From 2c1a5df05a02e55f92a1125cead101a6009a6e0d Mon Sep 17 00:00:00 2001 From: Alex Bilbie Date: Thu, 19 May 2016 12:17:03 +0100 Subject: [PATCH] Update auth-server-auth-code.md --- auth-server-auth-code.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/auth-server-auth-code.md b/auth-server-auth-code.md index dfaa3c1d..3079d4d3 100755 --- a/auth-server-auth-code.md +++ b/auth-server-auth-code.md @@ -24,7 +24,7 @@ All of these parameters will be validated by the authorization server. The user will then be asked to login to the authorization server and approve the client. -If the user approves the client they will be redirected from the authorisation server to the client's redirect URI with the following parameters in the query string:' +If the user approves the client they will be redirected from the authorisation server to the client's redirect URI with the following parameters in the query string: * `code` with the authorization code * `state` with the state parameter sent in the original request. You should compare this value with the value stored in the user's session to ensure the authorization code obtained is in response to requests made by this client rather than another client application.