\n
\nRelease notes
\nSourced from respec's releases.
\n\n\nv35.8.0
\nEnhancements
\n\n
\n- feat(core/rs-changelog): let
\nrepoattr overridegithubconfig by@daniel-montalvoin speced/respec#5105Full Changelog: https://github.com/speced/respec/compare/v35.7.0...v35.8.0
\n
\n
\nCommits
\n\n\n\n\n[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n
\n
\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n
",
"created_at": "2026-03-02T07:43:56Z",
"updated_at": "2026-03-02T07:43:57Z",
"closed_at": null,
"merged_at": null,
"merge_commit_sha": "140057d50769312db7200de8b88ecc2a23775108",
"assignees": {},
"requested_reviewers": {},
"requested_teams": {},
"labels": {
"0": {
"id": 6190304304,
"node_id": "LA_kwDOAQkWPc8AAAABcPiMMA",
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification/labels/dependencies",
"name": "dependencies",
"color": "0366d6",
"default": false,
"description": "Pull requests that update a dependency file"
},
"1": {
"id": 7210051804,
"node_id": "LA_kwDOAQkWPc8AAAABrcCo3A",
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification/labels/javascript",
"name": "javascript",
"color": "168700",
"default": false,
"description": "Pull requests that update Javascript code"
}
},
"milestone": null,
"draft": false,
"head": {
"label": "OAI:dependabot/npm_and_yarn/respec-35.8.0",
"ref": "dependabot/npm_and_yarn/respec-35.8.0",
"sha": "cd72fd5a4b283a9b621c08c8c63ab7513bbd11f7",
"user": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"repo": {
"id": 17372733,
"node_id": "MDEwOlJlcG9zaXRvcnkxNzM3MjczMw==",
"name": "OpenAPI-Specification",
"full_name": "OAI/OpenAPI-Specification",
"private": false,
"owner": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"description": "The OpenAPI Specification Repository",
"fork": false,
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification",
"created_at": "2014-03-03T16:53:36Z",
"updated_at": "2026-03-04T19:04:24Z",
"pushed_at": "2026-03-02T07:43:55Z",
"homepage": "https://openapis.org",
"size": 9502,
"stargazers_count": 30936,
"watchers_count": 30936,
"language": "Markdown",
"has_issues": true,
"has_projects": true,
"has_downloads": true,
"has_wiki": true,
"has_pages": false,
"has_discussions": true,
"forks_count": 9164,
"archived": false,
"disabled": false,
"open_issues_count": 112,
"license": {
"key": "apache-2.0",
"name": "Apache License 2.0",
"spdx_id": "Apache-2.0",
"url": "https://api.github.com/licenses/apache-2.0",
"node_id": "MDc6TGljZW5zZTI="
},
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"has_pull_requests": true,
"pull_request_creation_policy": "all",
"topics": {
"0": "apis",
"1": "oas",
"2": "openapi",
"3": "openapi-specification",
"4": "rest",
"5": "webapi"
},
"visibility": "public",
"forks": 9164,
"open_issues": 112,
"watchers": 30936,
"default_branch": "main"
}
},
"base": {
"label": "OAI:main",
"ref": "main",
"sha": "e6646689c1daa50712ca407fca08d17e9a4eb3ae",
"user": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"repo": {
"id": 17372733,
"node_id": "MDEwOlJlcG9zaXRvcnkxNzM3MjczMw==",
"name": "OpenAPI-Specification",
"full_name": "OAI/OpenAPI-Specification",
"private": false,
"owner": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"description": "The OpenAPI Specification Repository",
"fork": false,
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification",
"created_at": "2014-03-03T16:53:36Z",
"updated_at": "2026-03-04T19:04:24Z",
"pushed_at": "2026-03-02T07:43:55Z",
"homepage": "https://openapis.org",
"size": 9502,
"stargazers_count": 30936,
"watchers_count": 30936,
"language": "Markdown",
"has_issues": true,
"has_projects": true,
"has_downloads": true,
"has_wiki": true,
"has_pages": false,
"has_discussions": true,
"forks_count": 9164,
"archived": false,
"disabled": false,
"open_issues_count": 112,
"license": {
"key": "apache-2.0",
"name": "Apache License 2.0",
"spdx_id": "Apache-2.0",
"url": "https://api.github.com/licenses/apache-2.0",
"node_id": "MDc6TGljZW5zZTI="
},
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"has_pull_requests": true,
"pull_request_creation_policy": "all",
"topics": {
"0": "apis",
"1": "oas",
"2": "openapi",
"3": "openapi-specification",
"4": "rest",
"5": "webapi"
},
"visibility": "public",
"forks": 9164,
"open_issues": 112,
"watchers": 30936,
"default_branch": "main"
}
},
"_links": {
"self": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5230"
},
"html": {
"href": "https://github.com/OAI/OpenAPI-Specification/pull/5230"
},
"issue": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/issues/5230"
},
"comments": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/issues/5230/comments"
},
"review_comments": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5230/comments"
},
"review_comment": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/comments{/number}"
},
"commits": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5230/commits"
},
"statuses": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/statuses/cd72fd5a4b283a9b621c08c8c63ab7513bbd11f7"
}
},
"author_association": "CONTRIBUTOR",
"auto_merge": null,
"assignee": null,
"active_lock_reason": null,
"linked_issues": [
5
]
},
{
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5229",
"id": 3339105498,
"node_id": "PR_kwDOAQkWPc7HBrTa",
"number": 5229,
"state": "open",
"locked": false,
"title": "schema-publish: Use commit date instead of author date",
"user": {
"login": "ralfhandl",
"id": 951576,
"node_id": "MDQ6VXNlcjk1MTU3Ng==",
"avatar_url": "https://avatars.githubusercontent.com/u/951576?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/ralfhandl",
"type": "User",
"user_view_type": "public",
"site_admin": false
},
"body": "- Use commit date of last change to construct schema file names instead of author date\r\n - the date a change was merged into the spec version dev branch is easier to track/understand than the date the author made that change in their local repo\r\n- Improve console output of what happened why\r\n\r\n----\r\n\r\n- [x] no schema changes are needed for this pull request\r\n",
"created_at": "2026-02-28T17:37:06Z",
"updated_at": "2026-03-01T17:39:28Z",
"closed_at": null,
"merged_at": null,
"merge_commit_sha": "b153748006bdc93b4358771d5b38aa35e023ac43",
"assignees": {},
"requested_reviewers": {},
"requested_teams": {},
"labels": {},
"milestone": null,
"draft": false,
"head": {
"label": "ralfhandl:main-schema-publish-improved-console-output",
"ref": "main-schema-publish-improved-console-output",
"sha": "f4d2f058445543e61d84a6bde6eb8ec083d75607",
"user": {
"login": "ralfhandl",
"id": 951576,
"node_id": "MDQ6VXNlcjk1MTU3Ng==",
"avatar_url": "https://avatars.githubusercontent.com/u/951576?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/ralfhandl",
"type": "User",
"user_view_type": "public",
"site_admin": false
},
"repo": {
"id": 797974223,
"node_id": "R_kgDOL5Aezw",
"name": "OpenAPI-Specification",
"full_name": "ralfhandl/OpenAPI-Specification",
"private": false,
"owner": {
"login": "ralfhandl",
"id": 951576,
"node_id": "MDQ6VXNlcjk1MTU3Ng==",
"avatar_url": "https://avatars.githubusercontent.com/u/951576?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/ralfhandl",
"type": "User",
"user_view_type": "public",
"site_admin": false
},
"description": "Fork of the OpenAPI Specification Repository",
"fork": true,
"url": "https://api.github.com/repos/ralfhandl/OpenAPI-Specification",
"created_at": "2024-05-08T21:01:03Z",
"updated_at": "2026-02-27T03:11:36Z",
"pushed_at": "2026-02-28T17:18:47Z",
"homepage": "",
"size": 5955,
"stargazers_count": 1,
"watchers_count": 1,
"language": "Markdown",
"has_issues": false,
"has_projects": true,
"has_downloads": true,
"has_wiki": true,
"has_pages": false,
"has_discussions": false,
"forks_count": 0,
"archived": false,
"disabled": false,
"open_issues_count": 0,
"license": {
"key": "apache-2.0",
"name": "Apache License 2.0",
"spdx_id": "Apache-2.0",
"url": "https://api.github.com/licenses/apache-2.0",
"node_id": "MDc6TGljZW5zZTI="
},
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"has_pull_requests": true,
"pull_request_creation_policy": "all",
"topics": {},
"visibility": "public",
"forks": 0,
"open_issues": 0,
"watchers": 1,
"default_branch": "fork-main"
}
},
"base": {
"label": "OAI:main",
"ref": "main",
"sha": "e6646689c1daa50712ca407fca08d17e9a4eb3ae",
"user": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"repo": {
"id": 17372733,
"node_id": "MDEwOlJlcG9zaXRvcnkxNzM3MjczMw==",
"name": "OpenAPI-Specification",
"full_name": "OAI/OpenAPI-Specification",
"private": false,
"owner": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"description": "The OpenAPI Specification Repository",
"fork": false,
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification",
"created_at": "2014-03-03T16:53:36Z",
"updated_at": "2026-03-04T19:04:24Z",
"pushed_at": "2026-03-02T07:43:55Z",
"homepage": "https://openapis.org",
"size": 9502,
"stargazers_count": 30936,
"watchers_count": 30936,
"language": "Markdown",
"has_issues": true,
"has_projects": true,
"has_downloads": true,
"has_wiki": true,
"has_pages": false,
"has_discussions": true,
"forks_count": 9164,
"archived": false,
"disabled": false,
"open_issues_count": 112,
"license": {
"key": "apache-2.0",
"name": "Apache License 2.0",
"spdx_id": "Apache-2.0",
"url": "https://api.github.com/licenses/apache-2.0",
"node_id": "MDc6TGljZW5zZTI="
},
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"has_pull_requests": true,
"pull_request_creation_policy": "all",
"topics": {
"0": "apis",
"1": "oas",
"2": "openapi",
"3": "openapi-specification",
"4": "rest",
"5": "webapi"
},
"visibility": "public",
"forks": 9164,
"open_issues": 112,
"watchers": 30936,
"default_branch": "main"
}
},
"_links": {
"self": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5229"
},
"html": {
"href": "https://github.com/OAI/OpenAPI-Specification/pull/5229"
},
"issue": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/issues/5229"
},
"comments": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/issues/5229/comments"
},
"review_comments": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5229/comments"
},
"review_comment": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/comments{/number}"
},
"commits": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5229/commits"
},
"statuses": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/statuses/f4d2f058445543e61d84a6bde6eb8ec083d75607"
}
},
"author_association": "CONTRIBUTOR",
"auto_merge": null,
"assignee": null,
"active_lock_reason": null,
"linked_issues": []
},
{
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5212",
"id": 3317563942,
"node_id": "PR_kwDOAQkWPc7FvgIm",
"number": 5212,
"state": "open",
"locked": false,
"title": "Fix http QUERY method link text to match its url",
"user": {
"login": "valerii15298",
"id": 44531564,
"node_id": "MDQ6VXNlcjQ0NTMxNTY0",
"avatar_url": "https://avatars.githubusercontent.com/u/44531564?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/valerii15298",
"type": "User",
"user_view_type": "public",
"site_admin": false
},
"body": "The text of link points to an older version of QUERY method draft(08), while actual url points to newer one(11). Changed text to match the url\r\n\r\n\r\n\r\n- [ ] schema changes are included in this pull request\r\n- [ ] schema changes are needed for this pull request but not done yet\r\n- [x] no schema changes are needed for this pull request\r\n",
"created_at": "2026-02-23T20:24:24Z",
"updated_at": "2026-02-27T10:56:03Z",
"closed_at": null,
"merged_at": null,
"merge_commit_sha": "fc14d6eaf1ac2e5b4282fa055f8d36785095dd23",
"assignees": {},
"requested_reviewers": {
"0": {
"login": "miqui",
"id": 5511018,
"node_id": "MDQ6VXNlcjU1MTEwMTg=",
"avatar_url": "https://avatars.githubusercontent.com/u/5511018?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/miqui",
"type": "User",
"user_view_type": "public",
"site_admin": false
}
},
"requested_teams": {},
"labels": {},
"milestone": null,
"draft": false,
"head": {
"label": "valerii15298:patch-8",
"ref": "patch-8",
"sha": "e66c0e52a05e22543f8746e46fac03e529af3088",
"user": {
"login": "valerii15298",
"id": 44531564,
"node_id": "MDQ6VXNlcjQ0NTMxNTY0",
"avatar_url": "https://avatars.githubusercontent.com/u/44531564?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/valerii15298",
"type": "User",
"user_view_type": "public",
"site_admin": false
},
"repo": {
"id": 1063149964,
"node_id": "R_kgDOP15hjA",
"name": "OpenAPI-Specification",
"full_name": "valerii15298/OpenAPI-Specification",
"private": false,
"owner": {
"login": "valerii15298",
"id": 44531564,
"node_id": "MDQ6VXNlcjQ0NTMxNTY0",
"avatar_url": "https://avatars.githubusercontent.com/u/44531564?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/valerii15298",
"type": "User",
"user_view_type": "public",
"site_admin": false
},
"description": "The OpenAPI Specification Repository",
"fork": true,
"url": "https://api.github.com/repos/valerii15298/OpenAPI-Specification",
"created_at": "2025-09-24T08:29:15Z",
"updated_at": "2025-09-24T08:29:15Z",
"pushed_at": "2026-02-24T15:56:29Z",
"homepage": "https://openapis.org",
"size": 10066,
"stargazers_count": 0,
"watchers_count": 0,
"language": null,
"has_issues": false,
"has_projects": true,
"has_downloads": true,
"has_wiki": true,
"has_pages": false,
"has_discussions": false,
"forks_count": 0,
"archived": false,
"disabled": false,
"open_issues_count": 0,
"license": {
"key": "apache-2.0",
"name": "Apache License 2.0",
"spdx_id": "Apache-2.0",
"url": "https://api.github.com/licenses/apache-2.0",
"node_id": "MDc6TGljZW5zZTI="
},
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"has_pull_requests": true,
"pull_request_creation_policy": "all",
"topics": {},
"visibility": "public",
"forks": 0,
"open_issues": 0,
"watchers": 0,
"default_branch": "main"
}
},
"base": {
"label": "OAI:v3.3-dev",
"ref": "v3.3-dev",
"sha": "edfb9602af3c706e34ee33213718d4dad8043a77",
"user": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"repo": {
"id": 17372733,
"node_id": "MDEwOlJlcG9zaXRvcnkxNzM3MjczMw==",
"name": "OpenAPI-Specification",
"full_name": "OAI/OpenAPI-Specification",
"private": false,
"owner": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"description": "The OpenAPI Specification Repository",
"fork": false,
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification",
"created_at": "2014-03-03T16:53:36Z",
"updated_at": "2026-03-04T19:04:24Z",
"pushed_at": "2026-03-02T07:43:55Z",
"homepage": "https://openapis.org",
"size": 9502,
"stargazers_count": 30936,
"watchers_count": 30936,
"language": "Markdown",
"has_issues": true,
"has_projects": true,
"has_downloads": true,
"has_wiki": true,
"has_pages": false,
"has_discussions": true,
"forks_count": 9164,
"archived": false,
"disabled": false,
"open_issues_count": 112,
"license": {
"key": "apache-2.0",
"name": "Apache License 2.0",
"spdx_id": "Apache-2.0",
"url": "https://api.github.com/licenses/apache-2.0",
"node_id": "MDc6TGljZW5zZTI="
},
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"has_pull_requests": true,
"pull_request_creation_policy": "all",
"topics": {
"0": "apis",
"1": "oas",
"2": "openapi",
"3": "openapi-specification",
"4": "rest",
"5": "webapi"
},
"visibility": "public",
"forks": 9164,
"open_issues": 112,
"watchers": 30936,
"default_branch": "main"
}
},
"_links": {
"self": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5212"
},
"html": {
"href": "https://github.com/OAI/OpenAPI-Specification/pull/5212"
},
"issue": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/issues/5212"
},
"comments": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/issues/5212/comments"
},
"review_comments": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5212/comments"
},
"review_comment": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/comments{/number}"
},
"commits": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5212/commits"
},
"statuses": {
"href": "https://api.github.com/repos/OAI/OpenAPI-Specification/statuses/e66c0e52a05e22543f8746e46fac03e529af3088"
}
},
"author_association": "NONE",
"auto_merge": null,
"assignee": null,
"active_lock_reason": null,
"linked_issues": []
},
{
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification/pulls/5204",
"id": 3277703606,
"node_id": "PR_kwDOAQkWPc7DXcm2",
"number": 5204,
"state": "open",
"locked": false,
"title": "v3.3 trial balloon: JSON-Compatible Data section",
"user": {
"login": "handrews",
"id": 2358015,
"node_id": "MDQ6VXNlcjIzNTgwMTU=",
"avatar_url": "https://avatars.githubusercontent.com/u/2358015?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/handrews",
"type": "User",
"user_view_type": "public",
"site_admin": false
},
