Sub-issue of #12. Depends on #34 (infrastructure).
Scope: Documentation-only rows for browser-handled security schemes.
- http basic: "Basic authentication (handled by browser)"
- oauth2: flow type, authorization URL, token URL, scopes
- openIdConnect: discovery URL
- mutualTLS: "Mutual TLS (client certificate required)"
- cookie apiKey: cookie name, "handled by browser"
All use the auth badge but show descriptive text instead of an input field. No fetch integration needed.
Spec: docs/superpowers/specs/2026-04-10-issue-12-security-schemes-design.md
Sub-issue of #12. Depends on #34 (infrastructure).
Scope: Documentation-only rows for browser-handled security schemes.
All use the auth badge but show descriptive text instead of an input field. No fetch integration needed.
Spec:
docs/superpowers/specs/2026-04-10-issue-12-security-schemes-design.md