Skip to content

Allow URIs for Security Schemes #4388

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Mar 22, 2025
Merged

Allow URIs for Security Schemes #4388

merged 2 commits into from
Mar 22, 2025

Conversation

handrews
Copy link
Member

@handrews handrews commented Feb 28, 2025
edited by karenetheridge
Loading

Fixes #3776

This allows Security Requirement Objects to reference Security Scheme Objects by URI instead of implicit component name. Without this ability, it is difficult to share Security Schemes in a way that is consistent with re-usable component documents.

This approach provides parity with how the Discriminator Object's mapping field works.

Also add a note about the complexity of these rules to the Security Considerations section.

Note that since the existing name syntax is still valid, and no constraints are present on names, there are no meaningful schema updates for this change.

  • no schema changes are needed for this pull request

@handrews handrews added the re-use: ref/id resolution how $ref, operationId, or anything else is resolved label Feb 28, 2025
@handrews handrews added this to the v3.2.0 milestone Feb 28, 2025
@handrews handrews requested review from a team as code owners February 28, 2025 14:46
mikekistler
mikekistler previously approved these changes Feb 28, 2025
View reviewed changes
Copy link
Contributor

@mikekistler mikekistler left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good! 👍

ralfhandl
ralfhandl reviewed Mar 4, 2025
View reviewed changes
@baywet baywet mentioned this pull request Mar 13, 2025
Closed
@handrews handrews mentioned this pull request Mar 17, 2025
Closed
1 task
handrews added 2 commits March 18, 2025 13:55
@handrews
Allow URIs for Security Schemes
50f65f5 
This allows Security Requirement Objects to reference Security Scheme Objects by URI instead of implicit component name. Without this ability, it is difficult to share Security Schemes in a way that is consistent with re-usable component documents.

This approach provides parity with how the Discriminator Object's mapping field works.

Also add a note about the complexity of these rules to the Security Considerations section.
@handrews
Review feedback
33aef07
@handrews
Copy link
Member Author

@ralfhandl this should now have your comments addressed.

@ralfhandl ralfhandl requested review from a team and mikekistler March 19, 2025 11:06
@ralfhandl ralfhandl linked an issue Mar 19, 2025 that may be closed by this pull request
Use URI references for Security Requirements in 3.2 #3776
Closed
@miqui miqui merged commit 55d0c62 into OAI:v3.2-dev Mar 22, 2025
2 checks passed
@handrews handrews deleted the sec-req-uri branch March 29, 2025 17:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ralfhandl ralfhandl ralfhandl approved these changes

@miqui miqui miqui approved these changes

@mikekistler mikekistler Awaiting requested review from mikekistler

Assignees

No one assigned

Labels

enhancement re-use: ref/id resolution how $ref, operationId, or anything else is resolved

Projects

None yet

Milestone

v3.2.0

Development

Successfully merging this pull request may close these issues.

Use URI references for Security Requirements in 3.2

4 participants

@handrews @ralfhandl @miqui @mikekistler