security in openapi.yaml now needs to be under the method

The following in [`openapi.yaml`](https://github.com/GoogleCloudPlatform/nodejs-docs-samples/blob/master/appengine/endpoints/openapi.yaml#L79) does not have effect anymore:

```yaml
# This section requires all requests to any path to require an API key.
security:
- api_key: []
```

Instead it needs to be moved under the method (like in the [python sample](https://github.com/GoogleCloudPlatform/python-docs-samples/blob/master/endpoints/getting-started/openapi.yaml#L35)):

```yaml
paths:
  "/echo":
    post:
      description: "Echo back a given message."
      operationId: "echo"
      produces:
      - "application/json"
      responses:
        200:
          description: "Echo"
          schema:
            $ref: "#/definitions/echoMessage"
      parameters:
      - description: "Message to echo"
        in: body
        name: message
        required: true
        schema:
          $ref: "#/definitions/echoMessage"
      security:
      - api_key: []
```

see [endpoints docs](https://cloud.google.com/endpoints/docs/restricting-api-access-with-api-keys-openapi#restricting_access_to_specific_api_methods) for more info.


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

security in openapi.yaml now needs to be under the method #282

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

security in openapi.yaml now needs to be under the method #282

Description

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions