Merge pull request #311765 from MicrosoftDocs/main

Auto Publish – main to live - 2026-02-12 23:00 UTC

Author: learn-build-service-prod[bot]

articles/api-management/TOC.yml

@@ -32,7 +32,7 @@ Learn more about managing LLM APIs in API Management:
 * [AI gateway capabilities in Azure API Management](genai-gateway-capabilities.md)
 
   > [!NOTE]
-  > API Management policies such as [azure-openai-token-limit](azure-openai-token-limit-policy.md) and [azure-openai-emit-token-metric](azure-openai-emit-token-metric-policy.md) support certain API endpoints exposed through specific Azure OpenAI models. For more information, see [Supported Azure OpenAI models](azure-openai-token-limit-policy.md#supported-azure-openai-in-azure-ai-foundry-models).
+  > API Management policies such as [azure-openai-token-limit](azure-openai-token-limit-policy.md) and [azure-openai-emit-token-metric](azure-openai-emit-token-metric-policy.md) support certain API endpoints exposed through specific Azure OpenAI models. For more information, see [Supported Azure OpenAI models](azure-openai-token-limit-policy.md#supported-azure-openai-in-microsoft-foundry-models).
 
 ## Prerequisites
 

articles/api-management/azure-openai-api-from-specification.md

@@ -197,8 +197,8 @@ items:
           href: gpu-types.md
         - name: Tutorials
           items:
-            - name: Generate images with serverless GPUs
-              href: gpu-image-generation.md
+            - name: Deploy AI image generation with serverless GPUs
+              href: tutorial-gpu-image-generation.md
             - name: Deploy an NVIDIA Llama3 NIM
               href: serverless-gpu-nim.md
             - name: Deploy OpenAI GPT with OSS Ollama
@@ -372,7 +372,7 @@ items:
           items:
             - name: Components overview
               href: dapr-components.md
-            - name: Connect to Azure or third-party services
+            - name: Connect to Azure or partner services
               href: dapr-component-connect-services.md
             - name: Connect to Azure services via Azure portal
               href: dapr-component-connection.md

articles/container-apps/TOC.yml

@@ -1,13 +1,13 @@
 ---
-title: Enable token authentication for Dapr requests
-description: Learn more about enabling token authentication for Dapr requests to your container app in Azure Container Apps.
+title: Enable Token Authentication for Dapr Requests
+description: Learn how to enable token authentication for Dapr requests to your container app in Azure Container Apps.
 ms.author: nigreenf
 ms.reviewer: hannahhunter
 author: greenie-msft
 ms.service: azure-container-apps
 ms.subservice: dapr
 ms.topic: how-to 
-ms.date: 01/21/2026
+ms.date: 02/03/2026
 ---
 
 # Enable token authentication for Dapr requests
@@ -26,7 +26,7 @@ You can use this token to authenticate that calls coming into your application a
 
 ## Prerequisites
 
-- A [Dapr-enabled Azure Container App][dapr-aca]
+- [A Dapr-enabled Azure Container App][dapr-aca]
 
 ## Authenticate requests from Dapr
 
@@ -60,10 +60,10 @@ dapr-api-token[0]
 
 ---
 
+## Next step
 
-## Next steps
-
-[Learn more about the Dapr integration with Azure Container Apps.][dapr-aca]
+> [!div class="nextstepaction"]
+> [Learn about the Dapr integration with Azure Container Apps][dapr-aca]
 
 
 <!-- Links Internal -->

articles/container-apps/dapr-authentication-token.md

@@ -1,55 +1,55 @@
 ---
-title: Connect to other Azure or third-party services via Dapr components
-description: Learn more about connecting Dapr components with Azure and external services.
+title: Connect to other Azure or partner services via Dapr components
+description: Learn more about connecting Dapr components with Azure and non-Microsoft services.
 ms.author: nigreenf
 ms.reviewer: hannahhunter
 author: greenie-msft
 ms.service: azure-container-apps
 ms.subservice: dapr
 ms.custom: build-2023
-ms.topic: conceptual
-ms.date: 12/10/2024
+ms.topic: concept-article
+ms.date: 02/03/2026
 ---
 
-# Connect to other Azure or third-party services via Dapr components
+# Connect to other Azure or partner services by using Dapr components
 
-Securely establish connections to Azure and third-party services for Dapr components using managed identity or Azure Key Vault secret stores. 
+Securely establish connections to Azure and non-Microsoft services for Dapr components by using managed identity or Azure Key Vault secret stores. 
 
