From 82b2ea6d72e1a37558f6cdec5f8f41f9604ce8eb Mon Sep 17 00:00:00 2001
From: Hiroyuki Wada <wadahiro@gmail.com>
Date: Fri, 5 Jan 2018 16:49:03 +0900
Subject: [PATCH] Fix typo

---
 securing_apps/topics/token-exchange/token-exchange.adoc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/securing_apps/topics/token-exchange/token-exchange.adoc b/securing_apps/topics/token-exchange/token-exchange.adoc
index 4610ae9095..283073a153 100644
--- a/securing_apps/topics/token-exchange/token-exchange.adoc
+++ b/securing_apps/topics/token-exchange/token-exchange.adoc
@@ -313,7 +313,7 @@ NOTE:  SAML identity providers are not supported at this time.  Twitter tokens c
 ==== Granting Permission for the Exchange
 
 Before external token exchanges can be done, you must grant permission for the calling client to make the exchange.  This
-permission is granted in the same manner as <<_grant_permission_external_exchange, interal to external permission is granted>>.
+permission is granted in the same manner as <<_grant_permission_external_exchange, internal to external permission is granted>>.
 
 If you also provide an `audience` parameter whose value points to a different client other than the calling one, you
 must also grant the calling client permission to exchange to the target client specific in the `audience` parameter.  How