npm - serverless-openapi-documenter - Versions diffs - 0.0.67 → 0.0.68 - Mend

serverless-openapi-documenter 0.0.67 → 0.0.68

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md +195 -192
package/package.json +1 -1
package/src/definitionGenerator.js +3 -2

package/README.md CHANGED Viewed

@@ -12,9 +12,7 @@
   </a>
 </p>
-This will generate an OpenAPI V3 (up to v3.0.3) file for you from your serverless file.  It can optionally generate a [Postman Collection V2](https://github.com/postmanlabs/openapi-to-postman) from the OpenAPI file for you too.  This currently works for `http` and `httpApi` configurations.
+This will generate an OpenAPI V3 (up to v3.0.3) file for you from your serverless file. It can optionally generate a [Postman Collection V2](https://github.com/postmanlabs/openapi-to-postman) from the OpenAPI file for you too. This currently works for `http` and `httpApi` configurations.
 Originally based off of: https://github.com/temando/serverless-openapi-documentation
@@ -25,6 +23,7 @@ This plugin works for Serverless 2.x and up and only supports node.js 14 and up.
 To add this plugin to your package.json:
 **Using npm:**
 ```bash
 npm install --save-dev serverless-openapi-documenter
 ```
@@ -55,79 +54,83 @@ Options:
 ### README Highlighted Reading
 #### Security Details
-* [Security](#securityschemes)
-* [Security on All Operations](#security-on-each-operation)
-* [Security Per Operation](#security)
+- [Security](#securityschemes)
+- [Security on All Operations](#security-on-each-operation)
+- [Security Per Operation](#security)
 #### Model Details
-* [Models](#models)
-* [Notes on Schemas](#notes-on-schemas)
-* [Request Schema Validators](#serverless-request-schema-validators)
+- [Models](#models)
+- [Notes on Schemas](#notes-on-schemas)
+- [Request Schema Validators](#serverless-request-schema-validators)
 #### Response Headers
-* [CORS](#cors)
-* [OWASP Secure Headers](#owasp)
-### OpenAPI Mapping
+- [CORS](#cors)
+- [OWASP Secure Headers](#owasp)
-| OpenAPI field            | Serverless field                                                                   |
-|--------------------------|------------------------------------------------------------------------------------|
-| info.title               | custom.documentation.title  OR  service                                            |
-| info.description         | custom.documentation.description  OR  blank string                                 |
-| info.version             | custom.documentation.version  OR  random v4 uuid if not provided                   |
-| info.termsOfService      | custom.documentation.termsOfService                                                |
-| info.contact             | custom.documentation.contact                                                       |
-| info.contact.name         | custom.documentation.contact.name OR  blank string                                |
-| info.contact.url          | custom.documentation.contact.url  if provided                                     |
-| info.license             | custom.documentation.license                                                       |
-| info.license.name         | custom.documentation.license.name OR  blank string                                |
-| info.license.url          | custom.documentation.license.url  if provided                                     |
-| externalDocs.description | custom.documentation.externalDocumentation.description                             |
-| externalDocs.url         | custom.documentation.externalDocumentation.url                                     |
-| security                        | custom.documentation.security                                               |
-| servers[].description      | custom.documentation.servers.description                                         |
-| servers[].url              | custom.documentation.servers.url                                                 |
-| servers[].variables              | custom.documentation.servers.variables                                     |
-| tags[].name                     | custom.documentation.tags.name                                              |
-| tags[].description              | custom.documentation.tags.description                                       |
-| tags[].externalDocs.url         | custom.documentation.tags.externalDocumentation.url                         |
-| tags[].externalDocs.description | custom.documentation.tags.externalDocumentation.description                 |
-| path[path]         | functions.functions.events.[http OR httpApi].path                                        |
-| path[path].summary         | functions.functions.summary                                                      |
-| path[path].description         | functions.functions.description                                              |
-| path[path].servers[].description      | functions.functions.servers.description                               |
-| path[path].servers[].url              | functions.functions.servers.url                                       |
-| path[path].[operation]         | functions.functions.[http OR httpApi].method                                 |
-| path[path].[operation].summary             | functions.functions.[http OR httpApi].documentation.summary      |
-| path[path].[operation].description         | functions.functions.[http OR httpApi].documentation.description  |
-| path[path].[operation].operationId         | functions.functions.[http OR httpApi].documentation.operationId  OR  functionName |
-| path[path].[operation].deprecated          | functions.functions.[http OR httpApi].documentation.deprecated   |
-| path[path].[operation].externalDocs.description | functions.functions.[http OR httpApi].documentation.externalDocumentation.description  |
-| path[path].[operation].externalDocs.url         | functions.functions.[http OR httpApi].documentation.externalDocumentation.url  |
-| path[path].[operation].servers[].description      | functions.functions.[http OR httpApi].documentation.servers.description      |
-| path[path].[operation].servers[].url              | functions.functions.[http OR httpApi].documentation.servers.url              |
-| path[path].[operation].security              | functions.functions.[http OR httpApi].documentation.security              |
-| path[path].[operation].deprecated         | functions.functions.[http OR httpApi].documentation.deprecated                       |
-| path[path].[operation].parameters         | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params |
-| path[path].[operation].parameters.name         | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.name |
-| path[path].[operation].parameters.in         | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params |
-| path[path].[operation].parameters.description  | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.description |
-| path[path].[operation].parameters.required     | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.required |
-| path[path].[operation].parameters.deprecated   | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.deprecated |
-| path[path].[operation].parameters.allowEmptyValue  | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.allowEmptyValue    |
-| path[path].[operation].parameters.style | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.style |
