Any plans on validating security data in request? #187
Labels
Comments
|
That's not something in high priorities. You code is very useful and can be considered as good starting point. I will try to prepare PoC shortly. Thanks. |
p1c2u
added
kind/missing-implementation
area/validation/request
Merged
|
Prepare basic security process. Feel free to extend it. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi,
First of all, thanks a lot for
openapi-corelibrary. It (as well aspyramid_openapi3) helps me a lot for bringing OpenAPI 3 support foraiohttp.webapplications (see https://github.com/playpauseandstop/rororo, if you're interested).However, I'd like to know whether you have any plans in providing security data validation within
openapi-core?As you might now OpenAPI 3 allows user to secure operation with one or several security schemes, such as,
But latest
openapi-corerelease: 0.12.0 doesn't allow developer to check whether request contains requested security data or not.In my library,
rororo, I managed to check security data for simpler cases in Basic HTTP, JWT Token & API Key and wonder whether you plan to add this security check toopenapi-core?If you're interested, I'm willing to help with given feature.
Thanks
The text was updated successfully, but these errors were encountered: