Make the security schemes relative in the static OpenAPI spec

2025-05-07 14:20:21 +02:00
parent 95094453e5
commit f8c7a218f1
2 changed files with 11 additions and 7 deletions
--- a/crates/handlers/src/admin/mod.rs
+++ b/crates/handlers/src/admin/mod.rs
@@ -102,9 +102,13 @@ fn oauth_security_scheme(url_builder: Option<&UrlBuilder>) -> SecurityScheme {
            url_builder.oauth_token_endpoint().to_string(),
        )
    } else {
+        // This is a dirty fix for Swagger UI: when it joins the URLs with the
+        // base URL, if the path starts with a slash, it will go to the root of
+        // the domain instead of the API root.
+        // It works if we make it explicitly relative
        (
-            OAuth2AuthorizationEndpoint::PATH.to_owned(),
-            OAuth2TokenEndpoint::PATH.to_owned(),
+            format!(".{}", OAuth2AuthorizationEndpoint::PATH),
+            format!(".{}", OAuth2TokenEndpoint::PATH),
        )
    };

--- a/docs/api/spec.json
+++ b/docs/api/spec.json
@@ -2527,16 +2527,16 @@
        "type": "oauth2",
        "flows": {
          "clientCredentials": {
-            "refreshUrl": "/oauth2/token",
-            "tokenUrl": "/oauth2/token",
+            "refreshUrl": "./oauth2/token",
+            "tokenUrl": "./oauth2/token",
            "scopes": {
              "urn:mas:admin": "Grant access to the admin API"
            }
          },
          "authorizationCode": {
-            "authorizationUrl": "/authorize",
-            "tokenUrl": "/oauth2/token",
-            "refreshUrl": "/oauth2/token",
+            "authorizationUrl": "./authorize",
+            "tokenUrl": "./oauth2/token",
+            "refreshUrl": "./oauth2/token",
            "scopes": {
              "urn:mas:admin": "Grant access to the admin API"
            }