Skip to content

[codex] Support remaining official security schemes #257

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
HavenDV merged 8 commits into from
Apr 10, 2026
Merged

[codex] Support remaining official security schemes #257

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
2cec665
feat(csharp): support remaining official security schemes
HavenDV Apr 9, 2026
b1f981c
fix(ci): stabilize generator support and snapshots
HavenDV Apr 9, 2026
998a1f2
Merge branch 'codex/ci-shared-generator-fixes' into codex/issue-231-o…
HavenDV Apr 9, 2026
5b1c6b0
chore(ci): retrigger actions for #257
HavenDV Apr 9, 2026
dd6a3ca
fix(ci): unify generated cookie header handling
HavenDV Apr 9, 2026
10dc337
Merge remote-tracking branch 'origin/main' into codex/ci-shared-gener…
HavenDV Apr 10, 2026
33efee0
fix(ci): remove duplicate webhook source entry
HavenDV Apr 10, 2026
09ae0c6
Merge branch 'codex/ci-shared-generator-fixes' into codex/issue-231-o…
HavenDV Apr 10, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
The table of contents is too big for display.
Diff view
Diff view
  •  
  •  
  •  
The diff you're trying to view is too large. We only load the first 3000 changed files.
27 changes: 24 additions & 3 deletions specs/security.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,26 @@ paths:
description: Not authenticated
'403':
description: Access token does not have the required scope
/identity:
get:
summary: Gets identity information via OpenID Connect
security:
- OpenID: []
responses:
'200':
description: OK
'401':
description: Not authenticated
/certificate_status:
get:
summary: Checks mutual TLS certificate status
security:
- MutualTlsAuth: []
responses:
'200':
description: OK
'401':
description: Not authenticated
/ping:
get:
summary: Checks if the server is running
Expand All @@ -55,6 +75,8 @@ components:
OpenID:
type: openIdConnect
openIdConnectUrl: https://example.com/.well-known/openid-configuration
MutualTlsAuth:
type: mutualTLS
OAuth2:
type: oauth2
flows:
Expand Down Expand Up @@ -83,6 +105,5 @@ security:
- read
- write
- admin
- OpenId:
- scopeA
- scopeB
- OpenID: []
- MutualTlsAuth: []
2 changes: 2 additions & 0 deletions src/libs/AutoSDK.CSharp/Operations/AuthorizationHelpers.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,7 @@ internal static string GetIdentity(Authorization authorization)
SecuritySchemeType.ApiKey => $"{authorization.Type:G}|{authorization.In:G}|{authorization.Name}",
SecuritySchemeType.OAuth2 => $"{authorization.Type:G}|{authorization.SchemeId}",
SecuritySchemeType.OpenIdConnect => $"{authorization.Type:G}|{authorization.SchemeId}",
SecuritySchemeType.MutualTLS => $"{authorization.Type:G}|{authorization.SchemeId}",
SecuritySchemeType.Http => $"{authorization.Type:G}|{authorization.Scheme.ToUpperInvariant()}",
_ => $"{authorization.Type:G}|{authorization.In:G}|{authorization.Name}|{authorization.SchemeId}",
};
Expand Down Expand Up @@ -183,6 +184,7 @@ private static string GetSecurityRequirementSortKey(OpenApiSecuritySchemeReferen
SecuritySchemeType.ApiKey => $"{scheme.Type:G}|{scheme.In:G}|{scheme.Name}",
SecuritySchemeType.OAuth2 => $"{scheme.Type:G}|{scheme.Reference?.Id ?? scheme.Name}",
SecuritySchemeType.OpenIdConnect => $"{scheme.Type:G}|{scheme.Reference?.Id ?? scheme.Name}",
SecuritySchemeType.MutualTLS => $"{scheme.Type:G}|{scheme.Reference?.Id ?? scheme.Name}",
SecuritySchemeType.Http => $"{scheme.Type:G}|{scheme.Scheme?.ToUpperInvariant()}",
_ => $"{scheme.Type:G}|{scheme.Reference?.Id ?? scheme.Name ?? scheme.Scheme}",
};
Expand Down
3 changes: 3 additions & 0 deletions src/libs/AutoSDK.CSharp/Operations/CSharpAuthorizationFactory.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,7 @@ public static Authorization FromOpenApiSecurityScheme(
(SecuritySchemeType.ApiKey, _, ParameterLocation.Cookie) => "ApiKeyInCookie",
(SecuritySchemeType.OAuth2, _, _) => "OAuth2",
(SecuritySchemeType.OpenIdConnect, _, _) => "OpenIdConnect",
(SecuritySchemeType.MutualTLS, _, _) => "MutualTls",
_ => scheme.Name?.ToPropertyName() ?? scheme.Scheme?.ToPropertyName() ?? "Authorization",
};
string[] parameters = (scheme.Type, scheme.Scheme?.ToUpperInvariant(), scheme.In) switch
Expand All @@ -35,6 +36,7 @@ public static Authorization FromOpenApiSecurityScheme(
(SecuritySchemeType.ApiKey, _, ParameterLocation.Header) => ["apiKey"],
(SecuritySchemeType.ApiKey, _, ParameterLocation.Query) => ["apiKey"],
(SecuritySchemeType.ApiKey, _, ParameterLocation.Cookie) => ["apiKey"],
(SecuritySchemeType.OpenIdConnect, _, _) => ["accessToken"],
_ => [],
};

