Skip to content

Commit

Permalink
feat: support service accounts
Browse files Browse the repository at this point in the history 
Add extended information to provide when an endpoint
could be used for a service account too.

Signed-off-by: Alejandro Visiedo <[email protected]>
  • Loading branch information
@avisiedo @frasertweedale
avisiedo authored and frasertweedale committed Jun 12, 2024
1 parent a654f55 commit 95d9bbf
Show file tree
Hide file tree
Showing 2 changed files with 20 additions and 7 deletions.
20 changes: 13 additions & 7 deletions public.openapi.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -83,7 +83,8 @@
"security": [
{
"x-rh-identity": [
"Type:User"
"Type:User",
"Type:ServiceAccount"
]
}
],
Expand Down Expand Up @@ -177,7 +178,8 @@
"security": [
{
"x-rh-identity": [
"Type:User"
"Type:User",
"Type:ServiceAccount"
]
}
],
Expand Down Expand Up @@ -215,7 +217,8 @@
"security": [
{
"x-rh-identity": [
"Type:User"
"Type:User",
"Type:ServiceAccount"
]
}
],
Expand All @@ -241,7 +244,8 @@
"security": [
{
"x-rh-identity": [
"Type:User"
"Type:User",
"Type:ServiceAccount"
]
}
],
Expand Down Expand Up @@ -281,7 +285,8 @@
"security": [
{
"x-rh-identity": [
"Type:User"
"Type:User",
"Type:ServiceAccount"
]
}
],
Expand Down Expand Up @@ -428,7 +433,8 @@
{
"x-rh-identity": [
"Type:System",
"Type:User"
"Type:User",
"Type:ServiceAccount"
]
}
],
Expand Down Expand Up @@ -1547,7 +1553,7 @@
"securitySchemes": {
"x-rh-identity": {
"name": "X-Rh-Identity",
"description": "Base64-encoded JSON identity header provided by 3Scale API gateway.\nThe JSON object contains type (System, User), org_id, and either username or certificate CN.\nScopes:\n- 'Type:User' for user access\n- 'Type:System': for system access (hosts with RHSM mTLS auth)\n- 'Type:System:domain' for system access, limited to host's domain\n",
"description": "Base64-encoded JSON identity header provided by 3Scale API gateway.\nThe JSON object contains type (System, User), org_id, and either username or certificate CN.\nScopes:\n- 'Type:User' for user access\n- 'Type:ServiceAccount' for service accounts\n- 'Type:System': for system access (hosts with RHSM mTLS auth)\n- 'Type:System:domain' for system access, limited to host's domain\n",
"type": "apiKey",
"in": "header"
},
Expand Down
7 changes: 7 additions & 0 deletions public.openapi.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -57,6 +57,7 @@ paths:
security:
- x-rh-identity:
- Type:User
- Type:ServiceAccount
tags:
- resources
post:
Expand Down Expand Up @@ -112,6 +113,7 @@ paths:
security:
- x-rh-identity:
- Type:User
- Type:ServiceAccount
tags:
- resources
/domains/{uuid}:
Expand All @@ -134,6 +136,7 @@ paths:
security:
- x-rh-identity:
- Type:User
- Type:ServiceAccount
tags:
- resources
get:
Expand All @@ -150,6 +153,7 @@ paths:
security:
- x-rh-identity:
- Type:User
- Type:ServiceAccount
tags:
- resources
patch:
Expand All @@ -175,6 +179,7 @@ paths:
security:
- x-rh-identity:
- Type:User
- Type:ServiceAccount
tags:
- resources
put:
Expand Down Expand Up @@ -266,6 +271,7 @@ paths:
- x-rh-identity:
- Type:System
- Type:User
- Type:ServiceAccount
tags:
- resources
components:
Expand Down Expand Up @@ -1123,6 +1129,7 @@ components:
The JSON object contains type (System, User), org_id, and either username or certificate CN.
Scopes:
- 'Type:User' for user access
- 'Type:ServiceAccount' for service accounts
- 'Type:System': for system access (hosts with RHSM mTLS auth)
- 'Type:System:domain' for system access, limited to host's domain
type: apiKey
Expand Down

0 comments on commit 95d9bbf

Please sign in to comment.