Add basic documentation

adhesivee · adhesivee · commit 6eb770ee40cc · 2018-08-20T19:48:25.000+02:00
diff --git a/README.md b/README.md
@@ -1,8 +1,9 @@
 # Kotlin OAuth2 server 
 ## Goal
-The goal of this project is to provide an OAuth2 library which can be implemented in multiple frameworks
+The goal of this project is to provide a simple OAuth2 library which can be implemented in any framework
 
 Configuring the oauth2 server for any framework should be simple and understandable.
+It encourages to adapt to existing implementations instead the other way around.
 ## Frameworks
 ### Ktor
 Basic setup for Ktor:
@@ -13,16 +14,60 @@ embeddedServer(Netty, 8080) {
                 .identity {
                     username = "foo"
                     password = "bar"
-                    scopes = setOf("trusted")
                 }
         clientService = InMemoryClient()
                 .client {
                     clientId = "testapp"
                     clientSecret = "testpass"
                     scopes = setOf("trusted")
-                    redirectUris = setOf("https://app.localhost/callback")
+                    redirectUris = setOf("https://localhost:8080/callback")
                 }
         tokenStore = InMemoryTokenStore()
     }
 }.start(wait = true)
-```
+```
+
+## Custom implementation
+### Identity service
+Users can be authenticate through the identity service. In OAuth2 terms this would be the resource owner.
+
+```kotlin
+fun identityOf(forClient: Client, username: String): Identity?
+
+fun validCredentials(forClient: Client, identity: Identity, password: String): Boolean
+
+fun validScopes(forClient: Client, identity: Identity, scopes: Set<String>): Boolean
+```
+
+Each of the methods that needs to be implemented contains `Client`. This could give you extra flexibility.
+For example you could have user base per client, instead of have users over all clients.
+
+### Client service
+Client service is similar to the identity service. 
+
+```kotlin
+fun clientOf(clientId: String): Client?
+
+fun validClient(client: Client, clientSecret: String): Boolean
+```
+
+### Token store
+The following methods have to be implemented for a token store.
+
+```kotlin
+fun storeAccessToken(accessToken: AccessToken)
+
+fun accessToken(token: String): AccessToken?
+
+fun storeCodeToken(codeToken: CodeToken)
+
+fun codeToken(token: String): CodeToken?
+
+fun consumeCodeToken(token: String): CodeToken?
+
+fun storeRefreshToken(refreshToken: RefreshToken)
+
+fun refreshToken(token: String): RefreshToken?
+```
+
+When `AccessToken` is passed to `storeAccessToken` and it contains a `RefreshToken`, then `storeAccessToken` is also responsible for saving the refresh token.
diff --git a/kotlin-oauth2-server-core/src/main/java/nl/myndocs/oauth2/identity/IdentityService.kt b/kotlin-oauth2-server-core/src/main/java/nl/myndocs/oauth2/identity/IdentityService.kt
@@ -3,6 +3,10 @@ package nl.myndocs.oauth2.identity
 import nl.myndocs.oauth2.client.Client
 
 interface IdentityService {
+    /**
+     * Find identity within a client and username
+     * If not found return null
+     */
     fun identityOf(forClient: Client, username: String): Identity?
 
     fun validCredentials(forClient: Client, identity: Identity, password: String): Boolean