Expand All @@ -50,6 +52,7 @@ public static Authorization FromOpenApiSecurityScheme(
(SecuritySchemeType.Http, _) => ParameterLocation.Header,
(SecuritySchemeType.OAuth2, _) => ParameterLocation.Header,
(SecuritySchemeType.OpenIdConnect, _) => ParameterLocation.Header,
(SecuritySchemeType.MutualTLS, _) => null,
_ => scheme.In,
},
parameters: parameters.ToImmutableArray().AsEquatableArray(),
Expand Down
14 changes: 10 additions & 4 deletions src/libs/AutoSDK.CSharp/Pipeline/Data.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -530,6 +530,7 @@ bool CanExpandReference(SchemaContext resolvedReference)
.Values
.ToArray();
var hasOAuth2Support = authorizations.Any(static x => x.Type is SecuritySchemeType.OAuth2);
var hasMutualTlsSupport = authorizations.Any(static x => x.Type is SecuritySchemeType.MutualTLS);

var convertersBuilder = ImmutableArray.CreateBuilder<string>();
// Enum converters
Expand Down Expand Up @@ -631,7 +632,8 @@ .. resolvedIncludedTags.Select(tag => (PropertyData.Default with
Settings: csharpSettings,
GlobalSettings: csharpGlobalSettings,
Converters: converters,
HasOAuth2Support: hasOAuth2Support)] : [];
HasOAuth2Support: hasOAuth2Support,
HasMutualTlsSupport: hasMutualTlsSupport)] : [];
if (settings.GroupByTags && (settings.GenerateSdk || settings.GenerateConstructors))
{
clients = clients.Concat(
Expand All @@ -648,7 +650,8 @@ .. resolvedIncludedTags.Select(tag => (PropertyData.Default with
Settings: csharpSettings,
GlobalSettings: csharpGlobalSettings,
Converters: [],
HasOAuth2Support: hasOAuth2Support)))
HasOAuth2Support: hasOAuth2Support,
HasMutualTlsSupport: hasMutualTlsSupport)))
.ToArray();
}

Expand Down Expand Up @@ -897,6 +900,7 @@ internal static Models.Data Enrich(
.Values
.ToArray();
var hasOAuth2Support = authorizations.Any(static x => x.Type is SecuritySchemeType.OAuth2);
var hasMutualTlsSupport = authorizations.Any(static x => x.Type is SecuritySchemeType.MutualTLS);

var convertersBuilder = ImmutableArray.CreateBuilder<string>();
foreach (var value in enums)
Expand Down Expand Up @@ -997,7 +1001,8 @@ .. resolvedIncludedTags.Select(tag => (PropertyData.Default with
Settings: settings,
GlobalSettings: globalSettings,
Converters: converters,
HasOAuth2Support: hasOAuth2Support)]
HasOAuth2Support: hasOAuth2Support,
HasMutualTlsSupport: hasMutualTlsSupport)]
: [];

if (settings.GroupByTags && (settings.GenerateSdk || settings.GenerateConstructors))
Expand All @@ -1015,7 +1020,8 @@ .. resolvedIncludedTags.Select(tag => (PropertyData.Default with
Settings: settings,
GlobalSettings: globalSettings,
Converters: [],
HasOAuth2Support: hasOAuth2Support)))
HasOAuth2Support: hasOAuth2Support,
HasMutualTlsSupport: hasMutualTlsSupport)))
.ToArray();
}

Expand Down
Loading