From 476dd8214d0b15985b89f56d632507e57b1f7ba8 Mon Sep 17 00:00:00 2001 From: Aleksandr Tsertkov Date: Tue, 1 Jul 2014 16:59:49 +0200 Subject: [PATCH] Fix misleading token middleware documentation Signed-off-by: Aleksandr Tsertkov --- lib/middleware/token.js | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/lib/middleware/token.js b/lib/middleware/token.js index 3bfff701..541300f1 100644 --- a/lib/middleware/token.js +++ b/lib/middleware/token.js @@ -15,9 +15,9 @@ module.exports = token; * Check for an access token in cookies, headers, and query string parameters. * This function always checks for the following: * - * - `access_token` - * - `X-Access-Token` - * - `authorization` + * - `access_token` (params only) + * - `X-Access-Token` (headers only) + * - `authorization` (headers and cookies) * * It checks for these values in cookies, headers, and query string parameters _in addition_ to the items * specified in the options parameter.