Skip to content

Clarify the spec to allow optional or unspecified OAuth scopes #1888

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 4 commits into from
Feb 12, 2020
Merged

Clarify the spec to allow optional or unspecified OAuth scopes #1888

Changes from 1 commit
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
79470fe
Referencing issue #513. Clarify the spec to accommodate OAuth schemes…
tedepstein Apr 5, 2019
0e18944
Removed the provision for default scope represented as empty string. …
tedepstein Apr 5, 2019
1700e2f
For #513, adjusting language and removing examples
tedepstein Feb 12, 2020
6a04a14
removed unnecessary example header
Feb 12, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
For #513, adjusting language and removing examples 
For #513, adjusting language and removing examples as suggested by @webron.
  • Loading branch information
@tedepstein
tedepstein authored Feb 12, 2020
commit 1700e2f3b3c3ae1913ab4b9237ce71ad1bb01767
33 changes: 1 addition & 32 deletions versions/3.0.3.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3286,7 +3286,7 @@ Field Name | Type | Applies To | Description
<a name="oauthFlowAuthorizationUrl"></a>authorizationUrl | `string` | `oauth2` (`"implicit"`, `"authorizationCode"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL.
<a name="oauthFlowTokenUrl"></a>tokenUrl | `string` | `oauth2` (`"password"`, `"clientCredentials"`, `"authorizationCode"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL.
<a name="oauthFlowRefreshUrl"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL.
<a name="oauthFlowScopes"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it. If scope is not required or not specified in the authorization scheme, the map MAY be empty.
<a name="oauthFlowScopes"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it. The map MAY be empty.

This object MAY be extended with [Specification Extensions](#specificationExtensions).

Expand Down Expand Up @@ -3333,37 +3333,6 @@ flows:
read:pets: read your pets
```

###### OAuth Flows with Optional or Unspecified Scope

```JSON
{
"type": "oauth2",
"flows": {
"implicit": {
"authorizationUrl": "https://example.com/api/oauth/dialog",
"scopes": {}
},
"authorizationCode": {
"authorizationUrl": "https://example.com/api/oauth/dialog",
"tokenUrl": "https://example.com/api/oauth/token",
"scopes": {}
}
}
}
```

```yaml
type: oauth2
flows:
implicit:
authorizationUrl: https://example.com/api/oauth/dialog
scopes: {}
authorizationCode:
authorizationUrl: https://example.com/api/oauth/dialog
tokenUrl: https://example.com/api/oauth/token
scopes: {}
```

#### <a name="securityRequirementObject"></a>Security Requirement Object

Lists the required security schemes to execute this operation.
Expand Down