-| path[path].[operation].parameters.explode      | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.explode                    |
-| path[path].[operation].parameters.allowReserved         | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.allowReserved        |
-| path[path].[operation].parameters.schema | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.schema |
-| path[path].[operation].parameters.example | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.example |
-| path[path].[operation].parameters.examples | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.examples |
-| path[path].[operation].requestBody         | functions.functions.[http OR httpApi].documentation.requestBody                  |
-| path[path].[operation].requestBody.description         | functions.functions.[http OR httpApi].documentation.requestBody.description                  |
-| path[path].[operation].requestBody.required         | functions.functions.[http OR httpApi].documentation.requestBody.required                  |
-| path[path].[operation].requestBody.content         | functions.functions.[http OR httpApi].documentation.requestModels[contentType].name Links to custom.documentation.models.name                 |
-| path[path].[operation].responses         | functions.functions.[http OR httpApi].documentation.methodResponses                  |
-| path[path].[operation].requestBody.[statusCode]  | functions.functions.[http OR httpApi].documentation.methodResponses[statusCode] |
-| path[path].[operation].requestBody.[statusCode].description | functions.functions.[http OR httpApi].documentation.methodResponses[statusCode].responseBody.description |
-| path[path].[operation].requestBody.[statusCode].content | functions.functions.[http OR httpApi].documentation.methodResponses[statusCode].responseModels[contentType] Links to custom.documentation.models.name |
+### OpenAPI Mapping
+| OpenAPI field                                             | Serverless field                                                                                                                                      |
+| --------------------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------- |
+| info.title                                                | custom.documentation.title OR service                                                                                                                 |
+| info.description                                          | custom.documentation.description OR blank string                                                                                                      |
+| info.version                                              | custom.documentation.version OR random v4 uuid if not provided                                                                                        |
+| info.termsOfService                                       | custom.documentation.termsOfService                                                                                                                   |
+| info.contact                                              | custom.documentation.contact                                                                                                                          |
+| info.contact.name                                         | custom.documentation.contact.name OR blank string                                                                                                     |
+| info.contact.url                                          | custom.documentation.contact.url if provided                                                                                                          |
+| info.license                                              | custom.documentation.license                                                                                                                          |
+| info.license.name                                         | custom.documentation.license.name OR blank string                                                                                                     |
+| info.license.url                                          | custom.documentation.license.url if provided                                                                                                          |
+| externalDocs.description                                  | custom.documentation.externalDocumentation.description                                                                                                |
+| externalDocs.url                                          | custom.documentation.externalDocumentation.url                                                                                                        |
+| security                                                  | custom.documentation.security                                                                                                                         |
+| servers[].description                                     | custom.documentation.servers.description                                                                                                              |
+| servers[].url                                             | custom.documentation.servers.url                                                                                                                      |
+| servers[].variables                                       | custom.documentation.servers.variables                                                                                                                |
+| tags[].name                                               | custom.documentation.tags.name                                                                                                                        |
+| tags[].description                                        | custom.documentation.tags.description                                                                                                                 |
+| tags[].externalDocs.url                                   | custom.documentation.tags.externalDocumentation.url                                                                                                   |
+| tags[].externalDocs.description                           | custom.documentation.tags.externalDocumentation.description                                                                                           |
+| path[path]                                                | functions.functions.events.[http OR httpApi].path                                                                                                     |
+| path[path].summary                                        | functions.functions.summary                                                                                                                           |
+| path[path].description                                    | functions.functions.description                                                                                                                       |
+| path[path].servers[].description                          | functions.functions.servers.description                                                                                                               |
