88 lines
2.6 KiB
Haskell
88 lines
2.6 KiB
Haskell
|
{-# OPTIONS_GHC -fno-warn-orphans #-}
|
||
|
{-# LANGUAGE CPP #-}
|
||
|
module Servant.Auth.Swagger
|
||
|
(
|
||
|
-- | The purpose of this package is provide the instance for 'servant-auth'
|
||
|
-- combinators needed for 'servant-swagger' documentation generation.
|
||
|
--
|
||
|
-- Currently only JWT and BasicAuth are supported.
|
||
|
|
||
|
-- * Re-export
|
||
|
JWT
|
||
|
, BasicAuth
|
||
|
, Auth
|
||
|
|
||
|
-- * Needed to define instances of @HasSwagger@
|
||
|
, HasSecurity (..)
|
||
|
) where
|
||
|
|
||
|
import Control.Lens ((&), (<>~))
|
||
|
import Data.Proxy (Proxy (Proxy))
|
||
|
import Data.Swagger (ApiKeyLocation (..), ApiKeyParams (..),
|
||
|
SecurityRequirement (..), SecurityScheme (..),
|
||
|
#if MIN_VERSION_swagger2(2,6,0)
|
||
|
SecurityDefinitions(..),
|
||
|
#endif
|
||
|
SecuritySchemeType (..), allOperations, security,
|
||
|
securityDefinitions)
|
||
|
import GHC.Exts (fromList)
|
||
|
import Servant.API hiding (BasicAuth)
|
||
|
import Servant.Auth
|
||
|
import Servant.Swagger
|
||
|
|
||
|
import qualified Data.Text as T
|
||
|
|
||
|
instance (AllHasSecurity xs, HasSwagger api) => HasSwagger (Auth xs r :> api) where
|
||
|
toSwagger _
|
||
|
= toSwagger (Proxy :: Proxy api)
|
||
|
& securityDefinitions <>~ mkSec (fromList secs)
|
||
|
& allOperations.security <>~ secReqs
|
||
|
where
|
||
|
secs = securities (Proxy :: Proxy xs)
|
||
|
secReqs = [ SecurityRequirement (fromList [(s,[])]) | (s,_) <- secs]
|
||
|
mkSec =
|
||
|
#if MIN_VERSION_swagger2(2,6,0)
|
||
|
SecurityDefinitions
|
||
|
#else
|
||
|
id
|
||
|
#endif
|
||
|
|
||
|
|
||
|
class HasSecurity x where
|
||
|
securityName :: Proxy x -> T.Text
|
||
|
securityScheme :: Proxy x -> SecurityScheme
|
||
|
|
||
|
instance HasSecurity BasicAuth where
|
||
|
securityName _ = "BasicAuth"
|
||
|
securityScheme _ = SecurityScheme type_ (Just desc)
|
||
|
where
|
||
|
type_ = SecuritySchemeBasic
|
||
|
desc = "Basic access authentication"
|
||
|
|
||
|
instance HasSecurity JWT where
|
||
|
securityName _ = "JwtSecurity"
|
||
|
securityScheme _ = SecurityScheme type_ (Just desc)
|
||
|
where
|
||
|
type_ = SecuritySchemeApiKey (ApiKeyParams "Authorization" ApiKeyHeader)
|
||
|
desc = "JSON Web Token-based API key"
|
||
|
|
||
|
class AllHasSecurity (x :: [*]) where
|
||
|
securities :: Proxy x -> [(T.Text,SecurityScheme)]
|
||
|
|
||
|
instance {-# OVERLAPPABLE #-} (HasSecurity x, AllHasSecurity xs) => AllHasSecurity (x ': xs) where
|
||
|
securities _ = (securityName px, securityScheme px) : securities pxs
|
||
|
where
|
||
|
px :: Proxy x
|
||
|
px = Proxy
|
||
|
pxs :: Proxy xs
|
||
|
pxs = Proxy
|
||
|
|
||
|
instance {-# OVERLAPPING #-} AllHasSecurity xs => AllHasSecurity (Cookie ': xs) where
|
||
|
securities _ = securities pxs
|
||
|
where
|
||
|
pxs :: Proxy xs
|
||
|
pxs = Proxy
|
||
|
|
||
|
instance AllHasSecurity '[] where
|
||
|
securities _ = []
|