Api-blueprint: Authentication

Created on 14 Aug 2013  ·  14Comments  ·  Source: apiaryio/api-blueprint

Direct support for API authentication.

RFC proposals

Next Language RFC Feature
Source
picture zdne

Most helpful comment

So what's the status of authentication? #201 was closed, because it was superseded by https://github.com/apiaryio/api-blueprint-rfcs/pull/5 and https://github.com/apiaryio/api-blueprint-rfcs/pull/6. They were merged as RFC over two years ago, so is it going to be implemented?

picture imanel on 22 Feb 2018
👍8

All 14 comments

This sounds really useful to me.

xurde picture xurde on 14 Aug 2013

@xurde Glad to hear that! If you feel like, feel free to propose a syntax or just share a stub / example of how would you like to describe it. Also are you interested in a particular type of authentication?

zdne picture zdne on 14 Aug 2013

I would be interested in supporting OAuth 1.1 which requires setting HTTP Authorization header with various fields.

rurounijones picture rurounijones on 15 Aug 2013

I would like to be able to mock / use / define the requesting of a token based on username/credentials and using that token for subsequent requests to the api. I suppose inlining some javascript that generates / parses the tokens or the username/credenitials into the blueprint could be a solution.

remkoboschker picture remkoboschker on 15 Aug 2013

OAuth 2.0 is quite widely used.

kadishmal picture kadishmal on 16 Oct 2013

Please let me know whether traits as proposed in #47 would improve auth needs. Also refer to this example: https://gist.github.com/zdne/01e287fe18d232672d43#file-4-example-gist-fox-api-md

zdne picture zdne on 17 Dec 2013

To be addressed (and closed) with #47.

zdne picture zdne on 31 Jan 2014

Not sure if this is still being worked on, but a way to document that an API key is required for all requests would be great! So somewhere I could put that {?apikey} is in all requests without having to manually add it as parameters to all paths.

searsaw picture searsaw on 18 Dec 2014

Hey @searsaw,
yes, this is our top-priority – scheduled right after #25 (which is drawing to an end so we will hopefully start on it soon).

cc @pksunkara

zdne picture zdne on 18 Dec 2014

The oauthd project has a very nice gallery of declarative descriptions for various OAuth authentications of more than 100+ production APIs. Have a look to files conf.json and settings.json in any folder here.

I think it's a good inspiration for OAuth requirements in the API Blueprint syntax.

netmilk picture netmilk on 11 May 2015

Syntax proposed at #201

pksunkara picture pksunkara on 1 Jun 2015

Added RFC proposals to the OP: https://github.com/apiaryio/api-blueprint/issues/11#issue-18055746

zdne picture zdne on 1 Dec 2015

So what's the status of authentication? #201 was closed, because it was superseded by https://github.com/apiaryio/api-blueprint-rfcs/pull/5 and https://github.com/apiaryio/api-blueprint-rfcs/pull/6. They were merged as RFC over two years ago, so is it going to be implemented?

imanel picture imanel on 22 Feb 2018
👍8

Any update?

hsluoyz picture hsluoyz on 11 Dec 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

robbinjanssen picture robbinjanssen  ·  6Comments
BigBlueHat picture BigBlueHat  ·  3Comments
zatziky picture zatziky  ·  4Comments
jrep picture jrep  ·  10Comments
Perni1984 picture Perni1984  ·  6Comments