ProgramX-NPledger
commented
9 months ago Consider this for securing Swagger endpoint to authorised users: https://learn.microsoft.com/en-us/aspnet/core/tutorials/web-api-help-pages-using-swagger?view=aspnetcore-8.0
Have available on Internet is okay, but mitigations would be appropriate:
https://security.stackexchange.com/questions/211638/swagger-on-production-apis