Merge pull request #255 from codeigniter4/quick-start-docs

Added new quickstart docs.

Author: lonnieezell

README.md

@@ -6,28 +6,28 @@
 [![Coverage Status](https://coveralls.io/repos/github/codeigniter4/shield/badge.svg?branch=develop)](https://coveralls.io/github/codeigniter4/shield?branch=develop)
 
 Shield is an authentication and authorization framework for CodeIgniter 4. While it does provide a base set of tools
-that are commonly used in websites, it is designed to be flexible and easily customizable.  
+that are commonly used in websites, it is designed to be flexible and easily customizable.
 
-The primary goals for Shield are: 
+The primary goals for Shield are:
 1. It must be very flexible and allow developers to extend/override almost any part of it.
 2. It must have security at its core. It is an auth lib after all.
 3. To cover many auth needs right out of the box, but be simple to add additional functionality to.
 
 ## Authentication Methods
 
-Shield provides two primary methods of authentication out of the box: 
+Shield provides two primary methods of authentication out of the box:
 
-**Session-based** 
+**Session-based**
 
 This is your typical email/username/password system you see everywhere. It includes a secure "remember me" functionality.
-This can be used for standard web applications, as well as for single page applications. Includes full controllers and 
+This can be used for standard web applications, as well as for single page applications. Includes full controllers and
 basic views for all standard functionality, like registration, login, forgot password, etc.
 
-**Personal Access Codes** 
+**Personal Access Codes**
 
 These are much like the access codes that GitHub uses, where they are unique to a single user, and a single user
-can have more than one. This can be used for API authentication of third-party users, and even for allowing 
-access for a mobile application that you build. 
+can have more than one. This can be used for API authentication of third-party users, and even for allowing
+access for a mobile application that you build.
 
 ## Getting Started
 
@@ -45,11 +45,11 @@ Installation is done through Composer.
 
     > composer require codeigniter4/shield
 
-See the [docs](docs) folder more specific instructions on installation and usage recommendations.
+See the [docs](docs/index.md) for more specific instructions on installation and usage recommendations.
 
 ## Contributing
 
-Shield does accept and encourage contributions from the community in any shape. It doesn't matter 
+Shield does accept and encourage contributions from the community in any shape. It doesn't matter
 whether you can code, write documentation, or help find bugs, all contributions are welcome.
 
 ## License
@@ -58,8 +58,8 @@ This project is licensed under the MIT License - see the [LICENSE.md](LICENSE) f
 
 ## Acknowledgements
 
-Every open-source project depends on it's contributors to be a success. The following users have 
-contributed in one manner or another in making Shield: 
+Every open-source project depends on it's contributors to be a success. The following users have
+contributed in one manner or another in making Shield:
 
 <a href="https://github.com/codeigniter4/shield/graphs/contributors">
   <img src="https://contrib.rocks/image?repo=codeigniter4/shield" />
@@ -68,7 +68,7 @@ contributed in one manner or another in making Shield:
 Made with [contrib.rocks](https://contrib.rocks).
 
 The following articles/sites have been fundamental in shaping the security and best practices used
-within this library, in no particular order: 
+within this library, in no particular order:
 
 - [Google Cloud: 13 best practices for user account, authentication, and password management, 2021 edition](https://cloud.google.com/blog/products/identity-security/account-authentication-and-password-management-best-practices)
 - [NIST Digital Identity Guidelines](https://pages.nist.gov/800-63-3/sp800-63b.html)

docs/3 - auth_actions.md docs/auth_actions.mddocs/3 - auth_actions.md renamed to docs/auth_actions.md

@@ -1,5 +1,9 @@
 # Authentication Actions
 
+- [Authentication Actions](#authentication-actions)
+  - [Configuring Actions](#configuring-actions)
+  - [Defining New Actions](#defining-new-actions)
+
 Authentication Actions are a way to group actions that can happen after login or registration.
 Shield ships with two actions you can use, and makes it simple for you to define your own.
 

docs/2 - authentication.md docs/authentication.mddocs/2 - authentication.md renamed to docs/authentication.md

@@ -1,5 +1,26 @@
 # Authentication
 
+- [Authentication](#authentication)
+  - [Available Authenticators](#available-authenticators)
+  - [Auth Helper](#auth-helper)
+  - [Authenticator Responses](#authenticator-responses)
+    - [isOK()](#isok)
+    - [reason()](#reason)
+    - [extraInfo()](#extrainfo)
+  - [Session Authenticator](#session-authenticator)
+    - [attempt()](#attempt)
+    - [check()](#check)
+    - [loggedIn()](#loggedin)
+    - [logout()](#logout)
+    - [forget()](#forget)
+  - [Access Token Authenticator](#access-token-authenticator)
+    - [Access Token/API Authentication](#access-tokenapi-authentication)
+    - [Generating Access Tokens](#generating-access-tokens)
+    - [Revoking Access Tokens](#revoking-access-tokens)
+    - [Retrieving Access Tokens](#retrieving-access-tokens)
+    - [Access Token Lifetime](#access-token-lifetime)
+    - [Access Token Scopes](#access-token-scopes)
+
 Authentication is the process of determining that a visitor actually belongs to your website,
 and identifying them. Shield provides a flexible and secure authentication system for your
 web apps and APIs.

