# YARP HTTP header guidelines
 
-# YARP HTTP Headers
-
-Headers are a very important part of processing HTTP requests and each have their own semantics and considerations. Most headers are proxied by default, though some used to control how the request is delivered are automatically adjusted or removed by the proxy. The connections between the client and the proxy and the proxy and destination are independent, and so headers that affect the connection and transport need to be filtered. Many headers contain information like domain names, paths, or other details that may be affected when a reverse proxy is included in the application architecture. Below is a collection of guidelines about how specific headers might be impacted and what to do about them.
+Headers are a very important part of processing HTTP requests and each have their own semantics and considerations. Most headers are proxied by default, though some used to control how the request is delivered are automatically adjusted or removed by the proxy. The connections between the client and the proxy and between the proxy and the destination are independent. Therefore, headers that affect the connection and transport must be filtered. Many headers contain information like domain names, paths, or other details that may be affected when a reverse proxy is included in the application architecture. The following is a collection of guidelines about how specific headers might be impacted and what to do about them.
 
 ## YARP header filtering
 
 YARP automatically removes request and response headers that could impact its ability to forward a request correctly, or that may be used maliciously to bypass features of the proxy. A complete list can be found [here](https://github.com/microsoft/reverse-proxy/blob/main/src/ReverseProxy/Forwarder/RequestUtilities.cs#L71), with some highlights described below.
 
-### Connection, KeepAlive, Close
+### `Connection`, `KeepAlive`, `Close`
 
-These headers control how the TCP connection is managed and are removed to avoid impacting the connection on the other side of the proxy.
+These headers control how the TCP connection is managed and are removed to prevent impacting the connection on the other side of the proxy.
 
-### Transfer-Encoding
+### `Transfer-Encoding`
 
 This header describes the format of the request or response body on the wire, e.g. 'chunked', and is removed because the format can vary between the internal and external connection. The incoming and outgoing HTTP stacks will add transport headers as needed.
 
-### TE
+### `TE`
 
 Only the `TE: trailers` header value is allowed through the proxy since it's required for some gRPC implementations.
 
-### Upgrade
+### `Upgrade`
 
 This is used for protocols like WebSockets. It is removed by default and only added back for specifically supported protocols (WebSockets, SPDY).
 
-### Proxy-*
+### `Proxy-*`
 
 These are headers used with proxies and are not considered appropriate to forward.
 
-### Alt-Svc
+### `Alt-Svc`
 
 This response header is used with HTTP/3 upgrades and only applies to the immediate connection.
 
