How to document API that uses OAuth2 and bearer auth?

Question

I've been looking at the authentication docs and I'm a bit confused.
&nbsp;
Our API uses Auth2 to get an access token, both through client-side redirect and JWT assertions.&nbsp;
&nbsp;
It then uses the access token as a bearer token to authenticate each API call.
&nbsp;
So here is the question: do I specify this is a bearer token security scheme, or an OAuth2 security scheme?
&nbsp;
&nbsp;

nastya_khovrina · Accepted Answer

Hi cbetta,
&nbsp;
When you use OAuth 2.0, the Authorization header will look like:
Authorization: Bearer &lt;some value&gt;
&nbsp;
Also, the Bearer authentication scheme was originally created as part of&nbsp;OAuth 2.0&nbsp;in&nbsp;RFC 6750
&nbsp;
&nbsp;

Forum Discussion

How to document API that uses OAuth2 and bearer auth?

1 Reply

Related Content

Oauth2 bearer

Problems with refresh OAuth2 token

Kafka topic using OAuth2 authentication

How to replace "bearer" in Bearer Authentication with "idtoken"

Bearer Auth Token - How to pass as header for each API resource

Recent Discussions

Help me solve this error

How do I bypass the Available authorizations dialog?

Last-Modified header is invalid: api.swaggerhub.com

Creating SWAGGER File

Referencing path parameters declared in Domains