Skip to content

Commit

Permalink
feat(spec): add SetSecuritySchemes to declare the securitySchemes in …
Browse files Browse the repository at this point in the history
…the specification (#77)

feat(spec): add SetSecuritySchemes method (#77)

Add the SetSecuritySchemes method to the Generator type to
allows the configuration of the spec's security schemes.

Signed-off-by: Romain Beuque <556072+rbeuque74@users.noreply.github.com>
Co-authored-by: William Poussier <william.poussier@gmail.com>
  • Loading branch information
rbeuque74 and wI2L authored Apr 13, 2022
1 parent cc49074 commit aaea309
Show file tree
Hide file tree
Showing 3 changed files with 47 additions and 2 deletions.
41 changes: 40 additions & 1 deletion README.md
Original file line number Diff line number Diff line change
Expand Up @@ -223,7 +223,7 @@ You can use additional tags. Some will be interpreted by *tonic*, others will be
| `description` | Add a description of the field in the spec. |
| `deprecated` | Indicates if the field is deprecated. Accepted values are `1`, `t`, `T`, `TRUE`, `true`, `True`, `0`, `f`, `F`, `FALSE`. Invalid value are considered to be false. |
| `enum` | A coma separated list of acceptable values for the parameter. |
| `example` | An example value to be used in OpenAPI specification. See [section below](#Providing-Examples-for-Custom-Types) for the demonstration on how to provide example for custom types. |
| `example` | An example value to be used in OpenAPI specification. See [section below](#Providing-Examples-for-Custom-Types) for the demonstration on how to provide example for custom types. |
| `format` | Override the format of the field in the specification. Read the [documentation](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/3.0.0.md#dataTypeFormat) for more informations. |
| `validate` | Field validation rules. Read the [documentation](https://godoc.org/gopkg.in/go-playground/validator.v8) for more informations. |
| `explode` | Specifies whether arrays should generate separate parameters for each array item or object property (limited to query parameters with *form* style). Accepted values are `1`, `t`, `T`, `TRUE`, `true`, `True`, `0`, `f`, `F`, `FALSE`. Invalid value are considered to be false. |
Expand Down Expand Up @@ -276,6 +276,45 @@ f.GET("/openapi.json", nil, f.OpenAPI(infos, "json"))
```
**NOTE**: The generator will never panic. However, it is strongly recommended to call `fizz.Errors` to retrieve and handle the errors that may have occured during the generation of the specification before starting your API.

#### Servers information

If the OpenAPI specification refers to an API that is not hosted on the same domain, or using a path prefix not included in the spec, you will have to declare server information. This can be achieved using the `f.Generator().SetServers` method.

```go
f := fizz.New()
f.Generator().SetServers([]*openapi.Server{
{
Description: "Fruits Market - production",
URL: "https://example.org/api/1.0",
},
})
```

#### Security schemes

If your API requires authentication, you have to declare the security schemes that can be used by the operations. This can be achieved using the `f.Generator().SetSecuritySchemes` method.

```go
f := fizz.New()
f.Generator().SetSecuritySchemes(map[string]*openapi.SecuritySchemeOrRef{
"apiToken": {
SecurityScheme: &openapi.SecurityScheme{
Type: "apiKey",
In: "header",
Name: "x-api-token",
},
},
})
```

Once defined, the security schemes will be available for all operations. You can override them on an per-operation basis using the `fizz.Security()` function.

```go
fizz.Security(&openapi.SecurityRequirement{
"apiToken": []string{},
})
```

#### Components

The output types of your handlers are registered as components within the generated specification. By default, the name used for each component is composed of the package and type name concatenated using _CamelCase_ style, and does not contain the full import path. As such, please ensure that you don't use the same type name in two eponym package in your application.
Expand Down
6 changes: 6 additions & 0 deletions openapi/generator.go
Original file line number Diff line number Diff line change
Expand Up @@ -110,6 +110,12 @@ func (g *Generator) SetSecurityRequirement(security []*SecurityRequirement) {
g.api.Security = security
}

// SetSecuritySchemes sets the security schemes that can be used
// inside the operations of the specification.
func (g *Generator) SetSecuritySchemes(security map[string]*SecuritySchemeOrRef) {
g.api.Components.SecuritySchemes = security
}

// API returns a copy of the internal OpenAPI object.
func (g *Generator) API() *OpenAPI {
cpy := *g.api
Expand Down
2 changes: 1 addition & 1 deletion openapi/spec.go
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ type OpenAPI struct {
}

// Components holds a set of reusable objects for different
// ascpects of the specification.
// aspects of the specification.
type Components struct {
Schemas map[string]*SchemaOrRef `json:"schemas,omitempty" yaml:"schemas,omitempty"`
Responses map[string]*ResponseOrRef `json:"responses,omitempty" yaml:"responses,omitempty"`
Expand Down

0 comments on commit aaea309

Please sign in to comment.