Skip to content

Security schemes: info-only schemes (basic, oauth2, openIdConnect, mutualTLS, cookie apiKey) #37

Description

@t1

Sub-issue of #12. Depends on #34 (infrastructure).

Scope: Documentation-only rows for browser-handled security schemes.

  • http basic: "Basic authentication (handled by browser)"
  • oauth2: flow type, authorization URL, token URL, scopes
  • openIdConnect: discovery URL
  • mutualTLS: "Mutual TLS (client certificate required)"
  • cookie apiKey: cookie name, "handled by browser"

All use the auth badge but show descriptive text instead of an input field. No fetch integration needed.

Spec: docs/superpowers/specs/2026-04-10-issue-12-security-schemes-design.md

Metadata

Metadata

Assignees

No one assigned

    Labels

    approvedReviewed by maintainer — agents may read and act

    Projects

    No projects

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions