From c2ce023b620b8c23ad94942d98c5752082de534a Mon Sep 17 00:00:00 2001
From: Christian Grothoff <grothoff@gnunet.org>
Date: Tue, 29 Nov 2022 10:59:19 +0100
Subject: fix #7499

---
 manpages/taler-merchant-httpd.1.rst | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'manpages/taler-merchant-httpd.1.rst')

diff --git a/manpages/taler-merchant-httpd.1.rst b/manpages/taler-merchant-httpd.1.rst
index 5ea47c12..cf9192f9 100644
--- a/manpages/taler-merchant-httpd.1.rst
+++ b/manpages/taler-merchant-httpd.1.rst
@@ -13,6 +13,7 @@ Synopsis
 ========
 
 **taler-merchant-httpd**
+[**-a**_|_**--auth**]
 [**-C** | **--connection-close**]
 [**-c** *FILENAME* | **--config=**\ \ *FILENAME*]
 [**-h** | **--help**]
@@ -33,9 +34,9 @@ Options
 =======
 
 **-a** *TOKEN* \| **--auth=**\ \ *TOKEN*
-   Use TOKEN for initial access control to the merchant backend. The value
+   Use TOKEN for initial access control to the merchant backend. TOKEN must start with the "secret-token:" prefix, as per RFC 8959.  The value
    given in TOKEN must appear in backoffice requests to the default instance
-   of the merchant, i.e. "Authorization: Bearer secret-token:TOKEN" to obtain
+   of the merchant, i.e. "Authorization: Bearer TOKEN" to obtain
    access to the merchant backend.  Note that setting a passphrase for the
    default instance by any means will block future access via TOKEN.  This
    is basically a way to reset the passphrase protecting access.  TOKEN
-- 
cgit v1.2.3