Skip to content

Commit 71ce7e9

Browse files
maartenbamaartenba
authored
Update src/content/docs/bff/fundamentals/session/handlers.md
1 parent 12b272b commit 71ce7e9

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

src/content/docs/bff/fundamentals/session/handlers.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -55,7 +55,7 @@ The exact settings to use depend on the OIDC provider and its configuration sett
5555

5656
* use authorization code flow with PKCE
5757
* use a *response_mode* of *query* since this plays nicer with *SameSite* cookies
58-
* use a strong client secret. Since the BFF can be a confidential client, it is possible to use strong client authentication like JWT assertions, JAR, or ,TLS. Shared secrets work as well.
58+
* use a strong client secret. Since the BFF can be a confidential client, it is possible to use strong client authentication like JWT assertions, JAR, or mTLS. Shared secrets work as well.
5959
* turn off inbound claims mapping
6060
* save the tokens into the authentication session so they can be automatically managed
6161
* request a refresh token using the *offline_access* scope

0 commit comments

Comments
 (0)