swagger-parser
swagger-parser copied to clipboard
swagger-api
Invalid references do not throw parser error
In the attached open API document, the response schema is referencing a parameter rather than a schema. This is an invalid use case and should throw an error during parsing. I noticed when $refs are invalid, they usually are not validated correctly.
How should the implementation handle this scenario? Should it throw an error? Should it ignore that response or schema?
There needs to be a consistent approach in handling this, and hence I'm asking this question.
openapi: 3.0.1 info: title: Swagger Petstore description: 'This is a sample server Petstore server' version: 1.0.0 servers:
- url: http://mytestServer/{v1} variables: v2: default: 'd' paths: '/pet/{petId}': get: parameters: - $ref: '#/components/parameters/P1' responses: '200': $ref: '#/components/responses/R1' components: responses: R1: description: The specified resource was not found content: application/json: schema: $ref: '#/components/parameters/P1' parameters: P1: in: path name: petId schema: type: string required: true
Not sure if my problem belongs in this thread, but I do not get any error at all when my $ref points to an object that does not exist.
@gracekarina any pointer you can give us? I would be ok helping to fix this.
hi, the error message Is available through SwaggerParseResult.getMessages(). Please let us know if this fixes your issue.
@gracekarina thanks for the answer. I still wonder if there any special reason for the parser to continue instead of failing?
When the swagger-parser is called from swagger-cli's SwaggerCodegen, the messages are logged but the code generator fails silently. The only way to get the messages is to fork the code and throw from the parser instead of just logging and adding to the messages. The assumption by swagger* teams seems to be that a human is running the code generator interactively and looking at log output (with debug enabled), but we run the code generator programmatically, in every build, and there's nobody looking at output. Instead, we expect to fail the build if something is wrong with the schema, but that doesn't happen. It just fails silently. If swagger-parser had an option to throw an exception that contains the messages instead of logging and returning, it would be super helpful.
hi, the error message Is available through SwaggerParseResult.getMessages(). Please let us know if this fixes your issue.
@gracekarina Unfortunately, this issue is still present. The validation for invalid references only works for schema references, but not for the other referencable objects (e.g. responses, parameters, request body, header, ...).
Here is a simple example:
openapi: 3.0.3
info:
title: Test
version: 0.0.1
paths:
/albums:
get:
responses:
200:
$ref: "#/components/responses/TestFoo"
components:
responses:
Test:
content:
application/json:
schema:
$ref: "#/components/schemas/TestNumberBar"
description: "Test response"
schemas:
TestNumber:
type: number
When parsing this with OpenAPIV3Parser the SwaggerParseResult.getMessages() only contains one error:
attribute components.responses.Test.content.'application/json'.schema.TestNumberBar is not of type `schema`
So the invalid reference of #/components/schemas/TestNumberBar is correctly reported, but the invalid reference of #/components/responses/TestFoo is not reported at all.