-Before getting started, [learn more about the offered support for Dapr components.][supported-dapr-components]
+Before getting started, learn more about the [offered support for Dapr components][supported-dapr-components].
 
 ## Recommendations
 
 Whenever possible, it's recommended that you use Azure components that provide managed identity support for the most secure connection. Use Azure Key Vault secret stores *only* when managed identity authentication isn't supported. 
 
 | Service type | Recommendation |
 | ------------ | -------------- |
-| Azure component with managed identity support | [Use the managed identity flow (recommended)](#using-managed-identity-recommended) |
+| Azure component with managed identity support | [Use the managed identity flow (recommended)](#use-managed-identity-recommended) |
 | Azure component without managed identity support | [Use an Azure Key Vault secret store](#azure-key-vault-secret-stores) |
 | Non-Azure components | [Use an Azure Key Vault secret store](#azure-key-vault-secret-stores) |
 
 
-## Using managed identity (recommended)
+## Use managed identity (recommended)
 
-For Azure-hosted services, Dapr can use [the managed identity of the scoped container apps][aca-managed-id] to authenticate to the backend service provider. When using managed identity, you don't need to include secret information in a component manifest. **Using managed identity is recommended** as it eliminates storage of sensitive input in components and doesn't require managing a secret store.
+For Azure-hosted services, Dapr can use the [managed identity of the scoped container apps][aca-managed-id] to authenticate to the backend service provider. When using managed identity, you don't need to include secret information in a component manifest. *Using managed identity is recommended* as it eliminates storage of sensitive input in components and doesn't require managing a secret store.
 
 > [!NOTE]
-> The `azureClientId` metadata field (the client ID of the managed identity) is **required** for any component authenticating with user-assigned managed identity.
+> The `azureClientId` metadata field (the client ID of the managed identity) is *required* for any component authenticating with user-assigned managed identity.
 
-## Using a Dapr secret store component reference
+## Use a Dapr secret store component reference
 
 When you create Dapr components for non-Entra ID enabled services or components that don't support managed identity authentication, certain metadata fields require sensitive input values. For this approach, retrieve these secrets by referencing an existing Dapr secret store component that securely accesses secret information.
 
 To set up a reference:
 
-1. [Create a Dapr secret store component using the Azure Container Apps schema.](#creating-a-dapr-secret-store-component) The component type for all supported Dapr secret stores begins with `secretstores.`.
-1. [Create extra components (as needed) which reference the Dapr secret store component](#referencing-dapr-secret-store-components) you created to retrieve the sensitive metadata input.
+1. Create a [Dapr secret store component using the Azure Container Apps schema](#create-a-dapr-secret-store-component). The component type for all supported Dapr secret stores begins with `secretstores`.
+1. Create [extra components (as needed) that reference the Dapr secret store component](#reference-dapr-secret-store-components) you created to retrieve the sensitive metadata input.
 
-### Creating a Dapr secret store component
+### Create a Dapr secret store component
 
 When creating a secret store component in Azure Container Apps, you can provide sensitive information in the metadata section in either of the following ways:
 
-- [For an **Azure Key Vault secret store**,](#using-managed-identity-recommended) use managed identity to establish the connection. 
-- [For **non-Azure secret stores**,](#platform-managed-kubernetes-secrets) use platform-managed Kubernetes secrets that are defined directly as part of the component manifest.
+- For an [**Azure Key Vault secret store**](#use-managed-identity-recommended), use managed identity to establish the connection. 
+- For [**non-Azure secret stores**](#platform-managed-kubernetes-secrets), use platform-managed Kubernetes secrets that are defined directly as part of the component manifest.
 
 #### Azure Key Vault secret stores
 
@@ -72,7 +72,7 @@ scopes:
 
 #### Platform-managed Kubernetes secrets
 
-As an alternative to Kubernetes secrets, Local environment variables, and Local file Dapr secret stores, Azure Container Apps provides a platform-managed approach for creating and leveraging Kubernetes secrets. This approach can be used to connect to non-Azure services or in dev/test scenarios for quickly deploying components via the CLI without setting up a secret store or managed identity.
+As an alternative to Kubernetes secrets, local environment variables, and local file Dapr secret stores, Azure Container Apps provides a platform-managed approach for creating and using Kubernetes secrets. This approach can be used to connect to non-Azure services or in dev/test scenarios for quickly deploying components via the CLI without setting up a secret store or managed identity.
 
