From f002fedb733f49e1b36d148b4d87ed48c4770332 Mon Sep 17 00:00:00 2001
From: Rob Winch <362503+rwinch@users.noreply.github.com>
Date: Wed, 2 Oct 2024 14:40:40 -0500
Subject: [PATCH] Document JdbcOneTimeTokenService

Issue gh-15735
---
 docs/modules/ROOT/pages/servlet/authentication/onetimetoken.adoc | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/modules/ROOT/pages/servlet/authentication/onetimetoken.adoc b/docs/modules/ROOT/pages/servlet/authentication/onetimetoken.adoc
index df21b2cf3c..5d34d0ba2d 100644
--- a/docs/modules/ROOT/pages/servlet/authentication/onetimetoken.adoc
+++ b/docs/modules/ROOT/pages/servlet/authentication/onetimetoken.adoc
@@ -412,6 +412,7 @@ class MagicLinkGeneratedOneTimeTokenSuccessHandler : GeneratedOneTimeTokenHandle
 
 The interface that define the common operations for generating and consuming one-time tokens is the javadoc:org.springframework.security.authentication.ott.OneTimeTokenService[].
 Spring Security uses the javadoc:org.springframework.security.authentication.ott.InMemoryOneTimeTokenService[] as the default implementation of that interface, if none is provided.
+For production environments consider using javadoc:org.springframework.security.authentication.ott.JdbcOneTimeTokenService[].
 
 Some of the most common reasons to customize the `OneTimeTokenService` are, but not limited to: