Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Persist authorization data across browser close/refresh for OpenAPI Swagger UI #4314

Closed
2 tasks done
nlykkei opened this issue May 10, 2024 · 2 comments · Fixed by #4312
Closed
2 tasks done

Persist authorization data across browser close/refresh for OpenAPI Swagger UI #4314

nlykkei opened this issue May 10, 2024 · 2 comments · Fixed by #4312
Assignees
@leandrodamascena
Labels
event_handlers feature-request feature request openapi-schema

Comments

@nlykkei
Copy link
Contributor

nlykkei commented May 10, 2024

Use case

Currently, each time the user refreshes the Swagger UI or closes the browser, the authorization data, e.g. OAuth 2.0 tokens, is lost, which forces the user to re-authenticate to call APIs.

While one may argue that transient authorization data is more secure, it's not a great user experience. Many web applications persist short-lived tokens.

The persistAuthorization option to Swagger UI persists the authorization data in local storage, so it remains across browser close/refresh:

https://swagger.io/docs/open-source-tools/swagger-ui/usage/configuration/#:~:text=persistAuthorization

Solution/User Experience

Provide an extra argument persist_authorization to enable_swagger()

Alternative solutions

No response

Acknowledgment
@nlykkei nlykkei added feature-request feature request triage Pending triage from maintainers labels May 10, 2024
@nlykkei nlykkei mentioned this issue May 10, 2024
Merged
7 tasks
@leandrodamascena leandrodamascena linked a pull request May 12, 2024 that will close this issue
feat(event_handler): add support for persisting authorization session in OpenAPI #4312
Merged
7 tasks
@leandrodamascena leandrodamascena moved this from Triage to Working on it in Powertools for AWS Lambda (Python) May 12, 2024
@leandrodamascena leandrodamascena self-assigned this May 12, 2024
@leandrodamascena
Copy link
Contributor

Thanks for opening this! Working to merge the PR

@leandrodamascena leandrodamascena added event_handlers openapi-schema and removed triage Pending triage from maintainers labels May 12, 2024
@github-project-automation github-project-automation bot moved this from Working on it to Coming soon in Powertools for AWS Lambda (Python) May 12, 2024
@github-actions GitHub Actions
Copy link
Contributor

⚠️COMMENT VISIBILITY WARNING⚠️

This issue is now closed. Please be mindful that future comments are hard for our team to see.

If you need more assistance, please either tag a team member or open a new issue that references this one.

If you wish to keep having a conversation with other community members under this issue feel free to do so.

@heitorlessa heitorlessa moved this from Coming soon to Shipped in Powertools for AWS Lambda (Python) Jun 10, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@leandrodamascena leandrodamascena

Labels
event_handlers feature-request feature request openapi-schema
Projects
Powertools for AWS Lambda (Python)
Status: Shipped
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(event_handler): add support for persisting authorization session in OpenAPI
2 participants
@leandrodamascena @nlykkei