Merge pull request #5 from Svetloslav15/snovoselski/remove-lock-icon-for-anonymous-endpoints

Svetloslav15 · web-flow · commit 0341b81adb04 · 2022-11-17T17:30:13.000+02:00
fix(swagger): remove lock icon for anonymous users
diff --git a/NorthwindCRUD/Filters/AuthResponseOperationFilter.cs b/NorthwindCRUD/Filters/AuthResponseOperationFilter.cs
@@ -0,0 +1,36 @@
+﻿namespace NorthwindCRUD.Filters
+{
+    using Microsoft.AspNetCore.Authorization;
+    using Microsoft.OpenApi.Models;
+    using Swashbuckle.AspNetCore.SwaggerGen;
+
+    public class AuthResponsesOperationFilter : IOperationFilter
+    {
+        public void Apply(OpenApiOperation operation, OperationFilterContext context)
+        {
+            var authAttributes = context.MethodInfo.DeclaringType.GetCustomAttributes(true)
+                .Union(context.MethodInfo.GetCustomAttributes(true))
+                .OfType<AuthorizeAttribute>();
+
+            if (authAttributes.Any())
+            {
+                var securityRequirement = new OpenApiSecurityRequirement()
+            {
+                {
+                    new OpenApiSecurityScheme
+                    {
+                        Reference = new OpenApiReference
+                        {
+                            Type = ReferenceType.SecurityScheme,
+                            Id = "Bearer"
+                        }
+                    },
+                    new List<string>()
+                }
+            };
+                operation.Security = new List<OpenApiSecurityRequirement> { securityRequirement };
+                operation.Responses.Add("401", new OpenApiResponse { Description = "Unauthorized" });
+            }
+        }
+    }
+}
diff --git a/NorthwindCRUD/Program.cs b/NorthwindCRUD/Program.cs
@@ -10,6 +10,7 @@
 using NorthwindCRUD.Helpers;
 using NorthwindCRUD.Services;
 using System.Text;
+using NorthwindCRUD.Filters;
 
 var builder = WebApplication.CreateBuilder(args);
 var AllowAnyOriginPolicy = "_allowAnyOrigin";
@@ -36,20 +37,8 @@
         BearerFormat = "JWT",
         Scheme = "bearer"
     });
-    option.AddSecurityRequirement(new OpenApiSecurityRequirement
-    {
-        {
-            new OpenApiSecurityScheme
-            {
-                Reference = new OpenApiReference
-                {
-                    Type=ReferenceType.SecurityScheme,
-                    Id="Bearer"
-                }
-            },
-            new string[]{}
-        }
-    });
+    
+    option.OperationFilter<AuthResponsesOperationFilter>();
 });
 
 builder.Services.AddCors(options =>
