From b8b2a6d663aa8ac2a3835adeefa66f355414bd7b Mon Sep 17 00:00:00 2001
From: Richard Thompson <richarth@gmail.com>
Date: Sat, 12 Oct 2024 19:20:33 +0100
Subject: [PATCH 1/2] Clarifying management API authentication

Added a note with the client_id, that you need to leave the client_secret empty for non-production environments as it's easy to miss the hint below the screen shot that lets you know that you need to leave the client_secret empty.
---
 14/umbraco-cms/reference/management-api/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/14/umbraco-cms/reference/management-api/README.md b/14/umbraco-cms/reference/management-api/README.md
index 458e04f29ce..7ed6ce4ad66 100644
--- a/14/umbraco-cms/reference/management-api/README.md
+++ b/14/umbraco-cms/reference/management-api/README.md
@@ -48,7 +48,7 @@ You can see an example of how to connect a backoffice user via OAuth2 in Postman
 
 To test a Management API endpoint, follow these steps:
 
-1. Authenticate via the **Authorize** button. Make sure you use `umbraco-swagger` as the `client_id`:
+1. Authenticate via the **Authorize** button. Make sure you use `umbraco-swagger` as the `client_id` and in non-production environments you need to leave the `client_secret` blank:
 
 ![Umbraco Management API when Authenticated](../images/management-api-swagger-authenticated.png)
 

From ab4e8a485bd73ae750356930894cdbfd762dbfde Mon Sep 17 00:00:00 2001
From: Richard Thompson <richarth@gmail.com>
Date: Tue, 15 Oct 2024 22:23:57 +0100
Subject: [PATCH 2/2] Update 14/umbraco-cms/reference/management-api/README.md

Co-authored-by: sofietoft <stk@umbraco.com>
---
 14/umbraco-cms/reference/management-api/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/14/umbraco-cms/reference/management-api/README.md b/14/umbraco-cms/reference/management-api/README.md
index 7ed6ce4ad66..40cb1eed125 100644
--- a/14/umbraco-cms/reference/management-api/README.md
+++ b/14/umbraco-cms/reference/management-api/README.md
@@ -48,7 +48,7 @@ You can see an example of how to connect a backoffice user via OAuth2 in Postman
 
 To test a Management API endpoint, follow these steps:
 
-1. Authenticate via the **Authorize** button. Make sure you use `umbraco-swagger` as the `client_id` and in non-production environments you need to leave the `client_secret` blank:
+1. Authenticate via the **Authorize** button. Make sure you use `umbraco-swagger` as the `client_id` and leave the `client_secret` blank in non-production environments:
 
 ![Umbraco Management API when Authenticated](../images/management-api-swagger-authenticated.png)