Skip to content

Commit

Permalink
feat(impl):[#372] fix OpenApi generation - use apiKey security instea…
Browse files Browse the repository at this point in the history 
…d oauth
  • Loading branch information
@ds-ext-kmassalski
ds-ext-kmassalski committed Jan 25, 2024
1 parent 3223e42 commit d3464a5
Show file tree
Hide file tree
Showing 6 changed files with 46 additions and 53 deletions.
46 changes: 22 additions & 24 deletions docs/src/api/irs-api.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@ info:
servers:
- url: http://localhost:8080
security:
- oAuth2: []
- api_key: []
paths:
/ess/bpn/investigations:
post:
Expand Down Expand Up @@ -58,7 +58,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: Registers an IRS job to start an investigation if a given bpn is contained
in a part chain of a given globalAssetId.
tags:
Expand Down Expand Up @@ -123,7 +123,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Job with the requested jobId not found.
security:
- oAuth2: []
- api_key: []
summary: Return job with additional supplyChainImpacted information.
tags:
- Environmental and Social Standards
Expand Down Expand Up @@ -202,7 +202,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: "Registers an order for an ESS investigation with an array of {globalAssetIds}.
Each globalAssetId will be processed in an separate job, grouped in batches."
tags:
Expand Down Expand Up @@ -292,7 +292,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: Returns paginated jobs with state and execution times.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -343,7 +343,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: "Register an IRS job to retrieve an item graph for given {globalAssetId}."
tags:
- Item Relationship Service
Expand Down Expand Up @@ -427,7 +427,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Job with the requested jobId not found.
security:
- oAuth2: []
- api_key: []
summary: Return job with optional item graph result for requested id.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -492,7 +492,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Job for requested jobId not found.
security:
- oAuth2: []
- api_key: []
summary: Cancel job for requested jobId.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -529,7 +529,7 @@ paths:
$ref: "#/components/schemas/ErrorResponse"
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: Get all available aspect models from semantic hub or local models.
tags:
- Aspect Models
Expand Down Expand Up @@ -582,7 +582,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: "Registers an IRS order with an array of {globalAssetIds}.\
\ Each globalAssetId will be processed in an IRS Job, grouped in batches."
tags:
Expand Down Expand Up @@ -649,7 +649,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Batch Order with the requested orderId not found.
security:
- oAuth2: []
- api_key: []
summary: Get a batch order for a given orderId.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -714,7 +714,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Batch Order with the requested orderId not found.
security:
- oAuth2: []
- api_key: []
summary: Cancel a batch order for a given orderId.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -790,7 +790,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Batch with the requested orderId and batchId not found.
security:
- oAuth2: []
- api_key: []
summary: Get a batch with a given batchId for a given orderId.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -826,7 +826,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: Lists the registered policies that should be accepted in EDC negotiation.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -870,7 +870,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: Register a policy that should be accepted in EDC negotiation.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -915,7 +915,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: Removes a policy that should no longer be accepted in EDC negotiation.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -965,7 +965,7 @@ paths:
$ref: '#/components/schemas/ErrorResponse'
description: Authorization refused by server.
security:
- oAuth2: []
- api_key: []
summary: Updates an existing policy with new validUntil value.
tags:
- Item Relationship Service
Expand Down Expand Up @@ -2639,10 +2639,8 @@ components:
required:
- validUntil
securitySchemes:
oAuth2:
flows:
clientCredentials:
scopes:
{}
tokenUrl: https://localhost
type: oauth2
api_key:
description: Api Key access
in: header
name: X-API-KEY
type: apiKey
21 changes: 8 additions & 13 deletions irs-api/src/main/java/org/eclipse/tractusx/irs/configuration/OpenApiConfiguration.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,16 +26,12 @@
import io.swagger.v3.oas.models.Components;
import io.swagger.v3.oas.models.OpenAPI;
import io.swagger.v3.oas.models.info.Info;
import io.swagger.v3.oas.models.security.OAuthFlow;
import io.swagger.v3.oas.models.security.OAuthFlows;
import io.swagger.v3.oas.models.security.Scopes;
import io.swagger.v3.oas.models.security.SecurityRequirement;
import io.swagger.v3.oas.models.security.SecurityScheme;
import io.swagger.v3.oas.models.servers.Server;
import lombok.RequiredArgsConstructor;
import org.eclipse.tractusx.irs.IrsApplication;
import org.springdoc.core.customizers.OpenApiCustomizer;
import org.springframework.beans.factory.annotation.Value;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;