docs/4 - authorization.md docs/authorization.mddocs/4 - authorization.md renamed to docs/authorization.md

@@ -1,5 +1,22 @@
 # Authorization
 
+- [Authorization](#authorization)
+  - [Defining Available Groups](#defining-available-groups)
+    - [Default User Group](#default-user-group)
+  - [Defining Available Permissions](#defining-available-permissions)
+  - [Assigning Permissions to Groups](#assigning-permissions-to-groups)
+  - [Authorizing Users](#authorizing-users)
+      - [can()](#can)
+      - [inGroup()](#ingroup)
+  - [Managing User Permissions](#managing-user-permissions)
+      - [addPermission()](#addpermission)
+      - [removePermission()](#removepermission)
+      - [syncPermissions()](#syncpermissions)
+  - [Managing User Groups](#managing-user-groups)
+      - [addGroup()](#addgroup)
+      - [removeGroup()](#removegroup)
+      - [syncGroups()](#syncgroups)
+
 Authorization happens once a user has been identified through authentication. It is the process of
 determining what actions a user is allowed to do within your site.
 

docs/1 - concepts.md docs/concepts.mddocs/1 - concepts.md renamed to docs/concepts.md

@@ -2,6 +2,13 @@
 
 This document covers some of the base concepts used throughout the library.
 
+- [Shield Concepts](#shield-concepts)
+  - [Repository State](#repository-state)
+  - [Settings](#settings)
+  - [User Providers](#user-providers)
+  - [User Identities](#user-identities)
+  - [Password Validators](#password-validators)
+
 ## Repository State
 
 Shield is designed so that the initial setup of your application can all happen in code with nothing required to be
@@ -25,6 +32,7 @@ The only requirement is that your new class MUST extend the provided `UserModel`
 public $userProvider = 'CodeIgniter\Shield\Models\UserModel';
 ```
 
+<a name="identities" />
 ## User Identities
 
 User accounts are stored separately from the information needed to identify that user. These identifying pieces of data are

docs/7 - customization.md docs/customization.mddocs/7 - customization.md renamed to docs/customization.md

@@ -1,5 +1,10 @@
 # Customizing Shield
 
+- [Customizing Shield](#customizing-shield)
+  - [Route Configuration](#route-configuration)
+  - [Custom Redirect URLs](#custom-redirect-urls)
+  - [Extending the Controllers](#extending-the-controllers)
+
 ## Route Configuration
 
 If you need to customize how any of the auth features are handled, you will likely need to update the routes to point to the correct controllers. You can still use the `service('auth')->routes()` helper, but you will need to pass the `except` option with a list of routes to customize:

docs/5 - events.md docs/events.mddocs/5 - events.md renamed to docs/events.md

@@ -2,6 +2,14 @@
 
 Shield fires off several events during the lifecycle of the application that your code can tap into.
 
+- [Events](#events)
+  - [Responding to Events](#responding-to-events)
+    - [Event List](#event-list)
+      - [register](#register)
+      - [login](#login)
+      - [failedLogin](#failedlogin)
+      - [logout](#logout)
+
 ## Responding to Events
 
 When you want to respond to an event that Shield publishes, you will need to add it to your `app/Config/Events.php`

docs/index.md

@@ -0,0 +1,11 @@
+# Shield Documentation
+
+* [Installation Guide](install.md)
+* [Concepts You Need To Know](concepts.md)
+* [Quick Start Guide](quickstart.md)
+* [Authentication](authentication.md)
+* [Authorization](authorization.md)
+* [Auth Actions](auth_actions.md)
+* [Events](events.md)
+* [Testing](testing.md)
+* [Customization](customization.md)

docs/0 - install.md docs/install.mddocs/0 - install.md renamed to docs/install.md

@@ -1,5 +1,15 @@
 # Installation
 
+- [Installation](#installation)
+    - [Troubleshooting](#troubleshooting)
+      - [IMPORTANT: composer error](#important-composer-error)
+      - [Note: migration error](#note-migration-error)
+  - [Initial Setup](#initial-setup)
+    - [Command Setup](#command-setup)
+    - [Manual Setup](#manual-setup)
+  - [Controller Filters](#controller-filters)
+    - [Rate Limiting](#rate-limiting)
+
 These instructions assume that you have already [installed the CodeIgniter 4 app starter](https://codeigniter.com/user_guide/installation/installing_composer.html) as the basis for your new project, set up your `.env` file, and created a database that you can access via the Spark CLI script.
 
 Installation is done through [Composer](https://getcomposer.org). The example assumes you have it installed globally.
@@ -11,6 +21,8 @@ If you have it installed as a phar, or othewise you will need to adjust the way
 
 ---
 
+### Troubleshooting
+
 #### IMPORTANT: composer error
 
 If you get the following error: