dotnet · shirhatti · Dec 14, 2015 · Dec 14, 2015 · Dec 14, 2015 · Dec 14, 2015
diff --git a/aspnet/fundamentals/index.rst b/aspnet/fundamentals/index.rst
@@ -24,5 +24,4 @@ Fundamentals
     request-features
     servers
     owin
-    hosting
 
diff --git a/aspnet/fundamentals/servers.rst b/aspnet/fundamentals/servers.rst
@@ -259,5 +259,4 @@ Because ASP.NET 5 has completely decoupled ASP.NET applications from IIS or any
 Additional Reading
 ------------------
 
-- :doc:`request-features`
-- :doc:`hosting`
+- :doc:`request-features`
diff --git a/aspnet/fundamentals/startup.rst b/aspnet/fundamentals/startup.rst
@@ -63,7 +63,7 @@ IApplicationEnvironment
   Provides access to the application properties, such as ``ApplicationName``, ``ApplicationVersion``, and ``ApplicationBasePath``. Available to the ``Startup`` constructor and ``Configure`` method.
 
 IHostingEnvironment
-  Provides the current ``EnvironmentName``, ``WebRootPath``, and web root file provider. Available to the ``Startup`` constructor and ``Configure`` method. Learn more about :doc:`hosting`.
+  Provides the current ``EnvironmentName``, ``WebRootPath``, and web root file provider. Available to the ``Startup`` constructor and ``Configure`` method.
 
 ILoggerFactory
   Provides a mechanism for creating loggers. Available to the ``Startup`` constructor and ``Configure`` method. Learn more about :doc:`logging`.

diff --git a/aspnet/hosting/apppool.rst b/aspnet/hosting/apppool.rst
@@ -0,0 +1,42 @@
+.. _apppool:
+
+Application Pools
+=================
+
+By `Sourabh Shirhatti`
+
+When hosting multiple web sites on a single server, you should consider isolating the applications from each other by running each application in its own application pool. This document provides an overview of how to set up Application Pools to securely host multiple web sites on a single server.
+
+
+Configuring IIS Application Pool Identities
+-------------------------------------------
+
+An application pool identity allows you to run an application under a unique account without having to create and manage domains or local accounts. On IIS 8.0+ the IIS Admin Worker Process (WAS) will create a virtual account with the name of the new application pool and run the application pool's worker processes under this account by default.
+
+In the IIS Management Console, under **Advanced Settings** for your application pool ensure that `Identity` list item is set to use **ApplicationPoolIdentity** as shown in the image below.
+
+.. image:: apppool/_static/apppool-identity.png
+
+Securing Resources
+------------------
+
+THe IIS management process creates a secure identifier with the name of the application pool in the Windows Security System. Resources can be secured by using this identity, however this identity is not a real user account and will not show up in the Windows User Management Console.
+
+To grant the IIS worker process access to your application, you will need to modify the Access Control List (ACL) for the the directory containing your application. 
+
+1. Open Windows Explorer and Naviagate to the directory.
+2. Right click on the directory and click properties.
+3. Under the **Security** tab, click the **Edit** button and then the **Add** button
+4. Click the **Locations** and make sure you select your server.
+
+.. image:: apppool/_static/apppool-adduser.jpg
+
+5. Enter **IIS AppPool\DefaultAppPool** in **Enter the object names to select** textbox.
+6. Click the **Check Names** button and then click **OK**.
+
+You can also do this via the command-line by using **ICACLS** tool.
+
+.. code:: bat
+
+    ICACLS C:\sites\MyWebApp /grant "IIS AppPool\DefaultAppPool" :F
+
diff --git a/aspnet/hosting/apppool/_static/apppool-adduser.jpg b/aspnet/hosting/apppool/_static/apppool-adduser.jpg
diff --git a/aspnet/hosting/apppool/_static/apppool-identity.png b/aspnet/hosting/apppool/_static/apppool-identity.png
diff --git a/aspnet/fundamentals/hosting.rst → aspnet/hosting/dataprotection.rst b/aspnet/fundamentals/hosting.rst → aspnet/hosting/dataprotection.rst
@@ -1,7 +1,7 @@
 .. include:: /../common/stub-topic.txt
 
-|stub-icon| Hosting
-===================
+|stub-icon| Data Protection
+===========================
 
