From 82e15df6e934eb8e866180b00af4ce11eeeb1dcd Mon Sep 17 00:00:00 2001
From: Joshua Milas <josh.milas@gmail.com>
Date: Tue, 31 Oct 2017 10:15:02 -0400
Subject: [PATCH] Added that you can also access the notebook if you are the
 owner

---
 docs/source/reference/rest.md | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/docs/source/reference/rest.md b/docs/source/reference/rest.md
index a18bc58a..5799312d 100644
--- a/docs/source/reference/rest.md
+++ b/docs/source/reference/rest.md
@@ -115,11 +115,10 @@ r.json()
 ```
 
 The same API token can also authorize access to the [Jupyter Notebook REST API][]
-provided by notebook servers managed by JupyterHub.
-To do so, the following must be true:
+provided by notebook servers managed by JupyterHub if one of the following is true:
 
-1. The token used is tied to an admin user or service
-2. `c.JupyterHub.admin_access` must be set to `True`
+1. The token is for the same user as the owner of the notebook
+2. The token is tied to an admin user or service **and** `c.JupyterHub.admin_access` is set to `True`
 
 ## Enabling users to spawn multiple named-servers via the API