mher
diff --git a/‎README.rst‎
Lines changed: 23 additions & 57 deletions b/‎README.rst‎
Lines changed: 23 additions & 57 deletions
diff --git a/‎docs/api.rst‎
Lines changed: 3 additions & 3 deletions b/‎docs/api.rst‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎docs/auth.rst‎
Lines changed: 81 additions & 82 deletions b/‎docs/auth.rst‎
Lines changed: 81 additions & 82 deletions
@@ -12,19 +12,16 @@ Flower
 .. image:: https://img.shields.io/pypi/v/flower.svg
     :target: https://pypi.python.org/pypi/flower
 
-Flower is a web based tool for monitoring and administrating Celery clusters.
+Flower is an open-source web application for monitoring and managing Celery clusters.
+It provides real-time information about the status of Celery workers and tasks.
 
 Features
 --------
 
 - Real-time monitoring using Celery Events
-
-    - Task progress and history
-    - Ability to show task details (arguments, start time, runtime, and more)
-    - Graphs and statistics
-
+    - View task progress and history
+    - View task details (arguments, start time, runtime, and more)
 - Remote Control
-
     - View worker status and statistics
     - Shutdown and restart worker instances
     - Control worker pool size and autoscale settings
@@ -33,17 +30,12 @@ Features
     - View scheduled tasks (ETA/countdown)
     - View reserved and revoked tasks
     - Apply time and rate limits
-    - Configuration viewer
     - Revoke or terminate tasks
-
 - Broker monitoring
-
     - View statistics for all Celery queues
-    - Queue length graphs
-
-- HTTP API
-- Basic Auth, Google, Github, Gitlab and Okta OAuth
+- HTTP Basic Auth, Google, Github, Gitlab and Okta OAuth
 - Prometheus integration
+- API
 
 Installation
 ------------
@@ -52,61 +44,35 @@ Installing `flower` with `pip <http://www.pip-installer.org/>`_ is simple ::
 
     $ pip install flower
 
-Development version can be installed with ::
+The development version can be installed from Github ::
 
     $ pip install https://github.com/mher/flower/zipball/master#egg=flower
 
 Usage
 -----
 
-**Important** Please note that from version 1.0.1 Flower uses Celery 5 and has to be invoked in the same style as celery
-commands do.
-
-The key takeaway here is that the Celery app's arguments have to be specified after the `celery` command and Flower's
-arguments have to be specified after the `flower` sub-command.
-
-This is the template to follow::
-
-    celery [celery args] flower [flower args]
+To run Flower, you need to provide the broker URL ::
 
-Core Celery args that you may want to set::
+    $ celery --broker=amqp://guest:guest@localhost:5672// flower
 
-    -A, --app
-    -b, --broker
-    --result-backend
+Or use the configuration of `celery application <https://docs.celeryq.dev/en/stable/userguide/application.html>`_  ::
 
-More info on available `Celery command args <https://docs.celeryq.dev/en/stable/reference/cli.html#celery>`_.
+    $ celery -A tasks.app flower
 
-For Flower command args `see here <https://flower.readthedocs.io/en/latest/config.html#options>`_.
+By default, flower runs on port 5555, which can be modified with the :ref:`port` option ::
 
-Usage Examples
---------------
+    $ celery -A tasks.app flower --port=5001
 
-Launch the Flower server at specified port other than default 5555 (open the UI at http://localhost:5566): ::
+You can also run Flower using the docker image ::
 
-    $ celery flower --port=5566
+    $ docker run -v examples:/data -p 5555:5555 mher/flower celery --app=tasks.app flower
 
-Specify Celery application path with address and port for Flower: ::
-
-    $ celery -A proj flower --address=127.0.0.6 --port=5566
-
-Launch using docker: ::
-
-    $ docker run -p 5555:5555 mher/flower
-
-Launch with unix socket file: ::
-
-    $ celery flower --unix-socket=/tmp/flower.sock
-
-Broker URL and other configuration options can be passed through the standard Celery options (notice that they are after
-Celery command and before Flower sub-command): ::
-
-    $ celery -A proj --broker=amqp://guest:guest@localhost:5672// flower
+In this example, Flower is using the `tasks.app` defined in the `examples/tasks.py <https://github.com/mher/flower/blob/master/examples/tasks.py>`_ file
 
 API
 ---
 
-Flower API enables to manage the cluster via REST API.
+Flower API enables to manage the cluster via HTTP `REST API.
 
