IBM Security Verify

 View Only

Swagger validation library

  • 1.  Swagger validation library

    Posted Mon January 03, 2022 08:15 AM
    Hi,

    We're currently setting up the /register endpoint for an OIDC dynamic client registration flow on ISVA 10.

    For this use case, we're trying to make it some sort of api-like flavor by supporting HTTP verbs and many other parameters on top of the ones from rfc7591 (ietf.org). As we are only exposing the 'service', we want to make our client lives easier by giving them a swagger file with everything they need to reach this /register endpoint.

    We would like to make use of any existing javascript library that deals with swagger validation so we could validate request payloads from our clients using the standard swagger file. And so far, none of my researches has led to a conclusion on this...

    The question here is, is that something that's already been done by anyone? Is there any recommended way IBM would advise us to follow?
    This is to be implemented in pre/post token mapping rules of the OIDC api definition that supports the dynamic client registration.

    From experience, the road to integration with security components is not an easy one, hence our will to make our customers lives easier.

    Thanks

    And best wishes for 2022 !

    Sébastien De Kinder

    ------------------------------
    Sébastien De Kinder
    ------------------------------