"body": "* Addresses #5140 (beyond putting `text/toon` in the media type registry, which has already been done).\r\n\r\nThere's a bit of a question if we want to mention TOON in the spec because of the LLM connection and its use in LLM-related HTTP APIs. I was looking for where to put it and noticed the \"[JSON Data](https://spec.openapis.org/oas/v3.2.0.html#json-data)\" and \"[Non-JSON Data](https://spec.openapis.org/oas/v3.2.0.html#non-json-data)\" sections, and thought maybe a \"JSON-Compatible Data\" section would fit in between them.\r\n\r\nPros of this approach:\r\n* It is a valid class of formats that doesn't quite fit either section\r\n* It lets us treat TOON as one of several things rather than promoting it specifically in a way that might seem dated in another year or two\r\n\r\nCons of this approach:\r\n* Unlike our sections on `text/event-stream`, `multipart`, and `form-urlencoded`, TOON would not appear in the Table of Contents\r\n* The other examples here (TOML and YAML) are popular formats, but not ones that are all that frequently used in HTTP APIs as far as I know (although obviously we use YAML for authoring OADs), so I'm not sure we want to call attention to them here (this is why they're not in the Media Type Registry- I did consider including them and decided not to).\r\n\r\nAdditional questions:\r\n* Should the format name (TOON, TOML, YAML) and acronym expansions (Token-Oriented Object Notation, Tom's Obvious Minimal Language, YAML Ain't a Markup Language) be included in addition to the media types?\r\n\r\nI'm fine with this going in, or reworking it substantially, or dropping the idea and closing #5140 as completed based on the media type registry entry. But I figured it would be easier to discuss a concrete change than the abstract.\r\n\r\nDependabot commands and options
\n\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show
data array [Station]\r\n```\r\n\r\nLikewise, the `description` for the `list-trains` operation could be more specific\r\nand document the response with an oasdoc link to the `Station` schema:\r\n\r\n```markdown\r\nThe response has a `data` object which is an array containing a page-worth\r\nof {@schema Station} objects.\r\n```\r\n\r\nThe tooling could inject an HTML link to the `Stations` schema.\r\n\r\n## Notation\r\n\r\nI propose specific notation for `oasdoc`.\r\n\r\noasdoc annotations have the form\r\n\r\n```text\r\nannotation ::= '{@' oasdoc-identifier name [ '|' options] '}'\r\n```\r\n\r\n### `{@op operationId}`\r\n\r\n### `{@op operationId|alt text}`\r\n\r\nAdd a hyperlink to the operation named by `operationid`.\r\nThe default hyperlink text is the `operationid` if no `alt text` is given.\r\n\r\n### `{@schema schemaName}`\r\n\r\nAdd a hyperlink to the named schema within /components/schemas/schemaName`\r\n\r\n### `{@property schemaName.property}`\r\n\r\n### `{@property .property}`\r\n\r\nThe second form may be used within the `description` text of a schema,\r\nto link to properties relative to that schema.\r\n\r\nAdd a hyperlink to the named property schema within /components/schemas/schemaName`\r\nThis also allows nested properties and arrays,\r\nfor example, use\r\n\r\n* `{@schema schemaName.subproperty}`\r\n* `{@schema schemaName.subpropertyA.subpropertyB}`\r\n* `{@schema schemaName.arrayX.items.subpropertyA.arrayY.items.subpropertyB}`\r\n\r\nto access nested elements.\r\n\r\n### `{@parameter parameterName|in:path}`\r\n\r\n### `{@parameter parameterName}`\r\n\r\nAdd a hyperlink to a parameter in `/components/parameters`\r\nthat matches the `parameterName`. If there are multiple parmaeters\r\nof the same name, select one with `in:\r\n = {};\r\n\r\n tokens.forEach((t, idx) => {\r\n if (t.type === \"heading\") {\r\n const content = [t.raw];\r\n const name = (t.text as string).replaceAll(\" \", \"-\").toLowerCase();\r\n for (let i = idx + 1; i < tokens.length; i++) {\r\n const nextToken = tokens[i]!;\r\n if (nextToken.type === \"heading\" && nextToken.depth <= t.depth) {\r\n break;\r\n }\r\n content.push(nextToken.raw);\r\n }\r\n headersMap[name] = content.join(\"\");\r\n }\r\n });\r\n return headersMap;\r\n}\r\nconst url = \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/refs/heads/main/versions/3.1.2.md\";\r\nconst docsMap = await getHeadersMap(url)\r\n```\r\n\r\n---> The above will produce a map `id`=>`content` where `id` is id html attribute from the html spec and `content` is original markdown content for that id.\r\n
\r\n\r\nThe problem arises with `fixed-fields` id:\r\n```json\r\n \"$comment\": \"https://spec.openapis.org/oas/v3.2#fixed-fields-10\",\r\n ```\r\n \r\nBecause ids for `Fixed Fields` headings are incremented globally with a number, for my case I just cannot extract tooltip information for specific field.\r\n\r\n## Proposal\r\n\r\nCan we use deterministic id attributes across the html spec?\r\nSo that it would be possible for people to parse original markdown and construct the same id attributes.\r\n\r\nInstead of this: https://spec.openapis.org/oas/v3.2#fixed-fields-10\r\n\r\nUse id something like this `https://spec.openapis.org/oas/v3.2#request-body-object--fixed-fields\r\n\r\n## Question\r\nIs there a better way to extract markdown content for specific OpenAPI document field programmatically?",
"created_at": "2025-11-11T13:07:49Z",
"updated_at": "2025-11-12T03:55:31Z",
"category": {
"name": "Enhancements",
"emoji": ":bulb:"
},
"answer": null,
"user": {
"login": "valerii15298",
"avatar_url": "https://avatars.githubusercontent.com/u/44531564?u=88ac74d9bacd20401518441907acad21063cd397&v=4"
}
},
{
"id": "D_kwDOAQkWPc4Ac45R",
"number": 4233,
"title": "3.3: allow `openapi` field to just specify MAJOR.MINOR and omit the PATCH number",
"body": "Requiring `openapi: MAJOR.MINOR.PATCH` and then stating in the spec that PATCH actually is meaningless is confusing.\r\n\r\nBetter allow (or require?) to write `openapi: MAJOR.MINOR`.",
"created_at": "2024-11-28T17:20:13Z",
"updated_at": "2025-11-08T23:33:55Z",
"category": {
"name": "Enhancements",
"emoji": ":bulb:"
},
"answer": null,
"user": {
"login": "ralfhandl",
"avatar_url": "https://avatars.githubusercontent.com/u/951576?u=5f0aff13ce0c500d621a7a56585182cbf8c0caf7&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AisI4",
"number": 5096,
"title": "[Feat] Add support for terminating events in streaming APIs",
"body": "OAI 3.2.0 added support for streaming media types via the [itemSchema property](https://spec.openapis.org/oas/v3.2.0.html#fixed-fields-11), and that's a great improvement!\r\n\r\nObserving some APIs from wild that are widely used, it seems that it's a common practice to have a \"terminating event\" so the server can tell the client \"we're done\" (in an expected way, not like disconnecting them because something is wrong).\r\n\r\nSee [OpenAI](https://platform.openai.com/docs/api-reference/runs/createRun#runs_createrun-stream) which will reply back\r\n\r\n```\r\n[DONE]\r\n```\r\n\r\n> Note: in that scenario it's not JSON, it's a text token.\r\n\r\nThere does not seem to be a \"place\" for this information today, but maybe this is something that could be added to 3.3?",
"created_at": "2025-10-31T17:19:57Z",
"updated_at": "2025-11-03T16:20:04Z",
"category": {
"name": "Enhancements",
"emoji": ":bulb:"
},
"answer": null,
"user": {
"login": "baywet",
"avatar_url": "https://avatars.githubusercontent.com/u/7905502?u=0019d9e9b489fa6c533f450c0bbe1b8c07360eda&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AiF93",
"number": 4989,
"title": "Clarification on Best Practices for Extending OpenAPI Specification",
"body": " While working on an API design, I’ve come across scenarios where I need to include additional metadata and custom features that are not directly covered by the current OpenAPI Specification. \r\n\r\n**My questions are:** \r\n- What are the recommended best practices for extending the OpenAPI Specification with custom fields? \r\n- Should these extensions always go under the `x-` prefix, or are there cases where other approaches are acceptable? \r\n- How do such extensions affect tooling compatibility (e.g., code generators, validators, documentation tools)? \r\n- Is there a process for proposing new fields/features to be officially included in future versions of the specification? \r\n\r\nAny insights, examples, or references to community standards would be really helpful.\r\n",
"created_at": "2025-09-23T14:19:06Z",
"updated_at": "2025-10-29T21:24:50Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "fatema432",
"avatar_url": "https://avatars.githubusercontent.com/u/200746827?u=2a0ba5410bd950da07064ca51e8afa3a7ebc3598&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AcbYD",
"number": 4183,
"title": "API specification format for hypermedia-centric APIs",
"body": "Hi there!\r\n\r\nAt the company where I currently work, we started adopting a more hypermedia driven approach to our internal APIs, which includes the following changes in contrast to the traditional data-centric APIs.\r\n\r\n- using links to cross-reference different resources\r\n- URLs (possibly templated with parameters) are given in the links themselves, instead of being hardcoded in the API client. Therefore, the URLs namespace is fully controlled by the server.\r\n- available actions on a resource are encoded as links as well and are given dynamically by the server, instead of relying on the client to infer them from the resource data (e.g. status fields) thus keeping the client logic to the bare minimum\r\n- a resource response may or may not include related subresources (the server determines if it wants to include them)\r\n\r\nSpecifically, we are using [HAL](https://datatracker.ietf.org/doc/html/draft-kelly-json-hal-11), and an alternative approach, [json:api](https://jsonapi.org/) also exists (but to my taste is much more verbose). We also love using OpenAPI for documenting the actual data fields, the request payloads for mutating requests and query parameters for filters etc. However, we found out that it requires lots of boilerplate for describing the `_links` object, and especially the `_embedded` resources.\r\n\r\nIs anyone out there using either HAL or json:api, or a similar approach with OpenAPI? And if so, are you interested in either abstracting OpenAPI to natively support these concepts, or perhaps in a separate specification format designed for this type of APIs? Right now I am working on a example document, inspired by OpenAPI, of how such a specification might look like, focusing on HAL support for now.",
"created_at": "2024-11-09T21:21:36Z",
"updated_at": "2025-10-29T21:19:06Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "someniatko",
"avatar_url": "https://avatars.githubusercontent.com/u/15856706?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AhSIy",
"number": 4865,
"title": "Should we put out a 3.0.5 (or formal Errata for 3.0.4)?",
"body": "For good reasons, we declared that we would not do a 3.0.5 release.\r\n\r\nHowever, we have discovered some outright errors in the 3.0.4 text, most notably the guidance around percent-encoding and `in: header`, and to a more ambiguous degree around `multipart`. It would not be hard to backport these (and whatever other few trivial-to-backport 3.1.2 fixes, as there are really not that many) and do a 3.0.5. Or we could do something novel and issue errata.\r\n\r\n### 3.0.5 option\r\n\r\nWe could do a quick 3.0.5, either by manually constructing the document out of the published 3.0.4 spec using something akin to our old process of patching different files across branches (I still have a somewhat quirky script I can use for this), or by making a `v3.0-dev` branch.\r\n\r\nPros:\r\n* It's what people will expect\r\n* It would be the same publication process we know\r\n\r\nCons:\r\n* It's annoying work\r\n* We said we wouldn't do it\r\n\r\n### Errata option\r\n\r\nWe could edit 3.0.4 in-place to add \"Errata\" links (ideally at the top of each section with errors) to something hosted on the spec site. Note that this is what IETF does, and we usually cite IETF as the precedent for _not_ updating in place, so this sort of update-in-place should be fine. (idk if W3C does this or not)\r\n\r\nPros:\r\n* We don't need to resurrect a branch\r\n\r\nCons:\r\n* No one will expect it or know to look for it\r\n* No one reads the top-level intro part, so we'd need to put more Errata links than an IETF RFC does\r\n* We'll still need to do annoying infrastructure work\r\n\r\nTagging @OAI/tsc \r\n\r\n\r\n",
"created_at": "2025-08-13T18:16:56Z",
"updated_at": "2025-10-29T20:38:54Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "handrews",
"avatar_url": "https://avatars.githubusercontent.com/u/2358015?u=edb337dc1bf53e9adf1623bae3432a3020dcf255&v=4"
}
},
{
"id": "D_kwDOAQkWPc4Aimuq",
"number": 5067,
"title": "Response Object with optional empty response via content negotiation.",
"body": "How would I model a Response Object where one of the `content` options is an empty response when all keys have to be a media type or media type range and there isn't a media type for empy responses?\r\n\r\nMy API uses [RFC7240](https://www.rfc-editor.org/rfc/rfc7240.html) `Prefer` headers, specifically `return=minimal` or `return=representation` to allow the client to request either an empty response or the resources full representation on some endpoints depending on its own requirements.\r\n\r\nthis would result in say a `POST` endpoint for a collection path where either of the following are possible:\r\n\r\n```http\r\nPOST /foo\r\ncontent-type: application/json\r\nprefer: return=minimal\r\n\r\n{\"foo\": \"bar\"}\r\n\r\n\r\nHTTP/1.1 201\r\npreference-applied: return=minimal\r\nlocation: http://example.com/foo/123\r\n```\r\n\r\nor \r\n\r\n```http\r\nPOST /foo\r\ncontent-type: application/json\r\nprefer: return=representation\r\n\r\n{\"foo\": \"bar\"}\r\n\r\n\r\nHTTP/1.1 201\r\npreference-applied: return=minimal\r\nlocation: http://example.com/foo/123\r\ncontent-type: application/json\r\n\r\n{\"foo\": \"bar\"}\r\n```\r\n\r\nThe closest i can get is the following:\r\n\r\n```yaml\r\n...\r\npost:\r\n parameters:\r\n - name: prefer\r\n in: header\r\n required: false\r\n schema:\r\n type: string\r\n enum: [ \"return=minimal\", \"return=representation\" ]\r\n requestBody:\r\n content:\r\n application/json:\r\n schema:\r\n type: object\r\n properties:\r\n foo:\r\n type: str\r\n required: true\r\n responses:\r\n \"201\":\r\n headers:\r\n location:\r\n schema:\r\n type: string\r\n format: uri\r\n preference-applied:\r\n schema:\r\n type: string\r\n enum: [ \"return=minimal\", \"return=representation\" ]\r\n content:\r\n application/json:\r\n schema:\r\n type: object\r\n properties:\r\n foo:\r\n type: str\r\n...\r\n```\r\n\r\nbut that implies that the `return=minimal` response returns the JSON body, is there an established value for the content key for \"no media type\"?\r\n\r\nand further, is there any way to tie the `Preference-Applied` header values to the individual responses to document it as a discriminator between the different responses?",
"created_at": "2025-10-25T16:22:20Z",
"updated_at": "2025-10-27T20:25:13Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4A4Yp2",
"body": "This is not an answer to your question, but rather an observation for the purpose of addressing this problem in the future: the problem is that for requests, \"requestBody\" is split out as a property of its own, allowing `\"required\":false` to be used when it is relevant, but there is nowhere to specify that a response body is optional because its \"content\" property is at the same level as the response headers. One possible solution is to add a \"responseBody\" underneath, which could have a \"required\" property, adjacent to \"content\".\r\n\r\n----------\r\n\r\nAs a potential stopgap solution, you could perhaps do this:\r\n\r\n```yaml\r\n...\r\n responses:\r\n \"201\":\r\n headers:\r\n ...\r\n content:\r\n application/json:\r\n description: \"used for prefer: return=representation\"\r\n schema:\r\n type: object\r\n properties:\r\n foo:\r\n type: str\r\n */*:\r\n description: \"no response body is returned for prefer: return=minimal\"\r\n schema: false\r\n```"
},
"user": {
"login": "danielknell",
"avatar_url": "https://avatars.githubusercontent.com/u/229004?u=9e478bdda108f2ab302049de9cfbbf607bbc9e51&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AOrkB",
"number": 2875,
"title": "What is the meaning of an empty \"content\" definition?",
"body": "For a Request Body Object, the \"content\" attribute must be defined. But what if no media type mappings are specified? Is an empty \"content\" definition valid? If so, what does it mean? Equivalent to \"content undefined\", i.e. an error? That any kind of content data is acceptable?\r\n\r\nThe same question arises for the \"content\" of a Response Object (although \"content\" is optional there) and a Parameter Object",
"created_at": "2022-02-01T23:08:50Z",
"updated_at": "2025-10-25T16:25:48Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AH-4p",
"body": "From what I recall, `content` is available in three places - **Parameter Object**, **Request Body Object** and **Response Object**.\r\n\r\n**Parameter Object** - the documentation states that one and only one media type must be in the map, so no problem there.\r\n\r\n**Request Body Object** - I believe there's an oversight here. I think we should have mentioned that by minimum, a single map entry is required. The reason being is that **Request Body Object** is not a required field in an operation, and if you specify it, it means that there's necessarily a payload. If there's necessarily a payload, you need to define what kind of payload it is. Maybe some more feedback from the @OAI/tsc is needed here, but I think that's a clarification we can put in v3.1.1.\r\n\r\n**Response Object** - unlike request bodies, responses don't necessarily have a payload even when you define them, which is why `content` is an optional field here. In this case, I would treat an empty `content` map as if the `content` field wasn't there at all."