 For example you can restart worker's pool by: ::
 
@@ -120,21 +86,21 @@ Or terminate executing task by: ::
 
     $ curl -X POST -d 'terminate=True' http://localhost:5555/api/task/revoke/8a4da87b-e12b-4547-b89a-e92e4d1f8efd
 
-For more info checkout `API Reference`_ and `examples`_.
+For more info checkout `API Reference`_
 
 .. _API Reference: https://flower.readthedocs.io/en/latest/api.html
-.. _examples: http://nbviewer.ipython.org/urls/raw.github.com/mher/flower/master/docs/api.ipynb
 
 Documentation
 -------------
 
-Documentation is available at `Read the Docs`_ and `IPython Notebook Viewer`_
+Documentation is available at `Read the Docs`_
 
 .. _Read the Docs: https://flower.readthedocs.io
-.. _IPython Notebook Viewer: http://nbviewer.ipython.org/urls/raw.github.com/mher/flower/master/docs/api.ipynb
 
 License
 -------
 
-Flower is licensed under BSD 3-Clause License. See the LICENSE file
-in the top distribution directory for the full license text.
+Flower is licensed under BSD 3-Clause License.
+See the `License`_ file for the full license text.
+
+.. _`License`: https://github.com/mher/flower/blob/master/LICENSE
@@ -1,8 +1,8 @@
 API Reference
 =============
 
-.. toctree::
-   :maxdepth: 2
+For security reasons, the Flower API is disabled by default when authentication is not enabled.
+To enable the API for unauthenticated environments, you can set the FLOWER_UNAUTHENTICATED_API
+environment variable to true.
 
 .. autotornado:: flower.app:Flower()
-
@@ -1,136 +1,135 @@
 .. _authentication:
+
 Authentication
 ==============
 
-Protecting your Flower instance from unwarranted access is important
-if it runs in an untrusted environment. Below, we outline the various
-forms of authentication supported by Flower.
+Flower supports a variety of authentication methods, including Basic Authentication, Google, GitHub,
+GitLab, and Okta OAuth. You can also customize and use your own authentication method.
 
-**NOTE:** The following endpoints are exempt from authentication:
+The following endpoints are exempt from authentication:
 
 - /healthcheck
 - /metrics
 
-.. _basic-auth:
+.. _basic-authentication:
 
 HTTP Basic Authentication
 -------------------------
 
-Securing Flower with Basic Authentication is easy.
+Flower supports Basic Authentication as a built-in authentication method, allowing you to secure access to the
+Flower using simple username and password credentials. This authentication method is commonly used for
+straightforward authentication requirements.
+
+To enable basic authentication, use :ref:`basic_auth` option. This option allows you to specify a list of
+username and password pairs for authentication.
 
-The `--basic_auth` option accepts `user:password` pairs separated by
-a comma. If configured, any client trying to access this
-Flower instance will be prompted to provide the credentials specified in
-this argument: ::
+For example, running Flower with the following :ref:`basic_auth` option will protect the Flower UI and
+only allow access to users providing the username user and the password pswd::
 
-    $ celery flower --basic_auth=user1:password1,user2:password2
+    $ celery flower --basic-auth=user:pswd
 
 See also :ref:`reverse-proxy`
 
 .. _google-oauth:
 
-Google OAuth 2.0
-----------------
+Google OAuth
+------------
+
+Flower provides authentication support using Google OAuth, enabling you to authenticate users through their Google accounts.
+This integration simplifies the authentication process and offers a seamless experience for users who are already logged into Google.
 
-Flower supports Google OAuth 2.0. This way you can authenticate any user
-with a Google account. Google OAuth 2.0 authentication is enabled using the
-`--auth`, `--oauth2_key`, `--oauth2_secret` and `--oauth2_redirect_uri` options.
+Follow the steps below to configure and use Google OAuth authentication:
 
-`--auth` is a regular expression, for granting access only to the specified email pattern.
-`--oauth2_key` and `--oauth2_secret` are your credentials from your `Google Developer Console`_.
-`--oauth2_redirect_uri` is there to specify what is the redirect_uri associated to your key and secret
+1. Go to the `Google Developer Console`_
+2. Select a project, or create a new one.
+3. In the sidebar on the left, select Credentials.
+4. Click CREATE CREDENTIALS and click OAuth client ID.
+5. Under Application type, select Web application.
+6. Name OAuth 2.0 client and click Create.
+7. Copy the "Client secret" and "Client ID"
+8. Add redirect URI to the list of Authorized redirect URIs
 
-For instance, if you want to grant access to `[email protected]` and `[email protected]`: ::
+Here's an example configuration file with the Google OAuth options:
 
