From 9a5c1e9ed6c366a0df9ee84d67dcbdbd7b8d61b0 Mon Sep 17 00:00:00 2001
From: lijianguo <lijianguo@zhumengyuan.com>
Date: Tue, 16 Mar 2021 11:35:53 +0800
Subject: [PATCH] chore(docs): add OAuth 2.0 settings

---
 src/managing-workflow/tuning-component-settings.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/src/managing-workflow/tuning-component-settings.md b/src/managing-workflow/tuning-component-settings.md
index 5cefcedf1..f880d4626 100644
--- a/src/managing-workflow/tuning-component-settings.md
+++ b/src/managing-workflow/tuning-component-settings.md
@@ -89,6 +89,19 @@ LDAP_USER_FILTER   | The name of the login field in the users search base (defau
 LDAP_GROUP_BASEDN  | The distinguished name of the search base for user's groups names (default: "")
 LDAP_GROUP_FILTER  | The filter for user's groups (default: "", example: ```objectClass=person```)
 
+### OAuth 2.0 Password Grant settings
+
+The following environment variables are available for enabling OAuth 2.0 Password Grant.
+If you have configured both of LDAP authentication and OAuth 2.0, LDAP authentication first.
+authentication of user accounts in the [Controller][] component:
+
+Setting                  | Description
+-------------------------| ---------------------------------
+OAUTH2_ACCESS_TOKEN_URL  | The URI of the OAuth 2.0 get token server. (default: ""). If not specified, OAuth 2.0 authentication is not enabled(default: "", example: ```http://hostname```).
+OAUTH2_ACCESS_API_URL    | The URI of the OAuth 2.0 get resources server. (default: "")
+OAUTH2_CLIENT_ID         | The client id.
+OAUTH2_CLIENT_SECRET     | The client secret.
+
 ### Global and per application settings
 
 Setting                                         | Description