Merge pull request #358 from tsertkov/docs/token

Fix misleading token middleware documentation
2014-07-01 08:18:28 -07:00 · 2014-07-01 08:18:28 -07:00 · 94892288b8
parent 6a8a918166 476dd8214d
commit 94892288b8
1 changed files with 3 additions and 3 deletions
--- a/lib/middleware/token.js
+++ b/lib/middleware/token.js
@ -15,9 +15,9 @@ module.exports = token;
 * Check for an access token in cookies, headers, and query string parameters.
 * This function always checks for the following:
 * 
- * - `access_token`
- * - `X-Access-Token`
- * - `authorization`
+ * - `access_token` (params only)
+ * - `X-Access-Token` (headers only)
+ * - `authorization` (headers and cookies)
 *
 * It checks for these values in cookies, headers, and query string parameters _in addition_ to the items
 * specified in the options parameter.