feat(ls): provide OpenAPI 3.0.x Security Scheme lint rules

char0n · char0n · commit 8582d4c2f447 · 2022-10-17T14:11:48.000+02:00
Refs #2033
diff --git a/packages/apidom-ls/src/config/asyncapi/security-scheme/lint/in--equals-api-key.ts b/packages/apidom-ls/src/config/asyncapi/security-scheme/lint/in--equals-api-key.ts
@@ -4,7 +4,7 @@ import { LinterMeta } from '../../../../apidom-language-types';
 const inEqualsApiKeyLint: LinterMeta = {
   code: ApilintCodes.ASYNCAPI2_SECURITY_SCHEME_FIELD_IN_EQUALS_API_KEY,
   source: 'apilint',
-  message: 'type must be one of allowed values',
+  message: 'in must be one of allowed values',
   severity: 1,
   linterFunction: 'apilintValueOrArray',
   linterParams: [['user', 'password']],
diff --git a/packages/apidom-ls/src/config/codes.ts b/packages/apidom-ls/src/config/codes.ts
@@ -764,6 +764,21 @@ enum ApilintCodes {
   OPENAPI3_0_XML_FIELD_ATTRIBUTE_TYPE = 5230400,
   OPENAPI3_0_XML_FIELD_WRAPPED_TYPE = 5230500,
 
+  OPENAPI3_SECURITY_SCHEME = 5240000,
+  OPENAPI3_SECURITY_SCHEME_FIELD_TYPE_EQUALS = 5240100,
+  OPENAPI3_SECURITY_SCHEME_FIELD_DESCRIPTION_TYPE = 5240200,
+  OPENAPI3_SECURITY_SCHEME_FIELD_NAME_TYPE = 5240300,
+  OPENAPI3_SECURITY_SCHEME_FIELD_NAME_REQUIRED,
+  OPENAPI3_SECURITY_SCHEME_FIELD_IN_EQUALS = 5240400,
+  OPENAPI3_SECURITY_SCHEME_FIELD_IN_REQUIRED,
+  OPENAPI3_SECURITY_SCHEME_FIELD_SCHEME_TYPE = 5240500,
+  OPENAPI3_SECURITY_SCHEME_FIELD_SCHEME_REQUIRED,
+  OPENAPI3_SECURITY_SCHEME_FIELD_BEARER_FORMAT_TYPE = 5240600,
+  OPENAPI3_SECURITY_SCHEME_FIELD_FLOWS_TYPE = 5240700,
+  OPENAPI3_SECURITY_SCHEME_FIELD_FLOWS_REQUIRED,
+  OPENAPI3_SECURITY_SCHEME_FIELD_OPEN_ID_CONNECT_URL_FORMAT_URI = 5240800,
+  OPENAPI3_SECURITY_SCHEME_FIELD_OPEN_ID_CONNECT_URL_REQUIRED,
+
   OPENAPI3_1 = 7000000,
 
   OPENAPI3_1_OPENAPI_VALUE_PATTERN_3_1_0 = 7000100,
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/allowed-fields.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/allowed-fields.ts
@@ -0,0 +1,17 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const allowedFieldsLint: LinterMeta = {
+  code: ApilintCodes.NOT_ALLOWED_FIELDS,
+  source: 'apilint',
+  message: 'Object includes not allowed fields',
+  severity: 1,
+  linterFunction: 'allowedFields',
+  linterParams: [
+    ['type', 'description', 'name', 'in', 'scheme', 'bearerFormat', 'flows', 'openIdConnectUrl'],
+    'x-',
+  ],
+  marker: 'key',
+};
+
+export default allowedFieldsLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/bearer-format--type.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/bearer-format--type.ts
@@ -0,0 +1,16 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const bearerFormatTypeLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_BEARER_FORMAT_TYPE,
+  source: 'apilint',
+  message: 'bearerFormat must be a string',
+  severity: 1,
+  linterFunction: 'apilintType',
+  linterParams: ['string'],
+  marker: 'value',
+  target: 'bearerFormat',
+  data: {},
+};
+
+export default bearerFormatTypeLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/description--type.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/description--type.ts
@@ -0,0 +1,16 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const descriptionTypeLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_DESCRIPTION_TYPE,
+  source: 'apilint',
+  message: 'description must be a string',
+  severity: 1,
+  linterFunction: 'apilintType',
+  linterParams: ['string'],
+  marker: 'value',
+  target: 'description',
+  data: {},
+};
+
+export default descriptionTypeLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/flows--required.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/flows--required.ts
@@ -0,0 +1,31 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const flowsRequiredLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_FLOWS_REQUIRED,
+  source: 'apilint',
+  message: "should always have a 'flows'",
+  severity: 1,
+  linterFunction: 'hasRequiredField',
+  linterParams: ['flows'],
+  marker: 'key',
+  data: {
+    quickFix: [
+      {
+        message: "add 'flows' field",
+        action: 'addChild',
+        snippetYaml: 'flows: \n  ',
+        snippetJson: '"flows": {},\n    ',
+      },
+    ],
+  },
+  conditions: [
+    {
+      targets: [{ path: 'type' }],
+      function: 'apilintContainsValue',
+      params: ['oauth2'],
