Show API需要使用Bearer令牌进行身份验证

时间:2019-04-25 10:03:30

标签: java spring-boot swagger-ui springfox

现状

我有一个Spring Boot应用程序,其中包含一些需要Bearer令牌的REST API。我正在使用Springfox自动生成REST API的标志。
我基于this answer定义了以下swagger配置类:

@Configuration
@EnableSwagger2
public class SwaggerConfig {

    @Autowired
    private TypeResolver typeResolver;

    @Bean
    public Docket api() {
        return new Docket(DocumentationType.SWAGGER_2)
                // .host("leonardo.cloud.reply.eu")
                .useDefaultResponseMessages(false).select()
                .apis(RequestHandlerSelectors.basePackage("it.reply.speech.analysis")).paths(PathSelectors.any())
                .build().genericModelSubstitutes(ResponseEntity.class)
                .alternateTypeRules(newRule(
                        typeResolver.resolve(DeferredResult.class,
                                typeResolver.resolve(ResponseEntity.class, WildcardType.class)),
                        typeResolver.resolve(WildcardType.class)))
                .securitySchemes(Lists.newArrayList(apiKey())).apiInfo(apiInfo())
                .securityContexts(Arrays.asList(securityContext()));
    }

    private ApiInfo apiInfo() {
        return new ApiInfo("SpeechToText API", "API for Edison's SpeechToText data access", "0.1", "Terms of service",
                new Contact("Blue Cognitive", "", ""), "No license", "", Collections.emptyList());
    }


    private ApiKey apiKey() {
        return new ApiKey("apiKey", "Authorization", "header");
    }

    private SecurityContext securityContext() {
        return SecurityContext.builder().securityReferences(defaultAuth()).forPaths(PathSelectors.any()).build();
    }

    private List<SecurityReference> defaultAuth() {
        AuthorizationScope authorizationScope = new AuthorizationScope("global", "accessEverything");
        AuthorizationScope[] authorizationScopes = new AuthorizationScope[1];
        authorizationScopes[0] = authorizationScope;
        return Arrays.asList(new SecurityReference("apiKey", authorizationScopes));
    }

}

现在在我敏捷的UI配置中,我有以下输出: enter image description here 如果在 value 字段中添加 bearer bearer-token-value ,则该API可以正常工作。 enter image description here

问题

  1. 定义承载令牌安全性描述的正确方法是吗?
  2. 是否存在一种在UI中立即显示API是 我想像的是锁的左侧或右侧的挂锁之类的东西 API名称。

0 个答案:

没有答案
相关问题
最新问题