Skip to content

Commit

Permalink
docs: fixed spelling and wording (#624)
Browse files Browse the repository at this point in the history 
* updated some language words and corrected spelling

* updated docs to list that hydra now supports OpenID Connect Discovery
  • Loading branch information
@abusaidm @arekkas
abusaidm authored and arekkas committed Oct 21, 2017
1 parent 4a060a4 commit 8dd21bd
Showing 1 changed file with 5 additions and 5 deletions.
10 changes: 5 additions & 5 deletions docs/oauth2.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,7 +14,7 @@ the user's account is limited to the "scope" of the authorization granted (e.g.
2. **Authorization Server (Hydra)** verifies the identity of the user and issues access tokens to the *client application*.
3. **Client** is the *application* that wants to access the user's account. Before it may do so, it must be authorized
by the user.
4. **Identity Provider** contains a log in user interface and a database of all your users. To integrate Hydra,
4. **Identity Provider** contains a login user interface and a database of all your users. To integrate Hydra,
you must modify the Identity Provider. It mus be able to generate consent tokens and ask for the user's consent.
5. **User Agent** is usually the resource owner's browser.
6. **Consent App** is an app (e.g. NodeJS) that is able to receive consent challenges and create consent tokens.
Expand All @@ -24,12 +24,12 @@ if he consents to allowing the client access to his resources.

Examples:
1. Peter wants to give MyPhotoBook access to his Dropbox. Peter is the resource owner.
2. The Authorization Server (Hydra) is responsible for managing the access request fom MyPhotoBook. Hydra handles
2. The Authorization Server (Hydra) is responsible for managing the access request for MyPhotoBook. Hydra handles
the communication between the resource owner, the consent endpoint and the client. Hydra is the authorization server.
In this case, Dropbox would be the one who uses Hydra.
3. MyPhotoBook is the client and was issued an id and a password by Hydra. MyPhotoBook uses these credentials
to talk with Hydra.
4. Dropbox has a database and a frontend that allow their users to log in, using their username and password.
4. Dropbox has a database and a frontend that allow their users to login, using their username and password.
This is what an Identity Provider does.
5. The User Agent is Peter's FireFox.
6. The Consent App is a frontend app that asks the user if he is willing to give MyPhotoBook access to his pictures stored
Expand All @@ -42,8 +42,8 @@ If you are new to OpenID Connect, please read the [Introduction to OAuth 2.0 and
first.

Hydra uses the [JSON Web Key Manager](./jwk.md) to retrieve the
key pair `hydra.openid.id-token` for signing ID tokens. You can use that endpoint to retrieve the public key for verification,
has Hydra is not supporting OpenID Connect Discovery yet.
key pair `hydra.openid.id-token` for signing ID tokens. You can use that endpoint to retrieve the public key for verification.
Additionally, Hydra supports OpenID Connect Discovery.

### OAuth 2.0 Clients

Expand Down

0 comments on commit 8dd21bd

Please sign in to comment.