swaggerdoc | 根据swagger访问路径 , 导出完整规范的接口文档

We would like SwaggerUI, which is being generated by Swashbuckle, to show all controllers and methods when debugging as well as on our test environment, but hide some on integration and production environments. Note that the hidden controllers/methods will be functional in all scenarios but won't be documented in SwaggerUI.

To do this I've applied the principal described here.

Which results in following code:

Attribute definition:

When I request any API endpoint from Swagger UI give me the following error

System.InvalidOperationException: No authenticationScheme was specified, and there was no DefaultChallengeScheme found. The default schemes can be set using either AddAuthentication(string defaultScheme) or AddAuthentication(Action configureOptions).

at Microsoft.AspNetCore.Authentication.AuthenticationService.ChallengeAsync(HttpContext context, String scheme, AuthenticationProperties properties)

at Microsoft.AspNetCore.Authorization.Policy.AuthorizationMiddlewareResultHandler.HandleAsync(RequestDelegate next, HttpContext context, AuthorizationPolicy policy, PolicyAuthorizationResult authorizeResult)

at Microsoft.AspNetCore.Authorization.AuthorizationMiddleware.Invoke(HttpContext context)

at Microsoft.AspNetCore.Authentication.AuthenticationMiddleware.Invoke(HttpContext context)

at Swashbuckle.AspNetCore.SwaggerUI.SwaggerUIMiddleware.Invoke(HttpContext httpContext)

at Swashbuckle.AspNetCore.Swagger.SwaggerMiddleware.Invoke(HttpContext httpContext, ISwaggerProvider swaggerProvider)

at Microsoft.AspNetCore.Diagnostics.DeveloperExceptionPageMiddleware.Invoke(HttpContext context)

HEADERS

=======

Accept: /

Accept-Encoding: gzip, deflate

Accept-Language: en-US,en;q=0.5

Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJVc2VySWQiOiIzIiwiTG9naW5JZCI6ImFkbWluIiwiVXNlclR5cGVJZCI6IjEiLCJFbWFpbCI6ImEiLCJNb2JpbGUiOiJhIiwianRpIjoiMWU1MDY3ODAtMWRjNS00MDYzLWFkMTktMDdlMjg4MzAxOWVjIiwiZXhwIjoxNjIzNDYzNjQ4LCJpc3MiOiJlZHVjYXJlLmNvbSIsImF1ZCI6ImVkdWNhcmUuY29tIn0.G2-D_oIdwUDw_3iz87jxWBIMabFpLlR5ASjCr109kNM

Connection: keep-alive

Host: localhost:21068

Referer: http://localhost:21068/swagger/index.html

the Swagger configuration is given below

I have 3 projects JWT.IDP, JWT.API, JWT.MVC.

1. JWT.IDP - an API project validates user and issues the JWT token.
2. JWT.API - an API project for my business logic, CURD etc
3. JWT.MVC - an MVC application for UI.

My intention is to use this token generated in JWT.IDP and call the JWT.API functions from JWT.MVC

The IDP token is working perfectly fine, I can generate the token and my JWT.MVC Login controller is able to receive it. But when I am trying to use this token to access the JWT.API it gives a 500 error (Please see the last function in the below code (GetWeatherData)).

Can someone help, I am not an advanced user, the code written below is taken from several samples. So I am not sure whether it really is the right code.

I have an API in .NET5 uses JWTBearer to secure the API. Now I wanted to configure my client app to use the token generated from the api/gettoken. It works fine in swagger, but I don't know how to configure my MVC and API(consuming API) to use this token. Can somebody help by providing the configureservices and configure methods in the startup

To Glenn,

I have 3 projects JWT.IDP, JWT.API, JWT.MVC. JWT.IDP issues the token, my intention is to use that token in JWT.API and call the JWT.API function from JWT.MVC. The IDP is working perfectly, I can generate the token and my JWT.MVC Login controller is able to receive it. The last function in the below code (GetWeatherData) is coded according to the idea you have given. If I don't pass the token, I used to get 401 error, now I get 500 Internal Server Error

I am upgrading my ASP.NET Core 5 Web API security from implicit to authorization code. The authentication is done using Azure A/D and I also need to allow Swagger docs to be used.

I have managed to make it work, but client_secret is useless in my case and I am wondering if I am doing something wrong. My configuration is as follows:

• Redirect URIs: https://localhost:44444/swagger/oauth2-redirect.html
• API permissions: Microsoft Graph + custom role (access_as_user)
• Tokens: Access tokens and ID tokens are unchecked

I am currently learning Asp .Net Core and OData and created a simple API for CRUD operations. But each time I try to post a body with a Guid, the ModelState returns invalid, because he throws a Invalid cast from 'System.String' to 'System.Guid'. and the model argument ist set to null.

I searched the internet the last three days, tweaked some code here and there, but since I have no idea what's happening, it was more a stab around the dark...

My Model:

I have a dotnet 5 web API with an Angular2+ front end, which I'm building from a previous 3.1 MVC version of the app. I'm having an issue with CORS while looking to authenticate with Yahoo that I did not have with the MVC version. The error I am getting is:

"Access to XMLHttpRequest at 'https://api.login.yahoo.com...' (redirected from 'https://localhost:5003/api/draft/yahooauth/') from origin 'https://localhost:5003' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource."

My API Controller:

I have 3 Project:

• API Project > Which includes Controller
• DataLayer Project > Which includes my Repository, Interface, ADO.NET Entity, Context.(Class Library Template .NET Framwork)
• Services Project > Which includes my Services, Interface, you can say Business Logic.(Class Library Template .NET Framwork)

So My API Project(Controller) will call Services(Business Layer) then DataLayer Project(DbContext).

So, Im working on something, and I need to basically control node red with a button on my wordpress site. Did a little research and it looks like http is the way to go. Problem is, I know nothing about it. So I managed to send a value to node red by putting the following into a browser-

localhost:1880/test/?value=1

Here is the flow-