 .. include:: /../common/stub-notice.txt
 

diff --git a/aspnet/hosting/directory-structure.rst b/aspnet/hosting/directory-structure.rst
@@ -0,0 +1,19 @@
+.. _directory-structure:
+
+Directory Structure
+===================
+
+By `Sourabh Shirhatti`
+
+
+In ASP.NET 5, the application directory comprises of three sub-directories. This is unlike previous versions of ASP.NET where the entire application lived inside the web root directory.
+
+=======   ===========
+Folder    Description     
+=======   ===========  
+approot   Contains the application, app config files, packages and the DNX runtime.
+logs      The default folder for HTTP PlatformHandler to redirect logs to.
+wwwroot   Contains the static assets
+=======   ===========
+
+The **wwwroot** directory represents the web root of the application. The physical path for the IIS site should point to the web root directory. During deployment of a web site, a developer will require access to the entire application directory.
diff --git a/aspnet/hosting/http-platformhandler.rst b/aspnet/hosting/http-platformhandler.rst
@@ -0,0 +1,53 @@
+.. _http-platformhandler:
+
+HTTP Platform Handler
+=====================
+
+By `Sourabh Shirhatti`
+
+In ASP.NET 5, the web application is hosted by an external process outside of IIS. The HTTP Platform Handler is an IIS 7.5+ module which is responsible for process management of http listeners and to proxy requests to processes that it manages. This document provides an overview of how to configure the HTTP Platform Handler module for shared ASP.NET 5 hosting.
+
+Installing the HTTP Platform Handler
+------------------------------------
+
+To get started with hosting with ASP.NET 5 applications you will need to install the HTTP Platform Handler version 1.2 or higher on an IIS 7.5 or higher server. Download links are below
+
+* `64 bit HTTP PlatformHandler (x64) <http://go.microsoft.com/fwlink/?LinkID=690721>`_ 
+* `32 bit HTTP PlatformHandler (x86) <http://go.microsoft.com/fwlink/?LinkId=690722>`_ 
+
+
+Configuring the HTTP Platform Handler
+-------------------------------------
+
+The HTTP Platform Handler is configured via a site or application's web.config file and has its own configuration section within **system.webServer - httpPlatform**. The `HTTP Platform Handler configuration reference whitepaper <http://www.iis.net/learn/extensions/httpplatformhandler/httpplatformhandler-configuration-reference>`_ describes in detail how to modify Configuration Attributes for the HTTP PlatformHandler module.
+
+Environment Variables
+---------------------
+
+The HTTP Platform Handler module allows you specify environment variables for the process specified in the **processPath** setting by specifying them in **environmentVariables** child attribute to the **httpPlatform** attribute. The example below illustrates how you would use it.
+
+
+.. code:: xml
+
+    <configuration>
+      <system.webServer>
+        <handlers>
+          <remove name="ExtensionlessUrlHandler-Integrated-4.0" />
+          <remove name="OPTIONSVerbHandler" />
+          <remove name="TRACEVerbHandler" />
+          <add name="httpplatformhandler"
+                path="*" verb="*"
+                modules="httpPlatformHandler"
+                resourceType="Unspecified" />
+        </handlers>
+        <httpPlatform processPath="..\approot\web.cmd"
+                arguments=""
+                stdoutLogEnabled="false"
+                stdoutLogFile="..\logs\stdout"
+                startupTimeLimit="3600">
+          <environmentVariables>
+            <environmentVariable name="DEMO" value="demo_value" />
+          </environmentVariables>
+        </httpPlatform>
+      </system.webServer>
+    </configuration>
diff --git a/aspnet/hosting/index.rst b/aspnet/hosting/index.rst
@@ -0,0 +1,13 @@
+Hosting
+=======
+
+.. toctree::
+   :titlesonly:
+
+   servicing
+   http-platformhandler
+   directory-structure
+   dataprotection
+   apppool
+
+
diff --git a/aspnet/hosting/servicing.rst b/aspnet/hosting/servicing.rst
@@ -0,0 +1,34 @@
+.. _hosting-servicing:
+
+Servicing
+=========
+
+By `Sourabh Shirhatti`
+
+ASP.NET 5 supports servicing of runtime components (DNX) and packages through Microsoft Update, which will deliver updates to patch any vulnerabilities when they are discovered. This document provides an overview of how to setup your Windows Server correctly to receive updates.
+
+Breadcrumbs Directory
+---------------------
+
+All serviceable assemblies will leave a breadcrumb in the ``BreadcrumbStore`` Directory. At the time of servicing Microsoft Update looks in this directory to figure out which assemblies are used on the server and require patching. This directory must be protected by ACLs to prevent rogue applications from deleting entries from this directory. Run the powershell snippet below in an elevated prompt to create the ``BreadcrumbStore`` directory and set ACLs on it correctly.
+
+
+.. code-block:: powershell
+
+    $breadcrumbFolder = $env:ALLUSERSPROFILE + '\Microsoft DNX\BreadcrumbStore'
+    New-Item -Force -Path $breadcrumbFolder -ItemType "Directory"
+    $ACL = Get-Acl -Path $breadcrumbFolder
+    # Clear any permissions
+    $ACL.SetAccessRuleProtection($true, $false)
+    # Set new permissions
+    $ACL.SetSecurityDescriptorSddlForm("O:SYG:SYD:P(A;OICI;CCDCSWWPLORC;;;WD)(A;OICI;FA;;;SY)(A;OICI;FA;;;BA)")
+    Set-Acl -Path $breadcrumbFolder -AclObject $ACL
+
+Servicing Directory
+-------------------
+
+At the time of loading an asset DNX will check against an index file in the ``Servicing`` directory to determine whether it should load a patched version instead of what it would normally load. This index file is updated by Microsoft Update during servicing to point to location of the patched version of the asset on disk which will reside in the the ``Servicing`` directory. The index file defaults to ``%PROGRAMFILES%\Microsoft DNX\Servicing``, but you can change this by setting ``DNX_SERVICING`` environment variable to a different path.
+
+
+
+
diff --git a/aspnet/index.rst b/aspnet/index.rst
@@ -38,6 +38,7 @@ Topics
     performance/index
     migration/index
     contribute/index
+    hosting/index
 
 Related Resources
 -----------------

diff --git a/common/authors.txt b/common/authors.txt
@@ -10,3 +10,4 @@
 .. _David Paquette: https://github.com/dpaquette
 .. _Scott Addie: http://scottaddie.com
 .. _Sayed Ibrahim Hashimi: https://github.com/sayedihashimi
+.. _Sourabh Shirhatti: https://twitter.com/sshirhatti
diff --git a/mvc/controllers/dependency-injection.rst b/mvc/controllers/dependency-injection.rst
@@ -1,9 +1,6 @@
 Dependency Injection and Controllers
 ====================================
 
-.. _dependency-injection-controllers:
-
-|stub-icon| Dependency Injection and Controllers
 By `Steve Smith`_
 
 ASP.NET MVC 6 controllers should request their dependencies explicitly via their constructors. In some instances, individual controller actions may require a service, and it may not make sense to request at the controller level. In this case, you can also choose to inject a service as a parameter on the action method.