Expand All @@ -59,7 +55,7 @@ public class OpenApiConfiguration {
@Bean
public OpenAPI customOpenAPI() {
return new OpenAPI().addServersItem(new Server().url(irsConfiguration.getApiUrl().toString()))
.addSecurityItem(new SecurityRequirement().addList("oAuth2"))
.addSecurityItem(new SecurityRequirement().addList("api_key"))
.info(new Info().title("IRS API")
.version(IrsApplication.API_VERSION)
.description(
Expand All @@ -69,20 +65,19 @@ public OpenAPI customOpenAPI() {
/**
* Generates example values in Swagger
*
* @param tokenUri the OAuth2 token uri loaded from application.yaml
* @return the customizer
*/
@Bean
public OpenApiCustomizer customizer(
@Value("${spring.security.oauth2.client.provider.common.token-uri}") final String tokenUri) {
public OpenApiCustomizer customizer() {
return openApi -> {
final Components components = openApi.getComponents();
components.addSecuritySchemes("oAuth2", new SecurityScheme().type(SecurityScheme.Type.OAUTH2)
.flows(new OAuthFlows().clientCredentials(
new OAuthFlow().scopes(
new Scopes())
.tokenUrl(tokenUri))));
components.addSecuritySchemes("api_key", new SecurityScheme().type(SecurityScheme.Type.APIKEY)
.description("Api Key access")
.in(SecurityScheme.In.HEADER)
.name("X-API-KEY")
);
openApi.getComponents().getSchemas().values().forEach(s -> s.setAdditionalProperties(false));

new OpenApiExamples().createExamples(components);
};
}
Expand Down
10 changes: 5 additions & 5 deletions irs-api/src/main/java/org/eclipse/tractusx/irs/controllers/BatchController.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -81,7 +81,7 @@ public class BatchController {

@Operation(operationId = "registerOrder", summary = "Registers an IRS order with an array of {globalAssetIds}. "
+ "Each globalAssetId will be processed in an IRS Job, grouped in batches.",
security = @SecurityRequirement(name = "oAuth2"), tags = { "Item Relationship Service" },
security = @SecurityRequirement(name = "api_key"), tags = { "Item Relationship Service" },
description = "Registers an IRS order with an array of {globalAssetIds}. "
+ "Each globalAssetId will be processed in an IRS Job, grouped in batches.")
@ApiResponses(
Expand Down Expand Up @@ -121,7 +121,7 @@ public BatchOrderCreated registerBatchOrder(final @Valid @RequestBody RegisterBa

@Operation(operationId = "registerESSInvestigationOrder",
summary = "Registers an order for an ESS investigation with an array of {globalAssetIds}. Each globalAssetId will be processed in an separate job, grouped in batches.",
security = @SecurityRequirement(name = "oAuth2"), tags = { "Environmental and Social Standards" },
security = @SecurityRequirement(name = "api_key"), tags = { "Environmental and Social Standards" },
description = "Registers an order for an ESS investigation with an array of {globalAssetIds}. Each globalAssetId will be processed in an separate job, grouped in batches.")
@ApiResponses(
value = { @ApiResponse(responseCode = "201", description = "Returns orderId of registered Batch order.",
Expand Down Expand Up @@ -160,7 +160,7 @@ public BatchOrderCreated registerESSInvestigationOrder(
}

@Operation(description = "Get a batch order for a given orderId.", operationId = "getBatchOrder",
summary = "Get a batch order for a given orderId.", security = @SecurityRequirement(name = "oAuth2"),
summary = "Get a batch order for a given orderId.", security = @SecurityRequirement(name = "api_key"),
tags = { "Item Relationship Service" })
@ApiResponses(value = { @ApiResponse(responseCode = "200", description = "Get a batch order for a given orderId.",
content = { @Content(mediaType = APPLICATION_JSON_VALUE, schema = @Schema(
Expand Down Expand Up @@ -206,7 +206,7 @@ public BatchOrderResponse getBatchOrder(

