website/docs: fix a minor typo (#13004)

2025-02-13 00:48:50 +01:00
parent 98f3b9ae97
commit 98129d3e9a
1 changed files with 1 additions and 1 deletions
--- a/website/docs/add-secure-apps/providers/oauth2/index.md
+++ b/website/docs/add-secure-apps/providers/oauth2/index.md
@ -86,7 +86,7 @@ The flows and grant types used in this case are those used for a typical authori

 #### Authorization code

-The authorization code is for environments with both a Client and a application server, where the back and forth happens between the client and an app server (the logic lives on app server). The RP needs to authorise itself to the OP. Clint ID (public, identifies which app is talking to it) and client secret (the password) that the RP uses to authenticate.
+The authorization code is for environments with both a Client and a application server, where the back and forth happens between the client and an app server (the logic lives on app server). The RP needs to authorise itself to the OP. Client ID (public, identifies which app is talking to it) and client secret (the password) that the RP uses to authenticate.

 If you configure authentik to use "Offline access" then during the initial auth the OP sends two tokens, an access token (short-lived, hours, can be customised) and a refresh token (typically longer validity, days or infinite). The RP (the app) saves both tokens. When the access token is about to expire, the RP sends the saved refresh token back to the OP, and requests a new access token. When the refresh token itself is about to expire, the RP can also ask for a new refresh token. This can all happen without user interaction if you configured the offline access.