diff --git a/docs/60-security/what-is-the-sap-authorization-and-trust-management-service-649961f.md b/docs/60-security/what-is-the-sap-authorization-and-trust-management-service-649961f.md index 4dc201c0..d9daab0c 100644 --- a/docs/60-security/what-is-the-sap-authorization-and-trust-management-service-649961f.md +++ b/docs/60-security/what-is-the-sap-authorization-and-trust-management-service-649961f.md @@ -101,7 +101,7 @@ The Cloud Foundry environment uses a standard implementation of OAuth 2.0 to pro However, the OAuth 2.0 specification is reused for SAP BTP with a proprietary implementation to protect the resources of business web applications powered by the Cloud Foundry environment. The proprietary implementation exchanges the responsibilities of the OAuth 2.0 entities, client and resource owner: the OAuth 2.0 client - represented by the application - holds all the authorizations. A set or sub-set of these authorizations is assigned to the user after authentication in the system. The application also acts as the OAuth 2.0 resource server because it contains the resource apps. All apps of an application operate under the same OAuth 2.0 client. -The SAP Authorization and Trust Management service \(XSUAA\) provides functionality for administrating and assigning application authorizations. It acts as the OAuth 2.0 authorization server and represents a typical reuse service. The SAP Authorization and Trust Management servicebroker creates a service instance for each application. Each app that wants to enforce authorizations with the security client library is then bound to this SAP Authorization and Trust Management serviceinstance of the corresponding application. +The SAP Authorization and Trust Management service \(XSUAA\) provides functionality for administrating and assigning application authorizations. It acts as the OAuth 2.0 authorization server and represents a typical reuse service. The SAP Authorization and Trust Management servicebroker creates a service instance for each application. Each app that wants to enforce authorizations with the security client library is then bound to this SAP Authorization and Trust Management service instance of the corresponding application. > ### Note: > The Cloud Foundry environment also supports the following token grant types of Cloud Foundry.