Skip to content

Commit

Permalink
Adding a section on scopes. [ci skip]
Browse files Browse the repository at this point in the history 
Signed-off-by: Jason Lewis <[email protected]>
  • Loading branch information
@jasonlewis
jasonlewis committed Apr 10, 2014
1 parent e45c97d commit 6965f4b
Showing 1 changed file with 33 additions and 1 deletion.
34 changes: 33 additions & 1 deletion readme.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -107,7 +107,9 @@ Before we continue you should be aware of what the following terms mean.
| **Client** | An application, e.g., a PHP web application. |
| **User** | The applications user, also known as the *resource owner*. |

### Creating Clients
### Clients

In OAuth 2.0 a client is an application that acts on behalf of a user and talks to the Authorization and Resource servers.

The package is capable of creating clients, however, no user interface is provided with the package. To create a client you'll need a storage adapter instance.

Expand All @@ -130,12 +132,42 @@ $storage->get('client')->create('id', 'secret', 'name', [
]);
```

You can also delete a client. This will also delete an associated endpoints.

```php
$storage->get('client')->delete('id');
```

For the rest of the guide it will be assumed that you have created a client similar to the following.

```php
$storage->get('client')->create('id', 'secret', 'name', [['uri' => 'http://localhost/example-client/auth/code', 'default' => true]]);
```

### Scopes

When a client requests a users authorization the client will often request specific permissions, these permissions are refered to as a **scope**. A scope defines what the client has permission to see or do. Essentially they provide developers with even finer control over what a client can access.

The package is capable of creating scopes, however, no user interface is provided with the package. To create a scope you'll need a storage adapter instance.

```php
$storage = new Dingo\OAuth2\Storage\MySqlAdapter(new PDO('mysql:host=localhost;dbname=oauth', 'root'));
```

You can now get the scope storage and create a new scope.

```php
$storage->get('scope')->create('scope', 'name', 'description');
```

You can also delete a scope.

```php
$storage->get('scope')->delete('scope');
```

This guide will not utilize scopes, however, feel free to create and use them.

### Authorization Server

The responsibilities of the Authorization Server are to authorize and issue access tokens to clients. Depending on the configuration the Authorization Server will also issue a refresh token which the client should store for when the access token expires.
Expand Down

0 comments on commit 6965f4b

Please sign in to comment.