DOC-2583 Created New Folder for PHP JWT Authentication

LewisAtTiny · LewisAtTiny · commit 426b627e1e96 · 2024-11-28T15:45:15.000+10:00
diff --git a/modules/ROOT/nav.adoc b/modules/ROOT/nav.adoc
@@ -313,15 +313,18 @@
 *** xref:advtable.adoc[Enhanced Tables]
 *** xref:exportpdf.adoc[Export to PDF]
 **** xref:html-to-pdf-converter-api.adoc[HTML to PDF Converter API]
-**** xref:export-to-pdf-with-jwt-authentication-with-PHP.adoc[Export to PDF with JWT authentication (PHP)]
+**** JWT Authentication
+***** xref:export-to-pdf-with-jwt-authentication-with-PHP.adoc[Export to PDF with JWT authentication (PHP)]
 *** xref:exportword.adoc[Export to Word]
 **** xref:html-to-docx-converter-api.adoc[HTML to DOCX Converter API]
-**** xref:export-to-word-with-jwt-authentication-with-PHP.adoc[Export to Word with JWT Authentication (PHP)]
+**** JWT Authentication
+***** xref:export-to-word-with-jwt-authentication-with-PHP.adoc[Export to Word with JWT Authentication (PHP)]
 *** xref:footnotes.adoc[Footnotes]
 *** xref:formatpainter.adoc[Format Painter]
 *** xref:importword.adoc[Import from Word]
 **** xref:docx-to-html-converter-api.adoc[DOCX to HTML Converter API]
-**** xref:import-word-with-jwt-authentication-with-PHP.adoc[Import From Word with JWT Authentication (PHP)]
+**** JWT Authentication
+***** xref:import-word-with-jwt-authentication-with-PHP.adoc[Import From Word with JWT Authentication (PHP)]
 *** xref:editimage.adoc[Image Editing]
 *** xref:inline-css.adoc[Inline CSS]
 *** xref:linkchecker.adoc[Link Checker]
diff --git a/modules/ROOT/pages/export-to-pdf-with-jwt-authentication-with-PHP.adoc b/modules/ROOT/pages/export-to-pdf-with-jwt-authentication-with-PHP.adoc
@@ -58,4 +58,6 @@ include::partial$auth/document-converters/php/initial-project-setup.adoc[]
 
 include::partial$auth/document-converters/php/server-setup-php.adoc[]
 
+include::partial$auth/document-converters/jwt-setup-document-converters.adoc[leveloffset=+1]
+
 include::partial$auth/document-converters/php/configuration-steps.adoc[]
diff --git a/modules/ROOT/pages/export-to-word-with-jwt-authentication-with-PHP.adoc b/modules/ROOT/pages/export-to-word-with-jwt-authentication-with-PHP.adoc
@@ -59,4 +59,6 @@ include::partial$auth/document-converters/php/initial-project-setup.adoc[]
 
 include::partial$auth/document-converters/php/server-setup-php.adoc[]
 
+include::partial$auth/document-converters/jwt-setup-document-converters.adoc[leveloffset=+1]
+
 include::partial$auth/document-converters/php/configuration-steps.adoc[]
diff --git a/modules/ROOT/pages/import-word-with-jwt-authentication-with-PHP.adoc b/modules/ROOT/pages/import-word-with-jwt-authentication-with-PHP.adoc
@@ -58,4 +58,6 @@ include::partial$auth/document-converters/php/initial-project-setup.adoc[]
 
 include::partial$auth/document-converters/php/server-setup-php.adoc[]
 