 This component configuration defines the sensitive value as a secret parameter that can be referenced from the metadata section. 
 
@@ -98,9 +98,9 @@ scopes:
   - subscriber-app
 ```
 
-### Referencing Dapr secret store components
+### Reference Dapr secret store components
 
-Once you [create a Dapr secret store using one of the previous approaches](#creating-a-dapr-secret-store-component), you can reference that secret store from other Dapr components in the same environment. The following example demonstrates using Entra ID authentication.
+Once you [create a Dapr secret store using one of the previous approaches](#create-a-dapr-secret-store-component), you can reference that secret store from other Dapr components in the same environment. The following example demonstrates using Microsoft Entra ID authentication.
 
 ```yaml
 componentType: pubsub.azure.servicebus.queue
@@ -122,9 +122,9 @@ scopes:
   - subscriber-app
 ```
 
-## Next steps
+## Related content
 
-[Learn how to set Dapr component resiliency.][dapr-resiliency]
+- [Dapr component resiliency (preview)][dapr-resiliency]
 
 <!-- Links Internal -->
 

articles/container-apps/dapr-component-connect-services.md

@@ -1,24 +1,24 @@
 ---
-title: Connect to Azure services via Dapr components in the Azure portal
-description: Easily create Dapr components via the Azure Container Apps portal. 
+title: Connect to Azure Services via Dapr Components in the Azure Portal
+description: Learn how to easily create Dapr components by using Azure Container Apps in the Azure portal. 
 author: greenie-msft
 ms.author: nigreenf
 ms.reviewer: hannahhunter
 ms.service: azure-container-apps
 ms.subservice: dapr
 ms.topic: how-to 
-ms.date: 01/21/2025
+ms.date: 02/03/2026
 ms.custom: template-tutorial, service-connector, build-2023, engagement
 ---
 
 # Connect to Azure services via Dapr components in the Azure portal
 
-You can easily connect Dapr APIs to [backing Azure services](./dapr-overview.md#dapr-components) using a combination of [Service Connector](../service-connector/overview.md) and [Dapr](https://docs.dapr.io/). This feature creates Dapr components on your behalf with valid metadata and authenticated identity to access the Azure service.  
+You can easily connect Dapr APIs to [backing Azure services](./dapr-overview.md#dapr-components) by using a combination of [Service Connector](../service-connector/overview.md) and [Dapr](https://docs.dapr.io). This feature creates Dapr components on your behalf with valid metadata and authenticated identity to access the Azure service.  
 
-In this guide, you connect Dapr Pub/Sub API to an Azure Service Bus by:
+In this guide, you connect the Dapr publish and subscribe (pub/sub) API to an Azure Service Bus:
 > [!div class="checklist"]
-> - Select pub/sub as the API 
-> - Specify Azure Service Bus as the service and required properties like namespace, queue name, and identity
+> - Select pub/sub as the API.
+> - Specify Azure Service Bus as the service and required properties like namespace, queue name, and identity.
 > - Use your Azure Service Bus pub/sub component!
 
 ## Prerequisites
@@ -30,10 +30,10 @@ In this guide, you connect Dapr Pub/Sub API to an Azure Service Bus by:
 Start by navigating to the Dapr component creation feature.
 
 1. In the Azure portal, navigate to your Container Apps environment.
-1. In the left-side menu, under **Settings**, select **Dapr components**. 
-1. From the top menu, select **Add** > **Azure component** to open the **Add Dapr Component** configuration pane.
+1. In the sidebar menu, under **Settings**, select **Dapr components**. 
+1. Select **+ Add** > **Azure component** to open the **Add Dapr Component** configuration pane.
 
-   :::image type="content" source="media/dapr-component-connection/select-azure-component.png" alt-text="Screenshot of selecting Azure Component from the drop down menu.":::
+   :::image type="content" source="media/dapr-component-connection/select-azure-component.png" alt-text="Screenshot of selecting Azure Component from the drop-down menu.":::
 
    > [!NOTE]
    > Currently, creating Dapr components using Service Connector in the Azure portal is in preview and only works with Azure services (Azure Service Bus, Azure Cosmos DB, etc.). To create non-Azure Dapr components (Redis), use the manual component creation option.    
@@ -42,47 +42,46 @@ Start by navigating to the Dapr component creation feature.
 
 For the component creation tool to map to the required component metadata, you need to provide the required metadata from predefined dropdowns in the **Basics** tab.
 
-For example, for a pub/sub Azure Service Bus component, you'll start with the following fields:
+For example, for a pub/sub Azure Service Bus component, you start with the following fields:
 
 | Field | Example | Description |
 | ----- | ------- | ----------- |
 | Component name | `mycomponent` | Enter a name for your Dapr component. The name must match the component referenced in your application code. |
