Oauth docs (#374)

aryanmehrotra · web-flow · commit 7e12888d2c09 · 2024-03-12T01:24:02.000+05:30
* add oauth docs

* update docs

* revert code cahnges

* update docs

* sort env
diff --git a/docs/advanced-guide/http-authentication/page.md b/docs/advanced-guide/http-authentication/page.md
@@ -1,7 +1,7 @@
 # HTTP Authentication
 Authentication is a crucial aspect of web applications, controlling access to resources based on user roles or permissions. 
-Authentication is the process of verifying a user's identity to grant access to protected resources. It ensures only
-authorized users can perform certain actions or access sensitive data within an application.
+It is the process of verifying a user's identity to grant access to protected resources. It ensures only
+authenticated users can perform actions or access data within an application.
 
 GoFr offer various approaches to implement authorization.
 
@@ -66,12 +66,11 @@ func main() {
 This code snippet demonstrates how to add basic authentication to an HTTP service in GoFr and make a request with the appropriate Authorization header:
 
 ```go
-app.AddHTTPService("cat-facts", "https://catfact.ninja",
+app.AddHTTPService("order", "https://localhost:2000",
     &service.Authentication{UserName: "abc", Password: "pass"},
 )
 ```
 
-
 ## 2. API Keys Auth
 Users include a unique API key in the request header for validation against a store of authorized keys.
 
@@ -126,3 +125,54 @@ This code snippet demonstrates how to add API Key authentication to an HTTP serv
 ```go
 app.AddHTTPService("http-server-using-redis", "http://localhost:8000", &service.APIKeyAuth{APIKey: "9221e451-451f-4cd6-a23d-2b2d3adea9cf"})
 ```
+
+## 3. OAuth 2.0
+OAuth 2.0 is the industry-standard protocol for authorization. 
+It focuses on client developer simplicity while providing specific authorization flows for web applications, desktop applications, mobile phones, and living room devices.
+To know more about it refer [here](https://www.rfc-editor.org/rfc/rfc6749)
+
+It involves sending the term `Bearer` trailed by the encoded token within the standard `Authorization` header.
+
+### OAuth Authentication in GoFr
+
+GoFr supports authenticating tokens encoded by algorithm `RS256/384/512`. 
+
+### App level Authentication
+Enable OAuth 2.0 with three-legged flow to authenticate requests
+
+Use `EnableOAuth(jwks-endpoint,refresh_interval)` to configure Gofr with pre-defined credentials.
+
+```go
+func main() {
+	app := gofr.New()
+
+	app.EnableOAuth("http://jwks-endpoint", 20) // Replace with your credentials
+    
+	app.GET("/protected-resource", func(c *gofr.Context) (interface{}, error) {
+		// Handle protected resource access 
+		return nil, nil
+	})
+
+	app.Run()
+}
+```
+
+### Adding Basic Authentication to HTTP Services
+For server-to-server communication it follows two-legged OAuth, also known as "client credentials" flow,
+where the client application directly exchanges its own credentials (ClientID and ClientSecret)
+for an access token without involving any end-user interaction.
+
+This code snippet demonstrates how two-legged OAuth authentication is added to an HTTP service in GoFr and make a request with the appropriate Authorization header.
+
+```go
+a.AddHTTPService("orders", "http://localhost:9000",
+    &service.OAuthConfig{
+    ClientID:     "0iyeGcLYWudLGqZfD6HvOdZHZ5TlciAJ",
+    ClientSecret: "GQXTY2f9186nUS3C9WWi7eJz8-iVEsxq7lKxdjfhOJbsEPPtEszL3AxFn8k_NAER",
+    TokenURL:     "https://dev-zq6tvaxf3v7p0g7j.us.auth0.com/oauth/token",
+    Scopes:       []string{"read:order"},
+    EndpointParams: map[string][]string{
+    "audience": {"https://dev-zq6tvaxf3v7p0g7j.us.auth0.com/api/v2/"},
+    },
+})
+```
diff --git a/docs/navigation.js b/docs/navigation.js
@@ -16,7 +16,7 @@ export const navigation = [
             { title: 'Publishing Custom Metrics', href: '/docs/advanced-guide/publishing-custom-metrics' },
             { title: 'Custom Spans in Tracing', href: '/docs/advanced-guide/custom-spans-in-tracing' },
             { title: 'HTTP Communication', href: '/docs/advanced-guide/http-communication' },
-            { title: 'HTTP Authentication', href: '/docs/advanced-guide/auth' },
+            { title: 'HTTP Authentication', href: '/docs/advanced-guide/http-authentication' },
             { title: 'Circuit Breaker Support', href: '/docs/advanced-guide/circuit-breaker' },
             { title: 'Monitoring Service Health', href: '/docs/advanced-guide/monitoring-service-health' },
             { title: 'Handling Data Migrations', href: '/docs/advanced-guide/handling-data-migrations' },
diff --git a/examples/using-publisher/configs/.env b/examples/using-publisher/configs/.env
@@ -1,6 +1,8 @@
 APP_NAME=sample-api
 HTTP_PORT=8100
 
+LOG_LEVEL=DEBUG
+
 PUBSUB_BACKEND=KAFKA
 PUBSUB_BROKER=localhost:9092
 CONSUMER_ID=test
@@ -11,5 +13,3 @@ CONSUMER_ID=test
 #MQTT_HOST=localhost
 #MQTT_PORT=8883
 #MQTT_CLIENT_ID_SUFFIX=test-publisher
-
-LOG_LEVEL=DEBUG
diff --git a/examples/using-subscriber/configs/.env b/examples/using-subscriber/configs/.env
@@ -1,6 +1,8 @@
 APP_NAME=sample-api
 HTTP_PORT=8200
 
+LOG_LEVEL=DEBUG
+
 PUBSUB_BACKEND=KAFKA
 PUBSUB_BROKER=localhost:9092
 CONSUMER_ID=test
@@ -12,5 +14,3 @@ PUBSUB_OFFSET=-2
 #MQTT_HOST=localhost
 #MQTT_PORT=8883
 #MQTT_CLIENT_ID_SUFFIX=test-subscriber
-
-LOG_LEVEL=DEBUG
