cutups
2 years agoNew Member
How to indicate required authorization in the OPENAPI spec?
Not new to APIs, but fairly new to creating OpenAPI specs from the ground up.
I'm curious if there is a way to indicate what authorization my app requires for specific endpoints in the spec.
Example:
GET /products - this requires the user to have 'read products' permission
POST /product - this requires the user to have 'write products' permission
Is there any good strategy to expose this info to the user in the spec?