stackoom
  简体   繁体   中英

How can I configure "HTTPS" schemes with the drf-yasg auto-generated swagger page?

 原文  2019-04-08 07:42:20       python/ python-3.x/ django-rest-framework/ swagger/ drf-yasg

Question

I know in a traditional swagger YAML file, we can define the schemes with:

schemes:
  - http
  - https

//OR

schemes: [http, https]

However, how can I do the same thing with auto-generated swagger page with the drf-yasg library?

Now, the generated swagger page only contains HTTP schemes, but HTTPS is missing. I've tried set the DEFAULT_API_URL in setting.py to https://mybaseurl.com , but it seems not to be working.

4 answers

solution1
 11 ACCPTED  2019-05-11 13:23:54

There is a solution.

When defining get_schema_view() in urls.py , use this code:

schema_view = get_schema_view(
    openapi.Info( ... ),
    url='https://example.net/api/v1/', # Important bit
    public=True,
    permission_classes=(permissions.AllowAny,)
)

Note: You can either use https or http because of that better use this solution with an environment variable for different setups.

solution2
 10  2021-06-17 14:52:39

To use both http and https schemes in swagger you can extend OpenAPISchemaGenerator from drf_yasg.generators .

class BothHttpAndHttpsSchemaGenerator(OpenAPISchemaGenerator):
    def get_schema(self, request=None, public=False):
        schema = super().get_schema(request, public)
        schema.schemes = ["http", "https"]
        return schema

So now you can use it as generator_class for get_schema_view()

schema_view = get_schema_view(
    openapi.Info( ... ),
    public=True,
    generator_class=BothHttpAndHttpsSchemaGenerator, # Here
    permission_classes=(AllowAny,)
)

solution3
 0  2020-09-25 12:00:05

Put

url='https://your_server_address/'

in the get_schema_view() function with a URL.

solution4
 0  2022-06-20 10:21:29

Another way to have https scheme in swagger page is to use SECURE_PROXY_SSL_HEADER configuration.

Assuming that your Django REST API is sitting behind an Nginx that is doing SSL termination, you can let the Nginx forward X-Forwarded-Proto: https to your Django application (Nginx might already forward this header by default depending on how you set things up). With the configuration below, your Django application will realize that it is behind a SSL terminating Nginx, and Django's internal function is_secure() will return True when the header is present. Refer to Django SSL Settings .

Once the is_secure() returns True , the swagger page scheme will automatically turn into https .

SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')

I like this approach since it does not require any hard coding url or even configuring url from environment variables. Additionally, the is_secure() function is used internally in other place as well so it is desirable to have the function work as it idealy should.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question With drf-yasg, how can i show multiple openapi schemes? how to specify example value on drf-yasg swagger_auto_schema request_body? How change Schemes from HTTP to HTTPS in drf_yasg? Django 2.x drf-yasg how to create API in a custom method (like in swagger) Django - drf-yasg setting request_body in @swagger_auto_schema to reduced version of serializer on @api_view Django How to use drf-yasg in class-base view which is parent of all other views to generate swagger docs? Django, drf-yasg - how to add description to tags? Django rest framework drf-yasg swagger multiple file upload error for ListField serializer set custom basePath in drf-yasg drf-yasg hide title property
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM