Merge pull request #17 from resurge/master

Added explanation in the documentation about how to include authenticatication tokens in requests.
jaredhanson · Mar 16, 2019 · 58bb0ca · 58bb0ca
2 parents e04e562 + cd93f76
commit 58bb0ca
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -73,6 +73,12 @@ Bearer tokens are typically issued using OAuth 2.0.  [OAuth2orize](https://githu
 is a toolkit for implementing OAuth 2.0 servers and issuing bearer tokens.  Once
 issued, this module can be used to authenticate tokens as described above.
 
+#### Making authenticated requests
+The HTTP Bearer authentication strategy authenticates requests based on a bearer token contained in the:
+* `Authorization` header field where the value is in the format `{scheme} {token}` and scheme is "Bearer" in this case.
+* or `access_token` body parameter
+* or `access_token` query parameter
+
 ## Examples
 
 For a complete, working example, refer to the [Bearer example](https://github.com/passport/express-4.x-http-bearer-example).