stackoom
  简体   繁体   中英

Not a valid securityDefinitions definition - swagger for Auth0

 原文  2016-10-24 18:34:19       swagger/ swagger-2.0/ swagger-editor

Question

I have the following spec.yaml file 

swagger: '2.0'
info:
  title: Store API
  version: "0.3.5"
host: SELF_URL_REPLACED_BY_APP
schemes:
  - https
basePath: /
produces:
  - application/json
tags:
  - name: account
  - name: transcripts
security:
  - auth0:
    - openid
  - apiKey: []
securityDefinitions:
  auth0:
    type: oauth2
    authorizationUrl: https://store.auth0.com/authorize
    flow: implicit
    tokenName: id_token
    scopes:
      openid: Grant access to user
  apiKey:
    type: apiKey
    name: Authorization
    in: header

I get this error when i try to validate it in http://editor.swagger.io/ : 

✖ Swagger Error
Not a valid securityDefinitions definition
Jump to line 19
Details
 Object
code:  "ONE_OF_MISSING"
 params: Array [0]
message:  "Not a valid securityDefinitions definition"
 path: Array [2]
schemaId:  "http://swagger.io/v2/schema.json#"
 inner: Array [6]
level: 900
type:  "Swagger Error"
description:  "Not a valid securityDefinitions definition"
lineNumber: 19

What am I missing? I am able to login using Auth0 and everything seems to work fine.

Any advice is much appreciated.

1 answers

solution1
 0  2016-10-25 15:51:33

tokenName is not a valid property of the SecurityDefinitions object.

However your Swagger definition has other errors - such as no paths - which may cause it to give incorrect validation errors about securityDefinitions as you're editing.

The following for instance should validate fine: 

swagger: '2.0'
info:
  title: Store API
  version: "0.3.5"
host: SELF_URL_REPLACED_BY_APP
schemes:
  - https
basePath: /
produces:
  - application/json
tags:
  - name: account
  - name: transcripts
paths:
  /pets:
    get:
      description: Returns all pets from the system that the user has access to
      produces:
      - application/json
      responses:
        '200':
          description: A list of pets.
          schema:
            type: array
            items:
              type: string
      security:
        - auth0: 
          - openid
        - apiKey: []
securityDefinitions:
  auth0:
    type: oauth2
    authorizationUrl: https://store.auth0.com/authorize
    flow: implicit
    scopes:
      openid: Grant access to user
  apiKey:
    type: apiKey
    name: Authorization
    in: header

Also the security section does not belong at the top level, but should be placed under each API method (see above definition for an example) to specify which security definitions should be applied to that API.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question auth0, getting Schema error at securityDefinitions.auth0 Using Swagger with Auth0 Not a valid parameter definition for Swagger query? Swagger throwing “Not a valid parameter definition” CXF Swagger2Feature adding securityDefinitions Swagger throws “Swagger Error Not a valid parameter definition” for body parameter Swagger Error - description: “Not a valid parameter definition” Lib to check that JSON payload is valid accord to Swagger API definition How to get Auth0 OAuth flow to return email claim in JWT token for swagger calls? REST API - Swagger - Don't understand why “Not a valid parameter definition”
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM