| Service | Microsoft Docs article | Related commit history on GitHub | Change details |
|---|---|---|---|
| platform | Teams Developer Portal | https://github.com/MicrosoftDocs/msteams-docs/commits/main/msteams-platform/concepts/build-and-test/teams-developer-portal.md | -<a href="https://dev.teams.microsoft.com" target="_blank">Developer Portal for Teams</a> is the primary tool for configuring, distributing, and managing your Microsoft Teams apps. With Developer Portal, you can collaborate with colleagues on your app, set up runtime environments, and much more. +<a href="https://dev.teams.microsoft.com" target="_blank">Developer Portal for Teams</a> (formerly known as App Studio) is the primary tool for configuring, distributing, and managing your Microsoft Teams apps. With Developer Portal, you can collaborate with colleagues on your app, set up runtime environments, and much more. :::image type="content" source="../../assets/images/tdp/tdp-home.png" alt-text="Screenshot shows the home page of Developer Portal for Teams." lightbox="../../assets/images/tdp/tdp-home.png"::: |
| platform | Content Security Policy Headers | https://github.com/MicrosoftDocs/msteams-docs/commits/main/msteams-platform/includes/tabs/content-security-policy-headers.md | +|Microsoft 365 app host| frame-ancestor permission| +|--|--| +| Teams | `teams.microsoft.com`, `*.teams.microsoft.com`, `*.skype.com` | +| Microsoft 365 app | `*.microsoft365.com`, `*.office.com` | +| Outlook | `outlook.live.com`, `outlook.office.com`, `outlook.office365.com`, `outlook-sdf.office.com`, `outlook-sdf.office365.com` | |
| platform | Extend M365 Teams Personal Tab | https://github.com/MicrosoftDocs/msteams-docs/commits/main/msteams-platform/m365-apps/extend-m365-teams-personal-tab.md | As in Microsoft Teams, tab applications are hosted within [iframe elements](http If your app makes use of [Content Security Policy](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy) (CSP) headers, make sure you allow all the following [frame-ancestors](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/frame-ancestors) in your CSP headers: -|Microsoft 365 app host| frame-ancestor permission| -|--|--| -| Teams | `teams.microsoft.com` | -| Microsoft 365 app | `*.microsoft365.com`, `*.office.com` | -| Outlook | `outlook.live.com`, `outlook.office.com`, `outlook.office365.com`, `outlook-sdf.office.com`, `outlook-sdf.office365.com` | ## Update Azure AD app registration for SSO |
| platform | Virtual Assistant | https://github.com/MicrosoftDocs/msteams-docs/commits/main/msteams-platform/samples/virtual-assistant.md | Updating activity, such as card refresh isn't supported yet through Virtual Assi To forward card action or task module activities to an associated skill, the skill must embed `skillId` to it. `Book-a-room` bot card action, task module fetch and submit action payloads are modified to contain `skillId` as a parameter. -For more information,, refer [this](/microsoftteams/platform/samples/virtual-assistant#add-adaptive-cards-to-your-virtual-assistant) section from this documentation. +For more information, see [Add Adaptive Cards to your Virtual Assistant](/microsoftteams/platform/samples/virtual-assistant#add-adaptive-cards-to-your-virtual-assistant). ### Handle activities from group chat or channel scope |
| platform | Tab Requirements | https://github.com/MicrosoftDocs/msteams-docs/commits/main/msteams-platform/tabs/how-to/tab-requirements.md | - * Set header: `Content-Security-Policy: frame-ancestors teams.microsoft.com *.teams.microsoft.com *.skype.com` - * For Internet Explorer 11 compatibility, set `X-Content-Security-Policy`. - * Alternately, set header `X-Frame-Options: ALLOW-FROM https://teams.microsoft.com/`. This header is deprecated but still accepted by most browsers. + * Set Content Security Policy headers to allow Teams and any other [host applications](../../m365-apps/overview.md) of your app: + + [!INCLUDE [CSP headers for multi-hub apps](~/includes/tabs/content-security-policy-headers.md)] ++ * For Internet Explorer 11 compatibility, set `X-Content-Security-Policy`. Alternately, set header `X-Frame-Options: ALLOW-FROM https://teams.microsoft.com/`. This header is deprecated but still accepted by most browsers. * Login pages don't render in iFrames, as a safeguard against clickjacking. Your authentication logic needs to use a method other than redirect. For example, use token-based or cookie-based authentication. |
| platform | Tabs In Sharepoint | https://github.com/MicrosoftDocs/msteams-docs/commits/main/msteams-platform/tabs/how-to/tabs-in-sharepoint.md | Download the [sample app manifest](https://github.com/MicrosoftDocs/msteams-docs 1. You can see the install or consent screen for the talent management app. Select the team you want to install. 1. Select the **Install** and start experimenting with the app. +> [!NOTE] +> The SharePoint extension commands arenΓÇÖt supported in the Teams **Files** tab. You can [add a SharePoint page, list, or document library as a tab in Teams](https://support.microsoft.com/office/add-a-sharepoint-page-list-or-document-library-as-a-tab-in-teams-131edef1-455f-4c67-a8ce-efa2ebf25f0b). + ## Use Teams tab in SharePoint 1. Upload and deploy your Teams app package to your SharePoint App Catalog by visiting `https://YOUR_TENANT_NAME.sharepoint.com/sites/apps/AppCatalog/Forms/AllItems.aspx`. For example, `https://contoso.sharepoint.com/sites/apps/AppCatalog/Forms/AllItems.aspx`. |