+    },
+  ],
+};
+
+export default flowsRequiredLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/flows--type.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/flows--type.ts
@@ -0,0 +1,16 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const flowsTypeLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_FLOWS_TYPE,
+  source: 'apilint',
+  message: 'flows must be an object',
+  severity: 1,
+  linterFunction: 'apilintElementOrClass',
+  linterParams: ['flows'],
+  marker: 'value',
+  target: 'flows',
+  data: {},
+};
+
+export default flowsTypeLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/in--equals.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/in--equals.ts
@@ -0,0 +1,16 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const inEqualsLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_IN_EQUALS,
+  source: 'apilint',
+  message: "'in' must be one of allowed values",
+  severity: 1,
+  linterFunction: 'apilintValueOrArray',
+  linterParams: [['query', 'header', 'cookie']],
+  marker: 'value',
+  target: 'in',
+  data: {},
+};
+
+export default inEqualsLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/in--required.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/in--required.ts
@@ -0,0 +1,31 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const inRequiredLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_IN_REQUIRED,
+  source: 'apilint',
+  message: "should always have a 'in'",
+  severity: 1,
+  linterFunction: 'hasRequiredField',
+  linterParams: ['in'],
+  marker: 'key',
+  data: {
+    quickFix: [
+      {
+        message: "add 'in' field",
+        action: 'addChild',
+        snippetYaml: 'in: \n  ',
+        snippetJson: '"in": "",\n    ',
+      },
+    ],
+  },
+  conditions: [
+    {
+      targets: [{ path: 'type' }],
+      function: 'apilintContainsValue',
+      params: ['apiKey'],
+    },
+  ],
+};
+
+export default inRequiredLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/index.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/index.ts
@@ -0,0 +1,33 @@
+import allowedFieldsLint from './allowed-fields';
+import typeEquals3_0Lint from './type--equals-3-0';
+import descriptionTypeLint from './description--type';
+import nameTypeLint from './name--type';
+import nameRequiredLint from './name--required';
+import inEqualsLint from './in--equals';
+import inRequiredLint from './in--required';
+import schemeTypeLint from './scheme--type';
+import schemeRequiredLint from './scheme--required';
+import bearerFormatTypeLint from './bearer-format--type';
+import flowsTypeLint from './flows--type';
+import flowsRequiredLint from './flows--required';
+import openIdConnectUrlFormatURILint from './open-id-connect-url--format-uri';
+import openIdConnectUrlRequiredLint from './open-id-connect-url--required';
+
+const lints = [
+  typeEquals3_0Lint,
+  descriptionTypeLint,
+  nameTypeLint,
+  nameRequiredLint,
+  inEqualsLint,
+  inRequiredLint,
+  schemeTypeLint,
+  schemeRequiredLint,
+  bearerFormatTypeLint,
+  flowsTypeLint,
+  flowsRequiredLint,
+  openIdConnectUrlFormatURILint,
+  openIdConnectUrlRequiredLint,
+  allowedFieldsLint,
+];
+
+export default lints;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/name--required.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/name--required.ts
@@ -0,0 +1,31 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const nameRequiredLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_NAME_REQUIRED,
+  source: 'apilint',
+  message: "should always have a 'name'",
+  severity: 1,
+  linterFunction: 'hasRequiredField',
+  linterParams: ['name'],
+  marker: 'key',
+  data: {
+    quickFix: [
+      {
+        message: "add 'name' field",
+        action: 'addChild',
+        snippetYaml: 'name: \n  ',
+        snippetJson: '"name": "",\n    ',
+      },
+    ],
+  },
+  conditions: [
+    {
+      targets: [{ path: 'type' }],
+      function: 'apilintContainsValue',
+      params: ['apiKey'],
+    },
+  ],
+};
+
+export default nameRequiredLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/name--type.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/name--type.ts
@@ -0,0 +1,16 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const nameTypeLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_NAME_TYPE,
+  source: 'apilint',
