use security handler instead of express middleware for access token validation.

2026-04-18 12:53:21 +02:00 · 2015-12-03 17:33:53 +09:00
parent f10ae51b53
commit 221bc78e49
5 changed files with 120 additions and 81 deletions
--- a/lib/units/api/config/default.yaml
+++ b/lib/units/api/config/default.yaml
@@ -6,7 +6,6 @@ swagger:
  fittingsDirs: [ fittings ]
  defaultPipe: null
  swaggerControllerPipe: swagger_controllers  # defines the standard processing pipe for controllers
-  swagger: 'swagger/api_v1.yaml'

  # values defined in the bagpipes key are the bagpipes pipes and fittings definitions
  # (see https://github.com/apigee-127/bagpipes)
@@ -22,10 +21,13 @@ swagger:
      name: swagger_validator
      validateResponse: true

+    _swagger_security:
+      name: swagger_security
+      securityHandlersModule: helpers/securityHandlers
+
    # pipe for all swagger-node controllers
    swagger_controllers:
      - onError: json_error_handler
-      - cors
      - swagger_params_parser
      - swagger_security
      - _swagger_validate