You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+7-2Lines changed: 7 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -22,6 +22,10 @@ since the local app needs credentials for Azure AI to work properly.
22
22
*[Costs](#costs)
23
23
*[Security Guidelines](#security-guidelines)
24
24
25
+
## Important Security Notice
26
+
27
+
This template, the application code and configuration it contains, has been built to showcase Microsoft Azure specific services and tools. We strongly advise our customers not to make this code part of their production environments without implementing or enabling additional security features. When you deploy this app, it will be **publicly accessible on the internet**. See [Security Guidelines](#security-guidelines) for more information on how to secure your deployment.
28
+
25
29
## Features
26
30
27
31
* A Python [Quart](https://quart.palletsprojects.com/en/latest/) that uses the [Azure AI Inference SDK](https://learn.microsoft.com/python/api/overview/azure/ai-inference-readme?view=azure-python-preview) package to generate responses to user messages.
@@ -125,10 +129,10 @@ Once you've opened the project in [Codespaces](#github-codespaces), in [Dev Cont
125
129
It will prompt you to provide an `azd` environment name (like "chat-app"), selecta subscription from your Azure account, and selecta [location where DeepSeek-R1 is available](https://learn.microsoft.com/en-us/azure/ai-studio/how-to/deploy-models-serverless-availability#deepseek-models-from-microsoft) (like "westus"). Then it will provision the resources in your account and deploy the latest code. If you get an error or timeout with deployment, changing the location can help, as there may be availability constraints for the Azure AI resource.
126
130
127
131
3. When `azd` has finished deploying, you'll see an endpoint URI in the command output. Visit that URI, and you should see the chat app! 🎉
128
-
4. When you've made any changes to the app code, you can just run:
132
+
4. Remember to take down your app once you're no longer using it, either by deleting the resource group in the Portal or running this command:
129
133
130
134
```shell
131
-
azd deploy
135
+
azd down
132
136
```
133
137
134
138
### Continuous deployment with GitHub Actions
@@ -198,3 +202,4 @@ Additionally, we have added a [GitHub Action](https://github.com/microsoft/secur
198
202
You may want to consider additional security measures, such as:
199
203
200
204
* Protecting the Azure Container Apps instance with a [firewall](https://learn.microsoft.com/azure/container-apps/waf-app-gateway) and/or [Virtual Network](https://learn.microsoft.com/azure/container-apps/networking?tabs=workload-profiles-env%2Cazure-cli).
205
+
* Adding user login to the app, to restrict access only to users within your organization. See [this example for adding user login with the built-in auth feature of Container Apps](https://github.com/Azure-Samples/openai-chat-app-entra-auth-builtin).
0 commit comments