Better example server configuration

Kadi Kraman · Kadi Kraman · commit a7ad3d36e0df · 2018-02-22T14:48:08.000Z
diff --git a/README.md b/README.md
@@ -18,6 +18,7 @@ This library _should_ support any OAuth provider that implements the
 [OAuth2 spec](https://tools.ietf.org/html/rfc6749#section-2.2) and it has been tested with:
 
 * [Identity Server4](https://demo.identityserver.io/) ([Example configuration](#identity-server-4))
+* [Identity Server3](https://github.com/IdentityServer/IdentityServer3) ([Example configuration](#identity-server-3))
 * [Google](https://developers.google.com/identity/protocols/OAuth2)
   ([Example configuration](#google))
 * [Okta](https://developer.okta.com) ([Example configuration](#okta))
@@ -375,23 +376,6 @@ This library supports authenticating for Identity Server 4 out of the box. Some
 2. In order to revoke the access token, we must sent client id in the method body of the request.
    This is not part of the OAuth spec.
 
-<details>
-  <summary>Example server configuration</summary>
-  <code>
-    var client = new Client
-    {
-        ClientId = "native.code",
-        ClientName = "Native Client (Code with PKCE)",
-        RequireClientSecret = false,
-        RedirectUris = { "io.identityserver.demo:/oauthredirect" },
-        AllowedGrantTypes = GrantTypes.Code,
-        RequirePkce = true,
-        AllowedScopes = { "openid", "profile" },
-        AllowOfflineAccess = true
-    };
-  </code>
-</details>
-
 ```js
 // Note "offline_access" scope is required to get a refresh token
 const config = {
@@ -417,26 +401,28 @@ await revoke(config, {
 });
 ```
 
+<details>
+  <summary>Example server configuration</summary>
+  <pre>  
+var client = new Client
+{
+  ClientId = "native.code",
+  ClientName = "Native Client (Code with PKCE)",
+  RequireClientSecret = false,
+  RedirectUris = { "io.identityserver.demo:/oauthredirect" },
+  AllowedGrantTypes = GrantTypes.Code,
+  RequirePkce = true,
+  AllowedScopes = { "openid", "profile" },
+  AllowOfflineAccess = true
+};
+  </pre>
+</details>
+
 ### Identity Server 3
 
 This library supports authenticating with Identity Server 3. The only difference from
 Identity Server 4 is that it requires a `clientSecret` and there is no way to opt out of it.
 
-<details>
-  <summary>Example server configuration</summary>
-  <code>
-    var client = new Client
-    {
-        ClientId = "native.code",
-        ClientName = "Native Client (Code with PKCE)",
-        Flow = Flows.AuthorizationCodeWithProofKey,            
-        RedirectUris = { "com.your.app.name:/oauthredirect" },
-        ClientSecrets = new List<Secret> { new Secret("secret".Sha256()) },
-        AllowAccessToAllScopes = true,
-    };
-  </code>
-</details>
-
 ```js
 // You must include a clientSecret
 const config = {
@@ -463,6 +449,21 @@ await revoke(config, {
 });
 ```
 
+<details>
+  <summary>Example server configuration</summary>
+	<pre>
+var client = new Client
+{
+  ClientId = "native.code",
+  ClientName = "Native Client (Code with PKCE)",
+  Flow = Flows.AuthorizationCodeWithProofKey,            
+  RedirectUris = { "com.your.app.name:/oauthredirect" },
+  ClientSecrets = new List<Secret> { new Secret("your-client-secret".Sha256()) },
+  AllowAccessToAllScopes = true,
+};
+  </pre>
+</details>
+
 ### Google
 
 Full support out of the box.
