docs: minor fixes (#467)

Co-authored-by: hackerman <[email protected]>
ory · Jun 3, 2020 · 8d15307 · 8d15307
1 parent 8050e33
commit 8d15307
Show file tree

Hide file tree

Showing 4 changed files with 6 additions and 7 deletions.
diff --git a/docs/docs/self-service/flows/user-login-user-registration.mdx b/docs/docs/self-service/flows/user-login-user-registration.mdx
@@ -308,10 +308,9 @@ summarized in this state diagram:
 1. ORY Kratos executes Jobs defined in the **Before Login/Registration
  Workflow**. If a failure occurs, the whole flow is aborted.
 1. The user's browser is redirected to
- `http://127.0.0.1:4455/.ory/kratos/public/self-service/browser/flows/requests/(login|registration)`
+ `http://127.0.0.1:4455/.ory/kratos/public/self-service/browser/flows/(login|registration)`
  (the notation `(login|registration)` expresses the two possibilities of
- `../self-service/browser/flows/requests/login` or
- `../self-service/browser/flows/requests/registration`).
+ `../self-service/browser/flows/login` or `../self-service/browser/flows/registration`).
 1. ORY Kratos does some internal processing (e.g. checks if a session cookie is
  set, generates payloads for form fields, sets CSRF token, ...) and redirects
  the user's browser to the Login UI URL which is defined using the
@@ -400,7 +399,7 @@ would be called via AJAX instead of making a request to
 To prevent brute force, guessing, session injection, and other attacks, it is
 required that cookies are working for this endpoint. The cookie set in the
 initial HTTP request made to
-`https://127.0.0.1:4455/.ory/kratos/public/self-service/browser/login` MUST be
+`https://127.0.0.1:4455/.ory/kratos/public/self-service/browser/flows/login` MUST be
 set and available when calling this endpoint!
 
 :::info

diff --git a/selfservice/errorx/handler.go b/selfservice/errorx/handler.go
@@ -67,7 +67,7 @@ type errorContainerParameters struct {
 // This endpoint returns the error associated with a user-facing self service errors.
 //
 // When accessing this endpoint through ORY Kratos' Public API, ensure that cookies are set as they are required for CSRF to work. To prevent
-// token scanning attacks, the public endpoint does not return 404 status codes to prevent scanning attacks.
+// token scanning attacks, the public endpoint does not return 404 status codes.
 //
 // More information can be found at [ORY Kratos User User Facing Error Documentation](https://www.ory.sh/docs/kratos/self-service/flows/user-facing-errors).
 //

diff --git a/selfservice/flow/login/handler.go b/selfservice/flow/login/handler.go
@@ -148,7 +148,7 @@ type getSelfServiceBrowserLoginRequestParameters struct {
 // other information.
 //
 // When accessing this endpoint through ORY Kratos' Public API, ensure that cookies are set as they are required for CSRF to work. To prevent
-// token scanning attacks, the public endpoint does not return 404 status codes to prevent scanning attacks.
+// token scanning attacks, the public endpoint does not return 404 status codes.
 //
 // More information can be found at [ORY Kratos User Login and User Registration Documentation](https://www.ory.sh/docs/next/kratos/self-service/flows/user-login-user-registration).
 //

diff --git a/selfservice/flow/registration/handler.go b/selfservice/flow/registration/handler.go
@@ -127,7 +127,7 @@ type getSelfServiceBrowserRegistrationRequestParameters struct {
 // other information.
 //
 // When accessing this endpoint through ORY Kratos' Public API, ensure that cookies are set as they are required for CSRF to work. To prevent
-// token scanning attacks, the public endpoint does not return 404 status codes to prevent scanning attacks.
+// token scanning attacks, the public endpoint does not return 404 status codes.
 //
 // More information can be found at [ORY Kratos User Login and User Registration Documentation](https://www.ory.sh/docs/next/kratos/self-service/flows/user-login-user-registration).
 //