Reputation:
Why is the Authorization header missing in requests sent from Swagger UI?
I want to add a documentation to my Node.js API, for this I have a YAML file where I put my definitions, the swagger doc is at localhost:5000/api-doc and working fine.
Now I have to add Bearer authorization but Swagger with the following definition:
swagger: "2.0"
info:
version: 1.0.0
title: My API documentation
description: >
My API documentation
host: localhost:5000
basePath: "/v1"
schemes:
- http
securityDefinitions:
Bearer:
type: apiKey
description: "Value: Bearer "
name: Authorization
in: header
paths:
/users:
get:
responses:
"200":
description: "Will send `Authenticated`"
"403":
description: "You do not have necessary permissions for the resource"
When testing the request (I clicked on "Authorize" button at the top right and entered my token) I get following error:
"error": "Authorization header not found.
Why is the Authorization header not included in the request?
Upvotes: 12
Views: 18233
Answers (3)
Reputation: 939
In my case I was missing the annotation
@SecurityRequirement(name = "JWT")
at the rest controller class.
(Of course "JWT" or whatever matches to your @SecurityScheme name in your OpenApiDefinition.)
Upvotes: 0
Reputation: 73
Expanding @helen's answer as I could not edit it, This answer is for the people who are using Symfony If you are using NelmioApiDocBundle with Symfony,
You will have to add the configuration at
config/packages/nelmio_api_doc.yaml
so it would look like below:
documentation:
info:
title: App name
description: This is an awesome app!
version: 1.0.0
securityDefinitions:
Bearer:
type: apiKey
description: 'Value: Bearer {jwt}'
name: Authorization
in: header
security:
- Bearer: []
Upvotes: 0
Reputation: 97677
securityDefinitions alone aren't enough, you also need to add the security key on the root level or operation level to actually apply the security.
security:
- Bearer: []
Upvotes: 4
Related Questions
- How to include Authorization header using Swagger in .NET Core 6
- Unable To Send Bearer Token in Authorization Header In Swagger-ui-express npm
- Nodejs Swagger unable to add authorization header to requests
- Swagger bearerAuth token block request from UI
- Swagger OpenAPI 3.0 empty authentication header in request
- How to send Authorization header with a request in Swagger UI?
- How to send Authorization header with a request in swagger-ui-react?
- Swagger UI sending "BearerToken" in header, need "Bearer"
- Swagger UI Not adding Header to Requests
- swagger-ui : Add authorization header don't work