},
"user": {
"login": "kerrykimbrough",
"avatar_url": "https://avatars.githubusercontent.com/u/6577913?u=d013ab8a076390303f38eacbb375b27f36a80942&v=4"
}
},
{
"id": "MDEwOkRpc2N1c3Npb24zNTU0NjM1",
"number": 2699,
"title": "Same endpoint for POST and GET method without the duplicate key error?",
"body": "Hello everyone, I am kinda confused as to why this isn't a thing, or I am I doing this wrong entirely?\r\n\r\nI have a user profile path `api/user/profile` with a GET `api/user/profile/{userID}` and POST method on the same path. Why isn't that supported, seems like the usual? I mean both should point to the same profile and only differ whether it's a post or a get method. Is this an issue when using a single YAML file or would the issue persist if I split them up into separate files?\r\n\r\n(Using swagger)",
"created_at": "2021-09-03T12:28:43Z",
"updated_at": "2025-10-17T19:21:11Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AQEm-",
"body": "A path item can contain only one $ref. You'll have to put the GET and POST definitions into the same file so they can be $ref'erenced together:\r\n```yaml\r\npaths:\r\n /task-items/create:\r\n $ref: 'paths/task-items.create.yml'\r\n /task-lists:\r\n $ref: 'paths/task-lists.yml' # <------\r\n```\r\n\r\n```yaml\r\n# task-lists.yml\r\nget:\r\n summary: Get task lists\r\n ...\r\n\r\npost:\r\n summary: Create a task list\r\n ...\r\n```"
},
"user": {
"login": "Nikola-Milovic",
"avatar_url": "https://avatars.githubusercontent.com/u/50072027?u=0b76960ab4042a6859bad474955aa4bbdc4c7ebc&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AhXKW",
"number": 4880,
"title": "How to create a new version dev branch such as v3.3-dev?",
"body": "According to [Branching and merging (3.1.2, 3.2.0, and later)](https://github.com/OAI/OpenAPI-Specification/blob/main/CONTRIBUTING.md#branching-and-merging-312-320-and-later) we will create branch `v3.3-dev` from `dev`, despite the fact that\r\n* `src/oas.md`\r\n* `src/schemas/**`\r\n* `tests/schema/**`\r\n\r\nare hopelessly outdated on `dev` and the current content of `v3.2-dev` is the actual semantic starting point for 3.3 development.\r\n\r\nShouldn't we rather create `v3.3-dev` from `v3.2-dev`?\r\n\r\n\r\n",
"created_at": "2025-08-17T12:27:15Z",
"updated_at": "2025-10-02T20:03:06Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "ralfhandl",
"avatar_url": "https://avatars.githubusercontent.com/u/951576?u=5f0aff13ce0c500d621a7a56585182cbf8c0caf7&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AiGqK",
"number": 4992,
"title": "Represent XML tag with multiple namespaces",
"body": "Hi, I need to represent a Soap request that has the Envelope like this \"JS sample code
\r\n\r\n```ts\r\nimport { marked } from \"marked\";\r\n\r\nexport async function getHeadersMap(markdownURL: string) {\r\n const spec = await fetch(markdownURL).then((res) => res.text());\r\n\r\n const tokens = marked.lexer(spec);\r\n\r\n const headersMap: Record![\"image\"](\"https://user-images.githubusercontent.com/28302282/148510430-b8c157cc-26c3-4b75-a4dc-bfa852d2793e.png\")
\r\n\r\nAnd on clicking the Invalid Json symbol we are getting the below error message, \r\n\r\n![\"image\"](\"https://user-images.githubusercontent.com/28302282/148511026-a277fe92-e6b3-4d9b-b9cb-dcd8e386bea8.png\")
\r\n\r\n\r\nI have fetched my swagger YAML file and checked in swagger editor it is not having any parsing errors, can anyone point me to the reason we are getting it? \r\n\r\nThanks\r\n",
"created_at": "2022-01-07T07:55:31Z",
"updated_at": "2024-04-19T18:13:18Z",
"category": {
"name": "Tooling",
"emoji": ":hammer_and_wrench:"
},
"answer": null,
"user": {
"login": "RaviTejaMaddhini",
"avatar_url": "https://avatars.githubusercontent.com/u/28302282?v=4"
}
},
{
"id": "D_kwDOAQkWPc4APla4",
"number": 2929,
"title": "How to document required privilege levels on endpoints?",
"body": "Please tell me the recommended OpenAPI way of documenting endpoint privileges (such as roles) that are enforced by a back-end implementation. For example, an endpoint \"GET /version\" is open to every authenticated and authorized user, but an endpoint \"POST /user\" is only open to an authenticated and authorized user with additional privileges that are managed in the back end. This need doesn't seem to fit in the securitySchema feature. I have seen people mention \"extensions\" but I'm not sure which is right or where to find those extensions, and I definitely don't want to add items that might break the toolchain that generates (Python) clients and other features. Thanks in advance!",
"created_at": "2022-05-19T14:44:07Z",
"updated_at": "2024-04-19T18:12:32Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "chrisinmtown",
"avatar_url": "https://avatars.githubusercontent.com/u/10234212?u=14e73f48f48300e2a056164fc095cda8c6fb45d3&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AOrjv",
"number": 2874,
"title": "What is the meaning of a Media Type Object with no schema defined?",
"body": "The spec for a Media Type Object does not say that the \"schema\" property is required. Therefore, it is valid to leave the schema undefined. But what does this mean? That any kind of content data is acceptable?",
"created_at": "2022-02-01T22:58:25Z",
"updated_at": "2024-04-19T18:07:30Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AH-4N",
"body": "Not exactly. When you define the media type, you're telling the user what is expected to go over the wire. The `schema` is there to help validate the actual content. However, in many cases, a schema doesn't make sense - PDFs, audio files, binary files and so on, so specifying the schema is pointless. \r\n\r\nAt the moment, we only support JSON Schema for the Schema Object, meaning you can only describe JSON payloads (and to some limited extent XMLs). Had we supported things like XSD (which we may in the future), that would allow you to define schemas (or something similar) for additional media types."
},
"user": {
"login": "kerrykimbrough",
"avatar_url": "https://avatars.githubusercontent.com/u/6577913?u=d013ab8a076390303f38eacbb375b27f36a80942&v=4"
}
},
{
"id": "D_kwDOAQkWPc4APy9G",
"number": 2943,
"title": "Appending to referenced enum",
"body": "Would love to be able to append to an existing enum. Not all values are applickable in all cases, this means that i need to redefine the enum. Especially when used together with deepmap's oapi-gen this would be nice.\r\n\r\n**Example:**\r\nSensorType.yaml:\r\n```yaml\r\ntype: string\r\nenum: [Motion, Push, Voice]\r\n```\r\nDoorbell.yaml:\r\n```yaml\r\n schema:\r\n $ref: \"#/shared/components/schemas/SensorType.yaml\"\r\n description: Sensor to trigger doorbell\r\n```\r\nAlarm.yaml:\r\n```yaml\r\n schema:\r\n $ref: \"#/shared/components/schemas/SensorType.yaml\"\r\n append: [ Temp, Vibration, SignalLoss ]\r\n description: Sensor to trigger alarm\r\n```",
"created_at": "2022-06-13T09:06:13Z",
"updated_at": "2024-04-19T17:55:30Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4ALNkc",
"body": "This is more of a JSON Schema request than an OpenAPI one. You can achieve what you're looking for using `oneOf` or `anyOf` depending on the content of the different enums.\r\n\r\n```yaml\r\n schema:\r\n oneOf:\r\n - $ref: \"#/shared/components/schemas/SensorType.yaml\"\r\n - enum: [ Temp, Vibration, SignalLoss ]\r\n description: Sensor to trigger alarm\r\n```"
},
"user": {
"login": "martinwangen",
"avatar_url": "https://avatars.githubusercontent.com/u/26923578?u=7e8d3d6c842c89d6efab16968b3c3531ecf9c6c0&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AN-QR",
"number": 2778,
"title": "warning:Body property 'CollectingDate' not defined in body schema (Though CollectingDate is defined in schema) what could be the possible reason for this warning?",
"body": "I have defined CollectingDate property in my swagger.yaml file, but whenever I make put request I get **Body property 'CollectingDate' not defined in body schema** What could be the possible reason?",
"created_at": "2021-11-02T11:25:48Z",
"updated_at": "2024-04-19T17:55:07Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "Ragzz1995",
"avatar_url": "https://avatars.githubusercontent.com/u/16513966?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AP0g5",
"number": 2944,
"title": "Supporting custom types",
"body": "Hi,\r\n\r\nI'm new to OpenAPI and we're using for a project where we have our custom data types. \r\n\r\nI would like to know if it would be possible to use an UI implementation of the OpenAPI and\r\nhave it render the custom data type. For example, I could use this json,\r\n\r\n`{\r\n \"varName\":{\r\n \"type\": \"customDataType\"\r\n }\r\n}`\r\n\r\nand have it rendered as it it were a string or number or any of the other supported types by OA.\r\n\r\nP.S.: We could use objects but we would still have to fall back to the OpenAPI data types, which is something we want to avoid.\r\n\r\nThanks",
"created_at": "2022-06-15T14:49:58Z",
"updated_at": "2024-04-19T17:53:56Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "WoobaWooba",
"avatar_url": "https://avatars.githubusercontent.com/u/106334468?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQCJg",
"number": 2967,
"title": "OAS 3 : allOf specification missing ?",
"body": "Hello Everyone,\r\n\r\nI was wondering why the allOf at array level with items was not documented, because it is working perfectly :\r\n\r\n(in the screenshot the swagger has been simplified for clarity purposes)\r\n\r\n\r\n\r\n\r\n\r\nBut because of the spec mentionned at https://spec.openapis.org/oas/latest.html :\r\n\r\n4.8.24.2.1 Composition and Inheritance (Polymorphism) [§](https://spec.openapis.org/oas/latest.html#composition-and-inheritance-polymorphism)\r\nThe OpenAPI Specification allows combining and extending model definitions using the allOf property of JSON Schema, in effect offering model composition. allOf takes an array of object definitions that are validated independently but together compose a single object.\r\n\r\nWhile composition offers model extensibility, it does not imply a hierarchy between the models. To support polymorphism, the OpenAPI Specification adds the discriminator field. When used, the discriminator will be the name of the property that decides which schema definition validates the structure of the model. As such, the discriminator field MUST be a required field. There are two ways to define the value of a discriminator for an inheriting instance.\r\n\r\nMy company is using those specs to validate swaggers, and because of that my AllOf is refused.",
"created_at": "2022-07-08T14:00:48Z",
"updated_at": "2024-04-19T17:52:15Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "jonathan-vandebosch",
"avatar_url": "https://avatars.githubusercontent.com/u/65857453?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQKGx",
"number": 2977,
"title": "Is a fractional part of \".0\" allowed for integers?",
"body": "Please clarify: Are values like `1.0` valid for the `integer` data type?\r\n\r\nJSON schema allows values like `1.0` for integers. But the OpenAPI specification contains this sentence:\r\n> Note that `integer` as a type is also supported and is defined as a JSON number without a fraction or exponent part.\r\n\r\n\"without a fraction or exponent part\" - does that mean that the number is not allowed to have a fraction part at all, e.g. `1` is valid but `1.0` is invalid? Or does it mean that a fraction of 0 is allowed, so `1` is valid and `1.0` is also valid?\r\n\r\nAre the rules the same for JSON parameters and for query parameters?\r\n\r\nFor example, consider this OpenAPI specification:\r\n```\r\n{\r\n \"openapi\": \"3.0.0\",\r\n \"info\": {\r\n \"title\": \"Integers\",\r\n \"version\": \"1.0\"\r\n },\r\n \"paths\": {\r\n \"/path1\": {\r\n \"post\": {\r\n \"requestBody\": {\r\n \"content\": {\r\n \"application/json\": {\r\n \"schema\": {\r\n \"type\": \"object\",\r\n \"properties\": {\r\n \"value\": {\r\n \"type\": \"integer\"\r\n }\r\n }\r\n }\r\n }\r\n }\r\n },\r\n \"responses\": {\r\n \"default\": {\r\n \"description\": \"test\"\r\n }\r\n }\r\n }\r\n },\r\n \"/path2\": {\r\n \"get\": {\r\n \"parameters\": [\r\n {\r\n \"in\": \"query\",\r\n \"name\": \"a\",\r\n \"schema\": {\r\n \"type\": \"integer\"\r\n }\r\n }\r\n ],\r\n \"responses\": {\r\n \"default\": {\r\n \"description\": \"test\"\r\n }\r\n }\r\n }\r\n }\r\n }\r\n}\r\n```\r\n\r\nAre these requests valid?\r\n* Request 1:\r\n```\r\ncurl -H \"Content-Type: application/json\" --data '{ \"value\": 1.0 }' 'http://localhost/path1'\r\n```\r\n\r\n* Request 2:\r\n```\r\ncurl 'http://localhost/path2?a=1.0'\r\n```",
"created_at": "2022-07-21T15:29:44Z",
"updated_at": "2024-04-19T17:51:37Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AMNNp",
"body": "It looks like you're referencing OpenAPI 3.0 which uses JSON Schema draft-6/draft-0. That version of JSON Schema does not have an `integer` data type. The definition was added since we moved from draft 4, which did have an [integer definition](https://datatracker.ietf.org/doc/html/draft-zyp-json-schema-04#section-3.5), though otherwise the draft versions are pretty much identical. \r\n\r\nDraft 06 does have some [additional information](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-6.3) about mathematical integers, and suggest not using a decimal point for integer values, even though it is technically supported.\r\n\r\nLong story short, the fractional part is not allowed."
},
"user": {
"login": "mkauf",
"avatar_url": "https://avatars.githubusercontent.com/u/12849992?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AUp_B",
"number": 3329,
"title": "How do I structure a large API where using namespaces in generated client code would be ideal?",
"body": "We have a large API defined in Python using Pydantic/FastAPI. On the Python side the schemas/paths are neatly structure into separate python modules (e.g. `users.py` for `/users` and all its schemas). We'd like to generate an OpenAPI client* (e.g. for TypeScript) that is similarly well organized but it doesn't seem possible to preserve enough information in the OpenAPI spec such that a client that uses namespaces can be generated.\r\n\r\n- Is it possible to generate clients using namespaces?\r\n - What approach would be suitable? Relying on tags? Parsing the path and generating namespaces from e.g. the last path component?\r\n- How do people manage large APIs and clients generated for such?\r\n\r\n\\* I'm fine writing my own client generator. The issue is more whether OpenAPI is too lossy to be able to do so.",
"created_at": "2023-07-18T13:19:10Z",
"updated_at": "2024-04-19T17:49:35Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "tibbe",
"avatar_url": "https://avatars.githubusercontent.com/u/17277?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AOo5b",
"number": 2867,
"title": "When using OAuth 2.0, how do you describe the exact mechanism that should be used to authorize requests to a resource server?",
"body": "OpenAPI allows you to specify an OAuth security scheme type and a list of scopes required to request an endpoint (resource server). It might look like this:\r\n\r\n```\r\ncomponents:\r\n securitySchemes:\r\n oAuthSample:\r\n type: oauth2\r\n flows:\r\n implicit:\r\n authorizationUrl: https://api.example.com/oauth2/authorize\r\n scopes:\r\n read_pets: read pets in your account\r\n write_pets: modify pets in your account\r\n```\r\n\r\n```\r\npaths:\r\n /pets/{petId}:\r\n patch:\r\n summary: Updates a pet in the store\r\n security: \r\n - oAuthSample: [write_pets]\r\n ...\r\n```\r\n\r\nSource: https://swagger.io/docs/specification/authentication/oauth2/.\r\n\r\nHow, from such a specification, you can understand how exactly a client should be authorized on a resource server on behalf of an user? Should it just be stated in a text documentation, or is there a standardized way provided by OpenAPI?\r\n\r\nOr maybe it's better to formulate the question as follows - how in OpenAPI to specify the type of an access token from the options defined here https://www.iana.org/assignments/oauth-parameters/oauth-parameters.xhtml#token-types, that is issued by an authorization server and, as a result, explain how the token is used for authorization on a resource server?\r\n\r\nP.S. This question was originally asked on [Stackoverflow](https://stackoverflow.com/questions/70867784/in-openapi-when-using-oauth-2-0-how-do-you-describe-the-exact-mechanism-that-s).",
"created_at": "2022-01-27T11:57:46Z",
"updated_at": "2024-04-19T17:45:30Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "alex-feel",
"avatar_url": "https://avatars.githubusercontent.com/u/71711753?u=f80539f3cb83cac40fffaf2b48aca6b655078db1&v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARAXs",
"number": 3047,
"title": "OAS3 Array query params example",
"body": "Hi all\r\n\r\nI have some doubts about the examples in 4.7.12.4 - serialization styles.\r\n\r\n\r\n\r\nField Name | Type | Description\r\n-- | -- | --\r\nexplode | boolean | When this is true, parameter values of type array or object generate separate parameters for each value of the array [...]\r\n\r\n\r\n\r\n\r\nThe input array data for array is \r\n`color := [\"blue\",\"black\",\"brown\"]`\r\n\r\nI'd expect it to serialize as:\r\nexploded: `'color=blue&color=black&color=brown'`\r\nnon-exploded: `'color=blue,black,brown'`\r\n\r\nYet both examples are simply `'blue,black,brown'`\r\n\r\nIs this correct?\r\n",
"created_at": "2022-10-09T14:35:05Z",
"updated_at": "2024-04-19T17:42:42Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AiABn",
"body": "Yes it does, I asked a similar question before, and got pointed to the same rfc [(You may find it useful to read the answers I received)](https://github.com/OAI/OpenAPI-Specification/issues/3481)\r\n\r\n[RFC6570-2.4.2](https://www.rfc-editor.org/rfc/rfc6570#section-2.4.2) will give you a good idea of why someone might want explode.\r\n\r\nThe example you've given is for the **simple** style which can **only be used in paths and headers**:\r\n\r\nIn a path: parameters MUST appear in the same order specified in the template, so the name isn't required i.e.\r\n\r\n`/paint/{colors}/{type}` and you get `/paint/red,green,blue/silk` you still know which part the color parameter is because each parameter is delimited by a forward slash.\r\n\r\nIn a header: each header has a name, so the name of the parameter is already given.\r\n\r\n`color: red,green,blue` is clear.\r\n`color: color=red,green,blue` would be redundant.\r\n"
