Erroniously expects security field to be dict instead of list #14

christian-eriksson · 2020-04-13T22:32:43Z

The parser erroniously expects security requirement object to be dict instead of list when applied on openapi object. According to the openapi 3 docs the security field should be a list of security requirement object but when parsed with openapi3 I get the following error:

[SpecError("Expected .security to be one of [<class 'dict'>], got <class 'list'>",)]

Example

using 'spec.yaml` below:

# spec.yaml
openapi: 3.0.0
info:
  title: Some Title
  version: 0.0.1
components:
  securitySchemes:
    ApiKey:
      type: apiKey
      name: X-Access-Token
      in: header
security:
  - ApiKey: []
paths:
  /foo:
    get:
      operationId: listFoo
      responses:
        200:
          description: Some description

This snippet will produce the error:

from openapi3 import OpenAPI
import yaml

with open('spec.yaml') as f:
    spec = yaml.safe_load(f.read())

api = OpenAPI(spec, validate=True)

if(len(api._spec_errors) > 0):
    print(api._spec_errors)
# output: [SpecError("Expected .security to be one of [<class 'dict'>], got <class 'list'>",)]

If the security field is under an operation object openapi3 correctly expects it to hold a list of security requirement object.

The text was updated successfully, but these errors were encountered:

commonism referenced this issue in commonism/openapi3 Dec 19, 2021

test for #14 - fixed already

830af4b

commonism mentioned this issue Dec 19, 2021

Securityparameters #57

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Erroniously expects security field to be dict instead of list #14

Erroniously expects security field to be dict instead of list #14

christian-eriksson commented Apr 13, 2020

Erroniously expects security field to be dict instead of list #14

Erroniously expects security field to be dict instead of list #14

Comments

christian-eriksson commented Apr 13, 2020

Example