Skip to content

Commit a808c1b

Browse files
tdykstratdykstra
authored
Apply suggestions from code review
1 parent 28c27e1 commit a808c1b

File tree

2 files changed

+2
-2
lines changed

2 files changed

+2
-2
lines changed

aspnetcore/fundamentals/configuration/index/includes/index6.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -135,7 +135,7 @@ Configuration data guidelines:
135135
* Never store passwords or other sensitive data in configuration provider code or in plain text configuration files. The [Secret Manager](xref:security/app-secrets) tool can be used to store secrets in development.
136136
* Don't use production secrets in development or test environments.
137137
* Specify secrets outside of the project so that they can't be accidentally committed to a source code repository.
138-
* Avoid the use of passwords in production apps; for more information, see [Secure authentication flows](xref:security/index#secure-authentication-flows).
138+
* Production apps should use the most secure authentication flow available. For more information, see [Secure authentication flows](xref:security/index#secure-authentication-flows).
139139

140140
By [default](#default), the user secrets configuration source is registered after the JSON configuration sources. Therefore, user secrets keys take precedence over keys in `appsettings.json` and `appsettings.{Environment}.json`.
141141

aspnetcore/fundamentals/configuration/index/includes/index7.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -140,7 +140,7 @@ Configuration data guidelines:
140140
* Never store passwords or other sensitive data in configuration provider code or in plain text configuration files. The [Secret Manager](xref:security/app-secrets) tool can be used to store secrets in development.
141141
* Don't use production secrets in development or test environments.
142142
* Specify secrets outside of the project so that they can't be accidentally committed to a source code repository.
143-
* Avoid the use of passwords in production apps; for more information, see [Secure authentication flows](xref:security/index#secure-authentication-flows).
143+
* Production apps should use the most secure authentication flow available. For more information, see [Secure authentication flows](xref:security/index#secure-authentication-flows).
144144

145145
By [default](#default), the user secrets configuration source is registered after the JSON configuration sources. Therefore, user secrets keys take precedence over keys in `appsettings.json` and `appsettings.{Environment}.json`.
146146

0 commit comments

Comments
 (0)