-
-
Notifications
You must be signed in to change notification settings - Fork 1.3k
Middlewares
- Package: NSwag.AspNet.Owin (.NET 4.5+)
- Package: NSwag.AspNetCore (.NETStandard 1.6+, .NET Core and .NET 4.5.1+)
Both NuGet packages provide extension methods to register OWIN or ASP.NET Core middlewares:
AspNetCoreToSwaggerGenerator: Using new ASP.NET Core generator based on API Explorer:
-
app.UseSwagggerWithApiExplorer(configure)(Swagger spec only) -
app.UseSwaggger*WithApiExplorer(configure)(Swagger spec and Swagger UI/ReDoc): New generators which use the ASP.NET Core API Explorer -
Important: These methods will use the new AspNetCoreToSwaggerGenerator and require to register some services with
services.AddSwagger()
WebApiToSwaggerGenerator: Using the old reflection based ASP.NET Core and ASP.NET generator:
Swagger only:
-
app.UseSwagger(assembly, configure): Registers the Swagger generator on a given route
Swagger and Swagger UI:
-
app.UseSwaggerUi(assembly, configure): Registers the Swagger generator and Swagger UI v2.x on the given routes -
app.UseSwaggerUi(configure): Registers only the Swagger UI on the given route -
app.UseSwaggerUi3(configure): Registers the Swagger generator and Swagger UI v3.x on the given routes -
app.UseSwaggerReDoc(configure): Registers the Swagger generator and ReDoc on the given routes
The default routes to access the Swagger specification or Swagger UI:
- Swagger JSON:
http://yourserver/swagger/v1/swagger.json - Swagger UI:
http://yourserver/swagger
See also:
First, you need to install the required NSwag NuGet packages.
ASP.NET Core Middleware: .NETStandard 1.6+, .NET Core and .NET 4.5.1+:
- NSwag.AspNetCore
- If you are using .NET Core <= v2.0 or ASP.NET Core with full .NET Framework, you may need to muanually install Microsoft.AspNetCore.StaticFiles in v2.x
ASP.NET (OWIN) Middleware: Full .NET 4.5+ Framework:
public class Startup
{
...
public void ConfigureServices(IServiceCollection services)
{
// AddSwagger is only needed for the UseSwaggger*WithApiExplorer() methods (below)
services.AddSwagger();
}
public void Configure(IApplicationBuilder app)
{
app.UseMvc();
// Either use the new API Explorer based generator (ASP.NET Core only):
app.UseSwaggerUiWithApiExplorer(settings =>
{
...
// or use the reflection based generator for ASP.NET or ASP.NET Core:
app.UseSwaggerUi(typeof(Startup).GetTypeInfo().Assembly, settings =>
{
...public class Startup
{
public void Configuration(IAppBuilder app)
{
var config = new HttpConfiguration();
app.UseSwaggerUi(typeof(Startup).Assembly, settings =>
{
// configure settings here
// settings.GeneratorSettings.*: Generator settings and extension points
// settings.*: Routing and UI settings
});
app.UseWebApi(config);
config.MapHttpAttributeRoutes();
config.EnsureInitialized();
}
}Register only the Swagger generator (in this example: OWIN .NET 4.5+):
public class Startup
{
public void Configuration(IAppBuilder app)
{
var config = new HttpConfiguration();
app.UseSwagger(typeof(Startup).Assembly, settings =>
{
// configure settings here
});
app.UseWebApi(config);
config.MapHttpAttributeRoutes();
config.EnsureInitialized();
}
}Configure the routing of the Swagger requests
There are two ways to do this:
a) Pipe all request to the .NET pipeline
In the system.webServer tag, set runAllManagedModulesForAllRequests to true so that all requests are piped to ASP.NET:
<system.webServer>
...
<modules runAllManagedModulesForAllRequests="true">
...b) Pipe only the Swagger request to the specific middlewares
Important: The routes defined in the web.config and the UseSwagger/UseSwaggerUi methods must be the same:
<system.webServer>
...
<handlers>
...
