Remove note that introspection endpoint is protected by bearer token as it's not

2017-04-21 11:11:43 +02:00 · 2017-04-21 11:11:43 +02:00 · e0252003b7
commit e0252003b7
parent 0f73ee522e
1 changed files with 1 additions and 1 deletions
--- a/securing_apps/topics/oidc/oidc-generic.adoc
+++ b/securing_apps/topics/oidc/oidc-generic.adoc
@ -67,7 +67,7 @@ The certificate endpoint returns the public keys enabled by the realm, encoded a
 /realms/{realm-name}/protocol/openid-connect/token/introspect
 ....

-The introspection endpoint is used to retrieve the active state of a token. It is protected by a bearer token and can only be invoked by confidential clients.
+The introspection endpoint is used to retrieve the active state of a token. It is can only be invoked by confidential clients.

 For more details see https://tools.ietf.org/html/rfc7662[OAuth 2.0 Token Introspection specification].