},
"user": {
"login": "rafalkrupinski",
"avatar_url": "https://avatars.githubusercontent.com/u/3732079?u=4b647b396cd54c57e11b5c73fc09e7cf83acf786&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQMTn",
"number": 2984,
"title": "swagger-cli validate ./openapi.yaml fails while adding examples in request body with $ref for content",
"body": "openapi: 3.0.2\r\n\r\n**API example:** \r\n```yaml\r\nrequestBody:\r\n required: true\r\n content:\r\n application/json:\r\n schema:\r\n $ref: ./api/rosetta/rosetta-account-balance-request.schema.json\r\n examples:\r\n network_identifier:\r\n value: [mainnet]\r\n account_identifier: \r\n value: [SPZ5DJGRVZHXEEEYYGWEX84KQB8P69GC715ZRNW1]\r\n```\r\n \r\n **Output**: \r\n```\r\nSwagger schema validation failed.\r\n #/paths/~1rosetta~1v1~1account~1balance/post/requestBody/content/application~1json/schema must NOT have additional properties\r\n #/paths/~1rosetta~1v1~1account~1balance/post/requestBody/content/application~1json/schema must have required property '$ref'\r\n #/paths/~1rosetta~1v1~1account~1balance/post/requestBody/content/application~1json/schema must match exactly one schema in oneOf\r\n #/paths/~1rosetta~1v1~1account~1balance/post/requestBody must have required property '$ref'\r\n #/paths/~1rosetta~1v1~1account~1balance/post/requestBody must match exactly one schema in oneOf\r\n```\r\n\r\n\r\nhttps://github.com/hirosystems/stacks-blockchain-api/runs/7506454511?check_suite_focus=true",
"created_at": "2022-07-25T18:30:51Z",
"updated_at": "2024-04-19T17:42:02Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "LakshmiLavanyaKasturi",
"avatar_url": "https://avatars.githubusercontent.com/u/55154433?u=ad3b8ac224f8215df52e44291b07a1dc0a04d4e0&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQSqh",
"number": 2990,
"title": "Expert Opinions Please - Data Centric (Generic) API",
"body": "Hello,\r\n\r\nI'd like to elicit some opinions from the experts on how I'm approaching API design and how OAI might be applicable.\r\nFirst off, I have a framework and middle-tier components that allow me to push all user resource (code & data, including unstructured) into a database (Oracle...get your arrows and slings out..!!!). There's nothing in the middle-tier in my design other than a protocol adapter between HTTP and SQL.\r\n\r\nSo...what that means is I can build an API, expressed as a package in the database, that only exposes a single entry point. Remember, all of the logic is in the DB. That means all of your routing is there too. That's what allows you to expose a single entry point. The logic in the database looks at your 'message' and figures out what to do.\r\n\r\nThis is what I call a Data Centric (Generic) API.\r\n\r\nHere's my package header which is essentially the API signature:\r\n\r\n`create or replace package db_twig as\r\n\r\n function call_rest_api\r\n (\r\n p_json_parameters clob\r\n )\r\n return clob;\r\n\r\nend db_twig;\r\n`\r\nAs you can see, not much to expose.\r\nSo, my questions are:\r\n\r\n- How would OAI deal with API components that are embedded within p_json_parameters, which is a JSON string sent into the function in the DB?\r\n- It seems as though OAI is geared towards APIs that expose their components as entry-points and parameters. Would it even be possible to use OAI to test APIs developed in the manner above?\r\n\r\nThanks for your time and opinions on this matter.",
"created_at": "2022-08-02T00:01:07Z",
"updated_at": "2024-04-19T17:41:41Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "JumpinJackFlash",
"avatar_url": "https://avatars.githubusercontent.com/u/1429769?u=ba1f7114969b5ea894f4a3a9789f1d205f9a3a9e&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQguY",
"number": 3007,
"title": "Header and Parameter in header ambiguity",
"body": "The `Components` object has:\r\n* `parameters` - collection of `Parameter` objects\r\n* `headers` - collection of `Header` objects\r\n\r\nHowever, a `Parameter` can be a header (when `in == \"header\"`). \r\nThis inherent **ambiguity creates confusion** when one tries to create a global/group customization. \r\n\r\nCan the ambiguity be removed (maybe deprecating the `Header` object or the `\"header\"` location of `Parameter`)? \r\nIf not, when should I declare a header as a `Parameter` and when should I declare it as a `Header`? The answer to this last question is direly needed in the documentation. ",
"created_at": "2022-08-23T21:02:54Z",
"updated_at": "2024-04-19T17:24:00Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "pmerson",
"avatar_url": "https://avatars.githubusercontent.com/u/6674738?u=05eba14157a61f7167d345acba455181258e8b80&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQr7C",
"number": 3025,
"title": "Behavior of the allOf and discriminator",
"body": "Hello! I have a few pieces of questions related to a combination of `allOf` and `discriminator` usage. \r\n\r\nI have following OpenAPI spec\r\n\r\n```yml\r\nopenapi: 3.0.3\r\ninfo:\r\n title: 'Example'\r\n version: 0.1.0\r\nservers:\r\n - url: 'http://example.com'\r\npaths:\r\n ‘/users’:\r\n get:\r\n responses:\r\n '200':\r\n description: OK\r\n content: \r\n application/json:\r\n schema:\r\n type: array\r\n items: \r\n $ref: \"#/components/schemas/User\"\r\ncomponents:\r\n schemas:\r\n User:\r\n type: object\r\n properties:\r\n $type:\r\n type: string\r\n shared_property:\r\n type: string\r\n discriminator:\r\n propertyName: \"$type\"\r\n\r\n UserA:\r\n allOf: [\r\n $ref: \"#/components/schemas/User\"\r\n ]\r\n type: object\r\n properties:\r\n foo:\r\n type: string\r\n\r\n\r\n UserB:\r\n allOf: [\r\n $ref: \"#/components/schemas/User\"\r\n ]\r\n type: object\r\n properties:\r\n bar:\r\n type: string\r\n```\r\n\r\nIn case of GET request to `/users` server must return an array of `User`s and their subtypes (`UserA`, `UserB`). \r\n\r\n1. Is that right or `User` do not includes their subtypes (UserA, UserB) in this context? Seems I should define response as `oneOf: [User, UserA, UserB]` for correctness?\r\n\r\nI have doubts because I use this spec to generate python client using [openapi-generator](https://openapi-generator.tech/). And in generated `User` model I see following code\r\n\r\n```python3\r\n…\r\n\r\ndef discriminator():\r\n lazy_import()\r\n val = {\r\n 'UserA': UserA,\r\n 'UserB': UserB,\r\n }\r\n\r\n…\r\n```\r\n\r\nSeems like `User` knows about `UserA` and `UserB` and tries to parse data into them if eg `$type=UserA`. But no `User` model himself here. So parsing fails when I get an object with `$type=User`. That seems strange.\r\n\r\nIt may be fixed in 2 ways\r\n- `oneOf: [User, UserA, UserB]` in endpoint response.\r\n- add discriminator/mapping field, where explicitly add `User` schema into discriminator mapping.\r\n\r\n\r\n2. Is [openapi generator](https://openapi-generator.tech/) implement this in the correct way?\r\n3. What is the convenient way to specify that server returns an array, that may contain types: `User`, `UserA`, `UserB`?",
"created_at": "2022-09-08T12:53:12Z",
"updated_at": "2024-04-19T17:20:37Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AON0h",
"body": "allOf makes it an inheritance. Superclass should neither know of nor include its subclasses.\r\n\r\nThe specification you've attached says your endpoint returns only a list of `User`. Since `additionalProperties` is true by default, it may return objects that happen to validate against `UserA` and/or `UserB` but that's not declared explicitly.\r\n\r\n```yaml\r\nresponses:\r\n default:\r\n content:\r\n application/json:\r\n schema:\r\n type: array\r\n items:\r\n oneOf:\r\n - $ref: '#/components/schemas/UserA'\r\n - $ref: '#/components/schemas/UserB'\r\n - $ref: '#/components/schemas/User'\r\n```\r\n\r\nNot sure about discriminator, but you can try adding `additionalProperties: false` to User schema, so that UserA&B don't validate against it.\r\n"
},
"user": {
"login": "mtovt",
"avatar_url": "https://avatars.githubusercontent.com/u/96553816?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AOoc2",
"number": 2865,
"title": "Parameter only for POST",
"body": "I have a schema that I would like to use for both POST and PUT methods but a target parameter is allowed only for the POST request.\r\n\r\nTo make it clear let's imagine that there is a possibility to **create** and **update** a *user*.\r\nAt the POST it's required the name and the inviteCode, then for the PUT just the name and don't allow to edit the inviteCode anymore\r\n\r\n```yaml\r\ncomponents:\r\n schemas:\r\n user:\r\n type: object\r\n properties:\r\n name:\r\n type: string\r\n inviteCode:\r\n type: string\r\npaths:\r\n \"/user\":\r\n post:\r\n requestBody:\r\n content:\r\n application/json:\r\n schema:\r\n \"$ref\": \"#/components/schemas/user\"\r\n \"/user/{id}\":\r\n put:\r\n parameters:\r\n - name: id\r\n in: path\r\n required: true\r\n schema:\r\n type: string\r\n requestBody:\r\n content:\r\n application/json:\r\n schema:\r\n \"$ref\": \"#/components/schemas/user\"\r\n```\r\n\r\nIs there a way to do it by just adding a parameter to the ```inviteCode```? ",
"created_at": "2022-01-26T16:56:23Z",
"updated_at": "2024-04-19T17:20:02Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AH1I_",
"body": "JSON Schema doesn't quite allow you to pick and choose which properties you want to use from a given schema definition.\r\nYou have two options:\r\n- split `user` into two schemas, where one uses `allOf` the other and adds the `inviteCode`\r\n- use the `user` schema for both, but in the case of put make it a combination of `allOf` and `not` to remove support for `inviteCode`"
},
"user": {
"login": "DenisFerrero",
"avatar_url": "https://avatars.githubusercontent.com/u/61707512?u=71886d23e185ee6aa7b345265740cabe3866f38d&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQnVU",
"number": 3014,
"title": "Invalid request for route publish_po_message: OpenAPI spec contains no such operation",
"body": "Hi ,\r\n\r\nAnyone have idea why i am getting this error .\r\n\r\nThanks\r\nShubhangi",
"created_at": "2022-09-02T06:38:10Z",
"updated_at": "2024-04-19T17:18:54Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "shubhangicatch",
"avatar_url": "https://avatars.githubusercontent.com/u/110524798?v=4"
}
},
{
"id": "MDEwOkRpc2N1c3Npb24zNTI0NzU5",
"number": 2676,
"title": "Why OpenAPI 3.1.0 does not allow schema references in Parameter & Media Type objects?",
"body": "It feels very strange for me that [Parameter Object](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.1.0.md#parameterObject) (`schema` field) and [Media Type Object](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.1.0.md#mediaTypeObject) (`schema` field) do not allow Reference Object to be passed. Maybe I am blind, but I can't find places in spec where schemas defined in `#/components/schemas/*` may be reused because there are no definitions of something like `Schema Object | Reference Object` in the spec. As I see currently component schemas may be reused only within another schemas (e.g. via `allOf`, `oneOf`, `items`, `properties`, etc).\r\n\r\nIsn't it a good idea to add `Schema Object | Reference Object` to Parameter Object and Media Type Object?",
"created_at": "2021-08-17T09:51:10Z",
"updated_at": "2024-03-26T18:56:08Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "MDE3OkRpc2N1c3Npb25Db21tZW50MTE5NDg4Mw==",
"body": "@flaksp your example\r\n```yaml\r\napplication/json: \r\n schema:\r\n $ref: \"#/components/schemas/Pet\"\r\n description: \"Description goes here\"\r\n summary: \"Summary goes here\"\r\n```\r\nis perfectly valid in OAS 3.1.0.\r\n\r\nSchemas support $ref siblings as part of JSON Schema 2019-09 and later. (OAS 3.1 uses JSON Schema 2020-12 by default.) Schema $refs are a bit different from OpenAPI Reference Objects (used for parameter $refs, response $refs, etc.) in that schema $refs support _any_ sibling keywords, whereas OAS Reference Objects only support sibling `summary` and `description`.\r\n\r\nNote that JSON Schema doesn't have the `summary` keyword so it will be handled as an _annotation_."
},
"user": {
"login": "flaksp",
"avatar_url": "https://avatars.githubusercontent.com/u/12474739?u=11f1f84a1962b729023cdf2f4dad17cffdd271ee&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AN-Ob",
"number": 2777,
"title": "Accept/Content-Type/Authorization Ignored",
"body": "Hi all,\r\n\r\nI work at a company that requires Swagger/OpenAPI specs for every API, so we have about 1500+ specs right now; probably 85% are using Swagger 2. I'm going to start requiring everyone to use OpenAPI 3.x going forward, primarily because it's waaay past time we did this. I'm also trying to make it easier for specs to be downloaded and imported into Insomnia or Postman and not have duplicate params that will cause confusion.\r\n\r\nI've got a couple of issues, however, that are holding me up.\r\n\r\n1. We have more than a couple APIs that, for whatever reason, have required Accept or Content-Type header params. Is there a way to still have these using the OpenAPI 3.x rules/structure? Do we just flat-out tell teams not to add these header params?\r\n2. For years we have told teams that `key` is a required query param (or `x-api-key` header), and `Authorization` is a required header param if auth is being used. I understand these move into the `security/securityScheme` sections. Has anyone run into issues with people being confused about the new location of these values? Like I said, previously these were easy to see in the param list in Swagger-UI, but going forward, they are behind the padlock icon, which is a bit different. \r\n\r\nSorry for the long note. I'm just hung up on #1, and worried about #2 (especially since we've made a big deal about \"keys are for tracking, not security\" and now they are in the security section). I'm curious if others have had to deal with this and what has worked for them.\r\n\r\nThanks!",
"created_at": "2021-11-02T15:20:10Z",
"updated_at": "2024-03-26T18:55:00Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AGBF7",
"body": "1. That was indeed one of the stricter changes from 2.0 to 3.0. You simply cannot have those as defined headers anymore as those are exclusively defined under `content` now. If you're using any conversion tools, they may be able to support it (or extended to support it). Adding those headers in 3+ is a no-go and should fail validation.\r\n\r\n2. `key` or `x-api-key` could have been defined in 2.0 as well under the security sections. I don't believe there's any requirement for you to move them to become security definitions rather than parameters in 3.0. The benefit of moving them to the security section is that that you're not going to have to add them to each and every operation. `authorization` is strictly prohibited as a header parameter name and that has to move to the security section. "
},
"user": {
"login": "jaydreyer",
"avatar_url": "https://avatars.githubusercontent.com/u/1815281?v=4"
}
},
{
"id": "D_kwDOAQkWPc4APdQB",
"number": 2924,
"title": "Java OpenApi format date",
"body": "Hello, I am using OpenApi in my Java project. In my yaml file I used type string and format date. But I am facing one issue with the year.\r\nMy request should come like this 2022-01-30 if I give wrong day or month validation is working and I am getting error message but for the year this is not happening. For example if I sent wrong year like this 20223131-01-30 I am not getting error message that year has to be 4 digits or there is no such year. How can I fix this?\r\n\r\nThank you.",
"created_at": "2022-05-04T14:41:33Z",
"updated_at": "2024-03-26T18:54:10Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AKVrC",
"body": "20223131 is a valid year, albeit not very likely to be the correct value in your application.\r\n\r\nYou could add an extra check like `\"maxLength\": 10\"` or `\"pattern\": \"^\\d{4}-\\d{2}-\\d{2}$\"` to ensure that you get four-digit years."
},
"user": {
"login": "danosavraam",
"avatar_url": "https://avatars.githubusercontent.com/u/98758983?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AP6ac",
"number": 2954,
"title": "Clarification about path template uri that may or not clash with other paths",
"body": "Hi!. This is related to: #2753\r\n\r\nContext: we have an OAS 3.0 api with two path objects: `/v2` and `/v2{param}`. \"Param\" is a required parameter so in practice the second endpoint should always result in a different uri than the first one f.e: `/v2` vs `/v2test` (\"param\" is parameterized with \"test\").\r\n\r\nThe question is: do these paths clash with each other or are they valid according to the spec? The only thing I found but that doesn't apply to this case completely is:\r\n\r\n> When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical\r\n\r\nWhat would happen if instead of only two path objects, there were three:\r\n- `/v2`\r\n- `/v2another`\r\n- `/v2{param}` (clashes with `/v2another` if param == another)\r\n\r\nThis is all without taking into account the different styles the template parameter could have.\r\n\r\nHow should API processors handle all these variations? It seems to me that this might be really error-prone for processors.\r\n\r\nHere an API showcasing this:\r\n```yaml\r\nopenapi: \"3.0.0\"\r\ninfo:\r\n version: 1.0.0\r\n title: mytest\r\npaths: \r\n /v2:\r\n get:\r\n responses:\r\n \"200\":\r\n description: \"___\"\r\n /v2{params}:\r\n parameters:\r\n - in: path\r\n name: params\r\n required: true\r\n schema:\r\n type: string\r\n post:\r\n responses:\r\n \"200\":\r\n description: \"_______\"\r\n```",
"created_at": "2022-06-24T21:37:57Z",
"updated_at": "2024-03-26T18:52:21Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4ALhYp",
"body": "I don't see any problem with the described definition. With the case of `/v2another` and `/v2{param}` (clashes with `/v2another` if param == another), the definition of `/v2another` will take precedence because it's a specific case definition."
