Connexion: Is there a way to secure the API endpoint (/swagger.json)? And the swagger UI as well?

Created on 3 Aug 2017 · 1Comment · Source: zalando/connexion

Even if OAuth security is configured on top level, the API endpoints (/swagger.json and /ui) are not secured.

How can these endpoints be secured? It is a bit of a problem that they are not secured at the moment.

Source

rwitzel

👍4

Most helpful comment

I have the same issue. I think I can work around it with a before_request method, but it seems like there has to be a better way.

bobh66 on 20 Sep 2017

👍4

I have the same issue. I think I can work around it with a before_request method, but it seems like there has to be a better way.

bobh66 on 20 Sep 2017

👍4

Was this page helpful?

0 / 5 - 0 ratings

Regression bug: unexpected keyword argument 'token_info'

hjacobs · 4Comments

ValueError: dictionary update sequence element #0 has length 1; 2 is required

braco · 3Comments

AttributeError: 'App' object has no attribute 'handle_exception'

mit2nil · 4Comments

[question] Connexion with Twisted

oddjobz · 3Comments

Resolver eating exceptions

writeson · 4Comments