typo

Author: damienbod

aspnetcore/security/authentication/configure-jwt-bearer-authentication.md

@@ -48,7 +48,7 @@ See [The OAuth 2.0 Authorization Framework](https://datatracker.ietf.org/doc/htm
 
 When requesting or creating an access token, an application or an application acting on behalf of a user can request an access token. The tokens are **application access tokens** or **delegated access tokens**. The tokens have different claims and are handled and persisted in different ways. An application is normally persisted once in the application until it expires where the delegated access token is persisted per user, either in a cookie or in a cache on a secure server.
 
-It is recommended to user-delegated user access tokens whenever a user is involved. Downstream APIs can request a delegated user access token on behalf of the authenticated user. 
+It is recommended to use delegated user access tokens whenever a user is involved. Downstream APIs can request a delegated user access token on behalf of the authenticated user. 
 
 #### Sender constrained access tokens