Refine OAuth2 authentication property descriptions in af-project-files.adoc for clarity. Updated examples for 'scopes', 'secondaryAuthProvider', and 'tokenAudience' to enhance understanding and consistency.

IsaacEldridge · IsaacEldridge · commit 95aca70ad038 · 2026-02-04T12:15:36.000-08:00
diff --git a/modules/ROOT/pages/af-project-files.adoc b/modules/ROOT/pages/af-project-files.adoc
@@ -1008,12 +1008,12 @@ The `in-task-authorization-code` authentication has these properties.
 |`kind` |Authentication type. |String |`in-task-authorization-code` |Yes
 |`authorizationEndpoint` |OAuth2 authorization endpoint URL. Used to generate the authentication challenge. |String |Valid URL |Yes
 |`tokenEndpoint` |OAuth2 token endpoint URL. Used to generate the authentication challenge. |String |Valid URL |Yes
-|`scopes` |OAuth2 scopes required for step-up authentication. |String |Space- or comma-separated scope list (e.g. `openid profile email`) |Yes
+|`scopes` |OAuth2 scopes required for step-up authentication. |String |Space- or comma-separated scope list (for example, `openid profile email`) |Yes
 |`redirectUri` |OAuth2 redirect URI the client uses in the authorization flow. |String |Valid URI |Yes
-|`secondaryAuthProvider` |Name of the IdP (e.g. `okta`, `auth0`). Informational only, for the authentication card. |String |Any string |No
+|`secondaryAuthProvider` |Name of the IdP (for example, `okta`, `auth0`). Informational only, for the authentication card. |String |Any string |No
 |`responseType` |OAuth2 response type. |String |Typically `code`. Default: `code` |No
 |`codeChallengeMethod` |PKCE code challenge method. |String |Typically `S256`. Default: `S256` |No
-|`tokenAudience` |Intended recipient of the token (e.g. agent or API URL). |String |Any string |No
+|`tokenAudience` |Intended recipient of the token (for example, `agent1` or API URL). |String |Any string |No
 |`bodyEncoding` |Encoding for the token request body. |String |`form`, `json`. Default: `form` |No
 |`tokenTimeout` |Timeout in seconds for token requests. |Integer |Positive integer. Default: 300 |No
 |`challengeResponseStatusCode` |HTTP status code returned for auth-required challenge responses. Typically 200 for JSON-RPC compatibility. |Integer |HTTP status code. Default: 200 |No
@@ -1062,7 +1062,7 @@ The `oauth2-obo` authentication has these properties.
 |Parameter |Description |Type |Valid Values |Required
 
 |`kind` |Authentication type. |String |`oauth2-obo` |Yes
-|`flow` |Token exchange flow type. |String |`oauth2-token-exchange` (RFC 8693), `microsoft-entra-obo` |Yes
+|`flow` |Token exchange flow type. |String |`oauth2-token-exchange`, `microsoft-entra-obo` |Yes
 |`clientId` |OAuth2 client ID for token exchange. |String |Any string |Yes
 |`clientSecret` |OAuth2 client secret for token exchange. |String |Any string |Yes
 |`tokenEndpoint` |OAuth2 token endpoint URL for token exchange. |String |Valid URL |Yes
