docs: add wildcard scope strategy documentation

ory · Sep 16, 2017 · d14b230 · d14b230
1 parent 2cdefef
commit d14b230
Show file tree

Hide file tree

Showing 9 changed files with 219 additions and 709 deletions.
diff --git a/HISTORY.md b/HISTORY.md
@@ -4,11 +4,21 @@ This list makes you aware of (breaking) changes. For patch notes, please check t
 
 ## 1.0.0-alpha1
 
-This release focuses on security, spec compliance and error tracing:
+This release preview introduces a couple of changes.
+
+## Refreshing OpenID Connect ID Token using `refresh_token` grant type
 
 1. It is now possible to refresh openid connect tokens using the refresh_token grant. An ID Token is issued if the scope
 `openid` was requested, and the client is allowed to receive an ID Token.
 
+## Replacing hierarchical scope strategy with wildcard scope strategy
+
+The previous scope matching strategy has been replaced in favor of a wildcard-based matching strategy. Read more
+on this strategy [here](https://ory.gitbooks.io/hydra/content/oauth2.html#oauth2-scopes).
+
+To fall back to hierarchical scope matching, set the environment variable `SCOPE_STRATEGY=DEPRECATED_HIERARCHICAL_SCOPE_STRATEGY`.
+This feature *might* be fully removed in the final 1.0.0 version.
+
 ## 0.9.0
 
 This version adds performance metrics to `/health` and sends anonymous usage statistics to our servers, [click here](https://ory.gitbooks.io/hydra/content/telemetry.html) for more

diff --git a/doc.go b/doc.go
@@ -25,8 +25,8 @@
 //     SecurityDefinitions:
 //     oauth2:
 //         type: oauth2
-//         authorizationUrl: /oauth2/auth
-//         tokenUrl: /oauth2/token
+//         authorizationUrl: https://your-hydra-instance.com/oauth2/auth
+//         tokenUrl: https://your-hydra-instance.com/oauth2/token
 //         flow: accessCode
 //         scopes:
 //           hydra.clients: "A scope required to manage OAuth 2.0 Clients"
@@ -37,8 +37,11 @@
 //           hydra.keys.create: "A scope required to create JSON Web Keys"
 //           hydra.keys.delete: "A scope required to delete JSON Web Keys"
 //           hydra.keys.update: "A scope required to get JSON Web Keys"
+//           hydra.health: "A scope required to get health information"
 //           offline: "A scope required when requesting refresh tokens"
 //           openid: "Request an OpenID Connect ID Token"
+//     basic:
+//         type: basic
 //
 //     Extensions:
 //     ---

diff --git a/docs/SUMMARY.md b/docs/SUMMARY.md
@@ -33,7 +33,7 @@
     - [RS256](security.md#rs256)
     - [HMAC-SHA256](security.md#hmac-sha256)
     - [BCrypt](security.md#bcrypt)
-  - [Access Control](security.md##how-does-access-control-work-with-hydra)
+  - [Access Control](security.md#how-does-access-control-work-with-hydra)
 * [Telemetry](telemetry.md)
 * How-To
   * [Running Hydra in production](how-to/production.md)