OAuth security scheme: empty scopes element is still rendered #1968

meden · 2022-04-25T14:29:13Z

Describe the bug
When defining an oauth2 security scheme, if no scopes are used the scopes element still gets rendered (as empty) in the resulting page.

Expected behavior
scopes information should be hidden (just like refreshUrl).

Minimal reproducible OpenAPI snippet(if possible)

openapi: 3.0.3
info:
  title: OAuth2 API
  version: '1.0'
  description: This is an API.

paths:
  '/res':
    get:
      operationId: get
      description: Returns something.
      responses:
        '200':
          description: Some resource.
          content:
            application/json: { }

components:
  securitySchemes:
    OAuth2:
      type: oauth2
      description: You know it.
      flows:
        clientCredentials:
          tokenUrl: /auth
          scopes: { }

security:
  - OAuth2: [ ]

Screenshots

Additional context
A similar issue (#1044) was already solved, but allowing a definition against OpenAPI specifications.

The text was updated successfully, but these errors were encountered:

AlexVarchuk added the Type: Bug label Apr 27, 2022

AlexVarchuk added this to the v2.0 milestone Apr 27, 2022

AlexVarchuk self-assigned this Apr 28, 2022

AlexVarchuk mentioned this issue Apr 29, 2022

fix: not show scopes if keys empty or not exist #1975

Merged

3 tasks

AlexVarchuk closed this as completed in #1975 May 3, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

OAuth security scheme: empty scopes element is still rendered #1968

OAuth security scheme: empty scopes element is still rendered #1968

meden commented Apr 25, 2022

OAuth security scheme: empty scopes element is still rendered #1968

OAuth security scheme: empty scopes element is still rendered #1968

Comments

meden commented Apr 25, 2022