-
-
Notifications
You must be signed in to change notification settings - Fork 48
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
feat(docs): restructure in proper Sphinx project
While increasing the comprehensibility of our docs, this should also make the problem reported in readthedocs/sphinx_rtd_theme#834 go away.
- Loading branch information
1 parent
bb3d3e0
commit bb35b5e
Showing
21 changed files
with
561 additions
and
424 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1 +1 @@ | ||
| *.html | ||
| _build/* |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| # Minimal makefile for Sphinx documentation | ||
| # | ||
|
|
||
| # You can set these variables from the command line, and also | ||
| # from the environment for the first two. | ||
| SPHINXOPTS ?= | ||
| SPHINXBUILD ?= sphinx-build | ||
| SOURCEDIR = . | ||
| BUILDDIR = _build | ||
|
|
||
| # Put it first so that "make" without argument is like "make help". | ||
| help: | ||
| @$(SPHINXBUILD) -M help "$(SOURCEDIR)" "$(BUILDDIR)" $(SPHINXOPTS) $(O) | ||
|
|
||
| .PHONY: help Makefile | ||
|
|
||
| # Catch-all target: route all unknown targets to Sphinx using the new | ||
| # "make mode" option. $(O) is meant as a shortcut for $(SPHINXOPTS). | ||
| %: Makefile | ||
| @$(SPHINXBUILD) -M $@ "$(SOURCEDIR)" "$(BUILDDIR)" $(SPHINXOPTS) $(O) |
Empty file.
Empty file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,108 @@ | ||
| .. _manage-tokens: | ||
|
|
||
| Manage Tokens | ||
| ~~~~~~~~~~~~~ | ||
|
|
||
| To make authentication more flexible, the API can provide you with multiple | ||
| authentication tokens. To that end, we provide a set of token management | ||
| endpoints that are separate from the above-mentioned log in and log out | ||
| endpoints. The most notable difference is that the log in endpoint needs | ||
| authentication with email address and password, whereas the token management | ||
| endpoint is authenticated using already issued tokens. | ||
|
|
||
|
|
||
| Retrieving All Current Tokens | ||
| ````````````````````````````` | ||
|
|
||
| To retrieve a list of currently valid tokens, issue a ``GET`` request:: | ||
|
|
||
| curl -X GET https://desec.io/api/v1/auth/tokens/ \ | ||
| --header "Authorization: Token mu4W4MHuSc0HyrGD1h/dnKuZBond" | ||
|
|
||
| The server will respond with a list of token objects, each containing a | ||
| timestamp when the token was created (note the ``Z`` indicating the UTC | ||
| timezone) and a UUID to identify that token. Furthermore, each token can | ||
| carry a name that is of no operational relevance to the API (it is meant | ||
| for user reference only). Certain API operations (such as login) will | ||
| automatically populate the ``name`` field with values such as "login" or | ||
| "dyndns". | ||
|
|
||
| :: | ||
|
|
||
| [ | ||
| { | ||
| "created": "2018-09-06T07:05:54.080564Z", | ||
| "id": "3159e485-5499-46c0-ae2b-aeb84d627a8e", | ||
| "name": "login" | ||
| }, | ||
| { | ||
| "created": "2018-09-06T08:53:26.428396Z", | ||
| "id": "76d6e39d-65bc-4ab2-a1b7-6e94eee0a534", | ||
| "name": "" | ||
| } | ||
| ] | ||
|
|
||
| You can also retrieve an individual token by appending ``:id/`` to the URL, | ||
| for example in order to look up a token's name or creation timestamp. | ||
|
|
||
|
|
||
| Create Additional Tokens | ||
| ```````````````````````` | ||
|
|
||
| To create another token using the token management interface, issue a | ||
| ``POST`` request to the same endpoint:: | ||
|
|
||
| curl -X POST https://desec.io/api/v1/auth/tokens/ \ | ||
| --header "Authorization: Token mu4W4MHuSc0HyrGD1h/dnKuZBond" \ | ||
| --header "Content-Type: application/json" --data @- <<< \ | ||
| '{"name": "my new token"}' | ||
|
|
||
| Note that the name is optional and will be empty if not specified. The server | ||
| will reply with ``201 Created`` and the created token in the response body:: | ||
|
|
||
| { | ||
| "created": "2018-09-06T09:08:43.762697Z", | ||
| "id": "3a6b94b5-d20e-40bd-a7cc-521f5c79fab3", | ||
| "token": "4pnk7u+NHvrEkFzrhFDRTjGFyX+S", | ||
| "name": "my new token" | ||
| } | ||
|
|
||
|
|
||
| .. _delete-tokens: | ||
|
|
||
| Delete Tokens | ||
| ````````````` | ||
|
|
||
| To delete an existing token by its ID via the token management endpoints, issue a | ||