+| path[path].servers[].url                                  | functions.functions.servers.url                                                                                                                       |
+| path[path].[operation]                                    | functions.functions.[http OR httpApi].method                                                                                                          |
+| path[path].[operation].summary                            | functions.functions.[http OR httpApi].documentation.summary                                                                                           |
+| path[path].[operation].description                        | functions.functions.[http OR httpApi].documentation.description                                                                                       |
+| path[path].[operation].operationId                        | functions.functions.[http OR httpApi].documentation.operationId OR functionName                                                                       |
+| path[path].[operation].deprecated                         | functions.functions.[http OR httpApi].documentation.deprecated                                                                                        |
+| path[path].[operation].externalDocs.description           | functions.functions.[http OR httpApi].documentation.externalDocumentation.description                                                                 |
+| path[path].[operation].externalDocs.url                   | functions.functions.[http OR httpApi].documentation.externalDocumentation.url                                                                         |
+| path[path].[operation].servers[].description              | functions.functions.[http OR httpApi].documentation.servers.description                                                                               |
+| path[path].[operation].servers[].url                      | functions.functions.[http OR httpApi].documentation.servers.url                                                                                       |
+| path[path].[operation].security                           | functions.functions.[http OR httpApi].documentation.security                                                                                          |
+| path[path].[operation].deprecated                         | functions.functions.[http OR httpApi].documentation.deprecated                                                                                        |
+| path[path].[operation].parameters                         | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params                                                                  |
+| path[path].[operation].parameters.name                    | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.name                                                             |
+| path[path].[operation].parameters.in                      | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params                                                                  |
+| path[path].[operation].parameters.description             | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.description                                                      |
+| path[path].[operation].parameters.required                | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.required                                                         |
+| path[path].[operation].parameters.deprecated              | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.deprecated                                                       |
+| path[path].[operation].parameters.allowEmptyValue         | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.allowEmptyValue                                                  |
+| path[path].[operation].parameters.style                   | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.style                                                            |
+| path[path].[operation].parameters.explode                 | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.explode                                                          |
+| path[path].[operation].parameters.allowReserved           | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.allowReserved                                                    |
+| path[path].[operation].parameters.schema                  | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.schema                                                           |
+| path[path].[operation].parameters.example                 | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.example                                                          |
+| path[path].[operation].parameters.examples                | functions.functions.[http OR httpApi].documentation.[path/query/cookie/header]Params.examples                                                         |
+| path[path].[operation].requestBody                        | functions.functions.[http OR httpApi].documentation.requestBody                                                                                       |
+| path[path].[operation].requestBody.description            | functions.functions.[http OR httpApi].documentation.requestBody.description                                                                           |
+| path[path].[operation].requestBody.required               | functions.functions.[http OR httpApi].documentation.requestBody.required                                                                              |
+| path[path].[operation].requestBody.content                | functions.functions.[http OR httpApi].documentation.requestModels[contentType].name Links to custom.documentation.models.name                         |
+| path[path].[operation].responses                          | functions.functions.[http OR httpApi].documentation.methodResponses                                                                                   |
+| path[path].[operation].responses.[statusCode]             | functions.functions.[http OR httpApi].documentation.methodResponses[statusCode]                                                                       |
+| path[path].[operation].responses.[statusCode].description | functions.functions.[http OR httpApi].documentation.methodResponses[statusCode].responseBody.description                                              |
+| path[path].[operation].responses.[statusCode].content     | functions.functions.[http OR httpApi].documentation.methodResponses[statusCode].responseModels[contentType] Links to custom.documentation.models.name |
 ### Configuration
@@ -138,9 +141,9 @@ The `custom` section of your `serverless.yml` can be configured as below:
 ```yml
 custom:
   documentation:
-    version: '1'
-    title: 'My API'
-    description: 'This is my API'
+    version: "1"
+    title: "My API"
+    description: "This is my API"
     termsOfService: https://google.com
     externalDocumentation:
       url: https://google.com
@@ -164,7 +167,7 @@ custom:
     models: {}
 ```
-Mostly everything here is optional.  A version from a UUID will be generated for you if you don't specify one, title will be the name of your service if you don't specify one.  You will need to specify the `documentation` top object.
