From a09b9f15ffbd45d6230ca058e420b081b8d9e2db Mon Sep 17 00:00:00 2001
From: Roel Storms <roel.storms@dfinity.org>
Date: Thu, 30 Jan 2025 10:49:05 +0100
Subject: [PATCH] Update iam.mdx

Addresses @venkkatesh-sekar remark.
---
 docs/developer-docs/security/security-best-practices/iam.mdx | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/developer-docs/security/security-best-practices/iam.mdx b/docs/developer-docs/security/security-best-practices/iam.mdx
index 889f183ef6..a1c45459e5 100644
--- a/docs/developer-docs/security/security-best-practices/iam.mdx
+++ b/docs/developer-docs/security/security-best-practices/iam.mdx
@@ -142,6 +142,7 @@ sequenceDiagram
     MA ->> PWA: 3. Load /?sessionPublicKey=<br/><SessionPublicKey>
     activate II_FE
     PWA ->> II_FE: 4. Standard II client auth protocol
+    Note over PWA,II_FE: II will create a delegation for the session<br/>key generated by the mobile application.
     U ->> II_FE: 5. Authenticate with passkey
     activate II_BE
     II_FE ->> II_BE: 6. getDelegation(frontEndHostname)