bubblev
/
swagger-ui
4
0
フォーク 0
コード 課題 0 プルリクエスト 0 リリース 0 Wiki アクティビティ
選択できるのは25トピックまでです。 トピックは、先頭が英数字で、英数字とダッシュ('-')を使用した35文字以内のものにしてください。
4223 コミット
2 ブランチ
306 MiB
ツリー: 4fb2ee3d8f
ブランチ タグ
${ item.name }
ブランチ ${ searchTerm } を作成
'4fb2ee3d8f' から
${ noResults }
swagger-ui/docs/usage/oauth2.md

oauth2.md 2.0 KiB
Raw 通常表示 履歴

Change Swagger-UI -> Swagger UI in docs (#5479) * Change Swagger-UI -> Swagger UI in docs * Changed back to SwaggerUI in places that refer to JS construct
5年前
Move OAuth2 docs
6年前
feature: Docker OAuth block support (via #4987) * add `onFound` callback to schemas * add warning to method docs (for #4957) * implement Docker OAuth2 init block support * update docs * add OAUTH_SCOPE_SEPARATOR * drop OAuth env from Dockerfile and run script * don't indent the first oauth block line * drop unused `dedent` import * touch up warning message * add more test cases * return an empty block if no OAuth content is generated * fix broken doc line
5年前
housekeeping(docs): typo in oauth2.md (via #5124) no PR too small!
5年前
feature: Docker OAuth block support (via #4987) * add `onFound` callback to schemas * add warning to method docs (for #4957) * implement Docker OAuth2 init block support * update docs * add OAUTH_SCOPE_SEPARATOR * drop OAuth env from Dockerfile and run script * don't indent the first oauth block line * drop unused `dedent` import * touch up warning message * add more test cases * return an empty block if no OAuth content is generated * fix broken doc line
5年前
feat: add PKCE support for OAuth2 Authorization Code flows (#5361) * Add PKCE support. * Fix tests * Update oauth2.md * Rename usePkce * Fix the BrokenComponent error * Update oauth2.md * Remove isCode variable. Remove uuid4 dependency. * Remove utils functions * Import crypto * Fix tests * Fix the tests * Cleanup * Fix code_challenge generation * Move code challenge and verifier to utils for mocks. Update tests. * Mock the PKCE methods in the utils file properly. * Add missing expect * use target-method spies * Add comments to explain test values. * Get rid of jsrsasign.
5年前
Move OAuth2 docs
6年前
SwaggerUIBundle -> SwaggerUI
6年前
Move OAuth2 docs
6年前
feat: add PKCE support for OAuth2 Authorization Code flows (#5361) * Add PKCE support. * Fix tests * Update oauth2.md * Rename usePkce * Fix the BrokenComponent error * Update oauth2.md * Remove isCode variable. Remove uuid4 dependency. * Remove utils functions * Import crypto * Fix tests * Fix the tests * Cleanup * Fix code_challenge generation * Move code challenge and verifier to utils for mocks. Update tests. * Mock the PKCE methods in the utils file properly. * Add missing expect * use target-method spies * Add comments to explain test values. * Get rid of jsrsasign.
5年前
Move OAuth2 docs
6年前
 12345678910111213141516171819202122232425262728 
  1. # OAuth 2.0 configuration

  2. You can configure OAuth 2.0 authorization by calling the `initOAuth` method.

  3. 

  4. Property name | Docker variable |  Description

  5. --- | --- | ------

  6. clientId | `OAUTH_CLIENT_ID` | Default clientId. MUST be a string

  7. clientSecret | `OAUTH_CLIENT_SECRET` | **🚨 Never use this parameter in your production environment. It exposes cruicial security information. This feature is intended for dev/test environments only. 🚨** <br>Default clientSecret. MUST be a string

  8. realm | `OAUTH_REALM` |realm query parameter (for oauth1) added to `authorizationUrl` and `tokenUrl`. MUST be a string

  9. appName | `OAUTH_APP_NAME` |application name, displayed in authorization popup. MUST be a string

  10. scopeSeparator | `OAUTH_SCOPE_SEPARATOR` |scope separator for passing scopes, encoded before calling, default value is a space (encoded value `%20`). MUST be a string

  11. additionalQueryStringParams | `OAUTH_ADDITIONAL_PARAMS` |Additional query parameters added to `authorizationUrl` and `tokenUrl`. MUST be an object

  12. useBasicAuthenticationWithAccessCodeGrant | _Unavailable_ |Only activated for the `accessCode` flow.  During the `authorization_code` request to the `tokenUrl`, pass the [Client Password](https://tools.ietf.org/html/rfc6749#section-2.3.1) using the HTTP Basic Authentication scheme (`Authorization` header with `Basic base64encode(client_id + client_secret)`).  The default is `false`

  13. usePkceWithAuthorizationCodeGrant | `OAUTH_USE_PKCE` | Only applies to `authorizatonCode` flows. [Proof Key for Code Exchange](https://tools.ietf.org/html/rfc7636) brings enhanced security for OAuth public clients. The default is `false`

  14. 

  15. ```javascript

  16. const ui = SwaggerUI({...})

  17. 

  18. // Method can be called in any place after calling constructor SwaggerUIBundle

  19. ui.initOAuth({

  20.     clientId: "your-client-id",

  21.     clientSecret: "your-client-secret-if-required",

  22.     realm: "your-realms",

  23.     appName: "your-app-name",

  24.     scopeSeparator: " ",

  25.     additionalQueryStringParams: {test: "hello"},

  26.     usePkceWithAuthorizationCodeGrant: true

  27.   })

  28. ```