From 823df7fc8cb8196f98f1daa760e4491fa8f9c469 Mon Sep 17 00:00:00 2001
From: Alex Bilbie <hello@alexbilbie.com>
Date: Sun, 2 Jul 2017 18:58:35 +0100
Subject: [PATCH] =?UTF-8?q?Added=20=E2=80=9CGenerating=20encryption=20keys?=
 =?UTF-8?q?=E2=80=9D=20section=20to=20installation=20page?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 installation.md | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/installation.md b/installation.md
index 9cb0c490..c83972ab 100755
--- a/installation.md
+++ b/installation.md
@@ -51,3 +51,11 @@ The private key must be kept secret (i.e. out of the web-root of the authorizati
 If a passphrase has been used to generate private key it must be provided to the authorization server.
 
 The public key should be distributed to any services (for example resource servers) that validate access tokens.
+
+## Generating encryption keys
+
+To generate an encryption key for the `AuthorizationServer` run the following code:
+
+{% highlight shell %}
+php -r 'echo base64_encode(random_bytes(32)), PHP_EOL;'
+{% endhighlight %}
\ No newline at end of file