oauth2-server/installation.md

---
layout: default
title: Installation
permalink: /installation/
---

# Installation

The recommended installation method is using [Composer](https://getcomposer.org).

In your project root just run:

{% highlight shell %}
composer require league/oauth2-server
{% endhighlight %}

Ensure that you’ve set up your project to [autoload Composer-installed packages](https://getcomposer.org/doc/01-basic-usage.md#autoloading).

Depending on [which grant](/authorization-server/which-grant/) you are implementing you will need to implement a number of repository interfaces. Each grant documentation page lists which repositories are required, and each repository interface has it's own documentation page.

The repositories are expected to return (on success) instances of [entity interfaces](https://github.com/thephpleague/oauth2-server/tree/master/src/Entities); to make integration with your existing entities and models as easy as possible though, all required methods have been implemented as traits that you can use.

## Generating public and private keys

To generate the private key run this command on the terminal:

{% highlight shell %}
openssl genrsa -out private.key 1024
{% endhighlight %}

If you want to provide a passphrase for your private key run this command instead:

{% highlight shell %}
openssl genrsa -passout pass:_passphrase_ -out private.key 1024
{% endhighlight %}

then extract the public key from the private key:

{% highlight shell %}
openssl rsa -in private.key -pubout -out public.key
{% endhighlight %}

or use your passphrase if provided on private key generation:

{% highlight shell %}
openssl rsa -in private.key -passin pass:_passphrase_ -pubout -out public.key
{% endhighlight %}

The private key must be kept secret (i.e. out of the web-root of the authorization server). The authorization server also requires the public key.

If a passphrase has been used to generate private key it must be provided to the authorization server.

The public key should be distributed to any services (for example resource servers) that validate access tokens.
-												Updated docs

											
										
										
											2014-10-01 03:14:18 +05:30
+								---
 								layout: default
 								title: Installation
 								permalink: /installation/
 								---
 								# Installation
-												Checkin

											
										
										
											2016-03-16 02:03:44 +05:30
+								The recommended installation method is using [Composer](https://getcomposer.org).
-												Update installation.md
											
										
										
											2014-10-13 20:37:45 +05:30
+								In your project root just run:
-												Updated docs

											
										
										
											2014-10-01 03:14:18 +05:30
-												Checkin

											
										
										
											2016-03-16 02:03:44 +05:30
+								{% highlight shell %}
-												Update installation.md
											
										
										
											2016-04-25 15:13:04 +05:30
+								composer require league/oauth2-server
-												Checkin

											
										
										
											2016-03-16 02:03:44 +05:30
+								{% endhighlight %}
-												Updated docs

											
										
										
											2014-10-01 03:14:18 +05:30
-												updated link pointing to section about autoloading in composer documentation

											
										
										
											2016-04-13 23:59:22 +05:30
+								Ensure that you’ve set up your project to [autoload Composer-installed packages](https://getcomposer.org/doc/01-basic-usage.md#autoloading).
-												Checkin

											
										
										
											2016-03-16 02:03:44 +05:30
-												documentation for PR #502

											
										
										
											2016-03-29 13:35:49 +05:30
+								Depending on [which grant](/authorization-server/which-grant/) you are implementing you will need to implement a number of repository interfaces. Each grant documentation page lists which repositories are required, and each repository interface has it's own documentation page.
-												Checkin

											
										
										
											2016-03-16 02:03:44 +05:30
-												fix broken link

This PR address 404 link error found on installation page.

											
										
										
											2016-06-05 02:39:33 +05:30
+								The repositories are expected to return (on success) instances of [entity interfaces](https://github.com/thephpleague/oauth2-server/tree/master/src/Entities); to make integration with your existing entities and models as easy as possible though, all required methods have been implemented as traits that you can use.
-												Updated installation

											
										
										
											2016-03-23 18:15:09 +05:30
 								## Generating public and private keys
 								To generate the private key run this command on the terminal:
 								{% highlight shell %}
 								openssl genrsa -out private.key 1024
 								{% endhighlight %}
-												documentation for PR #502

											
										
										
											2016-03-29 13:35:49 +05:30
+								If you want to provide a passphrase for your private key run this command instead:
 								{% highlight shell %}
 								openssl genrsa -passout pass:_passphrase_ -out private.key 1024
 								{% endhighlight %}
-												Updated installation

											
										
										
											2016-03-23 18:15:09 +05:30
+								then extract the public key from the private key:
 								{% highlight shell %}
-												documentation for PR #502

											
										
										
											2016-03-29 13:35:49 +05:30
+								openssl rsa -in private.key -pubout -out public.key
 								{% endhighlight %}
 								or use your passphrase if provided on private key generation:
 								{% highlight shell %}
 								openssl rsa -in private.key -passin pass:_passphrase_ -pubout -out public.key
-												Updated installation

											
										
										
											2016-03-23 18:15:09 +05:30
+								{% endhighlight %}
-												documentation for PR #502

											
										
										
											2016-03-29 13:35:49 +05:30
-												Updated installation

											
										
										
											2016-03-23 18:15:09 +05:30
+								The private key must be kept secret (i.e. out of the web-root of the authorization server). The authorization server also requires the public key.
-												documentation for PR #502

											
										
										
											2016-03-29 13:35:49 +05:30
+								If a passphrase has been used to generate private key it must be provided to the authorization server.
 								The public key should be distributed to any services (for example resource servers) that validate access tokens.