-    $ celery flower --auth="[email protected]|[email protected]" --oauth2_key=... --oauth2_secret=... --oauth2_redirect_uri=http://flower.example.com/login
+.. code-block:: python
 
-Alternatively, you can set environment variables instead of command line arguments: ::
+    auth_provider="flower.views.auth.GoogleAuth2LoginHandler"
+    auth="allowed-emails.*@gmail.com"
+    oauth2_key="<your_client_id>"
+    oauth2_secret="<your_client_secret>"
+    oauth2_redirect_uri="http://localhost:5555/login"
 
-    $ export FLOWER_OAUTH2_KEY=...
-    $ export FLOWER_OAUTH2_SECRET=...
-    $ export FLOWER_OAUTH2_REDIRECT_URI=http://flower.example.com/login
-    $ celery flower --auth=.*@example\.com
+Replace `<your_client_id>` and `<your_client_secret>` with the actual  Client ID and secret obtained from
+the Google Developer Console.
 
 .. _Google Developer Console: https://console.developers.google.com
 
 .. _github-oauth:
 
-Okta OAuth
+GitHub OAuth
 ------------
 
-Flower also supports Okta OAuth. Flower should be registered in
-<https://developer.okta.com/docs/guides/add-an-external-idp/openidconnect/register-app-in-okta/>
-before getting started. See `Okta OAuth API`_ docs for more info.
+Flower also supports GitHub OAuth. Before getting started, Flower should be registered in
+`Github Settings`_.
 
-Okta OAuth should be activated using `--auth_provider` option.
-The client id, secret and redirect uri should be provided using
-`--oauth2_key`, `--oauth2_secret`, `--oauth2_redirect_uri` options or using
-`FLOWER_OAUTH2_KEY`, `FLOWER_OAUTH2_SECRET`, `FLOWER_OAUTH2_REDIRECT_URI` environment variables.
+Github OAuth is activated by setting :ref:`auth_provider` to `flower.views.auth.GithubLoginHandler`.
+Here's an example configuration file with the Github OAuth options:
 
- The URL from which OAuth2 API URLs will be built should be set using `FLOWER_OAUTH2_OKTA_BASE_URL`
-  environment variable: ::
+.. code-block:: python
 
-    $ export FLOWER_OAUTH2_KEY=7956724aafbf5e1a93ac
-    $ export FLOWER_OAUTH2_SECRET=f9155f764b7e466c445931a6e3cc7a42c4ce47be
-    $ export FLOWER_OAUTH2_REDIRECT_URI=http://localhost:5555/login
-    $ export FLOWER_OAUTH2_OKTA_BASE_URL=https://my-company.okta.com/oauth2
-    $ celery flower --auth_provider=flower.views.auth.OktaLoginHandler --auth=.*@example\.com
+    auth_provider="flower.views.auth.GithubLoginHandler"
+    auth="allowed-emails.*@gmail.com"
+    oauth2_key="<your_client_id>"
+    oauth2_secret="<your_client_secret>"
+    oauth2_redirect_uri="http://localhost:5555/login"
 
-.. _Okta OAuth API: https://developer.okta.com/docs/reference/api/oidc/
+Replace `<your_client_id>` and `<your_client_secret>` with the actual  Client ID and secret obtained from
+the Github Settings.
 
-GitHub OAuth
-------------
-
-Flower also supports GitHub OAuth. Flower should be registered in
-<https://github.com/settings/applications/new> before getting started.
 See `GitHub OAuth API`_ docs for more info.
 
-GitHub OAuth should be activated using `--auth_provider` option.
-The client id, secret and redirect uri should be provided using
-`--oauth2_key`, `--oauth2_secret` and `--oauth2_redirect_uri` options or using
-`FLOWER_OAUTH2_KEY`, `FLOWER_OAUTH2_SECRET` and `FLOWER_OAUTH2_REDIRECT_URI`
-environment variables. ::
+.. _Github Settings: https://github.com/settings/applications/new
+.. _GitHub OAuth API: https://developer.github.com/v3/oauth/
 
-    $ export FLOWER_OAUTH2_KEY=7956724aafbf5e1a93ac
-    $ export FLOWER_OAUTH2_SECRET=f9155f764b7e466c445931a6e3cc7a42c4ce47be
-    $ export FLOWER_OAUTH2_REDIRECT_URI=http://localhost:5555/login
-    $ celery flower --auth_provider=flower.views.auth.GithubLoginHandler --auth=.*@example\.com
+.. _okta-oauth:
 
-.. _GitHub OAuth API: https://developer.github.com/v3/oauth/
+Okta OAuth
+----------
 
-.. _gitlab-oauth:
+Flower also supports Okta OAuth. Before getting started, you need to register Flower in `Okta`_.
+Okta OAuth is activated by setting :ref:`auth_provider` option to `flower.views.auth.OktaLoginHandler`.
+
+Okta OAuth requires `oauth2_key`, `oauth2_secret` and `oauth2_redirect_uri` options which should be obtained from Okta.
+Okta OAuth also uses `FLOWER_OAUTH2_OKTA_BASE_URL` environment variable.
+
+See Okta `Okta OAuth API`_ docs for more info.
 