<add name="NSwag" path="swagger" verb="*"
type="System.Web.Handlers.TransferRequestHandler"
preCondition="integratedMode,runtimeVersionv4.0" />Important: This is not supported in the new API Explorer based generator.
When you are using the Web API to Swagger generator in an MVC web application, you may have to change the URL template to the one defined in the Startup.cs:
app.UseSwaggerUi(typeof(Startup).GetTypeInfo().Assembly, settings =>
{
settings.GeneratorSettings.DefaultUrlTemplate = "{controller}/{action}/{id?}";
});It is possible to transform the generated Swagger specification before it is served to the client:
app.UseSwagger(typeof(Startup).Assembly, settings =>
{
settings.PostProcess = document =>
{
document.Info.Description = "My description";
};
});If you want to implement more reusable code, you can also implement Document Processors and Operation Processors.
You can generate multiple specs (based on any condition; in the sample filtered by version) and serve all specs in a single UI:
public void Configure(IApplicationBuilder app, IHostingEnvironment env)
{
app.UseSwaggerWithApiExplorer(config =>
{
config.GeneratorSettings.OperationProcessors.TryGet<ApiVersionProcessor>()
.IncludedVersions = new[] { "1.0" };
config.SwaggerRoute = "swagger/v1/swagger.json";
config.GeneratorSettings.Title = "My API Title v2";
config.GeneratorSettings.Description = "My API functionalities.";
});
app.UseSwaggerWithApiExplorer(config =>
{
config.GeneratorSettings.OperationProcessors.TryGet<ApiVersionProcessor>()
.IncludedVersions = new[] { "2.0" };
config.SwaggerRoute = "swagger/v2/swagger.json";
config.GeneratorSettings.Title = "My API Title v2";
config.GeneratorSettings.Description = "My API functionalities.";
});
app.UseSwaggerUi3(config =>
{
config.SwaggerRoutes.Add(new SwaggerUi3Route("v1.0", "/swagger/v1/swagger.json"));
config.SwaggerRoutes.Add(new SwaggerUi3Route("v2.0", "/swagger/v2/swagger.json"));
});
}app.UseSwaggerUi(typeof(Startup).Assembly, settings =>
{
settings.OAuth2Client = new OAuth2ClientSettings
{
ClientId = "foo",
ClientSecret = "bar",
AppName = "my_app",
Realm = "my_realm",
AdditionalQueryStringParameters =
{
{ "foo", "bar" }
}
};
settings.GeneratorSettings.DocumentProcessors.Add(
new SecurityDefinitionAppender("oauth2", new SwaggerSecurityScheme
{
Type = SwaggerSecuritySchemeType.OAuth2,
Description = "Foo",
Flow = SwaggerOAuth2Flow.Implicit,
AuthorizationUrl = "https://localhost:44333/core/connect/authorize",
TokenUrl = "https://localhost:44333/core/connect/token",
Scopes = new Dictionary<string,string>
{
{ "read", "Read access to protected resources" },
{ "write", "Write access to protected resources" }
}
})
);
settings.GeneratorSettings.OperationProcessors.Add(
new OperationSecurityScopeProcessor("oauth2"));
});- OAuth2Client: Defines the settings for the OAuth2 client (i.e. the Swagger UI frontend)
- DocumentSecurityDefinitionProcessor: Adds a security definition to the Swagger specification
- OperationSecurityScopeAppender: Scans the AuthorizeAttribute attributes on controllers and action methods and adds the given roles as security scopes to the Swagger specification
app.UseSwaggerUi(typeof(Startup).Assembly, settings =>
{
settings.GeneratorSettings.DocumentProcessors.Add(
new SecurityDefinitionAppender("apikey", new SwaggerSecurityScheme
{
Type = SwaggerSecuritySchemeType.ApiKey,
Name = "api_key",
In = SwaggerSecurityApiKeyLocation.Header
})
);
});To let the user enter the client ID and client secret, use the following code for now:
new OAuth2ClientSettings
{
ClientId = "\" + prompt('Please enter ClientId: ') + \"",
ClientSecret = "\" + prompt('Please enter ClientSecret: ') + \""
}