},
"user": {
"login": "tomsfernandez",
"avatar_url": "https://avatars.githubusercontent.com/u/15634976?u=9d60a0b4af3156b37522b30b86229bb0855a673d&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AN_oG",
"number": 2782,
"title": "download workflow form responses from my slack by API",
"body": "Hello,\r\n\r\nI am trying to download workflow form responses from my slack by API but there is no info in API about it.\r\n\r\nIs that possible ?\r\nif Yes can You please put example how to do it ?\r\n\r\nBR",
"created_at": "2021-11-05T08:37:52Z",
"updated_at": "2024-03-26T18:51:32Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "enimath",
"avatar_url": "https://avatars.githubusercontent.com/u/85619615?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQJ2P",
"number": 2974,
"title": "How to manage multiple requestBody in a single endpoint",
"body": "Is it possible to have more than one requestBody for the same endpoint post;\r\n`\r\n \"Entete\": {\r\n \"operationid\": 7701,\r\n },\r\n\"contentParams\":{\r\n\"user\":\"username\",\r\n\"password\":\"passworduser\"\r\n}\r\n`\r\nThis a piece of my request body and depending of the operationid execute a method , \r\nNote: operation code are unique for every method;\r\nMore info: contentParams depend of the operationid,\r\nevery operationid have its unique id, but the content params might be same with other methods but the output is always different;\r\nIf i am not clear enough i can explain more, and ask me question when need be;",
"created_at": "2022-07-21T09:57:37Z",
"updated_at": "2024-03-26T18:50:53Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "ydevmob",
"avatar_url": "https://avatars.githubusercontent.com/u/109730381?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQb41",
"number": 3001,
"title": "Scopes: Logical OR and AND",
"body": "According to [the Swagger documentation](https://swagger.io/docs/specification/authentication/#multiple), it's already possible to use multiple authentication types:\r\n\r\n```\r\nsecurity: # (A AND B) OR (C AND D)\r\n - A\r\n B\r\n - C\r\n D\r\n```\r\n\r\nIs this concept also extensible to scopes? E.g.\r\n\r\n```\r\nsecurity: \r\n - oauth2: # user needs scope \"A\" or \"B\"\r\n - A\r\n - B\r\n\r\nsecurity:\r\n - oauth2: # user needs scope \"A\" and \"B\"\r\n - A\r\n B\r\n```\r\n\r\nI already tested this in the Swagger Editor and it doesn't seem to make a difference. So, is my assumption correct that scopes always use Logical AND?",
"created_at": "2022-08-16T11:44:19Z",
"updated_at": "2024-03-26T18:49:26Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4ANL0T",
"body": "Logical \"AND\" and \"OR\" for scopes can be expressed as follows:\r\n\r\n```yaml\r\n# User needs scopes A AND B\r\nsecurity:\r\n - oauth2:\r\n - A\r\n - B\r\n\r\n# User needs scope A OR B\r\nsecurity:\r\n - oauth2:\r\n - A\r\n - oauth2:\r\n - B\r\n\r\n# User needs scope (A AND B) OR C\r\nsecurity:\r\n - oauth2:\r\n - A\r\n - B\r\n - oauth2:\r\n - C\r\n```"
},
"user": {
"login": "mrksbnch",
"avatar_url": "https://avatars.githubusercontent.com/u/15638734?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQT7D",
"number": 2993,
"title": "Is \"on\" reserved? \"on\" field converts to String true in java",
"body": "The following yaml:\r\n\r\n by:\r\n type: string\r\n description: Email Address of User.\r\n on:\r\n type: string\r\n description: Timestamp of creation.\r\n example: 2018-07-10T11:44:00Z\r\n\r\nUsing org.openapitools 5.3.0 creates this:\r\n\r\n @JsonProperty(\"by\")\r\n private String by;\r\n\r\n @JsonProperty(\"true\")\r\n private String true;\r\n",
"created_at": "2022-08-03T14:29:43Z",
"updated_at": "2024-03-26T18:49:09Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "jkoorts",
"avatar_url": "https://avatars.githubusercontent.com/u/10402021?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ASv-c",
"number": 3177,
"title": "Referencing Response Headers in Generated Response Schema",
"body": "I'm working on an API where we're using JWS and we're intending to return a `Replay-Nonce` header in each response that we want to be able to be referenced in the generated code. Right now, we're only generating a Go client and the generated code is not providing anyway to access the header. \r\n\r\nThe OpenAPI YAML we are using looks like:\r\n\r\n```yaml\r\nopenapi: 3.0.0\r\ninfo:\r\n title: Example\r\n version: 1.0.0\r\n\r\nservers:\r\n- url: https://example.net\r\n\r\npaths:\r\n /new-nonce:\r\n head:\r\n operationId: RetrieveNewNonce\r\n responses:\r\n '200':\r\n headers:\r\n Replay-Nonce:\r\n $ref: '#/components/headers/ReplayNonce'\r\n /order:\r\n post:\r\n operationId: OrderItem\r\n requestBody:\r\n required: true\r\n content:\r\n application/json:\r\n schema:\r\n type: object\r\n properties:\r\n nonce:\r\n type: string\r\n title:\r\n type: string\r\n responses:\r\n '201':\r\n headers:\r\n Replay-Nonce:\r\n $ref: '#/components/headers/ReplayNonce'\r\n content:\r\n application/json:\r\n schema:\r\n $ref: '#/components/schemas/OrderResponse'\r\n\r\ncomponents:\r\n headers:\r\n ReplayNonce:\r\n schema:\r\n type: string\r\n schemas:\r\n OrderResponse:\r\n type: object\r\n properties:\r\n id:\r\n type: integer\r\n title:\r\n type: string\r\n```\r\n\r\nWe've also tried having separate request schema that we add additional code to generate a JWS that would look like:\r\n\r\n```\r\nrequestBody:\r\n required: true\r\n content:\r\n application/json: # application/jose+json doesn't work despite being a registered IANA media type\r\n properties:\r\n protected:\r\n type: string\r\n payload:\r\n type: string\r\n signature:\r\n type: string\r\n required: ['protected', 'payload', 'signature']\r\n```\r\n\r\nBut that naturally doesn't change anything. The generated code from this has a client struct with\r\n\r\n```go\r\nfunc (client *Client) RetrieveNewNonce(\r\n\tctx context.Context,\r\n) error {\r\n// ...\r\n}\r\n```\r\n\r\n(In other words, it's not returning anything other than an error)\r\n\r\nAre we missing something? Is there syntax we're missing that would allow us to extract the value to the response struct?\r\n\r\n",
"created_at": "2023-03-01T16:40:44Z",
"updated_at": "2024-03-13T18:46:59Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "sigmavirus24",
"avatar_url": "https://avatars.githubusercontent.com/u/240830?u=cfe7ddccc58238bedb4176ff2a8dbc200c6a314d&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AURfd",
"number": 3300,
"title": "How do I reuse a set of parameters between POST and PATCH request?",
"body": "I have two endpoints. One for POST, one for PATCH. Both take 20+ params, PATCH taking one extra (the ID to update). How do I share a set of 20 params between POST and PATCH? The docs don't indicate that this is possible, which means I'm looking at having to duplicate the set of 20+ params in both the POST and PATCH definitions. The params component only takes individual params, which means I'd still need to duplicate some code (duplicate arrays of param references). What I'm hoping to be able to do is something like:\r\n\r\n\r\n```yaml\r\npaths:\r\n /api/v2/users:\r\n post:\r\n parameters:\r\n $ref: \"#/components/parameterSet/User\"\r\n /api/v2/users:\r\n patch:\r\n parameters:\r\n $ref: \"#/components/parameterSet/User\"\r\n\r\ncomponents:\r\n parameterSet:\r\n User:\r\n - name: first_name\r\n in: query\r\n description: \"Must not contain numbers or any of the following special characters !@#$%^&*()\"\r\n required: true\r\n schema:\r\n type: string\r\n explode: false\r\n example: \"John\"\r\n - name: last_name\r\n in: query\r\n description: \"Must not contain numbers or any of the following special characters !@#$%^&*()\"\r\n required: true\r\n schema:\r\n type: string\r\n explode: false\r\n example: \"Smith\"\r\n```\r\n\r\nIs this possible at all using Schemas? It doesn't appear so but I could be missing something.",
"created_at": "2023-06-19T04:03:34Z",
"updated_at": "2024-03-13T18:25:00Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AXuJn",
"body": "Just to clarify - are these parameters query parameters, or are they request body fields?\r\n\r\nI'm asking because your example looks like CRUD, and the typical CRUD design is\r\n\r\n```\r\nPOST /users\r\n\r\n{\r\n \"field1\": value1,\r\n ...\r\n}\r\n```\r\n```\r\nPATCH /users/:id\r\n\r\n{\r\n \"field1\": value1,\r\n ...\r\n}\r\n```\r\n\r\nrather than `POST /users?field1=value1&...`."
},
"user": {
"login": "KieranP",
"avatar_url": "https://avatars.githubusercontent.com/u/16620?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARADG",
"number": 3045,
"title": "Path Item Object $ref - how does it work?",
"body": "I understand that Reference Object is for reusability of parts of the schema. Everywhere where reference is allowed is written that type can be either Reference Object or the other object type.\r\n\r\nExcept in Path Item Object. In Path Item Object are allowed the standard fields and $ref which references another Path Item Object? It also has type string instead of Reference Object and I found description really confusing.\r\n\r\nIs it just inconsistency or does $ref in Path Item Object work differently? I would expect that Callback Object and Paths Object would both accept list of Path Item Object | Reference Object.\r\n\r\nThank you",
"created_at": "2022-10-08T19:34:25Z",
"updated_at": "2024-03-13T18:24:14Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AOycY",
"body": "For now I just merge data from original and referenced Path Item and throw an exception in case field exists in both, because behavior is undefined by specification"
},
"user": {
"login": "mabar",
"avatar_url": "https://avatars.githubusercontent.com/u/20974277?u=3d1ca7b25c91464326767b478b07da70e8563512&v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARA_a",
"number": 3049,
"title": "Include HTTP version (1.1/2/3) in the spec",
"body": "The servers are typically backwards compatible so any API client could connect using the lowest version,\r\nbut including HTTP versions in the spec would tell a client developer that they can use a special library and connect via the higher version.\r\n\r\nI propose something like this:\r\n```yaml\r\nopenapi:\r\n http-versions:\r\n - '1.0'\r\n - '1.1'\r\n - '2.0'\r\n - '3.0'\r\n```",
"created_at": "2022-10-10T15:37:33Z",
"updated_at": "2024-03-13T18:19:07Z",
"category": {
"name": "Enhancements",
"emoji": ":bulb:"
},
"answer": null,
"user": {
"login": "rafalkrupinski",
"avatar_url": "https://avatars.githubusercontent.com/u/3732079?u=4b647b396cd54c57e11b5c73fc09e7cf83acf786&v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARKX_",
"number": 3062,
"title": "How to define multiple objects to the definitions or components",
"body": "Hi , \r\n\r\nI have a definition (swagger-2.0)\r\n```\r\n ErrorCode:\r\n type: object\r\n properties:\r\n code:\r\n type: integer\r\n field: \r\n type: string \r\n```\r\n\r\nI would like to add possible value for this structure into openapi documentation. Practically, code and field corresponds to the same thing (one in numerical and the other in English). I would like all the possible objects be part of the openAPI document, so the client can translate them into multiple languages if needed.\r\nFor example \r\n```\r\n{\r\n\t{\r\n\t\tcode: 1001\r\n\t\tfield: \"missing_file\"\r\n\t},\r\n\t{\r\n\t\tcode: 1002\r\n\t\tfield: \"invalid_file\"\r\n\t},\r\n\t{\r\n\t\tcode: 1003\r\n\t\tfield: \"large_file\"\r\n\t},\r\n\t...\r\n}\r\n```\r\n\r\nHow to specify all the ErrorCode in the openapi document",
"created_at": "2022-10-24T11:00:40Z",
"updated_at": "2024-03-13T18:15:08Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4APGhS",
"body": "```yaml\r\nErrorCode:\r\n type: object\r\n properties:\r\n code:\r\n type: integer\r\n field: \r\n type: string \r\n enum:\r\n - code: 1001\r\n field: missing_file\r\n - code: 1002\r\n field: invalid_file\r\n...\r\n```"
},
"user": {
"login": "BhanuKiranChaluvadi",
"avatar_url": "https://avatars.githubusercontent.com/u/19394175?u=3b0405f0a65a7be9e22da0c06b9738923df394ca&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AReIg",
"number": 3079,
"title": "How to have examples for an object which has an array of objects",
"body": "https://swagger.io/docs/specification/adding-examples/ seems to suggest it cant be done: Note that arrays and array items support single example but not multiple examples.\r\n\r\nI would like to reference several examples.",
"created_at": "2022-11-18T17:04:34Z",
"updated_at": "2024-03-13T18:13:54Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AP94S",
"body": "Multiple schema-level `examples` are supported in OpenAPI 3.1. They must be inline example values and cannot be $refs.\r\n\r\n```yaml\r\nopenapi: 3.1.0\r\n...\r\n\r\ncomponents:\r\n schemas:\r\n MyObject:\r\n type: object\r\n properties:\r\n foo:\r\n type: string\r\n # Multiple property-level examples\r\n examples:\r\n - Hello, world!\r\n - quick brown fox\r\n # Multiple object-level examples\r\n examples:\r\n - foo: Hello, world!\r\n - foo: quick brown fox\r\n \r\n MyArray:\r\n type: array\r\n items:\r\n $ref: '#/components/schemas/MyObject'\r\n # Multiple array-level examples\r\n examples: \r\n -\r\n # The 1st example\r\n - foo: Hello, world!\r\n - foo: quick brown fox\r\n - \r\n # The 2nd example\r\n - foo: Something else\r\n```"
},
"user": {
"login": "mcrobbj",
"avatar_url": "https://avatars.githubusercontent.com/u/10534160?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AOR9G",
"number": 2827,
"title": "Question: Is it possible define minimum and maximum limits for date/datetime",
"body": "Hi,\r\n\r\nI have been trying to figure out how I could add limits to datetime / date based properties / values in open api 3 schema.\r\n\r\nhttps://swagger.io/docs/specification/data-models/data-types/\r\n\r\ndescribes that string can have min length and max length properties but I would like to provide minimum and maximum value for the date\r\n\r\n```\r\ntype: string\r\nminLength: 3\r\nmaxLength: 20\r\n```\r\n\r\nSomething similar what integer has:\r\n\r\n```\r\ntype: integer\r\nminimum: 1\r\nmaximum: 20\r\n```\r\n\r\n\r\nSomething like this?\r\n\r\n```\r\ntype: string\r\nformat: date\r\nminimum: 1996-12-19\r\nmaximum: 2021-12-19\r\n```",
"created_at": "2021-12-13T11:38:19Z",
"updated_at": "2024-03-13T16:51:30Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AWue_",
"body": "As webron said it's not possible to add such constraints using OpenAPI or JSON Schema as-is. Only with hacks like using `pattern` keyword, or you should redesign your API to use UNIX timestamps so you will be able to use `minimum` and `maximum` keywords.\r\n\r\nHowever JSON Schema specification says it's pretty valid to add custom keywords like this:\r\n\r\n```yaml\r\ntype: string\r\nformat: date\r\nminimumDate: 1996-12-19\r\nmaximumDate: 2021-12-19\r\n```\r\n\r\nCustom keywords `minimumDate` and `maximumDate` will be ignored (treated as annotations) by most tools. But if tools you are using support some kind of extensions or plugins you may \"tune\" them to recognise these keywords and you may write your own logic around this. If your tools don't have such API for extensions you may just fork them if these keywords worth this 😁"
},
"user": {
"login": "Havunen",
"avatar_url": "https://avatars.githubusercontent.com/u/2021355?u=19cf8e5fded24b44633b755f9edc10108cf6b3aa&v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARCiZ",
"number": 3052,
"title": "how should be specified and represent a nested array of a query parameter ?",
"body": "- As long as I understand, the query parameter type can define as a nested array.\r\n\r\n `{\r\n \"name\": \"petName\",\r\n \"in\": \"query\",\r\n \"description\": \"Status of pet that needs to be updated\",\r\n \"schema\": {\r\n \"type\": \"array\",\r\n \"items\": {\r\n \"type\": \"array\",\r\n \"items\": {\r\n \"type\": \"array\",\r\n \"items\": {\r\n \"type\": \"integer\"\r\n }\r\n }\r\n }\r\n }\r\n }`\r\n\r\n\r\n\r\n- But this will represent a flat array in the request URL of the swaggers. \r\n\r\n`https://petstore.swagger.io/v2/pet/19?status=available&petName=5&petName=5&petName=66&petName=77`\r\n\r\n\r\n\r\n\r\nI was wondering if this scenario is valid or if could you please give me a brief introduction about how to specify and represent a nested array of a query parameter.\r\n\r\nBest regards",
"created_at": "2022-10-12T10:19:48Z",
"updated_at": "2024-03-13T16:50:36Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AP94q",
"body": "As of OpenAPI 3.1, nested arrays and nested objects are **not** actually supported in query parameters because the serialization rules are not defined for nested structures. More info here:\r\n\r\n* #1706\r\n* [OpenAPI path/query parameters nested structure serialization](https://stackoverflow.com/questions/67745944/openapi-path-query-parameters-nested-structure-serialization) on Stack Overflow"
},
"user": {
"login": "RSH17",
"avatar_url": "https://avatars.githubusercontent.com/u/56576410?u=51f132710d3b977a0bf3f775a144601a4d229f80&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQyLV",
"number": 3031,
"title": "How should be specified a query/header parameter thats allow duplication",
"body": "As long as I understand in HTTP is possible to send duplicated query and header parameters, how the server handle this is out of the scope of the specification but I have observed that the combination of \"name\" and location (expressed by field \"in\") in parameters in Open API should be unique so what is the correct way to specify that an API allow multiple query/headers, for example:\r\n\r\n```\r\nHTTP://myapi.com?id=123&id=345\r\n```\r\nBest regards",
"created_at": "2022-09-17T11:25:36Z",
"updated_at": "2024-03-13T16:50:14Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AOJkv",
"body": "\"[4.8.12.3 Style Values](https://spec.openapis.org/oas/latest.html#style-values)\" section covers how parameters may be represented with different data types (also check out table with examples in \"[4.8.12.4 Style Examples](https://spec.openapis.org/oas/latest.html#style-examples)\" section below). It is possible to represent array of query-parameters as you wish with `style: form`, `explode: true` and using schema of type `array` in `schema` keyword. \r\n\r\nExample:\r\n\r\n```yaml\r\nname: color\r\nin: query\r\nstyle: form\r\nexplode: true\r\nschema:\r\n type: array\r\n uniqueItems: true\r\n items:\r\n enum: [blue, black, brown]\r\n```\r\n```\r\ncolor=blue&color=black&color=brown\r\n```\r\n\r\nHowever, OpenAPI specification does not cover multiple headers with same name, so behaviour is undefined 😔 But it's nice idea to visit \"[Big thoughts for 4.0](https://github.com/OAI/OpenAPI-Specification/discussions/2930)\" discussion where we gather ideas for the next major update of the spec and suggest yours about headers with attached references to HTTP spec, existing issues and discussions if they exist."
