openapi-directory icon indicating copy to clipboard operation
openapi-directory copied to clipboard

Published 20 hours ago verified publisher icon APIs-guru

Google: security scheme list is incorrect

Open giordanolucas opened this issue 6 years ago • 2 comments

https://github.com/APIs-guru/openapi-directory/blob/8bcffb82811377f96b2d69f7d8cbaabc6bc94b12/APIs/googleapis.com/calendar/v3/swagger.yaml#L151

This should be

      security:
        - Oauth2:
            - 'https://www.googleapis.com/auth/calendar'
        - Oauth2c:
            - 'https://www.googleapis.com/auth/calendar'

The - before Oauth2c is missing.

giordanolucas avatar Sep 25 '19 17:09 giordanolucas

This issue causes OpenAPI to interpret the security requirement as OAuth2 AND OAuth2c. It should be OAuth2 OR OAuth2c. Another issue is it creates a new security section for each scope. This seems to affect all Google APIs. Who is the upstream maintainer of these?

ryanackley avatar Oct 23 '22 20:10 ryanackley

@ryanackley

Who is the upstream maintainer of these?

The google discovery service APIs are converted within this project using https://github.com/APIs-guru/google-discovery-to-swagger

MikeRalphson avatar Feb 20 '23 14:02 MikeRalphson