Commits · 6951623da77a3eed9480110ea260e69068dafb4f · FIT-Connect / Submission API

Feb 28, 2024

chore(api): redocly warns if endpoints dont have security set · 6951623d

Jonas Gröger authored 1 year ago

usually we use the OAuth2 security schema. but public endpoints
do not have this security constraint. callbacks don't authenticate
against the called endpoint.

For reference, the warning was (one example):

> Every operation should have security defined on it or on the root level.
>
> 418 | get:
>     | ^^^
> 419 |   operationId: get-destination-key
> 420 |   summary: Ruft einen JWK des Zustelldienstes ab
>
> Warning was generated by the security-defined rule.

Verified

6951623d

Jul 17, 2023
- feat: bidirectional communication (planning#460 ) · e7bed4a3
  Jonas Gröger authored 1 year ago
  
  Verified
  
  e7bed4a3
Jun 29, 2023
- chore(lint): add operationId to callbacks · 0b99239d
  Jonas Gröger authored 1 year ago
  
  Verified
  
  0b99239d
Oct 05, 2021
- fix: Add missing HMAC headers for callbacks · 9451ba12
  David Schwarzmann authored 3 years ago
  
  9451ba12
Sep 23, 2021
- refactor: Change callback urls to example ones · fbb0648a
  David Schwarzmann authored 3 years ago
  
  Currently callback expressions don't allow referencing other operations
  fbb0648a
- Improve callback descriptions · 443c685f
  Marco Holz authored 3 years ago
  
  443c685f
- fix(callbacks): cannot include a whole file · 83c7252f
  Jonas Gröger authored 3 years ago
  
  So we have to include it separately. It's a little more text. See https://github.com/OAI/OpenAPI-Specification/issues/417
  83c7252f