That's a fair question. I only mention Spring Boot because I'm trying to configure OpenAPI using yaml property files that are part of SB framework support. Much of this is working just fine. SecurityScheme however is not. I've been able to accomplish what I want through @SecurityScheme annotation in my controller classes. It's not as clean, but workable.