Skip to content

Commit 676cbfb

Browse files
aaronpkaaronpk
committed
typo
1 parent 103146d commit 676cbfb

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

draft-ietf-oauth-v2-1.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -777,7 +777,7 @@ context, CSRF refers to requests to the redirection endpoint that do
777777
not originate at the authorization server, but a malicious third party
778778
(see Section 4.4.1.8. of {{RFC6819}} for details). Clients that have
779779
ensured that the authorization server supports the `code_challenge` parameter MAY
780-
rely the CSRF protection provided by that mechanism. In OpenID Connect flows,
780+
rely on the CSRF protection provided by that mechanism. In OpenID Connect flows,
781781
validating the `nonce` parameter provides CSRF protection. Otherwise, one-time
782782
use CSRF tokens carried in the `state` parameter that are securely
783783
bound to the user agent MUST be used for CSRF protection (see

0 commit comments

Comments
 (0)