-**NOTE:** If you need a custom GitHub Domain, please export it using environment variable:
-`export FLOWER_GITHUB_OAUTH_DOMAIN=github.foobar.com`
+.. _Okta: https://developer.okta.com/docs/guides/add-an-external-idp/openidconnect/main/
+.. _Okta OAuth API: https://developer.okta.com/docs/reference/api/oidc/
+
+.. _gitlab-oauth:
 
 GitLab OAuth
 ------------
 
-Flower also supports GitLab OAuth. Flower should be registered in
-<https://gitlab.com/profile/applications> before getting started.
-See `GitLab OAuth2 API`_ docs for more info.
+Flower also supports GitLab OAuth for authentication. To enable GitLab OAuth, follow the steps below:
 
-GitLab OAuth should be activated using `--auth_provider` option.
-The client id, secret and redirect uri should be provided using
-`--oauth2_key`, `--oauth2_secret` and `--oauth2_redirect_uri` options or using
-`FLOWER_OAUTH2_KEY`, `FLOWER_OAUTH2_SECRET` and `FLOWER_OAUTH2_REDIRECT_URI`
-environment variables.
+1. Register Flower as an application at GitLab. You can refer to the `GitLab OAuth documentation`_ for detailed instructions on how to do this.
+2. Once registered, you will obtain the credentials for Flower configuration.
+3. In your Flower configuration, set the following options to activate GitLab OAuth:
+    - :ref:`auth_provider` to `flower.views.auth.GitlabLoginHandler`.
+    - :ref:`oauth2_key` to the "Application ID" obtained from GitLab.
+    - :ref:`oauth2_secret` to the "Secret" obtained from GitLab.
+    - :ref:`oauth2_redirect_uri`: Set this to the redirect URI configured in GitLab.
+4. (Optional) To restrict access to specific GitLab groups, you can utilize the `FLOWER_GITLAB_AUTH_ALLOWED_GROUPS` environment variable. Set it to a comma-separated list of allowed groups. You can include subgroups by using the `/` character. For example: `group1,group2/subgroup`.
+5. (Optional) The default minimum required group access level can be adjusted using the `FLOWER_GITLAB_MIN_ACCESS_LEVEL` environment variable.
+6. (Optional) The custom GitHub Domain can be adjusted using the `FLOWER_GITLAB_OAUTH_DOMAIN` environment variable.
 
-A list of allowed GitLab groups can be specified using the
- `FLOWER_GITLAB_AUTH_ALLOWED_GROUPS` environment variable (e.g. ``group1,group2/subgroup``).
+For further details on GitLab OAuth and its implementation, refer to the `Group and project members API`_ documentation.
+It provides comprehensive information and guidelines on working with GitLab's OAuth functionality.
 
-The default minimum required group access level can be changes by
-`FLOWER_GITLAB_MIN_ACCESS_LEVEL` environment variable.
-See `Group and project members API`_ for details.
-
-    $ export FLOWER_OAUTH2_KEY=7956724aafbf5e1a93ac
-    $ export FLOWER_OAUTH2_SECRET=f9155f764b7e466c445931a6e3cc7a42c4ce47be
-    $ export FLOWER_OAUTH2_REDIRECT_URI=http://localhost:5555/login
-    $ export FLOWER_GITLAB_AUTH_ALLOWED_GROUPS=group1,group2/subgroup
-    $ celery flower --auth_provider=flower.views.auth.GitLabLoginHandler --auth=.*@example\.com
+See also `GitLab OAuth2 API`_ documentation for more info.
 
+.. _GitLab OAuth documentation: https://docs.gitlab.com/ee/integration/oauth_provider.htm
 .. _GitLab OAuth2 API: https://docs.gitlab.com/ee/api/oauth2.html
 .. _Group and project members API: https://docs.gitlab.com/ee/api/members.html
-
-**NOTE:** If you need a custom GitHub Domain, please export it using environment variable:
-`export FLOWER_GITLAB_OAUTH_DOMAIN=gitlab.foobar.com`