},
"user": {
"login": "joolfe",
"avatar_url": "https://avatars.githubusercontent.com/u/1319632?u=ef14a0c73c81bfae9308ecbcb427ac142571e9c7&v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARKKN",
"number": 3060,
"title": "how could we define the mutualTLS ?",
"body": "> Under Open API specification 3.1.0 version, there is a defined Security Scheme type called mutualTLS. how could we define this type using code? \r\ncould you please give an example of this type? ",
"created_at": "2022-10-24T04:06:12Z",
"updated_at": "2024-03-13T16:49:30Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "RSH17",
"avatar_url": "https://avatars.githubusercontent.com/u/56576410?u=51f132710d3b977a0bf3f775a144601a4d229f80&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AU-0i",
"number": 3344,
"title": "Documenting an API with all operations under a single path",
"body": "I'm trying to document an existing API that uses a single path with query parameters to specify the different actions:\r\n```\r\n/api?action=action1&some-param=1\r\n/api?action=action2&other-aparam=2\r\n```\r\nIf I would put all parameters under a single path, that would force all parameters under that path, too and would mix a lot of parameters that are only valid on certain actions.\r\n\r\nThe Swagger editor doesn't let me create multiple entries for the same path, even if the action parameter is required with a different value on each. and doesn't accept `/api?action=action1` as a separate path either.\r\n\r\nIs the unique path a requirement from Swagger or from the OpenAPI spec ?\r\n\r\nIs there a good workaround how to handle this ?\r\n\r\nThanks!",
"created_at": "2023-08-08T16:33:22Z",
"updated_at": "2024-03-13T16:44:48Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AaKSL",
"body": "Swagger is a tooling vendor for the OpenAPI specification. The OAS specification requires each path is unique up to the point of the `?`, the query separator. \r\n\r\nThe way your api is designed makes it very difficult to construct a human readable OpenAPI description. OAS does not have any \"scenario\" type of description available. This means all possible query parameters of a single endpoint should be described. But there is no way to distinguish which sets of parameters will provide a different response payload. You can use `examples` to provide different representations of the payload and you can also provide multiple payloads using composition keywords such as `oneOf` or `anyOf` to describe the possible data instances. \r\n\r\n```yaml\r\nopenapi: 3.0.3\r\ninfo:\r\n title: test\r\n version: 1.0.0\r\npaths:\r\n /api:\r\n get:\r\n summary: summary of api\r\n parameters:\r\n - name: action\r\n in: query\r\n required: true\r\n schema:\r\n type: string\r\n - name: some-pararm\r\n in: query\r\n schema:\r\n type: string\r\n - name: other-pararm\r\n in: query\r\n schema:\r\n type: string\r\n responses:\r\n 200:\r\n description: OK\r\n content:\r\n application/json:\r\n schema: \r\n anyOf:\r\n - $ref: \"#/components/schemas/action_some-param\"\r\n - $ref: \"#/components/schemas/action_other-param\"\r\n examples:\r\n action_some-param:\r\n value: {}\r\n action_other-param:\r\n value: {}\r\ncomponents:\r\n schemas:\r\n action_some-param:\r\n type: object\r\n properties:\r\n some-param-payload:\r\n type: string\r\n action_other-param:\r\n type: object\r\n properties:\r\n other-param-payload:\r\n type: string\r\n\r\n\r\n```\r\n"
},
"user": {
"login": "willamowius",
"avatar_url": "https://avatars.githubusercontent.com/u/6840544?u=196e57c8b7ef87b3b5997a657f93fb0abf4e2f4b&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AVLlQ",
"number": 3358,
"title": "Is Query parameters need to encode when parameter type is array and items are define as objects?",
"body": "when the query parameter is defined as type=array and its item as object. when executing, values get encoded. is that the behavior?\r\n\r\n`\"parameters\": [\r\n {\r\n \"name\": \"tags\",\r\n \"in\": \"query\",\r\n \"description\": \"Tags to filter by\",\r\n \"schema\": {\r\n \"type\": \"array\",\r\n \"items\": {\r\n \"type\": \"object\"\r\n }\r\n }\r\n }\r\n ]`\r\n\r\nresult curl: curl -X 'GET' \\\r\n 'https://raw.githubusercontent.com/api/v3/pet/findByTags?tags=%7B%20%22R%22%3A%20100%2C%20%22G%22%3A%20200%2C%20%22B%22%3A%20150%20%7D&tags=%7B%20%22R%22%3A%20%22FF%22%2C%20%22G%22%3A%20%22GG%22%2C%20%22B%22%3A%20%22yu%22%20%7D' \\\r\n -H 'accept: application/xml'",
"created_at": "2023-08-24T02:27:39Z",
"updated_at": "2024-03-13T16:42:49Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AfarH",
"body": "The Parameter Object does not say anything about encoding, so this behavior is surprising. You should file an issue with whatever tool you are using, as we cannot help debug tooling problems here in the specification repo."
},
"user": {
"login": "RSH17",
"avatar_url": "https://avatars.githubusercontent.com/u/56576410?u=51f132710d3b977a0bf3f775a144601a4d229f80&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AURgG",
"number": 3301,
"title": "Authority/specification governing `$ref` in Schema Object",
"body": "Which specification is responsible for describing the processing of `$ref` in Schema Objects?\r\n\r\n- OpenAPI 3.1 (ultimate authority)\r\n- JSON Schema 2020-12 (any authority?)\r\n\r\nIf you believe that `$ref` in Schema Objects is processed according to the JSON Schema specification, could you tell me why [examples](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.1.0.md) like this are guaranteed to work:\r\n\r\n```json\r\n\"$ref\": \"#/components/schemas/Address\"\r\n```\r\n\r\nNote that I can see how I *can* make such a reference work. The question is *which rules mandate and guarantee the behavior* assumed/intended by the author of this example (and many similar examples). If an implementation did not support this behavior, which rules would it break? How would we argue in a hypothetical court case where good will and common sense are weak arguments?\r\n\r\nIf you believe that `$ref` in Schema Objects is not processed according to the JSON Schema specification, where is the JSON Schema behavior overruled (why would `$ref` not be subject to: \"Unless stated otherwise, the property definitions follow those of JSON Schema and do not add any additional semantics.\")? Also, if you believe that `$ref` is not processed according to the JSON Schema specification, please explain this examples [from the OpenAPI](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.1.0.md) specification (notice `type` as sibling of `$ref`):\r\n\r\n```yaml\r\nitems:\r\n type: object\r\n $ref: '#/components/schemas/Address'\r\n```\r\n",
"created_at": "2023-06-19T04:27:26Z",
"updated_at": "2024-03-13T16:42:03Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AXvA5",
"body": "> Which specification is responsible for describing the processing of `$ref` in Schema Objects?\r\n> * OpenAPI 3.1 (ultimate authority)\r\n> * JSON Schema 2020-12 (any authority?)\r\n\r\n(This answer is specifically about OAS 3.1. Earlier versions are slightly different in this regard.)\r\n\r\nThere are two types of $refs:\r\n\r\n1. Within _schemas_ (aka [Schema Objects](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.1.0.md#schema-object)), the $refs are processed according to the JSON Schema rules. For example, given a schema definition based JSON Schema 2020-12 (the default version used by OAS 3.1), [this is the relevant section](https://json-schema.org/draft/2020-12/json-schema-core.html#section-8.2.3.1) of the JSON Schema spec.\r\n\r\n2. Everywhere else (e.g. $refs to parameter/response/requestBody definitions) the $refs are the so-called \"Reference Objects\" and are processed according to [this section](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.1.0.md#reference-object) of the OpenAPI 3.1 Spec.\r\n"
},
"user": {
"login": "watuwo",
"avatar_url": "https://avatars.githubusercontent.com/u/83006066?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AU2kI",
"number": 3341,
"title": "Refactor of Server url and path",
"body": "Hi all,\r\n\r\nMy question is related to the server URL and path. Let's assume we have the following specification (I will omit some parameters):\r\n``` yaml\r\nservers: \r\n - url: https://fake-environment.com\r\npaths:\r\n - /cars: # POST - GET\r\n $ref: paths/cars.yaml \r\n - /cars/test1: # GET\r\n $ref: paths/cars-test1.yaml \r\n - /cars/test2: # GET \r\n $ref: paths/cars-test2.yaml \r\n .... (All paths start with `/cars`)\r\n```\r\n\r\nIn a refactor, I decide to move `/cars` to the server URL and it looks like this: \r\n\r\n``` yaml\r\nservers: \r\n - url: https://fake-environment.com/cars\r\npaths:\r\n - /: # POST - GET\r\n $ref: paths/cars.yaml \r\n - /test1 : # GET\r\n $ref: paths/cars-test1.yaml \r\n - /test2: # GET\r\n $ref: paths/cars-test2.yaml \r\n ```\r\n\r\nHowever this is a little bit weird, because if I do a POST in the original one, it was POST https://fake-environment.com/cars, but in the new one it will be POST https://fake-environment.com/cars/ . So my question here is: \r\n\r\n- Does it make sense this refactor? \r\n- Should I rename the first path to `/create` or something like that? This is related to the restriction where all paths must start with `/`.\r\n- Is there any way to avoid that `/` at the end of the path? \r\n\r\nIf you need more explanation, please let me know. \r\n\r\nThanks in advance!!! ",
"created_at": "2023-08-02T07:54:12Z",
"updated_at": "2024-03-13T16:39:02Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AfnqG",
"body": "You can't avoid the `/` at the end of the path because you can't define a Path Item under the empty string- it has to at least be `\"/\"`. So no, you can't do this refactor I'm afraid."
},
"user": {
"login": "JRamonMC",
"avatar_url": "https://avatars.githubusercontent.com/u/20944056?u=94abf4c8a0369a74e19c745ddd60e917d3adf57a&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AVgA7",
"number": 3371,
"title": "Proposal to add 'archetype' field to path specifications",
"body": "I would like to propose the addition of an 'archetype' field to path specifications to allow for the declaration of the architectural pattern that a path implements. There are two major reasons for this that I lay out in my proposal.\r\n\r\n1. It is vital information for automated testing tools to allow tools to scan APIs and ensure that they meet architectural standards. This allows architectural or design constraints to be tested and applied across a larger API set.\r\n2. It is very useful information for code generators and or dynamic clients that want to create interop code or other means of automatically building communication mechanisms with an api.\r\n\r\nhttps://github.com/OAI/OpenAPI-Specification/pull/3369\r\n",
"created_at": "2023-09-16T12:32:18Z",
"updated_at": "2024-02-22T18:25:45Z",
"category": {
"name": "Enhancements",
"emoji": ":bulb:"
},
"answer": null,
"user": {
"login": "myronww",
"avatar_url": "https://avatars.githubusercontent.com/u/239715?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARIhK",
"number": 3058,
"title": "Hide Schemas below but not routes?",
"body": "Hi, \r\n\r\ni tried to get rid of the fastapi-users (python) schemas in the bottom dropdown in swagger without breaking swagger:\r\n\r\n```\r\nfrom fastapi.openapi.utils import get_openapi\r\n\r\napp = FastAPI(redoc_url=None)\r\n\r\ndef custom_openapi():\r\n if app.openapi_schema:\r\n return app.openapi_schema\r\n\r\n openapi_schema = get_openapi(\r\n title=\"Api\",\r\n version=\"1.0.0\",\r\n routes=app.routes,\r\n description=\"This is the API documentation\",\r\n tags=tags_metadata\r\n )\r\n\r\n for model in (\r\n 'BearerResponse', 'Body_auth_jwt_login_auth_jwt_login_post', 'ErrorModel', 'HTTPValidationError',\r\n 'ValidationError',\r\n 'UserCreate', 'UserRead', 'UserUpdate'):\r\n openapi_schema[\"components\"][\"schemas\"].pop\r\n\r\n app.openapi_schema = openapi_schema\r\n return app.openapi_schema\r\n\r\n\r\napp.openapi = custom_openapi\r\n```\r\n\r\nBut i get this errors when i click onevery route to dropdown it:\r\n\r\n```\r\nErrors\r\n\r\nResolver error at paths./auth/jwt/login.post.requestBody.content.application/x-www-form-urlencoded.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/Body_auth_jwt_login_auth_jwt_login_post does not exist in document\r\nResolver error at paths./auth/jwt/login.post.responses.200.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/BearerResponse does not exist in document\r\nResolver error at paths./auth/jwt/login.post.responses.400.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/ErrorModel does not exist in document\r\nResolver error at paths./auth/jwt/login.post.responses.422.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/HTTPValidationError does not exist in document\r\nResolver error at paths./admin/register.post.requestBody.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/UserCreate does not exist in document\r\nResolver error at paths./admin/register.post.responses.201.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/UserRead does not exist in document\r\nResolver error at paths./admin/register.post.responses.400.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/ErrorModel does not exist in document\r\nResolver error at paths./admin/register.post.responses.422.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/HTTPValidationError does not exist in document\r\nResolver error at paths./admin/users/{id}.get.responses.200.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/UserRead does not exist in document\r\nResolver error at paths./admin/users/{id}.get.responses.422.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/HTTPValidationError does not exist in document\r\nResolver error at paths./admin/users/{id}.delete.responses.422.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/HTTPValidationError does not exist in document\r\nResolver error at paths./admin/users/{id}.patch.requestBody.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/UserUpdate does not exist in document\r\nResolver error at paths./admin/users/{id}.patch.responses.200.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/UserRead does not exist in document\r\nResolver error at paths./admin/users/{id}.patch.responses.400.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/ErrorModel does not exist in document\r\nResolver error at paths./admin/users/{id}.patch.responses.422.content.application/json.schema.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/HTTPValidationError does not exist in document\r\nResolver error at paths./admin/list-users.get.responses.200.content.application/json.schema.items.$ref\r\nCould not resolve reference: Could not resolve pointer: /components/schemas/UserRead does not exist in document\r\n\r\n```\r\n\r\nIs there a other way to disable the displaying in Swagger, without breaking the schema? The \"include_in_schema = False\" removes routes with schemas on the bottom dropdown of the site. I only want to stop displaying the schema in the bottom dropdown in swagger. Or is there a way to change the order of the schemas there so i can move the important ones up to the list?\r\n\r\nThank you for helping.",
"created_at": "2022-10-20T23:43:37Z",
"updated_at": "2024-03-18T11:24:14Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4Afnup",
"body": "This repository is for the specification, not individual tools. Please raise your issue with your tooling vendor."
},
"user": {
"login": "hsul-git",
"avatar_url": "https://avatars.githubusercontent.com/u/103585823?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARB79",
"number": 3050,
"title": "What licenses would you recommend for openapi schema?",
"body": "What license would you recommend for API schema that would free the client code generated from any legal burden?\r\n\r\nSome might argue that a generated client is a translation or other derivative work. distributing the schema under CC SA for example, might impose the license on the generated client.\r\n\r\nAny recommendations?",
"created_at": "2022-10-11T15:28:20Z",
"updated_at": "2024-01-29T19:21:51Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "rafalkrupinski",
"avatar_url": "https://avatars.githubusercontent.com/u/3732079?u=4b647b396cd54c57e11b5c73fc09e7cf83acf786&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AR31U",
"number": 3103,
"title": "Different types of properties behavior in schemas with `allOf`",
"body": "Hi there! I have a question about different types of properties in schemas with `allOf`. Faced that different toolings interpret this case in another way. And I want to be sure what is the correct way to implement this is and why. \r\n\r\nPlease, see the example below.\r\n\r\nIt seems, there are 3 possible scenarios with different tools I've met: \r\n1. `Bar.property1` infers as `object`\r\n2. `Bar.property1` infers as `array`\r\n3. Validation error\r\n\r\n```yml\r\nopenapi: 3.0.1\r\ninfo:\r\n title: example\r\n description: allOf example\r\n version: 0.1.0\r\nservers:\r\n - url: 'https://example.com'\r\npaths:\r\n '/foo':\r\n delete:\r\n responses:\r\n '200':\r\n description: OK\r\ncomponents:\r\n schemas:\r\n Foo:\r\n type: object\r\n properties: \r\n property1: \r\n type: object\r\n Bar:\r\n type: object\r\n properties:\r\n property1:\r\n type: array\r\n items:\r\n type: string\r\n allOf:\r\n - $ref: '#/components/schemas/Foo'\r\n```\r\n\r\nI've tried to look for the answer in [OpenAPI v3.0.1 Schema Object](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.0.1.md#schema-object)\r\n\r\n> This object is an extended subset of the [JSON Schema Specification Wright Draft 00](http://json-schema.org/).\r\n\r\n> properties - Property definitions MUST be a Schema Object and not a standard JSON Schema (inline or referenced).\r\nThe following properties are taken from the JSON Schema definition but their definitions were adjusted to the OpenAPI Specification.\r\n\r\n> type - Value MUST be a string. Multiple types via an array are not supported.\r\n\r\n> The OpenAPI Specification allows combining and extending model definitions using the allOf property of JSON Schema, in effect offering model composition. allOf takes an array of object definitions that are validated independently but together compose a single object.\r\n\r\nShould we validate the object separately against `object` and separately against `array` in that case? Or is another behavior here expected?\r\n\r\nRelated:\r\nhttps://github.com/swagger-api/swagger-editor/issues/3732\r\n\r\n\r\n\r\n",
"created_at": "2022-12-22T09:30:01Z",
"updated_at": "2024-01-29T19:20:36Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AS4y0",
"body": "The `Bar` schema is valid. But it won't work as you expect.\r\n\r\nSchema instance (a value you are validating against a schema) is valid only when it was successfully validated agains all keywords in a schema.\r\n\r\nLet's say this is a value you are validating against `Bar` schema:\r\n\r\n```json\r\n{\r\n \"property1\": []\r\n}\r\n```\r\n\r\nThis is how validator will validate the value against your schemas:\r\n\r\n- Evaluating `/components/schemas/Bar/type` keyword: is passed value has type `object`? Yes.\r\n- Evaluating `/components/schemas/Bar/properties`:\r\n - Evaluating `/components/schemas/Bar/properties/property1/type` keyword: is passed value has type `array`? Yes.\r\n- Evaluating `/components/schemas/Bar/allOf` keyword:\r\n 1. Evaluating `/components/schemas/Bar/allOf/0/$ref` keyword: \r\n - Evaluating `/components/schemas/Foo/type` keyword: is passed value has type `object`? Yes.\r\n - Evaluating `/components/schemas/Foo/properties`:\r\n - Evaluating `/components/schemas/Foo/properties/property1/type` keyword: is passed value has type `object`? No.\r\n\r\nAs you can see, validation will fail because passed JSON is not valid against the single keyword. Because `property1` can't hold a value of types `array` and `object` at the same time.\r\n\r\nIt's important to note that `allOf` keyword is not an *inheritance* or *merge* solution. It's like an intersection. A value should be valid against all schemas defined in `allOf` keyword.\r\n\r\nThis repository is mostly about OpenAPI spec. You are welcome to ask questions about JSON Schema in [official repository discussions on GitHub](https://github.com/json-schema-org/community/discussions) 🙂"
},
"user": {
"login": "mtovt",
"avatar_url": "https://avatars.githubusercontent.com/u/96553816?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AUTjD",
"number": 3302,
"title": "Meta-Defining JSON Schema inside of an openAPI spec (Version 3.0.2)",
"body": "The following definition of a json_schema is found in an openAPI specification I'm currently working with:\r\n\r\n```\r\n \"json_schema\": {\r\n \"type\": \"object\",\r\n \"title\": \"JSON Schema\",\r\n \"description\": \"A JSON Schema compliant to [JSON Schema draft-07](https://json-schema.org/draft-07/json-schema-validation.html) or later.\\n\\nJSON Schemas SHOULD always be dereferenced (i.e. all `$refs` should be resolved).\\nThis allows clients to consume the schemas much better.\\nClients are not expected to support dereferencing `$refs`.\\n\\nNote: The specified schema in the OpenAPI document is only a common subset of JSON Schema.\\nAdditional keywords from the JSON Schema specification MAY be used.\",\r\n \"properties\": {\r\n \"$schema\": {\r\n \"description\": \"The JSON Schema version. If not given in the context of openEO,\\ndefaults to `draft-07`.\\n\\nYou may need to add the default value for `$schema` property explicitly to the JSON Schema\\nobject before passing it to a JSON Schema validator.\",\r\n \"type\": \"string\",\r\n \"format\": \"uri\",\r\n \"default\": \"http://json-schema.org/draft-07/schema#\"\r\n },\r\n \"$id\": {\r\n \"description\": \"ID of your JSON Schema.\",\r\n \"type\": \"string\",\r\n \"format\": \"uri\"\r\n },\r\n \"type\": {\r\n \"description\": \"The allowed basic data type(s) for a value.\\n\\nIf this property is not present, all data types are allowed.\",\r\n \"oneOf\": [\r\n {\r\n \"$ref\": \"#/components/schemas/json_schema_type\"\r\n },\r\n {\r\n \"type\": \"array\",\r\n \"minItems\": 1,\r\n \"uniqueItems\": true,\r\n \"items\": {\r\n \"$ref\": \"#/components/schemas/json_schema_type\"\r\n }\r\n }\r\n ]\r\n },\r\n \"pattern\": {\r\n \"type\": \"string\",\r\n \"format\": \"regex\",\r\n \"description\": \"The regular expression a string value must match against.\"\r\n },\r\n \"enum\": {\r\n \"type\": \"array\",\r\n \"items\": {},\r\n \"description\": \"An exclusive list of allowed values.\"\r\n },\r\n \"minimum\": {\r\n \"type\": \"number\",\r\n \"description\": \"The minimum value (inclusive) allowed for a numerical value.\"\r\n },\r\n \"maximum\": {\r\n \"type\": \"number\",\r\n \"description\": \"The maximum value (inclusive) allowed for a numerical value.\"\r\n },\r\n \"minItems\": {\r\n \"type\": \"number\",\r\n \"minimum\": 0,\r\n \"default\": 0,\r\n \"description\": \"The minimum number of items required in an array.\"\r\n },\r\n \"maxItems\": {\r\n \"type\": \"number\",\r\n \"minimum\": 0,\r\n \"description\": \"The maximum number of items required in an array.\"\r\n },\r\n \"items\": {\r\n \"description\": \"Specifies schemas for the items in an array.\",\r\n \"anyOf\": [\r\n {\r\n \"type\": \"array\",\r\n \"minItems\": 1,\r\n \"items\": {\r\n \"$ref\": \"#/components/schemas/json_schema\"\r\n }\r\n },\r\n {\r\n \"$ref\": \"#/components/schemas/json_schema\"\r\n }\r\n ]\r\n }\r\n },\r\n \"additionalProperties\": {\r\n \"description\": \"You can add any other property supported by the JSON Schema version that is given through the property `$schema`, so either [draft-07](https://json-schema.org/draft-07/json-schema-validation.html) or any later version.\"\r\n }\r\n },\r\n```\r\n\r\nThis is then being referenced to be used in multiple parts of the document to describe the JSON responses of the API. (Here's a link to the entire document https://api.openeo.org/)\r\n\r\nTo my understanding this was done in an attempt to mimic JSON Schema dialects introduced in 3.1.0.\r\n\r\nI believe this to not only be superfluous, as all the functionality that is needed is already covered by the inherent existence of the openAPI version of the JSON Schema (https://spec.openapis.org/oas/v3.0.2#schema-object), but also strictly unsupported because of the use of $id and $schema, which are covered by JSON Schema (https://json-schema.org/), hence their inclusion in this meta-implementation of it, but not supported in the context of a openAPI document (openapi-core library fails at validating this spec because of the inclusion of the $id property).\r\n\r\nI was discussing this with the person who made this specific specification and he told me that I was wrong in thinking this and I should ask the openAPI community itself. (https://github.com/Open-EO/openeo-api/issues/499)",
"created_at": "2023-06-21T12:16:00Z",
"updated_at": "2024-01-29T19:18:25Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AX07J",
"body": "> Firstly, is the json_schema object not a schema object and therefore has to follow the guidelines outlined here https://spec.openapis.org/oas/v3.0.2#schema-object disallowing certain properties (such as $id)?\r\n\r\nThat schema doesn't use `$id` or `$schema` as a keyword. Those are property names.\r\n\r\n```json\r\n{\r\n \"$id\": \"...\" // <= This is a keyword and would not be allowed\r\n \"properties\": {\r\n \"$id\": { // <= This is just a property name. It just happens to be spelled the same as the keyword.\r\n } \r\n }\r\n}\r\n```\r\n\r\n> Secondly, the \"/collections/{collection_id}/queryables\" is the only endpoint with application/schema+json mimetype, but the json_schema is referenced in way more endpoints than that one.\r\n\r\nYes, other resources seem to include schemas embedded in their responses. That's similar to how OpenAPI has schemas embedded in them. The schemas being part of a response is no different than a schema being the whole response.\r\n\r\n> Lastly, why then is the spec-validation failing due to the existence of $id fields if they would be fine to have in a openAPI document in the places that they are in. (specifically openapi-core python library)\r\n\r\nSounds like a bug in that library. I'd suggest opening an issue with them."