+  message: 'name must be a string',
+  severity: 1,
+  linterFunction: 'apilintType',
+  linterParams: ['string'],
+  marker: 'value',
+  target: 'name',
+  data: {},
+};
+
+export default nameTypeLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/open-id-connect-url--format-uri.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/open-id-connect-url--format-uri.ts
@@ -0,0 +1,16 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const openIdConnectUrlFormatURILint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_OPEN_ID_CONNECT_URL_FORMAT_URI,
+  source: 'apilint',
+  message: 'openIdConnectUrl MUST be in the format of an absolute URL.',
+  severity: 1,
+  linterFunction: 'apilintValidURI',
+  linterParams: [true],
+  marker: 'value',
+  target: 'openIdConnectUrl',
+  data: {},
+};
+
+export default openIdConnectUrlFormatURILint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/open-id-connect-url--required.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/open-id-connect-url--required.ts
@@ -0,0 +1,31 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const openIdConnectUrlRequiredLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_OPEN_ID_CONNECT_URL_REQUIRED,
+  source: 'apilint',
+  message: "should always have a 'openIdConnectUrl'",
+  severity: 1,
+  linterFunction: 'hasRequiredField',
+  linterParams: ['openIdConnectUrl'],
+  marker: 'key',
+  data: {
+    quickFix: [
+      {
+        message: "add 'openIdConnectUrl' field",
+        action: 'addChild',
+        snippetYaml: 'openIdConnectUrl: \n  ',
+        snippetJson: '"openIdConnectUrl": "",\n    ',
+      },
+    ],
+  },
+  conditions: [
+    {
+      targets: [{ path: 'type' }],
+      function: 'apilintContainsValue',
+      params: ['openIdConnect'],
+    },
+  ],
+};
+
+export default openIdConnectUrlRequiredLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/scheme--required.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/scheme--required.ts
@@ -0,0 +1,31 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const schemeRequiredLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_SCHEME_REQUIRED,
+  source: 'apilint',
+  message: "should always have a 'scheme'",
+  severity: 1,
+  linterFunction: 'hasRequiredField',
+  linterParams: ['scheme'],
+  marker: 'key',
+  data: {
+    quickFix: [
+      {
+        message: "add 'scheme' field",
+        action: 'addChild',
+        snippetYaml: 'scheme: \n  ',
+        snippetJson: '"scheme": {},\n    ',
+      },
+    ],
+  },
+  conditions: [
+    {
+      targets: [{ path: 'type' }],
+      function: 'apilintContainsValue',
+      params: ['http'],
+    },
+  ],
+};
+
+export default schemeRequiredLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/scheme--type.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/scheme--type.ts
@@ -0,0 +1,16 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+const schemeTypeLint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_SCHEME_TYPE,
+  source: 'apilint',
+  message: 'scheme must be a string',
+  severity: 1,
+  linterFunction: 'apilintType',
+  linterParams: ['string'],
+  marker: 'value',
+  target: 'scheme',
+  data: {},
+};
+
+export default schemeTypeLint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/lint/type--equals-3-0.ts b/packages/apidom-ls/src/config/openapi/security-scheme/lint/type--equals-3-0.ts
@@ -0,0 +1,16 @@
+import ApilintCodes from '../../../codes';
+import { LinterMeta } from '../../../../apidom-language-types';
+
+// eslint-disable-next-line @typescript-eslint/naming-convention
+const typeEquals3_0Lint: LinterMeta = {
+  code: ApilintCodes.OPENAPI3_SECURITY_SCHEME_FIELD_TYPE_EQUALS,
+  source: 'apilint',
+  message: 'type must be one of allowed values',
+  severity: 1,
+  linterFunction: 'apilintValueOrArray',
+  linterParams: [['apiKey', 'http', 'oauth2', 'openIdConnect']],
+  marker: 'value',
+  target: 'type',
+};
+
+export default typeEquals3_0Lint;
diff --git a/packages/apidom-ls/src/config/openapi/security-scheme/meta.ts b/packages/apidom-ls/src/config/openapi/security-scheme/meta.ts
@@ -1,8 +1,10 @@
+import lint from './lint';
 import completion from './completion';
 import documentation from './documentation';
 import { FormatMeta } from '../../../apidom-language-types';
 
 const meta: FormatMeta = {
+  lint,
   completion,
   documentation,
 };
