Skip to content

G
gitlab-ce
Commit 4977a167 authored by Rémy Coutable's avatar Rémy Coutable
Browse files
Options

Fix typo `CSFR` -> `CSRF` in the OAuth2 doc 

[ci skip]
Signed-off-by: default avatarRémy Coutable <remy@rymai.me>
parent 1025b390
Show whitespace changes
Inline Side-by-side
Showing with 8 additions and 8 deletions
doc/api/oauth2.md
View file @ 4977a167
...@@ -48,7 +48,7 @@ You should then use the `code` to request an access token. ...@@ -48,7 +48,7 @@ You should then use the `code` to request an access token.
>**Important:** >**Important:**
It is highly recommended that you send a `state` value with the request to `/oauth/authorize` and It is highly recommended that you send a `state` value with the request to `/oauth/authorize` and
validate that value is returned and matches in the redirect request. validate that value is returned and matches in the redirect request.
This is important to prevent [CSFR attacks](http://www.oauthsecurity.com/#user-content-authorization-code-flow), This is important to prevent [CSRF attacks](http://www.oauthsecurity.com/#user-content-authorization-code-flow),
`state` really should have been a requirement in the standard! `state` really should have been a requirement in the standard!
### 3. Requesting the access token ### 3. Requesting the access token
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7