Closed pauldemarco closed 1 month ago
Update: It looks like open_api_spex helps you document the security scheme, but leaves it up to us to enforce it. As per: https://github.com/open-api-spex/open_api_spex/issues/276#issuecomment-686836124
Will close this issue -- please re-open if this is not the case.
Thanks for this great library!
Consider this common securityScheme in my main %OpenApi{} spec:
...and I use it in this operation like so:
...and with the basic setup like found in the phoenix example, will OpenApiSpex automatically validate that the header Authorization Bearer exists?