Rework OpenAPI Authorizations + scopes

Author: nolannbiron

packages/gitbook/src/components/DocumentView/OpenAPI/context.tsx

@@ -41,6 +41,7 @@ export function getOpenAPIContext(args: {
             plus: <Icon icon="plus" />,
             copy: <Icon icon="copy" />,
             check: <Icon icon="check" />,
+            lock: <Icon icon="lock" />,
         },
         renderCodeBlock: (codeProps) => <PlainCodeBlock {...codeProps} />,
         renderDocument: (documentProps) => (

packages/gitbook/src/components/DocumentView/OpenAPI/style.css

@@ -334,7 +334,7 @@
 }
 
 .openapi-securities-scopes ul {
-    @apply !my-0;
+    @apply !my-0 !list-none !pl-0;
 }
 
 .openapi-securities-url {
@@ -398,15 +398,13 @@
     @apply text-left prose-sm text-sm leading-tight text-tint select-text prose-strong:font-semibold prose-strong:text-inherit;
 }
 
-.openapi-disclosure-group-trigger[aria-expanded="false"] {
-    .openapi-response-description.openapi-markdown {
-        @apply truncate;
-        @apply [&>*:not(:first-child)]:hidden *:truncate *:!p-0 *:!m-0;
-    }
+.openapi-disclosure-group-trigger[aria-expanded="false"] .openapi-response-description.openapi-markdown {
+    @apply truncate;
+    @apply [&>*:not(:first-child)]:hidden *:truncate *:!p-0 *:!m-0;
+}
 
-    .openapi-response-tab-content {
-        @apply basis-[60%]
-    }
+.openapi-disclosure-group-trigger[aria-expanded="false"] .openapi-response-tab-content {
+    @apply basis-[60%];
 }
 
 .openapi-response-body {
@@ -528,7 +526,7 @@
 .openapi-panel,
 .openapi-codesample,
 .openapi-response-examples {
-    @apply border shrink min-h-40 overflow-hidden rounded-md straight-corners:rounded-none circular-corners:rounded-xl bg-tint-subtle border-tint-subtle shadow-sm;
+    @apply border shrink min-h-40 overflow-hidden rounded-lg straight-corners:rounded-none circular-corners:rounded-xl bg-tint-subtle border-tint-subtle shadow-sm;
 }
 
 .openapi-response-examples-panel {
@@ -851,7 +849,7 @@ body:has(.openapi-select-popover) {
         .openapi-schema-alternatives .openapi-disclosure,
         .openapi-schemas-disclosure .openapi-schema.openapi-disclosure
     ) {
-    @apply rounded-xl straight-corners:rounded-none;
+    @apply rounded-md circular-corners:rounded-xl straight-corners:rounded-none;
 }
 
 .openapi-disclosure .openapi-schemas-disclosure .openapi-schema.openapi-disclosure {
@@ -866,10 +864,10 @@ body:has(.openapi-select-popover) {
     @apply ring-1 shadow-sm;
 }
 
-.openapi-disclosure[data-expanded="true"]:not(.openapi-schemas-disclosure):not(:first-child) {
+.openapi-disclosure[data-expanded="true"]:not(.openapi-schemas-disclosure,.openapi-required-scopes):not(:first-child) {
     @apply mt-2;
 }
-.openapi-disclosure[data-expanded="true"]:not(.openapi-schemas-disclosure):not(:last-child) {
+.openapi-disclosure[data-expanded="true"]:not(.openapi-schemas-disclosure,.openapi-required-scopes):not(:last-child) {
     @apply mb-2;
 }
 
@@ -1015,4 +1013,20 @@ body:has(.openapi-select-popover) {
 
 .openapi-path-copy-button-icon svg {
     @apply text-tint size-4;
+}
+
+.openapi-required-scopes {
+    @apply ring-1 ring-tint-subtle text-base font-medium mx-0;
+}
+
+.openapi-required-scopes .openapi-disclosure-trigger-label {
+    @apply top-1/2 -translate-y-1/2;
+}
+
+.openapi-required-scopes .openapi-required-scopes-header {
+    @apply flex items-center gap-3;
+}
+
+.openapi-required-scopes .openapi-required-scopes-header svg {
+    @apply size-3.5 text-tint-subtle rotate-none;
 }

