Add missing token scopes for wireguard oauth

Info was added to what was assumed to be the appropriate spot; will need to be reviewed, and possibly expanded upon. QA steps: checked rendered output in browser. Edited doc with linters. No related issue/task, quick-fix to a Customer Success request. Signed-off-by: Katrina Prosise <katrina.prosise@foundries.io>
foundriesio · May 15, 2024 · 1b2b9df · 1b2b9df
1 parent 17fa60e
commit 1b2b9df
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/source/reference-manual/remote-access/wireguard.rst b/source/reference-manual/remote-access/wireguard.rst
@@ -60,6 +60,10 @@ It will look something like::
     Creating systemd service factory-vpn-andy-corp.service
     Service is running. Logs can be viewed with: journalctl -fu factory-vpn-andy-corp.service
 
+You will create two tokens.
+Token 1, a short-lived token with ``devices:read-update`` to update factory.
+Token 2, long-term token with ``devices:read``.
+
 The daemon keeps track of connected devices by putting entries into ``/etc/hosts``.
 This is so they can be easily referenced from the server.