Better example server configuration

Kadi Kraman · Kadi Kraman · commit 56e67d1f8295 · 2018-02-22T14:40:51.000Z
diff --git a/README.md b/README.md
@@ -18,6 +18,7 @@ This library _should_ support any OAuth provider that implements the
 [OAuth2 spec](https://tools.ietf.org/html/rfc6749#section-2.2) and it has been tested with:
 
 * [Identity Server4](https://demo.identityserver.io/) ([Example configuration](#identity-server-4))
+* [Identity Server3](https://github.com/IdentityServer/IdentityServer3) ([Example configuration](#identity-server-3))
 * [Google](https://developers.google.com/identity/protocols/OAuth2)
   ([Example configuration](#google))
 * [Okta](https://developer.okta.com) ([Example configuration](#okta))
@@ -375,23 +376,6 @@ This library supports authenticating for Identity Server 4 out of the box. Some
 2. In order to revoke the access token, we must sent client id in the method body of the request.
    This is not part of the OAuth spec.
 
-<details>
-  <summary>Example server configuration</summary>
-  <code>
-    var client = new Client
-    {
-        ClientId = "native.code",
-        ClientName = "Native Client (Code with PKCE)",
-        RequireClientSecret = false,
-        RedirectUris = { "io.identityserver.demo:/oauthredirect" },
-        AllowedGrantTypes = GrantTypes.Code,
-        RequirePkce = true,
-        AllowedScopes = { "openid", "profile" },
-        AllowOfflineAccess = true
-    };
-  </code>
-</details>
-
 ```js
 // Note "offline_access" scope is required to get a refresh token
 const config = {
@@ -417,26 +401,28 @@ await revoke(config, {
 });
 ```
 
-### Identity Server 3
-
-This library supports authenticating with Identity Server 3. The only difference from
-Identity Server 4 is that it requires a `clientSecret` and there is no way to opt out of it.
-
 <details>
   <summary>Example server configuration</summary>
-  <code>
+  <code style={{display: 'block', whiteSpace: 'pre-wrap' }}>
     var client = new Client
     {
         ClientId = "native.code",
         ClientName = "Native Client (Code with PKCE)",
-        Flow = Flows.AuthorizationCodeWithProofKey,            
-        RedirectUris = { "com.your.app.name:/oauthredirect" },
-        ClientSecrets = new List<Secret> { new Secret("secret".Sha256()) },
-        AllowAccessToAllScopes = true,
+        RequireClientSecret = false,
+        RedirectUris = { "io.identityserver.demo:/oauthredirect" },
+        AllowedGrantTypes = GrantTypes.Code,
+        RequirePkce = true,
+        AllowedScopes = { "openid", "profile" },
+        AllowOfflineAccess = true
     };
   </code>
 </details>
 
+### Identity Server 3
+
+This library supports authenticating with Identity Server 3. The only difference from
+Identity Server 4 is that it requires a `clientSecret` and there is no way to opt out of it.
+
 ```js
 // You must include a clientSecret
 const config = {
@@ -463,6 +449,19 @@ await revoke(config, {
 });
 ```
 
+<details>
+  <summary>Example server configuration</summary>
+    var client = new Client
+    {
+        ClientId = "native.code",
+        ClientName = "Native Client (Code with PKCE)",
+        Flow = Flows.AuthorizationCodeWithProofKey,            
+        RedirectUris = { "com.your.app.name:/oauthredirect" },
+        ClientSecrets = new List<Secret> { new Secret("your-client-secret".Sha256()) },
+        AllowAccessToAllScopes = true,
+    };
+</details>
+
 ### Google
 
 Full support out of the box.