| ``DELETE`` request on the token's endpoint, replacing ``:id`` with the | ||
| token ``id`` value:: | ||
|
|
||
| curl -X DELETE https://desec.io/api/v1/auth/tokens/:id/ \ | ||
| --header "Authorization: Token mu4W4MHuSc0HyrGD1h/dnKuZBond" | ||
|
|
||
| The server will reply with ``204 No Content``, even if the token was not found. | ||
|
|
||
| If you do not have the token UUID, but you do have the token value itself, you | ||
| can use the :ref:`log-out` endpoint to delete it. | ||
|
|
||
| Note that, for now, all tokens have equal power -- every token can authorize | ||
| any action. We are planning to implement scoped tokens in the future. | ||
|
|
||
|
|
||
| Security Considerations | ||
| ``````````````````````` | ||
|
|
||
| This section is for information only. Token length and encoding may change in | ||
| the future. | ||
|
|
||
| Any token is generated from 168 bits of randomness at the server and stored in | ||
| hashed format (PBKDF2-HMAC-SHA256). Guessing the token correctly or reversing | ||
| the hash is hence practically impossible. | ||
|
|
||
| The token value is represented by 28 characters using a URL-safe variant of | ||
| base64 encoding. It comprises only the characters ``A-Z``, ``a-z``, ``0-9``, ``-``, | ||
| and ``_``. (Base64 padding is not needed as the string length is a multiple of 4.) | ||
|
|
||
| Old versions of the API encoded 20-byte tokens in 40 characters with hexadecimal | ||
| representation. Such tokens will not be issued anymore, but remain valid until | ||
| invalidated by the user. |
This file was deleted.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,68 @@ | ||
| try: | ||
| import sphinx_rtd_theme | ||
| except ImportError: | ||
| sphinx_rtd_theme = None | ||
|
|
||
| # Configuration file for the Sphinx documentation builder. | ||
| # | ||
| # This file only contains a selection of the most common options. For a full | ||
| # list see the documentation: | ||
| # https://www.sphinx-doc.org/en/master/usage/configuration.html | ||
|
|
||
| # -- Path setup -------------------------------------------------------------- | ||
|
|
||
| # If extensions (or modules to document with autodoc) are in another directory, | ||
| # add these directories to sys.path here. If the directory is relative to the | ||
| # documentation root, use os.path.abspath to make it absolute, like shown here. | ||
| # | ||
| # import os | ||
| # import sys | ||
| # sys.path.insert(0, os.path.abspath('.')) | ||
|
|
||
|
|
||
| # -- Project information ----------------------------------------------------- | ||
|
|
||
| project = 'deSEC DNS API' | ||
| copyright = '2019, deSEC e.V., Individual Contributors' | ||
| author = 'deSEC e.V., Individual Contributors' | ||
|
|
||
|
|
||
| # -- General configuration --------------------------------------------------- | ||
|
|
||
| # Add any Sphinx extension module names here, as strings. They can be | ||
| # extensions coming with Sphinx (named 'sphinx.ext.*') or your custom | ||
| # ones. | ||
| extensions = [ | ||
| ] | ||
|
|
||
| # Add any paths that contain templates here, relative to this directory. | ||
| templates_path = ['_templates'] | ||
|
|
||
| # List of patterns, relative to source directory, that match files and | ||
| # directories to ignore when looking for source files. | ||
| # This pattern also affects html_static_path and html_extra_path. | ||
| exclude_patterns = ['_build', 'Thumbs.db', '.DS_Store'] | ||
|
|
||
|
|
||
| # -- Options for HTML output ------------------------------------------------- | ||
|
|
||
| # The theme to use for HTML and HTML Help pages. See the documentation for | ||
| # a list of builtin themes. | ||
| # | ||
| html_theme = 'alabaster' | ||
|
|
||
| # Add any paths that contain custom static files (such as style sheets) here, | ||
| # relative to this directory. They are copied after the builtin static files, | ||
| # so a file named "default.css" will overwrite the builtin "default.css". | ||
| html_static_path = ['_static'] | ||
|
|
||
|
|
||
| master_doc = 'index' | ||
|
|
||
| if sphinx_rtd_theme: | ||
| html_theme = "sphinx_rtd_theme" | ||
| html_theme_path = [sphinx_rtd_theme.get_html_theme_path()] | ||
| else: | ||
| html_theme = "default" | ||
|
|
||
| html_static_path = ['_static'] |
Oops, something went wrong.