Clarify that apps verify_credentials requires app token + read (#1190)

2023-12-11 04:47:29 +10:00 · 2023-12-11 04:47:29 +10:00 · c185e7dec0
parent 0ca2155229
commit c185e7dec0
1 changed files with 3 additions and 3 deletions
--- a/content/en/methods/apps.md
+++ b/content/en/methods/apps.md
@ -84,7 +84,7 @@ GET /api/v1/apps/verify_credentials HTTP/1.1
 Confirm that the app's OAuth2 credentials work.

 **Returns:** [Application]({{< relref "entities/application" >}}), but without `client_id` or `client_secret`\
-**OAuth level:** App token\
+**OAuth level:** App token + `read`\
 **Version history:**\
 2.0.0 - added\
 2.7.2 - now returns `vapid_key`
@ -94,7 +94,7 @@ Confirm that the app's OAuth2 credentials work.
 ##### Headers

 Authorization
-: {{<required>}} Provide this header with `Bearer <user token>` to gain authorized access to this API method.
+: {{<required>}} Provide this header with `Bearer <app token>` to gain authorized access to this API method.

 #### Response
 ##### 200: OK
@ -125,4 +125,4 @@ If the Authorization header contains an invalid token, is malformed, or is not p

 {{< caption-link url="https://github.com/mastodon/mastodon/blob/main/app/controllers/api/v1/apps_controller.rb" caption="app/controllers/api/v1/apps_controller.rb" >}}

-{{< caption-link url="https://github.com/mastodon/mastodon/blob/main/app/controllers/api/v1/apps/credentials_controller.rb" caption="app/controllers/api/v1/apps/credentials_controller.rb" >}}
+{{< caption-link url="https://github.com/mastodon/mastodon/blob/main/app/controllers/api/v1/apps/credentials_controller.rb" caption="app/controllers/api/v1/apps/credentials_controller.rb" >}}