packages/react-openapi/src/OpenAPIDisclosure.tsx

@@ -34,13 +34,15 @@ export function OpenAPIDisclosure(props: {
             >
                 {header}
                 <div className="openapi-disclosure-trigger-label">
-                    <span>{typeof label === 'function' ? label(isExpanded) : label}</span>
+                    {label ? (
+                        <span>{typeof label === 'function' ? label(isExpanded) : label}</span>
+                    ) : null}
                     {icon}
                 </div>
             </Button>
-            <DisclosurePanel className="openapi-disclosure-panel">
-                {isExpanded ? children : null}
-            </DisclosurePanel>
+            {isExpanded ? (
+                <DisclosurePanel className="openapi-disclosure-panel">{children}</DisclosurePanel>
+            ) : null}
         </Disclosure>
     );
 }

packages/react-openapi/src/OpenAPIRequiredScopes.tsx

@@ -0,0 +1,102 @@
+'use client';
+
+import { OpenAPICopyButton } from './OpenAPICopyButton';
+import { OpenAPIDisclosure } from './OpenAPIDisclosure';
+import { useSelectState } from './OpenAPISelect';
+import type { OpenAPIClientContext } from './context';
+import { t } from './translate';
+import type { OpenAPISecurityScope } from './types';
+import type { OperationSecurityInfo } from './utils';
+
+/**
+ * Present securities authorization that can be used for this operation.
+ */
+export function OpenAPIRequiredScopes(props: {
+    securities: OperationSecurityInfo[];
+    context: OpenAPIClientContext;
+    stateKey: string;
+}) {
+    const { securities, stateKey, context } = props;
+    const { key: selectedKey } = useSelectState(stateKey, securities[0]?.key);
+    const selectedSecurity = securities.find((security) => security.key === selectedKey);
+
+    if (!selectedSecurity) {
+        return null;
+    }
+
+    const scopes = selectedSecurity.schemes.flatMap((scheme) => {
+        if (scheme.type === 'oauth2') {
+            return Object.entries(scheme.flows ?? {}).flatMap(([_, flow]) =>
+                Object.entries(flow.scopes ?? {})
+            );
+        }
+
+        return scheme.scopes ?? [];
+    });
+
+    return (
+        <OpenAPIDisclosure
+            className="openapi-required-scopes"
+            header={
+                <div className="openapi-required-scopes-header">
+                    {context.icons.lock}
+                    <span>{t(context.translation, 'required_scopes')}</span>
+                </div>
+            }
+            icon={context.icons.plus}
+            label=""
+        >
+            <OpenAPISchemaScopes scopes={scopes} context={context} />
+        </OpenAPIDisclosure>
+    );
+}
+
+function OpenAPISchemaScopes(props: {
+    scopes: OpenAPISecurityScope[];
+    context: OpenAPIClientContext;
+}) {
+    const { scopes, context } = props;
+
+    return (
+        <div className="openapi-securities-scopes openapi-markdown">
+            <ul>
+                {scopes.map((scope) => (
+                    <OpenAPIScopeItem key={scope[0]} scope={scope} context={context} />
+                ))}
+            </ul>
+        </div>
+    );
+}
+
+/**
+ * Display a scope item. Either a key-value pair or a single string.
+ */
+function OpenAPIScopeItem(props: {
+    scope: OpenAPISecurityScope;
+    context: OpenAPIClientContext;
+}) {
+    const { scope, context } = props;
+
+    return (
+        <li>
+            <OpenAPIScopeItemKey name={scope[0]} context={context} />
+            {scope[1] ? `: ${scope[1]}` : null}
+        </li>
+    );
+}
+
+/**
+ * Displays the scope name within a copyable button.
+ */
+function OpenAPIScopeItemKey(props: {
+    name: string;
+    context: OpenAPIClientContext;
+}) {
+    const { name, context } = props;
+
+    return (
+        <OpenAPICopyButton value={name} context={context} withTooltip>
+            <code>{name}</code>
+        </OpenAPICopyButton>
+    );
+}

packages/react-openapi/src/OpenAPISecurities.tsx

@@ -3,10 +3,11 @@ import { Fragment } from 'react';
 import { InteractiveSection } from './InteractiveSection';
 import { Markdown } from './Markdown';
 import { OpenAPICopyButton } from './OpenAPICopyButton';
+import { OpenAPIRequiredScopes } from './OpenAPIRequiredScopes';
 import { OpenAPISchemaName } from './OpenAPISchemaName';
 import type { OpenAPIClientContext } from './context';
 import { t } from './translate';
-import type { OpenAPICustomSecurityScheme, OpenAPISecurityScope } from './types';
+import type { OpenAPICustomSecurityScheme } from './types';
 import type { OpenAPIOperationData } from './types';
 import { createStateKey, extractOperationSecurityInfo, resolveDescription } from './utils';
 
