[英]C#: Swagger/Swashbuckle - Connect security schemes with "AND"
我有一个 ASP.NET Core Api,其中需要对一个操作使用多个身份验证方案。 我试图通过在 Swagger UI 中显示所有必需的身份验证方案来记录这些操作。 因此,我使用Swashbuckle.AspNetCore (5.1.0)库将OpenApiSecurityRequirement动态添加到IOperationFilter的OpenApiOperation :
if (authorizeAttributes.Any(x => x.AuthenticationSchemes.Contains(InternalControllerBasicAuthentication.AuthenticationScheme)))
{
requirements.Add(new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme {
Reference = new OpenApiReference {
Type = ReferenceType.SecurityScheme,
Id = "credentials"
}
},
new [] { "Basic <credentials-value>" }
}
});
}
if (authorizeAttributes.Any(x => x.AuthenticationSchemes.Contains(OneTimePasswordAuthentication.AuthenticationScheme)))
{
requirements.Add(new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme {
Reference = new OpenApiReference {
Type = ReferenceType.SecurityScheme,
Id = "one-time-password"
}
},
new [] { "Basic <one-time-password-value>" }
}
});
}
operation.Security = new List<OpenApiSecurityRequirement>(requirements);
此外,我使用SwaggerGenOptions来注册所有可能的方案:
var oneTimePasswordScheme = new OpenApiSecurityScheme
{
Name = "one-time-password",
In = ParameterLocation.Header,
Scheme = "one-time-password",
Type = SecuritySchemeType.ApiKey
};
options.AddSecurityDefinition("one-time-password", oneTimePasswordScheme);
var credentialsScheme = new OpenApiSecurityScheme
{
Name = "credentials",
In = ParameterLocation.Header,
Scheme = "credentials",
Type = SecuritySchemeType.ApiKey
};
options.AddSecurityDefinition("credentials", credentialsScheme);
除了 Swagger 在 UI 中使用OR连接器外,一切正常:
有没有办法使用AND连接器配置 Swagger?
任何帮助将不胜感激!
不是添加的OpenApiSecurityRequirement每个OpenApiSecurityScheme ,有必要把所有OpenApiSecurityScheme对象到一个单一的OpenApiSecurityRequirement 。
将安全要求与OR 联系起来:
var requirements = new List<OpenApiSecurityRequirement>();
requirements.Add(new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme {
Reference = new OpenApiReference {
Type = ReferenceType.SecurityScheme,
Id = "scheme-1"
}
},
new [] { "scheme-1-value" }
}
});
requirements.Add(new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme {
Reference = new OpenApiReference {
Type = ReferenceType.SecurityScheme,
Id = "scheme-2"
}
},
new [] { "scheme-2-value" }
}
});
operation.Security = new List<OpenApiSecurityRequirement>(requirements);
将安全要求与AND 联系起来:
var requirement = new OpenApiSecurityRequirement();
requirement.Add(new OpenApiSecurityScheme {
Reference = new OpenApiReference {
Type = ReferenceType.SecurityScheme,
Id = "scheme-1"
}
},
new [] { "scheme-1-value" }
);
requirement.Add(new OpenApiSecurityScheme {
Reference = new OpenApiReference {
Type = ReferenceType.SecurityScheme,
Id = "scheme-2"
}
},
new [] { "scheme-2-value" }
);
operation.Security = new List<OpenApiSecurityRequirement> { requirement };
Swashbuckle Swagger C#WebApi Core 2.0-“产品”为空
[英]Swashbuckle Swagger C# WebApi Core 2.0 - “Produces” is empty
使用 Swashbuckle / Swagger 的 C# 版本化 WebApi 文档
[英]C# versioned WebApi documentation using Swashbuckle / Swagger
k__BackingField在C#中删除(通过Swashbuckle / Swagger看到)
[英]k__BackingField remove in C# (seen via Swashbuckle / Swagger)
C# Swashbuckle:过时的模型属性显示没有改变招摇
[英]C# Swashbuckle: Obsolete model property shows without change in swagger
包含<returns> Swagger Swashbuckle C# 中的 XML 文档块
[英]Including <returns> XML documentation block in Swagger Swashbuckle C#
使用 Swashbuckle Aspnetcore 将 `host`、`basePath` 和 `schemes` 添加到 swagger.json
[英]Add `host`, `basePath` and `schemes` to swagger.json using Swashbuckle Aspnetcore
我可以使用 Swashbuckle 从 Blazor 项目 c# 生成 Swagger UI
[英]Can I use Swashbuckle to generate Swagger UI from Blazor project c#
是否可以使用基于目录的版本(webapi / C#)使用swagger / Swashbuckle进行版本控制?
[英]Is it possible to do versioning with swagger/Swashbuckle using directory based version (webapi /C#)?
如果我升级到 5.0.0-rc4 以上,C# Swagger/Swashbuckle Schemas 空白
[英]C# Swagger/Swashbuckle Schemas blank if I upgrade above 5.0.0-rc4
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.