Issue 'Authorization: Bearer ' in a Swagger openAPI Annotations The 2019 Stack Overflow Developer Survey Results Are InAuthorization header override in Swagger UI with NginxCustomize swagger annotation in spring mvcSwashbuckle Bearer AuthorizationEnable bearer token in Swashbuckle (Swagger document)How to properly use Bearer tokens?Creating Request body using get request in Open API 3.0 (Swagger)How to specify credentials for Bearer auth in Swagger-NetSetting authentication for swagger v3Springfox swagger model substitute based on custom annotation on string fieldGenerating an API Client with Swagger OpenAPI 3 with OAuth2 Client Credentials
A poker game description that does not feel gimmicky
Button changing it's text & action. Good or terrible?
Lightning Grid - Columns and Rows?
Did Section 31 appear in Star Trek: The Next Generation?
How to support a colleague who finds meetings extremely tiring?
Can a flute soloist sit?
What is the most effective way of iterating a std::vector and why?
Can a rogue use sneak attack with weapons that have the thrown property even if they are not thrown?
One word riddle: Vowel in the middle
Is "plugging out" electronic devices an American expression?
Is bread bad for ducks?
Apparent duplicates between Haynes service instructions and MOT
Can you compress metal and what would be the consequences?
What is the closest word meaning "respect for time / mindful"
Return to UK after being refused entry years previously
Should I use my personal e-mail address, or my workplace one, when registering to external websites for work purposes?
How to manage monthly salary
Loose spokes after only a few rides
Are there any other methods to apply to solving simultaneous equations?
What do the Banks children have against barley water?
Why is the Constellation's nose gear so long?
Pokemon Turn Based battle (Python)
What is the meaning of the verb "bear" in this context?
What does Linus Torvalds mean when he says that Git "never ever" tracks a file?
Issue 'Authorization: Bearer ' in a Swagger openAPI Annotations
The 2019 Stack Overflow Developer Survey Results Are InAuthorization header override in Swagger UI with NginxCustomize swagger annotation in spring mvcSwashbuckle Bearer AuthorizationEnable bearer token in Swashbuckle (Swagger document)How to properly use Bearer tokens?Creating Request body using get request in Open API 3.0 (Swagger)How to specify credentials for Bearer auth in Swagger-NetSetting authentication for swagger v3Springfox swagger model substitute based on custom annotation on string fieldGenerating an API Client with Swagger OpenAPI 3 with OAuth2 Client Credentials
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;
I use these packages (installed via composer)
"swagger-api/swagger-ui": "^3.0",
"zircote/swagger-php": "~2.0|3.*"
In my def controller I have these annotations
/**
* @OAInfo(title="My API", version="0.1")
* @OASchemes(format="http")
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="Authorization",
* type="http",
* scheme="Bearer",
* bearerFormat="JWT",
* ),
* @OATag(
* name="Auth",
* description="Auth endpoints",
* )
* @OATag(
* name="Users",
* description="Users endpoints",
* )
*/
class Controller extends BaseController
Then I have method
/**
*
* @OAGet(
* path="/users",
* operationId="getListOfUsers",
* tags="Users",
* description="Get list of users",
* security="bearerAuth":,
* @OAParameter(
* name="Authorization",
* in="header",
* required=true,
* description="Bearer access-token",
* @OASchema(
* type="bearerAuth"
* )
* ),
* @OAResponse(
* response=200,
* description="Get list of users.",
* @OAJsonContent(type="object",
* @OAProperty(property="message", type="string"),
* @OAProperty(property="data", type="array",
* @OAItems(type="object",
* @OAProperty(property="id", type="integer"),
* @OAProperty(property="name", type="string"),
* @OAProperty(property="email", type="string"),
* ),
* ),
* ),
* ),
* @OAResponse(response=401, description="Unauthorized"),
* @OAResponse(response=404, description="Not Found"),
* )
*
* @return JsonResponse
*/
public function users()
So, when I try to test this route via swagger ui, I am getting error
401, "message": "Unauthenticated."
When I checked header (Firefox), I have not seen
Authorization: Bearer access-token
but I have my token in
Cookie: XSRF-TOKEN=eyJpdiI6Ik5COUV5Y1ltRTM4eXNsRlpLY2ptTGc9PSIsInZhbHVlIjoiNDFCbG95c1RHSHRFT0IyWWZ4aWFRQVJ6RHhTS1A4SFJiQXp2amlQc3RCUFRUWWs5R3RQQ0ZlakdFNnlvRm50MSIsIm1hYyI6ImM...
Swagger UI does not send header properly. What is wrong in annotations? Thanks
php swagger openapi swagger-php
asked Mar 8 at 9:42
speziaspezia
635
add a comment |
I use these packages (installed via composer)
"swagger-api/swagger-ui": "^3.0",
"zircote/swagger-php": "~2.0|3.*"
In my def controller I have these annotations
/**
* @OAInfo(title="My API", version="0.1")
* @OASchemes(format="http")
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="Authorization",
* type="http",
* scheme="Bearer",
* bearerFormat="JWT",
* ),
* @OATag(
* name="Auth",
* description="Auth endpoints",
* )
* @OATag(
* name="Users",
* description="Users endpoints",
* )
*/
class Controller extends BaseController
Then I have method
/**
*
* @OAGet(
* path="/users",
* operationId="getListOfUsers",
* tags="Users",
* description="Get list of users",
* security="bearerAuth":,
* @OAParameter(
* name="Authorization",
* in="header",
* required=true,
* description="Bearer access-token",
* @OASchema(
* type="bearerAuth"
* )
* ),
* @OAResponse(
* response=200,
* description="Get list of users.",
* @OAJsonContent(type="object",
* @OAProperty(property="message", type="string"),
* @OAProperty(property="data", type="array",
* @OAItems(type="object",
* @OAProperty(property="id", type="integer"),
* @OAProperty(property="name", type="string"),
* @OAProperty(property="email", type="string"),
* ),
* ),
* ),
* ),
* @OAResponse(response=401, description="Unauthorized"),
* @OAResponse(response=404, description="Not Found"),
* )
*
* @return JsonResponse
*/
public function users()
So, when I try to test this route via swagger ui, I am getting error
401, "message": "Unauthenticated."
When I checked header (Firefox), I have not seen
Authorization: Bearer access-token
but I have my token in
Cookie: XSRF-TOKEN=eyJpdiI6Ik5COUV5Y1ltRTM4eXNsRlpLY2ptTGc9PSIsInZhbHVlIjoiNDFCbG95c1RHSHRFT0IyWWZ4aWFRQVJ6RHhTS1A4SFJiQXp2amlQc3RCUFRUWWs5R3RQQ0ZlakdFNnlvRm50MSIsIm1hYyI6ImM...
Swagger UI does not send header properly. What is wrong in annotations? Thanks
php swagger openapi swagger-php
asked Mar 8 at 9:42
speziaspezia
635
add a comment |
I use these packages (installed via composer)
"swagger-api/swagger-ui": "^3.0",
"zircote/swagger-php": "~2.0|3.*"
In my def controller I have these annotations
/**
* @OAInfo(title="My API", version="0.1")
* @OASchemes(format="http")
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="Authorization",
* type="http",
* scheme="Bearer",
* bearerFormat="JWT",
* ),
* @OATag(
* name="Auth",
* description="Auth endpoints",
* )
* @OATag(
* name="Users",
* description="Users endpoints",
* )
*/
class Controller extends BaseController
Then I have method
/**
*
* @OAGet(
* path="/users",
* operationId="getListOfUsers",
* tags="Users",
* description="Get list of users",
* security="bearerAuth":,
* @OAParameter(
* name="Authorization",
* in="header",
* required=true,
* description="Bearer access-token",
* @OASchema(
* type="bearerAuth"
* )
* ),
* @OAResponse(
* response=200,
* description="Get list of users.",
* @OAJsonContent(type="object",
* @OAProperty(property="message", type="string"),
* @OAProperty(property="data", type="array",
* @OAItems(type="object",
* @OAProperty(property="id", type="integer"),
* @OAProperty(property="name", type="string"),
* @OAProperty(property="email", type="string"),
* ),
* ),
* ),
* ),
* @OAResponse(response=401, description="Unauthorized"),
* @OAResponse(response=404, description="Not Found"),
* )
*
* @return JsonResponse
*/
public function users()
So, when I try to test this route via swagger ui, I am getting error
401, "message": "Unauthenticated."
