Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Proxy logs violation for request with multiple or optional security schemes #141

Open
richjyoung opened this issue Oct 23, 2024 · 0 comments
Open

Proxy logs violation for request with multiple or optional security schemes #141

richjyoung opened this issue Oct 23, 2024 · 0 comments
Labels
bug Something isn't working

Comments

@richjyoung
Copy link

This looks like the same issue as #80, except this affects the proxy mode rather than the mock server.

Given the following securitySchemes:

securitySchemes:
  Session:
    type: apiKey
    in: cookie
    name: session
  APIKey:
    type: apiKey
    in: header
    name: "X-API-Key"

In both of the following cases a request with the given security section will log a violation of "API Key X-API-Key not found in header":

# Optional security
security:
  - {}
  - APIKey: []

# Either Cookie or API Key security required
security:
  - Session: []
  - APIKey: []

No violation is logged for the cookie authentication which is present in the request in both cases.
@daveshanley daveshanley added the bug Something isn't working label Nov 18, 2024
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@daveshanley @richjyoung