 ### Distributed tracing headers
 
-These headers include TraceParent, Request-Id, TraceState, Baggage, Correlation-Context.
-They are automatically removed based on `DistributedContextPropagator.Fields` so that the forwarding HttpClient can replace them with updated values.
-You can opt out of modifying these headers by setting `SocketsHttpHandler.ActivityHeadersPropagator` to `null`:
-```C#
+These headers include `TraceParent`, `Request-Id`, `TraceState`, `Baggage`, and `Correlation-Context`.
+
+They're automatically removed based on <xref:System.Diagnostics.DistributedContextPropagator.Fields%2A?displayProperty=nameWithType>, allowing the forwarding <xref:System.Net.Http.HttpClient> to replace them with updated values.
+
+You can opt out of modifying these headers by setting <xref:System.Net.Http.SocketsHttpHandler.ActivityHeadersPropagator%2A?displayProperty=nameWithType> to `null`:
+
+```csharp
 services.AddReverseProxy()
     .ConfigureHttpClient((_, handler) => handler.ActivityHeadersPropagator = null);
 ```
 
-### Strict-Transport-Security
+### `Strict-Transport-Security`
 
 This header instructs clients to always use HTTPS, but there may be a conflict between values provided by the proxy and destination. To avoid confusion, the destination's value is not copied to the response if one was already added to the response by the proxy application.
 
-## Other Header Guidelines
+## Other header guidelines
 
-### Host
+### `Host`
 
-The Host header indicates which site on the server the request is intended for. This header is removed by default since the host name used publicly by the proxy is likely to differ from the one used by the service behind the proxy. This is configurable using the [RequestHeaderOriginalHost](xref:fundamentals/servers/yarp/transforms#requestheaderoriginalhost) transform.
+The Host header indicates which site on the server the request is intended for. This header is removed by default since the host name used publicly by the proxy is likely to differ from the one used by the service behind the proxy. This can be configured using the [`RequestHeaderOriginalHost`](xref:fundamentals/servers/yarp/transforms#requestheaderoriginalhost) transform.
 
-### X-Forwarded-*, Forwarded
+### `X-Forwarded-*`, `Forwarded`
 
-Because a separate connection is used to communicate with the destination, these request headers can be used to forward information about the original connection like the IP, scheme, port, client certificate, etc.. X-Forwarded-For, X-Forwarded-Proto, X-Forwarded-Host, and X-Forwarded-Prefix are enabled by default. This information is subject to spoofing attacks so any existing headers on the request are removed and replaced by default. The destination app should be careful about how much trust it places in these values. See [transforms](xref:fundamentals/servers/yarp/transforms#defaults) for configuring these in the proxy. See the [ASP.NET docs](/aspnet/core/host-and-deploy/proxy-load-balancer) for configuring the destination app to read these headers.
+Because a separate connection is used to communicate with the destination, these request headers can be used to forward information about the original connection, such as the IP, scheme, port, and client certificate. `X-Forwarded-For`, `X-Forwarded-Proto`, `X-Forwarded-Host`, and `X-Forwarded-Prefix` are enabled by default. This information is subject to spoofing attacks so any existing headers on the request are removed and replaced by default. The destination app should be careful about how much trust it places in these values. See [transforms](xref:fundamentals/servers/yarp/transforms#defaults) for configuring these in the proxy. For guidance on configuring the destination app to read these headers, see <xref:host-and-deploy/proxy-load-balancer>.
 
-### X-http-method-override, x-http-method, x-method-override
+### `X-http-method-override`, `x-http-method`, `x-method-override`
 
-Some clients and servers limit which HTTP methods they allow (GET, POST, etc.). These request headers are sometimes used to work around those restrictions. These headers are proxied by default. If in the proxy you want to prevent these bypasses then use the [RequestHeaderRemove](xref:fundamentals/servers/yarp/transforms#requestheaderremove) transform.
+Some clients and servers limit which HTTP methods they allow (for example, GET). These request headers are sometimes used to work around those restrictions. These headers are proxied by default. If in the proxy you want to prevent these bypasses then use the [RequestHeaderRemove](xref:fundamentals/servers/yarp/transforms#requestheaderremove) transform.
 
-### Set-Cookie
+### `Set-Cookie`
 
-This response header may contain fields constraining the path, domain, scheme, etc. where the cookie should be used. Using a reverse proxy may change the effective domain, path, or scheme of a site from the public view. While it would be possible to [rewrite](https://github.com/microsoft/reverse-proxy/issues/1109) response cookies using custom transforms, it's recommended instead to use the Forwarded headers described above to flow the correct values to the destination app so it can generate the correct set-cookie headers.
+This response header may contain fields that constrain aspects of the URL, such as the scheme, domain, or path, where the cookie should be used. Using a reverse proxy may change the effective scheme, domain, or path of a site from the public view. While it would be possible to [rewrite response cookies using custom transforms](https://github.com/microsoft/reverse-proxy/issues/1109), we recommended instead to use the `Forwarded` headers described earlier to flow the correct values to the destination app so it can generate the correct `set-cookie` headers.
 
-### Location
+### `Location`
 
 This response header is used with redirects and may contain a scheme, domain, and path that differ from the public values due to the use of the proxy. While it would be possible to [rewrite](https://github.com/microsoft/reverse-proxy/discussions/466) the Location header using custom transforms, it's recommended instead to use the Forwarded headers described above to flow the correct values to the destination app so it can generate the correct Location headers. 
 
-### Server
+### `Server`
 
-This response header indicates what server technology was used to generate the response (IIS, Kestrel, etc.). This header is proxied from the destination by default. Applications that want to remove it can use the [ResponseHeaderRemove](xref:fundamentals/servers/yarp/transforms#responseheaderremove) transform, in which case the proxy's default server header will be used. Suppressing the proxy default server header is server specific, such as for [Kestrel](/dotnet/api/microsoft.aspnetcore.server.kestrel.core.kestrelserveroptions.addserverheader#Microsoft_AspNetCore_Server_Kestrel_Core_KestrelServerOptions_AddServerHeader).
+This response header indicates what server technology was used to generate the response (for example, IIS, Kestrel). This header is proxied from the destination by default. Applications that want to remove it can use the [ResponseHeaderRemove](xref:fundamentals/servers/yarp/transforms#responseheaderremove) transform, in which case the proxy's default server header will be used. Suppressing the proxy default server header is server specific, such as for [Kestrel](/dotnet/api/microsoft.aspnetcore.server.kestrel.core.kestrelserveroptions.addserverheader#Microsoft_AspNetCore_Server_Kestrel_Core_KestrelServerOptions_AddServerHeader).
 
-### X-Powered-By
+### `X-Powered-By`
 
-This response header indicates what web framework was used to generate the response (ASP.NET, etc.). ASP.NET Core does not generate this header but IIS can. This header is proxied from the destination by default. Applications that want to remove it can use the [ResponseHeaderRemove](xref:fundamentals/servers/yarp/transforms#responseheaderremove) transform.
+This response header indicates what web framework was used to generate the response (for example, ASP.NET). ASP.NET Core does not generate this header but IIS can. This header is proxied from the destination by default. Applications that want to remove it can use the [ResponseHeaderRemove](xref:fundamentals/servers/yarp/transforms#responseheaderremove) transform.