From 84ff0fea4990b440010d8b72891ce823bb4db6a1 Mon Sep 17 00:00:00 2001
From: Paul Carleton <paulcarletonjr@gmail.com>
Date: Mon, 24 Nov 2025 21:23:19 +0000
Subject: [PATCH 1/3] Update oauth-client-credentials.mdx

---
 specification/draft/oauth-client-credentials.mdx | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/specification/draft/oauth-client-credentials.mdx b/specification/draft/oauth-client-credentials.mdx
index 98bece0..3c1332f 100644
--- a/specification/draft/oauth-client-credentials.mdx
+++ b/specification/draft/oauth-client-credentials.mdx
@@ -58,7 +58,7 @@ Clients **MUST** authenticate using one of these methods:
 - Client Secret
   - Clients use a Client Secret transmitted in the request content as defined
     in
-    [OAuth 2.1 Section 2.4.1](https://www.ietf.org/archive/id/draft-ietf-oauth-v2-1-13.html#name-client-secret)
+    [OAuth 2.1 Section 4.2](https://www.ietf.org/archive/id/draft-ietf-oauth-v2-1-13.html#name-client-credentials-grant)
 
 ### Server Metadata Requirements
 

From 642724f2158855d641f496a23aacb2cd66da3bb4 Mon Sep 17 00:00:00 2001
From: Paul Carleton <paulcarletonjr@gmail.com>
Date: Mon, 24 Nov 2025 21:38:09 +0000
Subject: [PATCH 2/3] fix client credentials example

---
 specification/draft/oauth-client-credentials.mdx | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

diff --git a/specification/draft/oauth-client-credentials.mdx b/specification/draft/oauth-client-credentials.mdx
index 3c1332f..a2ce90f 100644
--- a/specification/draft/oauth-client-credentials.mdx
+++ b/specification/draft/oauth-client-credentials.mdx
@@ -119,11 +119,10 @@ POST /token HTTP/1.1
 Host: auth.example.com
 Content-Type: application/x-www-form-urlencoded
 
-grant_type=client_credentials
-&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
-&client_assertion=eyJhbGciOiJSUzI1NiIsImtpZCI6IjIyIn0.
-     eyJpc3Mi[...omitted for brevity...].
-     cC4hiUPo[...omitted for brevity...]
+grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Ajwt-bearer
+&assertion=eyJhbGciOiJFUzI1NiIsImtpZCI6IjE2In0.
+    eyJpc3Mi[...omitted for brevity...].
+    J9l-ZhwP[...omitted for brevity...]
 &resource=https%3A%2F%2Fmcp.example.com
 &scope=mcp%3Aread
 ```

From 1ba4d865952f770ebff57fc88656bea9a0a1aefc Mon Sep 17 00:00:00 2001
From: Paul Carleton <paulcarletonjr@gmail.com>
Date: Mon, 24 Nov 2025 21:47:48 +0000
Subject: [PATCH 3/3] woops, revert

---
 specification/draft/oauth-client-credentials.mdx | 9 +++++----
 1 file changed, 5 insertions(+), 4 deletions(-)

diff --git a/specification/draft/oauth-client-credentials.mdx b/specification/draft/oauth-client-credentials.mdx
index a2ce90f..3c1332f 100644
--- a/specification/draft/oauth-client-credentials.mdx
+++ b/specification/draft/oauth-client-credentials.mdx
@@ -119,10 +119,11 @@ POST /token HTTP/1.1
 Host: auth.example.com
 Content-Type: application/x-www-form-urlencoded
 
-grant_type=urn%3Aietf%3Aparams%3Aoauth%3Agrant-type%3Ajwt-bearer
-&assertion=eyJhbGciOiJFUzI1NiIsImtpZCI6IjE2In0.
-    eyJpc3Mi[...omitted for brevity...].
-    J9l-ZhwP[...omitted for brevity...]
+grant_type=client_credentials
+&client_assertion_type=urn%3Aietf%3Aparams%3Aoauth%3Aclient-assertion-type%3Ajwt-bearer
+&client_assertion=eyJhbGciOiJSUzI1NiIsImtpZCI6IjIyIn0.
+     eyJpc3Mi[...omitted for brevity...].
+     cC4hiUPo[...omitted for brevity...]
 &resource=https%3A%2F%2Fmcp.example.com
 &scope=mcp%3Aread
 ```