From 021b28023dcfbabac4d3c054c17b163ae84f4db1 Mon Sep 17 00:00:00 2001
From: Annie_wang <annie.wangli@huawei.com>
Date: Thu, 2 Feb 2023 09:26:36 +0000
Subject: [PATCH] update en/application-dev/security/accesstoken-guidelines.md.
 Signed-off-by: Annie_wang <annie.wangli@huawei.com>

Signed-off-by: Annie_wang <annie.wangli@huawei.com>
---
 en/application-dev/security/accesstoken-guidelines.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/en/application-dev/security/accesstoken-guidelines.md b/en/application-dev/security/accesstoken-guidelines.md
index 17efcb033e..c2f8531263 100644
--- a/en/application-dev/security/accesstoken-guidelines.md
+++ b/en/application-dev/security/accesstoken-guidelines.md
@@ -147,7 +147,7 @@ Therefore, before allowing the application to call the API protected by the **oh
 
 If the verification result indicates that the application has the permission, the application can access the target API. Otherwise, the application needs to request user authorization and then proceeds based on the authorization result. For details, see [Access Control Overview](accesstoken-overview.md).
 
-> **CAUATION**
+> **CAUTION**
 >
 > The permission authorized by a user is not permanent, because the user may revoke the authorization at any time. Each time before the API protected by the permission is called, call **requestPermissionsFromUser()** to request the permission.
 
@@ -178,7 +178,8 @@ The procedure for requesting user authorization is as follows:
 
 ```
 > **NOTE**
-> For details about how to use the APIs for the FA model, see [AbilityContext] (../reference/apis/js-apis-ability-context.md).
+> 
+> For details about how to use the APIs for the FA model, see [AbilityContext](../reference/apis/js-apis-ability-context.md).
 
 ### Stage Model
 ```js
-- 
GitLab