+include::partial$auth/document-converters/jwt-setup-document-converters.adoc[leveloffset=+1]
+
 include::partial$auth/document-converters/php/configuration-steps.adoc[]
diff --git a/modules/ROOT/partials/auth/document-converters/jwt-setup-document-converters.adoc b/modules/ROOT/partials/auth/document-converters/jwt-setup-document-converters.adoc
@@ -0,0 +1,55 @@
+[[setting-up-jwt-authentication]]
+== Setting up JWT authentication
+
+To set up JSON Web Token (JWT) authentication for {productname} {pluginname}:
+
+. Add a public key to you {accountpage}, link:https://www.tiny.cloud/auth/login/[login].
+. Set up a JSON Web Token (JWT) Provider endpoint via link:{accountjwturl}[{accountpage} - JWT Keys]
+. Configure your {productname} to use the JWT endpoint.
+
+include::partial$auth/private-public-key-pairs-for-tiny-cloud-services.adoc[]
+
+[[set-up-a-json-web-token-jwt-endpoint]]
+== Set up a JSON Web Token (JWT) endpoint
+
+include::partial$auth/how-jwts-are-used.adoc[]
+
+=== JWT endpoint requirements
+
+A JSON Web Token (JWT) endpoint for {pluginname} requires:
+
+* The endpoint or server accepts a JSON HTTP POST request.
+* User authentication - A method of verifying the user, and that they should have access to the {pluginname}.
+* The JWTs are generated (signed) using the _private_ key that pairs with the _public_ key provided to link:{accountjwturl}[{accountpage} - JWT Keys].
+* The endpoint or server produces a JSON response with the token. {pluginname} will submit the token with requests to the {pluginname} Server.
+
+=== Required JWT claims for {pluginname}
+
+JSON Web Tokens produced by the JWT endpoint must include the following claims:
+
+`+aud+` _(required)_::
+*Type:* `+String+`
++
+The `aud` is case-sensitive string that must match a valid API key that has the {pluginname} plugin enabled.
+
+`+iat+` _(required)_::
+*Type:* `+Number+`
++
+The `iat` represents the issue timestamp, specified as the number of seconds. For example, to set the issue time to the current timestamp, calculate the issue time as the current timestamp divided by 1000.
+
+.Example
+[source,json]
+----
+iat: Math.floor(Date.now() / 1000), // Issue timestamp
+----
+
+`+exp+` _(required)_::
+*Type:* `+Number+`
++
+The `exp` represents the expiration timestamp, specified as the number of seconds. For example, to set a validity period of 10 minutes, calculate the expiration time as the current timestamp plus 600 seconds.
+
+.Example
+[source,json]
+----
+exp: Math.floor(Date.now() / 1000) + (60 * 10) // Expiration time (10 minutes)
+----
diff --git a/modules/ROOT/partials/private-public-key-pairs-for-tiny-cloud-services.adoc b/modules/ROOT/partials/private-public-key-pairs-for-tiny-cloud-services.adoc
@@ -0,0 +1,14 @@
+The {pluginname} Server requires a _public_ key generated from the same _private_ key that will be used on your JSON Web Token (JWT) provider endpoint. The public key(s) stored on the {pluginname} Server are used to ensure that content is sent by authorized users.
+The **{pluginname}** Server requires a _public_ key generated from the same _private_ key that will be used on your JSON Web Token (JWT) provider endpoint. The public key(s) stored on the {pluginname} Server are used to ensure that content is sent by authorized users.
+
+There are two methods for generating and adding a public key to your API key:
+
+@@ -7,7 +7,7 @@ There are two methods for generating and adding a public key to your API key:
+
+== Generate a key pair using the {accountpage} JWT Keys page
+
+The link:{accountjwturl}[{accountpage} - JWT Keys] page provides a private/public key generator, providing a quick and secure way of generating the required keys. This generator will store a copy of the _public_ key, and provide a downloadable file for both the public and private keys. {companyname} does not store the _private_ key and the key pair cannot be retrieved later.
+The link:{accountjwturl}[{accountpage} - JWT Keys] page provides a private/public key generator, providing a quick and secure way of generating the required keys. This generator will store a copy of the _public_ key, and provide a downloadable file for both the public and private keys. {companyname} does **not store** the _private_ key and the key pair **cannot** be retrieved later.
+
+[[generate-a-key-pair-locally]]
+== Generate a key pair locally