@@ -25,48 +26,44 @@ export function OpenAPISecurities(props: {
     }
 
     const tabsData = extractOperationSecurityInfo({ securityRequirement, securities });
+    const stateKey = createStateKey('securities', context.blockKey);
 
     return (
-        <InteractiveSection
-            header={t(context.translation, 'authorizations')}
-            stateKey={createStateKey('securities', context.blockKey)}
-            toggeable
-            defaultOpened={false}
-            toggleIcon={context.icons.chevronRight}
-            selectIcon={context.icons.chevronDown}
-            className="openapi-securities"
-            tabs={tabsData.map(({ key, label, schemes }) => ({
-                key,
-                label,
-                body: (
-                    <div className="openapi-schema">
-                        {schemes.map((security, index) => {
-                            const description = resolveDescription(security);
-                            return (
-                                <div
-                                    key={`${key}-${index}`}
-                                    className="openapi-schema-presentation"
-                                >
-                                    {getLabelForType(security, context)}
-                                    {description ? (
-                                        <Markdown
-                                            source={description}
-                                            className="openapi-securities-description"
-                                        />
-                                    ) : null}
-                                    {security.scopes?.length ? (
-                                        <OpenAPISchemaScopes
-                                            scopes={security.scopes}
-                                            context={context}
-                                        />
-                                    ) : null}
-                                </div>
-                            );
-                        })}
-                    </div>
-                ),
-            }))}
-        />
+        <>
+            <OpenAPIRequiredScopes context={context} stateKey={stateKey} securities={tabsData} />
+            <InteractiveSection
+                header={t(context.translation, 'authorizations')}
+                stateKey={stateKey}
+                toggleIcon={context.icons.chevronRight}
+                selectIcon={context.icons.chevronDown}
+                className="openapi-securities"
+                tabs={tabsData.map(({ key, label, schemes }) => ({
+                    key,
+                    label,
+                    body: (
+                        <div className="openapi-schema">
+                            {schemes.map((security, index) => {
+                                const description = resolveDescription(security);
+                                return (
+                                    <div
+                                        key={`${key}-${index}`}
+                                        className="openapi-schema-presentation"
+                                    >
+                                        {getLabelForType(security, context)}
+                                        {description ? (
+                                            <Markdown
+                                                source={description}
+                                                className="openapi-securities-description"
+                                            />
+                                        ) : null}
+                                    </div>
+                                );
+                            })}
+                        </div>
+                    ),
+                }))}
+            />
+        </>
     );
 }
 
@@ -175,9 +172,6 @@ function OpenAPISchemaOAuth2Item(props: {
         return null;
     }
 
-    // If the security scheme has scopes, we don't need to display the scopes from the flow
-    const scopes = !security.scopes?.length && flow.scopes ? Object.entries(flow.scopes) : [];
-
     return (
         <div>
             <OpenAPISchemaName
@@ -227,62 +221,7 @@ function OpenAPISchemaOAuth2Item(props: {
                         </OpenAPICopyButton>
                     </span>
                 ) : null}
-                {scopes.length ? <OpenAPISchemaScopes scopes={scopes} context={context} /> : null}
             </div>
         </div>
     );
 }
-
-/**
- * Render a list of available scopes.
- */
-function OpenAPISchemaScopes(props: {
-    scopes: OpenAPISecurityScope[];
-    context: OpenAPIClientContext;
-}) {
-    const { scopes, context } = props;
-
-    return (
-        <div className="openapi-securities-scopes openapi-markdown">
-            <span>{t(context.translation, 'required_scopes')}: </span>
-            <ul>
-                {scopes.map((scope) => (
-                    <OpenAPIScopeItem key={scope[0]} scope={scope} context={context} />
-                ))}
-            </ul>
-        </div>
-    );
-}
-
-/**
- * Display a scope item. Either a key-value pair or a single string.
- */
-function OpenAPIScopeItem(props: {
-    scope: OpenAPISecurityScope;
-    context: OpenAPIClientContext;
-}) {
-    const { scope, context } = props;
-
-    return (
-        <li>
-            <OpenAPIScopeItemKey name={scope[0]} context={context} />
-            {scope[1] ? `: ${scope[1]}` : null}
-        </li>
-    );
-}
-
-/**
- * Displays the scope name within a copyable button.
- */
-function OpenAPIScopeItemKey(props: {
-    name: string;
-    context: OpenAPIClientContext;
-}) {
-    const { name, context } = props;
-
-    return (
-        <OpenAPICopyButton value={name} context={context} withTooltip>
-            <code>{name}</code>
-        </OpenAPICopyButton>
-    );
-}

packages/react-openapi/src/context.ts

@@ -15,6 +15,7 @@ export interface OpenAPIClientContext {
         plus: React.ReactNode;
         copy: React.ReactNode;
         check: React.ReactNode;
+        lock: React.ReactNode;
     };
 
     /**