},
"user": {
"login": "rtmiz",
"avatar_url": "https://avatars.githubusercontent.com/u/14345617?u=9b820193fd4b6c4ecd6a97a536a4280b2abf339b&v=4"
}
},
{
"id": "D_kwDOAQkWPc4APYgQ",
"number": 2918,
"title": "Should required properties in a component be allowed if not included in properties?",
"body": "What a title.\r\n\r\nI noticed today that we are sending data in our responses that is not described in the component spec. In the example schema I'll post below I have a `created_at` entry that has no description inside properties. This seems to validate in most validation tools. Should it be valid?\r\n\r\n```\r\n{\r\n \"openapi\": \"3.0.3\",\r\n \"info\": {\r\n \"title\": \"Hello\",\r\n \"version\": \"1.0.1\"\r\n },\r\n \"paths\": {\r\n \"/objects\": {\r\n \"get\": {\r\n \"summary\": \"Get all objects\",\r\n \"description\": \"Returns an array of TestObject that is visible to the user role\",\r\n \"operationId\": \"fetchObjects\",\r\n \"responses\": {\r\n \"200\": {\r\n \"description\": \"A list of objects\",\r\n \"content\": {\r\n \"application/json\": {\r\n \"schema\": {\r\n \"type\": \"array\",\r\n \"items\": {\r\n \"$ref\": \"#/components/schemas/Object\"\r\n }\r\n }\r\n }\r\n }\r\n }\r\n }\r\n }\r\n }\r\n },\r\n \"components\": {\r\n \"schemas\": {\r\n \"Object\": {\r\n \"required\": [\"id\", \"title\", \"created_at\"],\r\n \"type\": \"object\",\r\n \"properties\": {\r\n \"id\": {\r\n \"type\": \"integer\"\r\n },\r\n \"title\": {\r\n \"description\": \"Title for the new object.\",\r\n \"type\": \"string\"\r\n }\r\n }\r\n }\r\n }\r\n }\r\n}\r\n```",
"created_at": "2022-04-25T13:41:49Z",
"updated_at": "2024-01-29T19:17:21Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AKCH8",
"body": "Your example is valid and is equivalent to this (YAML version for readability):\r\n```yaml\r\nObject:\r\n required: [id, title, created_at]\r\n type: object\r\n properties:\r\n id:\r\n type: integer\r\n title:\r\n description: Title for the new object.\r\n type: string\r\n created_at: {} # The value can be of any type\r\n```\r\n\r\nExtra properties not explicitly defined under `properties` **are allowed** unless the schema has `additionalProperties: false` / `unevaluatedProperties: false`.\r\n\r\nYou can use a linter to enforce that the properties listed in the `required` list are explicitly defined in `properties`."
},
"user": {
"login": "mull",
"avatar_url": "https://avatars.githubusercontent.com/u/646665?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARh1F",
"number": 3081,
"title": "Extra fields in the presence of `$ref`",
"body": "I recently started to implement an OAI parser in D, and immediately hit an issue with my first test case, the [Gitlab openapi.yml](https://gitlab.com/gitlab-org/gitlab/-/raw/51e15dfa26a9f36e68cc9276b96c59a866dd8bd2/doc/api/openapi/openapi.yaml).\r\n\r\nAs it turns out, it has ref to the root of the document, outside of components (https://github.com/OAI/OpenAPI-Specification/issues/2038):\r\n\r\n```yaml\r\n# Other OpenAPI Object fields... \r\npaths:\r\n # METADATA\r\n /v4/metadata:\r\n $ref: '#/metadata'\r\n\r\n # VERSION\r\n /v4/version:\r\n $ref: '#/version'\r\n\r\n # More...\r\nmetadata:\r\n get:\r\n tags:\r\n - metadata\r\n summary: 'Retrieve metadata information for this GitLab instance.'\r\n operationId: 'getMetadata'\r\n # More stuff...\r\n\r\nversion:\r\n get:\r\n tags:\r\n - version\r\n summary: 'Retrieve version information for this GitLab instance.'\r\n # More stuff...\r\n```\r\n\r\nThis works with the [swagger inspector](https://inspector.swagger.io/builder) but not with the ruby library, for example:\r\n```\r\nirb(main):008:0> document = Openapi3Parser.load_url(\"https://gitlab.com/gitlab-org/gitlab/-/raw/master/doc/api/openapi/openapi.yaml\")\r\n=> Openapi3Parser::Document(openapi_version: 3.0, root_source: Openapi3Parser::Source(input: https://gitlab.com/gitlab-org/gitlab/-/raw/m...\r\nirb(main):009:0> document.valid?\r\n=> false\r\nirb(main):010:0> document.errors\r\n=> Openapi3Parser::Validation::ErrorCollection(errors: {\"#/\"=>[\"Unexpected fields: metadata, version, accessRequestsProjects, accessRequestsProjectsApprove, accessRequestsProjectsDeny, accessRequestsGroups, accessRequestsGroupsApprove, accessRequestsGroupsDeny, accessTokens and accessTokensRevoke\"], \"#/paths/%2Fv4%2Fprojects%2F%7Bid%7D%2Faccess_tokens/%24ref\"=>[\"#/accessTokens does not resolve to a valid object\"]})\r\n```\r\n\r\nFrom reading the specs, this should not be allowed: the fields do not match the [Specification Extensions](https://swagger.io/specification/#specification-extensions) and do not match the name of field in the `OpenAPI Object`.\r\n\r\nCould someone confirm that this is indeed a bug ?",
"created_at": "2022-11-23T16:45:52Z",
"updated_at": "2024-01-29T19:14:45Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "Geod24",
"avatar_url": "https://avatars.githubusercontent.com/u/2180215?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ASBLX",
"number": 3113,
"title": "Can you set required fields in a request body of fields in a \"oneOf\" or \"anyOf\"",
"body": "Hi,\r\n\r\nI have been trying to work out how to set fields as required for a specific method requestBody when I am using a \"oneOf\" in a schema object.\r\n\r\nI know how to set required fields of a referenced object, but when you try set the required properties of oneOf objects the same way, it does not work.\r\n\r\nI also know that I can set the required fields in the schema object itself, however I do not want to do this as the required fields differ on each method (i.e all fields required for a post, but only some required for a patch).\r\n\r\nSo essentially, how do I set the required fields in a request body of a schema used in oneOf?\r\n\r\nI have created an example below, in it, I want to:\r\n\r\n- Set the fields Bird - wingSpan and beakLength as required in the Post method \r\n- Set the fields Cat - tailLength as required in the Post method\r\n- Not have any required fields for Bird and Cat in the Patch method.\r\n\r\n```\r\nopenapi: 3.0.3\r\nservers:\r\n - description: SwaggerHub API Auto Mocking\r\n url: https://virtserver.swaggerhub.com/Enable-Networks/TroubleTicket/1.0.0\r\n\r\ninfo:\r\n title: Pet API\r\n version: 1.0.0\r\n\r\npaths:\r\n /pet:\r\n patch:\r\n summary: Update a pet\r\n requestBody:\r\n required: true\r\n content:\r\n application/json:\r\n schema:\r\n allOf:\r\n - $ref: \"#/components/schemas/Pet\"\r\n - type: object\r\n required:\r\n - age\r\n responses:\r\n \"204\":\r\n description: The request was a success and the pet was successfully created.\r\n\r\n post:\r\n summary: Create a pet\r\n requestBody:\r\n required: true\r\n content:\r\n application/json:\r\n schema:\r\n allOf:\r\n - $ref: \"#/components/schemas/Pet\"\r\n - type: object\r\n required:\r\n - name\r\n - age\r\n - species\r\n properties:\r\n species:\r\n type: object\r\n required:\r\n - ???\r\n responses:\r\n \"204\":\r\n description: The request was a success and the pet was successfully created.\r\n\r\ncomponents:\r\n schemas:\r\n Cat:\r\n type: object\r\n properties:\r\n tailLength: \r\n type: integer\r\n whiskerLength:\r\n type: integer\r\n Bird:\r\n type: object \r\n properties:\r\n wingSpan:\r\n type: integer\r\n beakLength:\r\n type: integer\r\n highestAltitude:\r\n type: integer\r\n\r\n Pet:\r\n type: object\r\n properties:\r\n name:\r\n type: string\r\n age:\r\n type: string\r\n species:\r\n oneOf:\r\n - $ref: '#/components/schemas/Cat'\r\n - $ref: '#/components/schemas/Bird'\r\n```\r\n\r\nAny help on this would be appreciated!",
"created_at": "2023-01-04T20:15:08Z",
"updated_at": "2024-01-29T19:13:21Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "JordanGardiner-enable",
"avatar_url": "https://avatars.githubusercontent.com/u/54789317?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ATxSW",
"number": 3272,
"title": "How to generate the openapi.json spec file",
"body": "I am completely new to open api. Is there a tool that one can use to generate this file, perhaps against a RESTFULL API service repo or does it need to be manually edited? If so, is there an editor that can be used for that purpose?\r\n\r\nCan yaml be used instead of json? I am trying to figure out what I need to feed to the zap_api_scan.py -target argument.",
"created_at": "2023-05-10T18:28:09Z",
"updated_at": "2024-01-29T19:10:28Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "denismp",
"avatar_url": "https://avatars.githubusercontent.com/u/2000960?u=1239efcdf8ceda676e4948e052629d4678993243&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AUgf7",
"number": 3323,
"title": "OpenAPI spec to HTTP request",
"body": "OpenAPI specification describes URL path, the HTTP method, the body of the request (if needed), the parameters (if needed), the properties (if needed), etc.\r\n\r\nFor instance, for the OpenAPI specification below\r\n\r\n```yaml\r\npaths:\r\n \"/stub\":\r\n patch:\r\n requestBody:\r\n content:\r\n application/json:\r\n schema:\r\n type: object\r\n properties:\r\n name:\r\n type: string\r\n description: The name of the stub.\r\n```\r\n\r\nThe corresponding HTTP request is for the `/stub` path, using `PATCH` HTTP method and the request body is a JSON `{\"name\":\"some name\"}`.\r\n\r\nIs there any tool that reads OpenAPI specification file and issue a request per the specification or returns an HTTP request object (of some sort)?",
"created_at": "2023-07-06T21:02:21Z",
"updated_at": "2024-01-29T19:06:36Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "electriquo",
"avatar_url": "https://avatars.githubusercontent.com/u/28758375?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ARn9x",
"number": 3087,
"title": "Why \"all other properties in a \"$ref\" object are ignored\"?",
"body": "I was curious about why this is the case - I'm building an API from the ground up using Open API 3.0, and in some of my schemas I'm using compositional references to build the schemas, for example:\r\n\r\n```\r\n UserId:\r\n description: The unique identifier of a user\r\n type: integer\r\n example: 751\r\n\r\n Quote:\r\n type: object\r\n properties:\r\n id:\r\n $ref: \"#/components/schemas/QuoteId\"\r\n example: 1000\r\n company:\r\n type: string\r\n description: Company name at the time of the quote\r\n example: Dunder Mifflin\r\n maxLength: 140\r\n prepared_by:\r\n $ref: \"#/components/schemas/UserId\"\r\n example: 751\r\n description: ID of the user who created the quote\r\n approved_by:\r\n $ref: \"#/components/schemas/UserId\"\r\n example: 751\r\n description: ID of the user who approved the quote\r\n```\r\n\r\nHowever, when editting using https://editor-next.swagger.io/, I'm getting errors on the lines such as `prepared_by` and `approved_by`, stating `All other properties in a \"$ref\" object are ignored`. In this case, it would seem to me that these fields would or could have different descriptions than the schema they are referring to, because they represent something else.\r\n\r\nIs there any other way of doing this, or does someone have an explanation as to why this is a feature of the spec?",
"created_at": "2022-12-02T00:16:41Z",
"updated_at": "2024-01-29T19:00:05Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "geoff-maddock",
"avatar_url": "https://avatars.githubusercontent.com/u/55493?u=e455d661bd0987e03f8ce707ff01488b4342e814&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AXaGS",
"number": 3526,
"title": "allow any property as sibling of $ref",
"body": "it's nice to see that openapi spec 3.1.0 allows that one can use description alongside of `$ref`. However, why the restriction to `description` and `summary` only? I would like to define `maxLength` and other validations for $ref which are normally not included in the reference. \r\n\r\nI now found a fitting issue (closed though): \r\nhttps://github.com/OAI/OpenAPI-Specification/issues/1514\r\n\r\n",
"created_at": "2024-01-26T15:44:57Z",
"updated_at": "2024-01-26T22:29:29Z",
"category": {
"name": "Enhancements",
"emoji": ":bulb:"
},
"answer": null,
"user": {
"login": "robstoll",
"avatar_url": "https://avatars.githubusercontent.com/u/5557885?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AXVyj",
"number": 3512,
"title": "Treatment of trailing forward slash on Server Object \"url\".",
"body": "If you had something like this:\r\n```yaml\r\n# rest of api...\r\nservers:\r\n - url: http://petstore.swagger.io/\r\npaths:\r\n /pets:\r\n get:\r\n# rest of api...\r\n```\r\n\r\nAssuming no other servers are specified at any level; what would the expected url be for a `get` request to `/pets`?\r\n\r\n`https://petstore.swagger.io/pets`\r\nor\r\n`https://petstore.swagger.io//pets`\r\n\r\n",
"created_at": "2024-01-22T12:23:20Z",
"updated_at": "2024-01-25T14:18:12Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AfabB",
"body": "The specification requires that the URL template be **appended** (bolded in the spec), so the result would be `https://petstore.swagger.io//pets`. Of course, a tool can then choose to normalize URLs in accordance with RFC 3986, but that's outside of the scope of the OpenAPI Specification. Many web servers are configured to normalize such URLs internally (e.g. https://github.com/OAI//OpenAPI-Specification/discussions/3512 brings up this discussion, but still shows the `//` between `OAI` and `OpenAPI-Specification` in the address bar for me)."
