From ea38f1b67ec4f6feeebec10bbff351b93e3e43a5 Mon Sep 17 00:00:00 2001
From: OpenIddict Bot <32257313+openiddict-bot@users.noreply.github.com>
Date: Thu, 13 Oct 2022 14:41:31 +0000
Subject: [PATCH] Update the documentation pages

---
 configuration/encryption-and-signing-credentials.html | 4 ++++
 manifest.json                                         | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/configuration/encryption-and-signing-credentials.html b/configuration/encryption-and-signing-credentials.html
index 356c82c..1e534a9 100644
--- a/configuration/encryption-and-signing-credentials.html
+++ b/configuration/encryption-and-signing-credentials.html
@@ -135,6 +135,10 @@ Unlike ephemeral keys, development certificates are persisted - but not shared a
 </code></pre><div class="WARNING"><h5>Warning</h5><p>This feature is not available on .NET Framework 4.6.1: calling <code>options.AddDevelopmentEncryptionCertificate()</code> or <code>options.AddDevelopmentSigningCertificate()</code>
 will result in a <code>PlatformNotSupportedException</code> being thrown at runtime if no valid development certificate can be found and a new one must be generated.</p>
 </div>
+<div class="CAUTION"><h5>Caution</h5><p><code>options.AddDevelopmentEncryptionCertificate()</code> or <code>options.AddDevelopmentSigningCertificate()</code> cannot be used in applications deployed on IIS or Azure App Services:
+trying to use them on IIS or Azure App Services will result in an exception being thrown at runtime (unless the application pool is configured to load a user profile).
+To avoid that, consider creating self-signed certificates and storing them in the X.509 certificates store of the host machine(s).</p>
+</div>
 <h3 id="registering-a-key">Registering a key</h3>
 <p>To register a signing or encryption key, an instance of a <code>SecurityKey</code> - typically a <code>SymmetricSecurityKey</code> or a <code>RsaSecurityKey</code> -
 can be provided to the <code>options.AddSigningKey()</code>/<code>options.AddEncryptionKey()</code> methods:</p>
diff --git a/manifest.json b/manifest.json
index 261e76f..2abb70f 100644
--- a/manifest.json
+++ b/manifest.json
@@ -45,7 +45,7 @@
       "output": {
         ".html": {
           "relative_path": "configuration/encryption-and-signing-credentials.html",
-          "hash": "q0vIVnHunT9Yt+EO+9471g=="
+          "hash": "Vv7XgVNlnmcdfoicWhfNlw=="
         }
       },
       "is_incremental": false,