From 5585834299c5ec2f47c50f387ad9579b3e2d2135 Mon Sep 17 00:00:00 2001
From: Michiel Kalkman <michiel@nosuchtype.com>
Date: Mon, 31 Oct 2016 11:15:55 +0100
Subject: [PATCH] Correct typo in reply/replay

---
 topics/sso-protocols/oidc.adoc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/topics/sso-protocols/oidc.adoc b/topics/sso-protocols/oidc.adoc
index d45fd578a0..801a863b6d 100644
--- a/topics/sso-protocols/oidc.adoc
+++ b/topics/sso-protocols/oidc.adoc
@@ -41,7 +41,7 @@ heavy use of browser redirects to obtain an _identity_ and _access_ token.  Here
   as a query parameter in the callback URL.
 . The application extracts the temporary code and makes a background out of band REST invocation to {{book.project.name}}
   to exchange the code for an _identity_, _access_ and _refresh_ token.  Once this temporary code has been used once
-  to obtain the tokens, it can never be used again.  This prevents potential reply attacks.
+  to obtain the tokens, it can never be used again.  This prevents potential replay attacks.
 
 It is important to note that _access_ tokens are usually short lived and often expired after only minutes.  The additional _refresh_
 token that was transmitted by the login protocol allows the application to obtain a new access token after it expires.  This