diff --git a/docs/book/src/quick-start.md b/docs/book/src/quick-start.md index cb21009db..017160b66 100644 --- a/docs/book/src/quick-start.md +++ b/docs/book/src/quick-start.md @@ -437,13 +437,13 @@ kubectl describe pod quick-start
Output -You can verifiy the following injected properties in the output: +You can verify the following injected properties in the output: | Environment variable | Description | | ---------------------- | ----------------------------------------------------- | | `AZURE_AUTHORITY_HOST` | The Azure Active Directory (AAD) endpoint. | -| `AZURE_CLIENT_ID` | The client ID of the identity. | -| `AZURE_TENANT_ID` | The tenant ID of the Azure account. | +| `AZURE_CLIENT_ID` | The client ID of the AAD application. | +| `AZURE_TENANT_ID` | The tenant ID of the registered AAD application. | | `TOKEN_FILE_PATH` | The path of the projected service account token file. |
diff --git a/docs/book/src/topics/labels-and-annotations.md b/docs/book/src/topics/labels-and-annotations.md index a3c9f1fcc..af5f18dfe 100644 --- a/docs/book/src/topics/labels-and-annotations.md +++ b/docs/book/src/topics/labels-and-annotations.md @@ -14,8 +14,8 @@ The following is a list of available labels and annotations that can be used to | Annotation | Description | Default | | ----------------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | -------------------------------------------------------------------------------------------- | -| `azure.pod.identity/client-id` | Represents the identity client ID to be used with the pod. | | -| `azure.pod.identity/tenant-id` | Represents the Azure tenant ID to be used with the pod. | `AZURE_TENANT_ID` environment variable extracted from [`aad-pi-webhook-config`][1] ConfigMap | +| `azure.pod.identity/client-id` | Represents the AAD application client ID to be used with the pod. | | +| `azure.pod.identity/tenant-id` | Represents the Azure tenant ID where the AAD application is registered. | `AZURE_TENANT_ID` environment variable extracted from [`aad-pi-webhook-config`][1] ConfigMap | | `azure.pod.identity/service-account-token-expiration` | Represents the `expirationSeconds` field for the projected service account token. It is an optional field that the user might want to configure this to prevent any downtime caused by errors during service account token refresh. Kubernetes service account token expiry will not be correlated with AAD tokens. AAD tokens will expire in 24 hours after they are issued. | `86400` (minimum `3600`) | ## Pod