 | Building block | Pub/sub | Select the [building block/API](https://docs.dapr.io/developing-applications/building-blocks/) for your component from the drop-down. |
 | Component type | Service Bus | Select a component type from the drop-down. |
 
-The component creation pane populates with different fields depending on the building block and component type you select. For example, the following table and image demonstrate the fields associated with an Azure Service Bus pub/sub component type, but the fields you see may vary.  
+The component creation pane populates with different fields depending on the building block and component type you select. For example, the following table and image demonstrate the fields associated with an Azure Service Bus pub/sub component type, but the fields you see might vary.  
 
 | Field | Example | Description |
 | ----- | ------- | ----------- |
-| Subscription | My subscription | Select your Azure subscription |
-| Namespace | `mynamespace` | Select the Service Bus namespace |
+| Subscription | My subscription | Select your Azure subscription. |
+| Namespace | `mynamespace` | Select the Service Bus namespace. |
 | Authentication | User assigned managed identity | Select the subscription that contains the component you're looking for. Recommended: User assigned managed identity. |
-| User assigned managed identity | `testidentity` | Select an existing identity from the drop-down. If you don’t  already have one, you can create a new managed identity client ID. |  
+| User assigned managed identity | `testidentity` | Select an existing identity from the dropdown. If you don't already have one, you can create a new managed identity client ID. |  
 
-:::image type="content" source="media/dapr-component-connection/add-pubsub-component.png" alt-text="Screenshot of the Azure platform showing the Basics tab of adding a Dapr Pub/sub component.":::
+:::image type="content" source="media/dapr-component-connection/add-pubsub-component.png" alt-text="Screenshot of the Azure platform showing the Basics tab of adding a Dapr Pub/sub component." lightbox="media/dapr-component-connection/add-pubsub-component.png":::
 
 **What happened?**   
 
-Now that you've filled out these required fields, they'll automatically map to the required component metadata. In this Service Bus example, the only required metadata is the connection string. The component creation tool takes the information you provided and maps the input to create a connection string in the component YAML file.  
+After you fill out these required fields, they automatically map to the required component metadata. In this Service Bus example, the only required metadata is the connection string. The component creation tool takes the information you provided and maps the input to create a connection string in the component YAML file.  
 
 ### Provide optional metadata
 
 While the component creation tool automatically populates all required metadata for the component, you can also customize the component by adding optional metadata. 
 
 1. Select **Next : Metadata + Scopes**. 
 
-1. Under **Metadata**, select **Add** to select extra, optional metadata for your Dapr component from a drop-down of supported fields. 
+1. Under **Metadata**, select **Add** to select extra, optional metadata for your Dapr component from a dropdown of supported fields. 
 
-1. Under **Scopes**, select **Add** or type in the app IDs for the container apps that you want to load this component.
-   - By default, when the scope is unspecified, Dapr applies the component to all app IDs.
+1. Under **Scopes**, select **Add** or type in the app IDs for the container apps that you want to load this component. By default, when the scope is unspecified, Dapr applies the component to all app IDs.
 
 1. Select **Review + Create** to review the component values.
 
 1. Select **Create**. 
 
 ### Save the component YAML
 
-Once the component has been added to the Container Apps environment, the portal displays the YAML (or Bicep) for the component. 
+After the component is added to the Container Apps environment, the portal displays the YAML (or Bicep) for the component. 
 
 1. Copy and save the YAML file for future use.
 
@@ -100,12 +99,8 @@ You can then check the YAML/Bicep artifact into a repo and recreate it outside o
 
    :::image type="content" source="media/dapr-component-connection/manage-dapr-component.png" alt-text="Screenshot of the Azure platform showing existing Dapr Components.":::
 
-## Next steps
+## Next step
 
-[Learn how to set Dapr component resiliency.](./dapr-component-resiliency.md)
+> [!div class="nextstepaction"]
+> [Learn how to set Dapr component resiliency](./dapr-component-resiliency.md)
 
-## Related links
-
-Learn more about:
-- [Using Dapr with Azure Container Apps](./dapr-overview.md)
-- [Connecting to cloud services using Service Connector](./service-connector.md)