From 3be35bca96f3f128855cb07f8def53ae28787017 Mon Sep 17 00:00:00 2001
From: SuperOfficeDevNet <tony@superoffice.com>
Date: Thu, 10 Mar 2022 13:46:38 +0100
Subject: [PATCH] Added comment about when/why to include ClientSecret in
 Options.

---
 Source/SuperOffice.DevNet.WebApiClient.Oidc/Program.cs | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Source/SuperOffice.DevNet.WebApiClient.Oidc/Program.cs b/Source/SuperOffice.DevNet.WebApiClient.Oidc/Program.cs
index 9324ffe..a3c50b6 100644
--- a/Source/SuperOffice.DevNet.WebApiClient.Oidc/Program.cs
+++ b/Source/SuperOffice.DevNet.WebApiClient.Oidc/Program.cs
@@ -53,8 +53,8 @@ private static async Task Login()
             {
                 Authority = _authority,
                 ClientId = _clientId,
-                ClientSecret = _clientSecret,
-                RedirectUri = redirectUri,
+                ClientSecret = _clientSecret, // Client secret is not used to obtain an Access/Refresh/ID tokens
+                RedirectUri = redirectUri,    //- the client secret is only required when using the refreshToken to get a new access token.
                 Scope = "openid",
                 FilterClaims = false,
                 LoadProfile = false,