Merge pull request #451 from microsoft/psl-appauth-doc-update

Roopan-Microsoft · web-flow · commit 213027744ae2 · 2025-06-05T17:51:01.000+05:30
docs: AppAuthentication update
diff --git a/docs/AppAuthentication.md b/docs/AppAuthentication.md
@@ -1,53 +1,32 @@
-## Add Authentication in Azure App Service configuration
+# Set Up Authentication in Azure App Service
+
+This document provides step-by-step instructions to configure Azure App Registrations for a front-end application.
+
+## Prerequisites
+
+- Access to **Microsoft Entra ID**
+- Necessary permissions to create and manage **App Registrations**
+  
+## Step 1: Add Authentication in Azure App Service configuration
 1. Click on `Authentication` from left menu.
 
   ![Authentication](images/AppAuthentication.png)
 
-2. Click on `+ Add Provider` to see a list of identity providers.
+2. Click on `+ Add identity provider` to see a list of identity providers.
 
   ![Authentication Identity](images/AppAuthenticationIdentity.png)
 
-3. Click on `+ Add Provider` to see a list of identity providers.
+3. Click on `Identity Provider` dropdown to see a list of identity providers.
 
   ![Add Provider](images/AppAuthIdentityProvider.png)
 
-4. Select the first option `Microsoft Entra Id` from the drop-down list.
+4. Select the first option `Microsoft Entra Id` from the drop-down list and select `client secret expiration` under App registration.
+> NOTE: If `Create new app registration` is disabled, then go to [Create new app registration](/docs/create_new_app_registration.md) and come back to this step to complete the app authentication.
  
  ![Add Provider](images/AppAuthIdentityProviderAdd.png)
 
 5. Accept the default values and click on `Add` button to go back to the previous page with the identity provider added.
 
  ![Add Provider](images/AppAuthIdentityProviderAdded.png)
 
- ### Creating a new App Registration
-1. Click on `Home` and select `Microsoft Entra ID`.
-
-![Microsoft Entra ID](images/MicrosoftEntraID.png)
-
-2. Click on `App registrations`.
-
-![App registrations](images/Appregistrations.png)
-
-3. Click on `+ New registration`.
-
-![New Registrations](images/NewRegistration.png)
-
-4. Provide the `Name`, select supported account types as `Accounts in this organizational directory only(Contoso only - Single tenant)`, select platform as `Web`, enter/select the `URL` and register.
-
-![Add Details](images/AddDetails.png)
-
-5. After application is created sucessfully, then click on `Add a Redirect URL`.
-
-![Redirect URL](images/AddRedirectURL.png)
-
-6. Click on `+ Add a platform`.
-
-![+ Add platform](images/AddPlatform.png)
-
-7. Click on `Web`.
-
-![Web](images/Web.png)
-
-8. Enter the `web app URL` (Provide the app service name in place of XXXX) and Save. Then go back to [Step 4] and follow from _Point 4_ choose `Pick an existing app registration in this directory` from the Add an Identity Provider page and provide the newly registered App Name.
-
-![Add Details](images/WebAppURL.png)
+6. You have successfully added app authentication, and now required to log in to access the application.
diff --git a/docs/create_new_app_registration.md b/docs/create_new_app_registration.md
@@ -0,0 +1,35 @@
+# Creating a new App Registration
+
+1. Click on `Home` and select `Microsoft Entra ID`.
+
+![Microsoft Entra ID](images/MicrosoftEntraID.png)
+
+2. Click on `App registrations`.
+
+![App registrations](images/Appregistrations.png)
+
+3. Click on `+ New registration`.
+
+![New Registrations](images/NewRegistration.png)
+
+4. Provide the `Name`, select supported account types as `Accounts in this organizational directory only(Contoso only - Single tenant)`, select platform as `Web`, enter/select the `URL` and register.
+
+![Add Details](images/AddDetails.png)
+
+5. After application is created sucessfully, then click on `Add a Redirect URL`.
+
+![Redirect URL](images/AddRedirectURL.png)
+
+6. Click on `+ Add a platform`.
+
+![+ Add platform](images/AddPlatform.png)
+
+7. Click on `Web`.
+
+![Web](images/Web.png)
+
+8. Enter the `web app URL` (Provide the app service name in place of XXXX) and Save. Then go back to [Set Up Authentication in Azure App Service](/docs/AppAuthentication.md) Step 1 page and follow from _Point 4_ choose `Pick an existing app registration in this directory` from the Add an Identity Provider page and provide the newly registered App Name.
+
+E.g. <<https://<< appservicename >>.azurewebsites.net/.auth/login/aad/callback>>
+
+![Add Details](images/WebAppURL.png)
