From f2c257bde69d68d6c828f23bcaef4ecef8461f5a Mon Sep 17 00:00:00 2001
From: Stephen Crawford <65832608+scrawfor99@users.noreply.github.com>
Date: Tue, 14 Nov 2023 10:26:18 -0500
Subject: [PATCH] Update _security/access-control/authentication-tokens.md

Co-authored-by: kolchfa-aws <105444904+kolchfa-aws@users.noreply.github.com>
Signed-off-by: Stephen Crawford <65832608+scrawfor99@users.noreply.github.com>
---
 _security/access-control/authentication-tokens.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/_security/access-control/authentication-tokens.md b/_security/access-control/authentication-tokens.md
index f3fd97cdbe..6c2a4f52aa 100644
--- a/_security/access-control/authentication-tokens.md
+++ b/_security/access-control/authentication-tokens.md
@@ -59,7 +59,7 @@ The on-behalf-of token contains the following claims:
 			* Decrypted mapped roles in plain text (`dr`)
 			* Decrypted backend roles (`br`)
 
-The OpenSearch Security plugin will be responsible for handling encryption and decryption processes. This approach ensures the protection of user information, even when traversing the trust boundary between OpenSearch and any third party services.
+The OpenSearch Security plugin is responsible for handling encryption and decryption processes. This approach ensures the protection of user information, even when traversing the trust boundary between OpenSearch and any third-party services.
 
 ### 3.0 API endpoint
 There will be an new API endpoint `POST /_plugins/_security/api/generateonbehalfoftoken` on the security plugin that will allow users to create a short-lived self-issued on-behalf-of token to perform certain actions on behalf of a user.