Update draft-ietf-httpapi-privacy.md

MikeBishop · Acconut · web-flow · commit 9b0313f90468 · 2025-06-25T09:15:33.000-04:00
Co-authored-by: Marius Kleidl &lt;1375043+Acconut@users.noreply.github.com&gt;
diff --git a/draft-ietf-httpapi-privacy.md b/draft-ietf-httpapi-privacy.md
@@ -141,7 +141,7 @@ to indicate the expected usage to the client.
 Some deployments may not find it feasible to completely block unencrypted
 connections, whether because the hostname is shared with unauthenticated
 endpoints or for infrastructure reasons. Therefore, servers need a response for
-when a valid credential has been received over an insecure channel.
+when a credential has been received over an insecure channel.
 
 HTTP status code 403 (Forbidden) indicates that "the server understood the
 request but refuses to fulfill it" {!HTTP=RFC9110}. While this is generally
