# HG changeset patch
# User Kim Alvefur <zash@zash.se>
# Date 1677880094 -3600
# Node ID 164a9875935bdca14b343c81f86006708cf2a324
# Parent  6b63af56c8acb4affec8375fd9870e912a73861a
mod_http_oauth2/README: Document config options

diff -r 6b63af56c8ac -r 164a9875935b mod_http_oauth2/README.markdown
--- a/mod_http_oauth2/README.markdown	Fri Mar 03 22:03:50 2023 +0100
+++ b/mod_http_oauth2/README.markdown	Fri Mar 03 22:48:14 2023 +0100
@@ -12,7 +12,30 @@
 Configuration
 =============
 
-None currently.
+Dynamic client registration enabled by configuring a JWT key. Algorithm
+defaults to *HS256*.
+
+```lua
+oauth2_registration_key = "securely generated JWT key here"
+oauth2_registration_algorithm = "HS256"
+oauth2_registration_options = { default_ttl = 60 * 60 * 24 * 90 }
+```
+
+Various flows can be disabled and enabled with
+`allowed_oauth2_grant_types` and `allowed_oauth2_response_types`:
+
+```lua
+allowed_oauth2_grant_types = {
+	"authorization_code"; -- authorization code grant
+	"password"; -- resource owner password grant
+}
+
+allowed_oauth2_response_types = {
+	"code"; -- authorization code flow
+    -- "token"; -- implicit flow disabled by default
+}
+```
+
 
 Compatibility
 =============