@Operation(description = "Get a batch with a given batchId for a given orderId.", operationId = "getBatch",
summary = "Get a batch with a given batchId for a given orderId.",
security = @SecurityRequirement(name = "oAuth2"), tags = { "Item Relationship Service" })
security = @SecurityRequirement(name = "api_key"), tags = { "Item Relationship Service" })
@ApiResponses(value = { @ApiResponse(responseCode = "200",
description = "Get a batch with a given batchId for a given orderId.",
content = { @Content(mediaType = APPLICATION_JSON_VALUE,
Expand Down Expand Up @@ -255,7 +255,7 @@ public BatchResponse getBatch(
}

@Operation(description = "Cancel a batch order for a given orderId.", operationId = "cancelBatchOrder",
summary = "Cancel a batch order for a given orderId.", security = @SecurityRequirement(name = "oAuth2"),
summary = "Cancel a batch order for a given orderId.", security = @SecurityRequirement(name = "api_key"),
tags = { "Item Relationship Service" })
@ApiResponses(
value = { @ApiResponse(responseCode = "200", description = "Cancel a batch order for a given orderId.",
Expand Down
10 changes: 5 additions & 5 deletions irs-api/src/main/java/org/eclipse/tractusx/irs/controllers/IrsController.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -93,7 +93,7 @@ public class IrsController {

@Operation(operationId = "registerJobForGlobalAssetId",
summary = "Register an IRS job to retrieve an item graph for given {globalAssetId}.",
security = @SecurityRequirement(name = "oAuth2"), tags = { "Item Relationship Service" },
security = @SecurityRequirement(name = "api_key"), tags = { "Item Relationship Service" },
description = "Register an IRS job to retrieve an item graph for given {globalAssetId}.")
@ApiResponses(value = { @ApiResponse(responseCode = "201", description = "Returns id of registered job.",
content = { @Content(mediaType = APPLICATION_JSON_VALUE,
Expand Down Expand Up @@ -131,7 +131,7 @@ public JobHandle registerJobForGlobalAssetId(final @Valid @RequestBody RegisterJ

@Operation(description = "Return job with optional item graph result for requested id.",
operationId = "getJobForJobId", summary = "Return job with optional item graph result for requested id.",
security = @SecurityRequirement(name = "oAuth2"), tags = { "Item Relationship Service" })
security = @SecurityRequirement(name = "api_key"), tags = { "Item Relationship Service" })
@ApiResponses(value = { @ApiResponse(responseCode = "200",
description = "Return job with item graph for the requested id.",
content = { @Content(mediaType = APPLICATION_JSON_VALUE,
Expand Down Expand Up @@ -190,7 +190,7 @@ public ResponseEntity<Jobs> getJobById(
}

@Operation(description = "Cancel job for requested jobId.", operationId = "cancelJobByJobId",
summary = "Cancel job for requested jobId.", security = @SecurityRequirement(name = "oAuth2"),
summary = "Cancel job for requested jobId.", security = @SecurityRequirement(name = "api_key"),
tags = { "Item Relationship Service" })
@ApiResponses(value = { @ApiResponse(responseCode = "200", description = "Job with requested jobId canceled.",
content = { @Content(mediaType = APPLICATION_JSON_VALUE,
Expand Down Expand Up @@ -236,7 +236,7 @@ public Job cancelJobByJobId(

@Operation(description = "Returns paginated jobs with state and execution times.",
operationId = "getJobsByJobStates", summary = "Returns paginated jobs with state and execution times.",
security = @SecurityRequirement(name = "oAuth2"), tags = { "Item Relationship Service" })
security = @SecurityRequirement(name = "api_key"), tags = { "Item Relationship Service" })
@ApiResponses(value = { @ApiResponse(responseCode = "200",
description = "Paginated list of jobs with state and execution times for requested job states.",
content = { @Content(mediaType = APPLICATION_JSON_VALUE,
Expand Down Expand Up @@ -280,7 +280,7 @@ public PageResult getJobsByState(