},
"user": {
"login": "charjr",
"avatar_url": "https://avatars.githubusercontent.com/u/102669158?u=55733dff67ac7c915ad26913f9791ac2b58e79f1&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AUq8C",
"number": 3330,
"title": "Is it possible to reference the pattern of a string",
"body": "If you need a pattern multiple times, I would like to reduce duplication. Is it possible to reference a pattern for a string?",
"created_at": "2023-07-19T15:22:01Z",
"updated_at": "2024-01-24T17:17:41Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AYw_n",
"body": "You can just have a schema that only has `{\"pattern\": \"the pattern\"}` and use `\"$ref\"` to include it."
},
"user": {
"login": "robp94",
"avatar_url": "https://avatars.githubusercontent.com/u/42009775?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AQe2J",
"number": 3004,
"title": "Can you define placeholders to replace in component schemas?",
"body": "I'm interested in creating an OpenAPI specification for my Rest API, but one thing that bothers me is the defining of responses for the API.\r\n\r\nMy API has 2 specific JSON replies based on HTTP response codes:\r\n\r\n- `200`\r\n ```json\r\n {\r\n \"error\": false,\r\n \"link\": \"https://example.com/img/animals/cat/cat_001.jpg\",\r\n \"time\": 0\r\n }\r\n ```\r\n- `403` or `404`\r\n The info is mostly the same, with the exception of the `message` being different. Example with an invalid path (403) is shown here.\r\n ```json\r\n {\r\n \"details\": {\r\n \"path\": \"/api/invalid/path\",\r\n \"content-type\": \"application/json\",\r\n \"user-agent\": \"Some-UA/1.0\"\r\n },\r\n \"error\": true,\r\n \"message\": \"The provided path is not valid.\",\r\n \"time\": 0\r\n }\r\n ```\r\n\r\nWhile I can, for the most part, create two components to cover the 403 and 404 cases, would I like to have an example scheme that depicts an example link matching the provided URL path for the successful request.\r\nIf f.e. the path defined is `/api/img/cat/` should the example JSON have a URL pointing to a random cat image (As shown above).\r\n\r\nThis, to my knowledge, requires me to create a separate scheme for each API endpoint I have if I want to have this.\r\n\r\nSo my question now is, can I define some kind of placeholder in the scheme, to then be replaced with whatever value I provide?\r\n\r\nLike f.e.\r\n```yaml\r\ncomponents:\r\n schemas:\r\n image-response-200:\r\n type: object\r\n properties:\r\n error:\r\n type: boolean\r\n example: false\r\n link:\r\n type: string\r\n example: \"https://example.com/img/{type}/{type}_001.jpg\"\r\n time:\r\n type: integer\r\n format: int32\r\n example: 0\r\n```\r\nwould then allow me to provide \"cat\" as type somewhere and the example shown would have `{type}` replaced with `cat`\r\n\r\nI hope such a feature exists, as it would reduce the copy-paste jobs I have by a lot in the end...",
"created_at": "2022-08-20T20:10:26Z",
"updated_at": "2024-01-24T17:15:23Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AeJbT",
"body": "@MelleD it is possible in 3.1 using JSON Schema draft 2020-12's [`$dynamicAnchor` and `$dynamicRef`](https://json-schema.org/blog/posts/dynamicref-and-generics). It is not possible in 3.0 or earlier."
},
"user": {
"login": "Andre601",
"avatar_url": "https://avatars.githubusercontent.com/u/11576465?u=b608c1e5d40b7bb195c1a06c77d837799a8c9c05&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AUiQ0",
"number": 3324,
"title": "Is an empty string valid or invalid if Data Type is string and format is specified?",
"body": "An empty string is valid as a string, but if a format is specified, would an empty string be considered an invalid value?\r\nI would like to check, is it valid if an empty string comes to `something_date` with the following definition? I would like to ask this question, especially since [it is not explicitly stated](https://spec.openapis.org/oas/v3.0.3#data-types).\r\n\r\n```yaml\r\npaths:.\r\n '/foo/v1/bar':: ``post:''\r\n post:: ``post:''\r\n requestBody:: content\r\n content: application/json:: post\r\n application/json:: schema\r\n schema: object\r\n type: object\r\n properties: properties\r\n something_date: string\r\n type: string\r\n format: date\r\n```",
"created_at": "2023-07-09T13:38:16Z",
"updated_at": "2024-01-24T17:14:47Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4AekX0",
"body": "Looking at the RFC definition they reference: [full-date = date-fullyear \"-\" date-month \"-\" date-mday](https://www.rfc-editor.org/rfc/rfc3339.html#page-8)\r\n\r\nSo the definition of a \"full-date\" would not allow an empty string. So according to the \"date\" format an empty string would be invalid.\r\n\r\n**However** it is explicitly stated that [Tools that do not recognize a specific format MAY default back to the type alone, as if the format is not specified.](https://spec.openapis.org/oas/v3.0.3#data-types).\r\n\r\nSo I think the answer is: \"it depends on the tool you use\" as it is the tool that decides whether `format: date` means anything."
},
"user": {
"login": "ydah",
"avatar_url": "https://avatars.githubusercontent.com/u/13041216?u=01da03508c39ff279c1e23e236a8c5f878fe04b4&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AWuYw",
"number": 3471,
"title": "NRF installation without docker query",
"body": "I am only installing NRF using https://gitlab.eurecom.fr/oai/cn5g/oai-cn5g-nrf/-/wikis/Installation this without docker.\r\nMy question is that does this installation also install mysql DB also with it ? if yes then where does it get installed ?",
"created_at": "2023-12-13T15:16:24Z",
"updated_at": "2024-01-24T17:14:25Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "Deblina96",
"avatar_url": "https://avatars.githubusercontent.com/u/116576465?u=263e6304458204a62c88831ad3e0972899cbc54f&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AV7vH",
"number": 3406,
"title": "Is there any plan to add Generic, Pick, Omit and other TypeScript like features?",
"body": "In TS if you want to $ref specific properties from a Schema, it's a pain, at least from what I understood.\r\nFor example:\r\n\r\n```\r\n//permission\r\n{\r\n id: string;\r\n key: string;\r\n info: string;\r\n metadata: Metadata;\r\n}\r\n// role\r\n{\r\n id: string;\r\n title: string;\r\n permissions: {\r\n id: Permissions.id;\r\n key: Permissions.key;\r\n // notice that info shouldn't be here.\r\n }\r\n}\r\n```\r\n\r\nAs you can see, there is a relation between Permission and Role. But Role shouldn't include all of the Permission properties, just part of them. Imagine if Permission or other embedded Schemas had 50 properties, this could lead to big issue.\r\n\r\n**\r\n\r\nMoreover, if we want to make it even more tricky, in a real life production API, we have different kinds of the same Schema, for example: when creating a new Permission we should never provide id. If someone provides id we want to deny the request. When updating a Permission, we can only update the info, but never the key. \r\nWhen returning a Permission in a GET request, we would like to return the entire Permission, but without the metadata (which is basically some system info).\r\n\r\nAny advices here?",
"created_at": "2023-10-18T12:57:57Z",
"updated_at": "2024-01-24T15:52:45Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "razb-viola",
"avatar_url": "https://avatars.githubusercontent.com/u/142972451?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ATp-g",
"number": 3265,
"title": "about running this project",
"body": "Sir,can i get how to run these code .\r\ncan you explain in detail",
"created_at": "2023-05-02T12:34:10Z",
"updated_at": "2024-01-17T09:33:18Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "Shrishashank",
"avatar_url": "https://avatars.githubusercontent.com/u/72358619?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AXJtf",
"number": 3498,
"title": "Error while using UERANSIM || UE does not have an emergency",
"body": "I am trying to build my UE and ran using UERANSIM. I am following the below document:\r\nhttps://gitlab.eurecom.fr/oai/cn5g/oai-cn5g-fed/-/blob/master/docs/DEPLOY_SA5G_WITH_UERANSIM.md\r\n\r\nBut in the document is mentioned that, ##### IMPORTANT: Add following parameters in oai-amf service of docker-compose, before deploying core network.\r\n\r\n```shell\r\n - INT_ALGO_LIST=[\"NIA1\" , \"NIA2\"]\r\n - CIPH_ALGO_LIST=[\"NEA1\" , \"NEA2\"]\r\n```\r\nMy question is it, in which section of aoi-amf should I add it ?\r\n\r\nI have tried to add it like in below mention SS, but did not work:\r\n\r\n\r\nError:\r\n\r\n\r\nPlease suggest on this.\r\n\r\n",
"created_at": "2024-01-13T12:01:57Z",
"updated_at": "2024-01-17T09:29:44Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "Deblina96",
"avatar_url": "https://avatars.githubusercontent.com/u/116576465?u=263e6304458204a62c88831ad3e0972899cbc54f&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AXBjP",
"number": 3490,
"title": "Not able to find NRF configuration script in wiki",
"body": "I am following the below repo to install NRF. I have successfully build NRF. But after building I am unable to find nrf_conf.sh script to generate nrf.conf.\r\n\r\nhttps://gitlab.eurecom.fr/oai/cn5g/oai-cn5g-nrf/-/wikis/Installation\r\nPlease, let me know where nrf_conf.sh exist.\r\n\r\n",
"created_at": "2024-01-06T19:28:14Z",
"updated_at": "2024-01-08T15:20:14Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "Deblina96",
"avatar_url": "https://avatars.githubusercontent.com/u/116576465?u=263e6304458204a62c88831ad3e0972899cbc54f&v=4"
}
},
{
"id": "D_kwDOAQkWPc4ATMtv",
"number": 3224,
"title": "Documentation of openApi",
"body": "Please can I have solutions of this exercise?\n\n",
"created_at": "2023-03-31T21:14:34Z",
"updated_at": "2024-01-05T09:05:52Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "cynthiatoussi",
"avatar_url": "https://avatars.githubusercontent.com/u/117768938?v=4"
}
},
{
"id": "D_kwDOAQkWPc4AWzFs",
"number": 3474,
"title": "Error while launching UERANSIM",
"body": "I am trying to deploy UERANSIM and getting the following error:-\r\nPlease explain how this can be solved.\r\n\r\n",
"created_at": "2023-12-18T20:41:22Z",
"updated_at": "2024-01-05T09:03:49Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "Deblina96",
"avatar_url": "https://avatars.githubusercontent.com/u/116576465?u=263e6304458204a62c88831ad3e0972899cbc54f&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AV7vT",
"number": 3407,
"title": "Where can I edit oas but Swagger?",
"body": "I saw that Swagger is a tool to build my oas, but Swagger is a private company, while oas is a public standard and open source. How can I use oas without any intervention of a private company?\r\n\r\nI need code autocompletion and the ability to produce docs.\r\n\r\nIf this is something that is not included within the oas, just say. \r\n\r\nThanks.",
"created_at": "2023-10-18T13:02:23Z",
"updated_at": "2024-01-24T17:15:45Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": {
"id": "DC_kwDOAQkWPc4Ab-Nk",
"body": "There are many open-source tools for editing OAS descriptions listed at https://tools.openapis.org/"
},
"user": {
"login": "razb-viola",
"avatar_url": "https://avatars.githubusercontent.com/u/142972451?v=4"
}
},
{
"id": "D_kwDOAQkWPc4ATY-m",
"number": 3241,
"title": "Specification website improvements",
"body": "Hi,\r\n\r\nI'm finding the [online specification](https://swagger.io/specification) a little frustrating. A few things:\r\n\r\n1. It has lots of anchor tags, which is great, but ECMAScript is being used when you click on them which means that the browser's URL doesn't update and the back button doesn't work. As the browser will handle anchor tags out of the box ECMAScript is purely making things worse here.\r\n\r\n2. When you click on an anchor tag the floating top nav bar obscures the Heading that you navigated to, so you are unsure whether you are in the right place\r\n\r\n3. If you disable ECMAScript then the yaml/json snippets become white text on a white background\r\n\r\nWhat's the right place to raise these?\r\n\r\nThanks!",
"created_at": "2023-04-13T14:08:21Z",
"updated_at": "2023-04-14T10:55:17Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "Mahoney",
"avatar_url": "https://avatars.githubusercontent.com/u/168448?u=8af9f09897d7af9c9ad4b9b7c390543257ed3694&v=4"
}
},
{
"id": "D_kwDOAQkWPc4ATZTo",
"number": 3245,
"title": "type-mappings question",
"body": "I want integer types without a format to be treated as bigint in a typescript generator. If I run the command with `--type-mappings integer=BigInt` it works, but I want to constrain it to only integers in the schema without an explicit format. Any ideas?",
"created_at": "2023-04-13T20:56:06Z",
"updated_at": "2023-04-13T20:56:24Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {
"login": "dansimpson",
"avatar_url": "https://avatars.githubusercontent.com/u/23339?u=fef7a0315c24d0d47132652554f741afcd0753b5&v=4"
}
},
{
"id": "D_kwDOAQkWPc4AOVvQ",
"number": 2835,
"title": "How OpenAPI or any spec related can help on contract/schema testing?",
"body": "## Context\r\nA lot of companies uses microservices, and have HTTP or async/event communication between them. It´s a common problem when server changes a thing, that something breaks on the client microservice. An we have tools like https://docs.pact.io/ and https://www.postman.com/ that help on that, and pact is relying on OAS for some automation on contract/schema testing.\r\n\r\n## Problem\r\nOpenAPI spec, AFAIK just describes the server part of http communications, and contract testing is all about checking the \"match\" between a **client** and a **server**, or a **producer** and a **consumer**. We researched and didn't find out a \"contract/spec\" that describes the **client** \"behavior\" or the way the client uses/sends data to the API. Pact is trying to do that with https://docs.pactflow.io/docs/workshops/bi-directional/ and using mock samples and other \"client evidences\" as way to extract this data to a file called PACT (their format). \r\n\r\nOther thing to mention is that we are using the https://martinfowler.com/bliki/TolerantReader.html approach. So we don't export/generate http clients from open api spec. This approach reduces the probability of a \"breaking change\", because the client does not need to know/use all fields/structure that the server produces.\r\n\r\n## Proposal/discussion\r\nWhat if we had a \"open spec\" that describes, the client part of the communication? That could be very similar to the OpenAPI spec and could be used for contract/schema checks.\r\n\r\nOne of the challenges on that is how can we generate this spec. some options:\r\n1)from mocked samples (wiremock)\r\n2)recording runtime behavior on integration tests or even on production/sandbox enviroments\r\n3) support some specific stacks, and parse that info from http client or any kind of \"structured\" code that tell us , how the request is going to be like. That could be done through static analysis or even evaluating some \"runtime\" http components.\r\n\r\nBut the main thing is not about how to get this files/spec, is about having a open spec for http clients.\r\n\r\nIf this is not the right place to start a discussion on that, please, we are open to all kind of suggestions.",
"created_at": "2021-12-21T13:41:53Z",
"updated_at": "2022-06-30T18:58:25Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "lednubr",
"avatar_url": "https://avatars.githubusercontent.com/u/89259678?u=2b5f54de79cd5b4c4efcaef4d178913187aefe36&v=4"
}
},
{
"id": "D_kwDOAQkWPc4ANswb",
"number": 2724,
"title": "apply `allowReserved: true` globally",
"body": "I need to apply `allowReserved: true` to many of my parameters. \r\n\r\nIsn't there any way to set `allowReserved: true` globally?",
"created_at": "2021-09-24T06:12:59Z",
"updated_at": "2023-01-31T11:43:03Z",
"category": {
"name": "Q&A",
"emoji": ":question:"
},
"answer": null,
"user": {}
},
{
"id": "MDEwOkRpc2N1c3Npb24zNTYxMzU3",
"number": 2702,
"title": "How to start demo",
"body": "How to pratice in my laptop. please share details",
"created_at": "2021-09-08T11:59:51Z",
"updated_at": "2024-03-26T18:56:25Z",
"category": {
"name": "General",
"emoji": ":speech_balloon:"
},
"answer": null,
"user": {
"login": "umakanta1987",
"avatar_url": "https://avatars.githubusercontent.com/u/90271045?u=50f934f1474d38b2fb2f6f5b69b02c768c2db002&v=4"
}
}
],
"details": {
"id": 17372733,
"node_id": "MDEwOlJlcG9zaXRvcnkxNzM3MjczMw==",
"name": "OpenAPI-Specification",
"full_name": "OAI/OpenAPI-Specification",
"private": false,
"owner": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"description": "The OpenAPI Specification Repository",
"fork": false,
"url": "https://api.github.com/repos/OAI/OpenAPI-Specification",
"created_at": "2014-03-03T16:53:36Z",
"updated_at": "2026-03-04T19:04:24Z",
"pushed_at": "2026-03-02T07:43:55Z",
"homepage": "https://openapis.org",
"size": 9502,
"stargazers_count": 30936,
"watchers_count": 30936,
"language": "Markdown",
"has_issues": true,
"has_projects": true,
"has_downloads": true,
"has_wiki": true,
"has_pages": false,
"has_discussions": true,
"forks_count": 9164,
"archived": false,
"disabled": false,
"open_issues_count": 112,
"license": {
"key": "apache-2.0",
"name": "Apache License 2.0",
"spdx_id": "Apache-2.0",
"url": "https://api.github.com/licenses/apache-2.0",
"node_id": "MDc6TGljZW5zZTI="
},
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"has_pull_requests": true,
"pull_request_creation_policy": "all",
"topics": {
"0": "apis",
"1": "oas",
"2": "openapi",
"3": "openapi-specification",
"4": "rest",
"5": "webapi"
},
"visibility": "public",
"forks": 9164,
"open_issues": 112,
"watchers": 30936,
"default_branch": "main",
"permissions": {
"admin": false,
"maintain": false,
"push": false,
"triage": false,
"pull": true
},
"temp_clone_token": "",
"custom_properties": {},
"organization": {
"login": "OAI",
"id": 16343502,
"node_id": "MDEyOk9yZ2FuaXphdGlvbjE2MzQzNTAy",
"avatar_url": "https://avatars.githubusercontent.com/u/16343502?v=4",
"gravatar_id": "",
"url": "https://api.github.com/users/OAI",
"type": "Organization",
"user_view_type": "public",
"site_admin": false
},
"network_count": 9164,
"subscribers_count": 841
},
"lastFetched": 1772671224857
}