When I checked header (Firefox), I have not seen
Authorization: Bearer access-token
but I have my token in
Cookie: XSRF-TOKEN=eyJpdiI6Ik5COUV5Y1ltRTM4eXNsRlpLY2ptTGc9PSIsInZhbHVlIjoiNDFCbG95c1RHSHRFT0IyWWZ4aWFRQVJ6RHhTS1A4SFJiQXp2amlQc3RCUFRUWWs5R3RQQ0ZlakdFNnlvRm50MSIsIm1hYyI6ImM...
Swagger UI does not send header properly. What is wrong in annotations? Thanks
php swagger openapi swagger-php
asked Mar 8 at 9:42
speziaspezia
635
I use these packages (installed via composer)
"swagger-api/swagger-ui": "^3.0",
"zircote/swagger-php": "~2.0|3.*"
In my def controller I have these annotations
/**
* @OAInfo(title="My API", version="0.1")
* @OASchemes(format="http")
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="Authorization",
* type="http",
* scheme="Bearer",
* bearerFormat="JWT",
* ),
* @OATag(
* name="Auth",
* description="Auth endpoints",
* )
* @OATag(
* name="Users",
* description="Users endpoints",
* )
*/
class Controller extends BaseController
Then I have method
/**
*
* @OAGet(
* path="/users",
* operationId="getListOfUsers",
* tags="Users",
* description="Get list of users",
* security="bearerAuth":,
* @OAParameter(
* name="Authorization",
* in="header",
* required=true,
* description="Bearer access-token",
* @OASchema(
* type="bearerAuth"
* )
* ),
* @OAResponse(
* response=200,
* description="Get list of users.",
* @OAJsonContent(type="object",
* @OAProperty(property="message", type="string"),
* @OAProperty(property="data", type="array",
* @OAItems(type="object",
* @OAProperty(property="id", type="integer"),
* @OAProperty(property="name", type="string"),
* @OAProperty(property="email", type="string"),
* ),
* ),
* ),
* ),
* @OAResponse(response=401, description="Unauthorized"),
* @OAResponse(response=404, description="Not Found"),
* )
*
* @return JsonResponse
*/
public function users()
So, when I try to test this route via swagger ui, I am getting error
401, "message": "Unauthenticated."
When I checked header (Firefox), I have not seen
Authorization: Bearer access-token
but I have my token in
Cookie: XSRF-TOKEN=eyJpdiI6Ik5COUV5Y1ltRTM4eXNsRlpLY2ptTGc9PSIsInZhbHVlIjoiNDFCbG95c1RHSHRFT0IyWWZ4aWFRQVJ6RHhTS1A4SFJiQXp2amlQc3RCUFRUWWs5R3RQQ0ZlakdFNnlvRm50MSIsIm1hYyI6ImM...
Swagger UI does not send header properly. What is wrong in annotations? Thanks
php swagger openapi swagger-php
php swagger openapi swagger-php
asked Mar 8 at 9:42
speziaspezia
635
asked Mar 8 at 9:42
speziaspezia
635
asked Mar 8 at 9:42
speziaspezia
635
asked Mar 8 at 9:42
speziaspezia
635
asked Mar 8 at 9:42
speziaspezia
635
635
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
Authorization has nothing to do with XSRF-TOKEN.
I also had the same issue and solved it after several hours of googling. Here are the changes you might want to try:
Remove these lines:
* @OAParameter(
* name="Authorization",
* in="header",
* required=true,
* description="Bearer access-token",
* @OASchema(
* type="bearerAuth"
* )
* ),
And change this:
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="Authorization",
* type="http",
* scheme="Bearer",
* bearerFormat="JWT",
* ),
to
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="bearerAuth",
* type="http",
* scheme="bearer",
* bearerFormat="JWT",
* ),
Note that the "Bearer" and "bearer" are differed.
answered Mar 13 at 4:53
Nghia LeNghia Le
212
add a comment |
Your Answer
StackExchange.ifUsing("editor", function ()
StackExchange.using("externalEditor", function ()
StackExchange.using("snippets", function ()
StackExchange.snippets.init();
);
);
, "code-snippets");
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "1"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f55060478%2fissue-authorization-bearer-token-in-a-swagger-openapi-annotations%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
Authorization has nothing to do with XSRF-TOKEN.
I also had the same issue and solved it after several hours of googling. Here are the changes you might want to try:
Remove these lines:
* @OAParameter(
* name="Authorization",
* in="header",
* required=true,
* description="Bearer access-token",
* @OASchema(
* type="bearerAuth"
* )
* ),
And change this:
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="Authorization",
* type="http",
* scheme="Bearer",
* bearerFormat="JWT",
* ),
to
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="bearerAuth",
* type="http",
* scheme="bearer",
* bearerFormat="JWT",
* ),
Note that the "Bearer" and "bearer" are differed.
answered Mar 13 at 4:53
Nghia LeNghia Le
212
add a comment |
Authorization has nothing to do with XSRF-TOKEN.
I also had the same issue and solved it after several hours of googling. Here are the changes you might want to try:
Remove these lines:
* @OAParameter(
* name="Authorization",
* in="header",
* required=true,
* description="Bearer access-token",
* @OASchema(
* type="bearerAuth"
* )
* ),
And change this:
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="Authorization",
* type="http",
* scheme="Bearer",
* bearerFormat="JWT",
* ),
to
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="bearerAuth",
* type="http",
* scheme="bearer",
* bearerFormat="JWT",
* ),
Note that the "Bearer" and "bearer" are differed.
answered Mar 13 at 4:53
Nghia LeNghia Le
212
add a comment |
Authorization has nothing to do with XSRF-TOKEN.
I also had the same issue and solved it after several hours of googling. Here are the changes you might want to try:
Remove these lines:
* @OAParameter(
* name="Authorization",
* in="header",
* required=true,
* description="Bearer access-token",
* @OASchema(
* type="bearerAuth"
* )
* ),
And change this:
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="Authorization",
* type="http",
* scheme="Bearer",
* bearerFormat="JWT",
* ),
to
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="bearerAuth",
* type="http",
* scheme="bearer",
* bearerFormat="JWT",
* ),
Note that the "Bearer" and "bearer" are differed.
answered Mar 13 at 4:53
Nghia LeNghia Le
212
Authorization has nothing to do with XSRF-TOKEN.
I also had the same issue and solved it after several hours of googling. Here are the changes you might want to try:
Remove these lines:
* @OAParameter(
* name="Authorization",
* in="header",
* required=true,
* description="Bearer access-token",
* @OASchema(
* type="bearerAuth"
* )
* ),
And change this:
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="Authorization",
* type="http",
* scheme="Bearer",
* bearerFormat="JWT",
* ),
to
* @OASecurityScheme(
* securityScheme="bearerAuth",
* in="header",
* name="bearerAuth",
* type="http",
* scheme="bearer",
* bearerFormat="JWT",
* ),
Note that the "Bearer" and "bearer" are differed.
answered Mar 13 at 4:53
Nghia LeNghia Le
212
answered Mar 13 at 4:53
Nghia LeNghia Le
212
answered Mar 13 at 4:53
Nghia LeNghia Le
212
answered Mar 13 at 4:53
Nghia LeNghia Le
212
212
add a comment |
add a comment |
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f55060478%2fissue-authorization-bearer-token-in-a-swagger-openapi-annotations%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
