Confused about defining the spec for auth
Preface: Unsure of the board this question needs to be posted on . . . there is no OAS specific one. - If were to have a single endpoint for authentication, I would define like so at the global le...
Forum Discussion
Hi gantiplex ,
Do you mean to say that the authorizationUrl in your security is unique for each user or machine?
Something like this... "/namespace/auth/{user}" and "/namespace/auth/{machine}" where "user" is a placeholder for the user's name or ID?
That isn't possible with OpenAPI spec at the moment.
Or are you looking to describe exactly two different URLs, exactly "/namespace/auth/user" and "/namespace/auth/machine? For that it is possible to define as many as you like and to use them on different operations are you need.
As a brief example of how security works (skip if you're familiar with this already)
openapi: 3.0
#...
paths:
/foo:
get:
security:
- authMachine: [...scopes]
- authUser: [...scopes]
# ...
components:
securitySchemes:
authMachine:
# ...
authUser:
# ...Where you reference named securitySchemes from individual operations or paths.
