libre.sh/keycloak-scim
3
0
Fork 0
Code Issues 15 Pull requests Releases Packages Activity Actions

Remove note that introspection endpoint is protected by bearer token as it's not

Browse source
This commit is contained in:
Stian Thorgersen 2017-04-21 11:11:43 +02:00
parent 0f73ee522e
commit e0252003b7
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
securing_apps/topics/oidc/oidc-generic.adoc
View file

@ -67,7 +67,7 @@ The certificate endpoint returns the public keys enabled by the realm, encoded a
/realms/{realm-name}/protocol/openid-connect/token/introspect /realms/{realm-name}/protocol/openid-connect/token/introspect
.... ....
The introspection endpoint is used to retrieve the active state of a token. It is protected by a bearer token and can only be invoked by confidential clients. The introspection endpoint is used to retrieve the active state of a token. It is can only be invoked by confidential clients.
For more details see https://tools.ietf.org/html/rfc7662[OAuth 2.0 Token Introspection specification]. For more details see https://tools.ietf.org/html/rfc7662[OAuth 2.0 Token Introspection specification].