Improve httpApiKeyAuth description in OpenAPI

mtdowling · mtdowling · commit 1cc72b244cdf · 2021-10-11T16:59:43.000-07:00
Relates to #872
diff --git a/smithy-aws-apigateway-openapi/src/test/resources/software/amazon/smithy/aws/apigateway/openapi/operation-http-api-key-security.openapi.json b/smithy-aws-apigateway-openapi/src/test/resources/software/amazon/smithy/aws/apigateway/openapi/operation-http-api-key-security.openapi.json
@@ -25,7 +25,7 @@
     "securitySchemes": {
       "api_key": {
         "type": "apiKey",
-        "description": "X-Api-Key authentication",
+        "description": "API key authentication via the 'x-api-key' header",
         "name": "x-api-key",
         "in": "header"
       }
diff --git a/smithy-openapi/src/main/java/software/amazon/smithy/openapi/fromsmithy/security/HttpApiKeyAuthConverter.java b/smithy-openapi/src/main/java/software/amazon/smithy/openapi/fromsmithy/security/HttpApiKeyAuthConverter.java
@@ -40,21 +40,32 @@ public Class<HttpApiKeyAuthTrait> getAuthSchemeType() {
 
     @Override
     public SecurityScheme createSecurityScheme(Context<? extends Trait> context, HttpApiKeyAuthTrait trait) {
+        StringBuilder description = new StringBuilder()
+                .append("API key authentication via the '")
+                .append(trait.getName())
+                .append("' ");
+
+        if (trait.getIn().equals(HttpApiKeyAuthTrait.Location.QUERY)) {
+            description.append(" query string parameter");
+        } else {
+            description.append(trait.getIn());
+        }
+
         if (trait.getScheme().isPresent()) {
             return SecurityScheme.builder()
                     .type("http")
                     .scheme(trait.getScheme().get())
                     .name(trait.getName())
                     .in(trait.getIn().toString())
-                    .description("ApiKey authentication semantics via 'Authorization' header")
+                    .description(description.toString())
                     .build();
         }
 
         return SecurityScheme.builder()
                 .type("apiKey")
                 .name(trait.getName())
                 .in(trait.getIn().toString())
-                .description("X-Api-Key authentication")
+                .description(description.toString())
                 .build();
     }
 
diff --git a/smithy-openapi/src/test/resources/software/amazon/smithy/openapi/fromsmithy/security/http-api-key-bearer-security.json b/smithy-openapi/src/test/resources/software/amazon/smithy/openapi/fromsmithy/security/http-api-key-bearer-security.json
@@ -14,7 +14,7 @@
                 "smithy.api#httpApiKeyAuth": {
                     "name": "Authorization",
                     "in": "header",
-                    "scheme": "ApiKey"
+                    "scheme": "whatever-scheme-we-want"
                 }
             }
         },
diff --git a/smithy-openapi/src/test/resources/software/amazon/smithy/openapi/fromsmithy/security/http-api-key-bearer-security.openapi.json b/smithy-openapi/src/test/resources/software/amazon/smithy/openapi/fromsmithy/security/http-api-key-bearer-security.openapi.json
@@ -20,10 +20,10 @@
         "securitySchemes": {
             "smithy.api.httpApiKeyAuth": {
                 "type": "http",
-                "description": "ApiKey authentication semantics via 'Authorization' header",
+                "description": "API key authentication via the 'Authorization' header",
                 "name": "Authorization",
                 "in": "header",
-                "scheme": "ApiKey"
+                "scheme": "whatever-scheme-we-want"
             }
         }
     },
diff --git a/smithy-openapi/src/test/resources/software/amazon/smithy/openapi/fromsmithy/security/http-api-key-security.openapi.json b/smithy-openapi/src/test/resources/software/amazon/smithy/openapi/fromsmithy/security/http-api-key-security.openapi.json
@@ -20,7 +20,7 @@
         "securitySchemes": {
             "smithy.api.httpApiKeyAuth": {
                 "type": "apiKey",
-                "description": "X-Api-Key authentication",
+                "description": "API key authentication via the 'x-api-key' header",
                 "name": "x-api-key",
                 "in": "header"
             }

Original file line number	Diff line number	Diff line change
`@@ -25,7 +25,7 @@`
`25`	`25`	`"securitySchemes": {`
`26`	`26`	`"api_key": {`
`27`	`27`	`"type": "apiKey",`
`28`		`- "description": "X-Api-Key authentication",`
	`28`	`+ "description": "API key authentication via the 'x-api-key' header",`
`29`	`29`	`"name": "x-api-key",`
`30`	`30`	`"in": "header"`
`31`	`31`	`}`
Original file line number	Diff line number	Diff line change
`@@ -14,7 +14,7 @@`
`14`	`14`	`"smithy.api#httpApiKeyAuth": {`
`15`	`15`	`"name": "Authorization",`
`16`	`16`	`"in": "header",`
`17`		`- "scheme": "ApiKey"`
	`17`	`+ "scheme": "whatever-scheme-we-want"`
`18`	`18`	`}`
`19`	`19`	`}`
`20`	`20`	`},`
Original file line number	Diff line number	Diff line change
`@@ -20,10 +20,10 @@`
`20`	`20`	`"securitySchemes": {`
`21`	`21`	`"smithy.api.httpApiKeyAuth": {`
`22`	`22`	`"type": "http",`
`23`		`- "description": "ApiKey authentication semantics via 'Authorization' header",`
	`23`	`+ "description": "API key authentication via the 'Authorization' header",`
`24`	`24`	`"name": "Authorization",`
`25`	`25`	`"in": "header",`
`26`		`- "scheme": "ApiKey"`
	`26`	`+ "scheme": "whatever-scheme-we-want"`
`27`	`27`	`}`
`28`	`28`	`}`
`29`	`29`	`},`
Original file line number	Diff line number	Diff line change
`@@ -20,7 +20,7 @@`
`20`	`20`	`"securitySchemes": {`
`21`	`21`	`"smithy.api.httpApiKeyAuth": {`
`22`	`22`	`"type": "apiKey",`
`23`		`- "description": "X-Api-Key authentication",`
	`23`	`+ "description": "API key authentication via the 'x-api-key' header",`
`24`	`24`	`"name": "x-api-key",`
`25`	`25`	`"in": "header"`
`26`	`26`	`}`