@Operation(operationId = "getAllAspectModels",
summary = "Get all available aspect models from semantic hub or local models.",
security = @SecurityRequirement(name = "oAuth2"), tags = { "Aspect Models" },
security = @SecurityRequirement(name = "api_key"), tags = { "Aspect Models" },
description = "Get all available aspect models from semantic hub or local models.")
@ApiResponses(value = { @ApiResponse(responseCode = "200", description = "Returns all available aspect models.",
content = { @Content(mediaType = APPLICATION_JSON_VALUE,
Expand Down
4 changes: 2 additions & 2 deletions irs-api/src/main/java/org/eclipse/tractusx/irs/ess/controller/EssController.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -75,7 +75,7 @@ class EssController {

@Operation(operationId = "registerBPNInvestigation",
summary = "Registers an IRS job to start an investigation if a given bpn is contained in a part chain of a given globalAssetId.",
security = @SecurityRequirement(name = "oAuth2"),
security = @SecurityRequirement(name = "api_key"),
tags = { "Environmental and Social Standards" },
description = "Registers an IRS job to start an investigation if a given bpn is contained in a part chain of a given globalAssetId.")
@ApiResponses(value = { @ApiResponse(responseCode = "201", description = "Returns id of registered job.",
Expand Down Expand Up @@ -114,7 +114,7 @@ public JobHandle registerBPNInvestigation(final @Valid @RequestBody RegisterBpnI
@Operation(description = "Return job with additional supplyChainImpacted information.",
operationId = "getBPNInvestigation",
summary = "Return job with additional supplyChainImpacted information.",
security = @SecurityRequirement(name = "oAuth2"),
security = @SecurityRequirement(name = "api_key"),
tags = { "Environmental and Social Standards" })
@ApiResponses(value = { @ApiResponse(responseCode = "200",
description = "Return job with item graph for the requested id.",
Expand Down
8 changes: 4 additions & 4 deletions ...src/main/java/org/eclipse/tractusx/irs/policystore/controllers/PolicyStoreController.java
View file
Original file line number Diff line number Diff line change
Expand Up @@ -74,7 +74,7 @@ public class PolicyStoreController {

@Operation(operationId = "registerAllowedPolicy",
summary = "Register a policy that should be accepted in EDC negotiation.",
security = @SecurityRequirement(name = "oAuth2"),
security = @SecurityRequirement(name = "api_key"),
tags = { "Item Relationship Service" },
description = "Register a policy that should be accepted in EDC negotiation.")
@ApiResponses(value = { @ApiResponse(responseCode = "201"),
Expand Down Expand Up @@ -106,7 +106,7 @@ public void registerAllowedPolicy(final @Valid @RequestBody CreatePolicyRequest

@Operation(operationId = "getAllowedPolicies",
summary = "Lists the registered policies that should be accepted in EDC negotiation.",
security = @SecurityRequirement(name = "oAuth2"),
security = @SecurityRequirement(name = "api_key"),
tags = { "Item Relationship Service" },
description = "Lists the registered policies that should be accepted in EDC negotiation.")
@ApiResponses(value = { @ApiResponse(responseCode = "200", description = "Returns the policies.",
Expand Down Expand Up @@ -135,7 +135,7 @@ public List<Policy> getPolicies() {

@Operation(operationId = "deleteAllowedPolicy",
summary = "Removes a policy that should no longer be accepted in EDC negotiation.",
security = @SecurityRequirement(name = "oAuth2"),
security = @SecurityRequirement(name = "api_key"),
tags = { "Item Relationship Service" },
description = "Removes a policy that should no longer be accepted in EDC negotiation.")
@ApiResponses(value = { @ApiResponse(responseCode = "200"),
Expand Down Expand Up @@ -166,7 +166,7 @@ public void deleteAllowedPolicy(@PathVariable("policyId") final String policyId)
}

@Operation(operationId = "updateAllowedPolicy", summary = "Updates an existing policy with new validUntil value.",
security = @SecurityRequirement(name = "oAuth2"),
security = @SecurityRequirement(name = "api_key"),
tags = { "Item Relationship Service" },
description = "Updates an existing policy with new validUntil value.")
@ApiResponses(value = { @ApiResponse(responseCode = "200"),
Expand Down

0 comments on commit d3464a5

Please sign in to comment.