From fe2d0178dcd3d5d10035e4e0b4012c108ceb7610 Mon Sep 17 00:00:00 2001
From: JM Faircloth <jmfaircloth@hashicorp.com>
Date: Thu, 18 Nov 2021 18:09:17 +0000
Subject: [PATCH 1/3] backport of commit
 64940e34c05b4171fcd486b4768d3b6dddb9056f

---
 website/content/docs/auth/jwt/index.mdx | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/website/content/docs/auth/jwt/index.mdx b/website/content/docs/auth/jwt/index.mdx
index 6efdf726d2be..f81378adf27c 100644
--- a/website/content/docs/auth/jwt/index.mdx
+++ b/website/content/docs/auth/jwt/index.mdx
@@ -28,7 +28,8 @@ examples of OIDC and JWT usage.
 This section covers the setup and use of OIDC roles. If a JWT is to be provided directly,
 refer to the [JWT Authentication](/docs/auth/jwt#jwt-authentication) section below. Basic
 familiarity with [OIDC concepts](https://developer.okta.com/blog/2017/07/25/oidc-primer-part-1)
-is assumed.
+is assumed. The Authorization Code flow makes use of the Proof Key for Code
+Exchange (PKCE) extension.
 
 Vault includes two built-in OIDC login flows: the Vault UI, and the CLI
 using a `vault login`.

From fa738c492ff86f691bdd629fffb413998e529fa6 Mon Sep 17 00:00:00 2001
From: JM Faircloth <jmfaircloth@hashicorp.com>
Date: Thu, 18 Nov 2021 18:14:22 +0000
Subject: [PATCH 2/3] backport of commit
 f96424f13329265105cde56c93851b34e2aa8e38

---
 changelog/13206.txt | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 changelog/13206.txt

diff --git a/changelog/13206.txt b/changelog/13206.txt
new file mode 100644
index 000000000000..26c91bc6f43b
--- /dev/null
+++ b/changelog/13206.txt
@@ -0,0 +1,4 @@
+```release-note:feature
+**Add PKCE support to OIDC Auth**: The Authorization Code flow makes use of the
+Proof Key for Code Exchange (PKCE) extension.
+```

From 781d23b3be37607b5e5a4bbbbd6525b5735b9c09 Mon Sep 17 00:00:00 2001
From: JM Faircloth <jmfaircloth@hashicorp.com>
Date: Thu, 18 Nov 2021 18:40:45 +0000
Subject: [PATCH 3/3] backport of commit
 729e11a51cb1064c5fa52b93932ed5ae143f602c

---
 changelog/13206.txt | 4 ----
 1 file changed, 4 deletions(-)
 delete mode 100644 changelog/13206.txt

diff --git a/changelog/13206.txt b/changelog/13206.txt
deleted file mode 100644
index 26c91bc6f43b..000000000000
--- a/changelog/13206.txt
+++ /dev/null
@@ -1,4 +0,0 @@
-```release-note:feature
-**Add PKCE support to OIDC Auth**: The Authorization Code flow makes use of the
-Proof Key for Code Exchange (PKCE) extension.
-```