+Mostly everything here is optional. A version from a UUID will be generated for you if you don't specify one, title will be the name of your service if you don't specify one. You will need to specify the `documentation` top object.
 #### termsOfService
@@ -272,15 +275,15 @@ This will apply the requirement of each operation requiring your `my_api_key` se
 #### Models
-There are two ways to write the Models.  Models contain additional information that you can use to define schemas for endpoints.  You must define the *content type* for each schema that you provide in the models.
+There are two ways to write the Models. Models contain additional information that you can use to define schemas for endpoints. You must define the _content type_ for each schema that you provide in the models.
 The first way of writing the model is:
-*required* directives for the models section are as follow:
+_required_ directives for the models section are as follow:
-* `name`: the name of the schema
-* `description`: a description of the schema
-* `contentType`: the content type of the described request/response (ie. `application/json` or `application/xml`).
-* `schema`: The JSON Schema ([website](http://json-schema.org/)) that describes the model. You can either use inline `YAML` to define these or use either an external file schema that serverless will resolve (as below), or a reference to an externally hosted schema that will be attempted to be resolved.
+- `name`: the name of the schema
+- `description`: a description of the schema
+- `contentType`: the content type of the described request/response (ie. `application/json` or `application/xml`).
+- `schema`: The JSON Schema ([website](http://json-schema.org/)) that describes the model. You can either use inline `YAML` to define these or use either an external file schema that serverless will resolve (as below), or a reference to an externally hosted schema that will be attempted to be resolved.
 ```yml
 custom:
@@ -310,7 +313,7 @@ custom:
           - name: someObjectInlineExample
             summary: an example of a request
             description: a longer string than the summary
-            value: {SomeObject: {SomeAttribute: 'attribute'}}
+            value: { SomeObject: { SomeAttribute: "attribute" } }
           - name: someObjectExternalExample
             summary: an example of a request external
             description: a longer string than the summary
@@ -319,9 +322,9 @@ custom:
 The Second way of writing the models:
-* `name`: the name of the schema
-* `description`: a description of the schema
-* `content`: an Object made up of the contentType and the schema, as shown below
+- `name`: the name of the schema
+- `description`: a description of the schema
+- `content`: an Object made up of the contentType and the schema, as shown below
 ```yml
 custom:
@@ -354,7 +357,7 @@ custom:
               - name: someObjectInlineExample
                 summary: an example of a request
                 description: a longer string than the summary
-                value: {SomeObject: {SomeAttribute: 'attribute'}}
+                value: { SomeObject: { SomeAttribute: "attribute" } }
               - name: someObjectExternalExample
                 summary: an example of a request external
                 description: a longer string than the summary
@@ -391,11 +394,11 @@ custom:
               items: *ErrorItem
 ```
-`&ErrorItem` in the above example creates a node anchor (&ErrorItem) to the `ErrorResponse` schema which then can be used in the `PutDocumentResponse` schema via the reference (*ErrorItem).  The node anchor needs to be declared first before it can be used elsewhere via the reference, swapping the above example around would result in an error.
+`&ErrorItem` in the above example creates a node anchor (&ErrorItem) to the `ErrorResponse` schema which then can be used in the `PutDocumentResponse` schema via the reference (\*ErrorItem). The node anchor needs to be declared first before it can be used elsewhere via the reference, swapping the above example around would result in an error.
 ##### ModelsList - Backwards compatibility
-It was brought to my attention that an older plugin version allowed the use of `modelsList`.  As of 0.0.60, you can continue to use `modelsList` as well as using `models`, however `modelsList` now has to be nested within the `documentation` section.  You can write `modelsList` the same way as any of the two styles for [Models](#Models).
+It was brought to my attention that an older plugin version allowed the use of `modelsList`. As of 0.0.60, you can continue to use `modelsList` as well as using `models`, however `modelsList` now has to be nested within the `documentation` section. You can write `modelsList` the same way as any of the two styles for [Models](#Models).
 ```
 custom:
@@ -412,7 +415,7 @@ custom:
 ##### Serverless Request Schema Validators
-As of 0.0.64, you can now make use of [Request Schema Validators](https://www.serverless.com/framework/docs/providers/aws/events/apigateway#request-schema-validators).  This allows you to define Request models via the `apiGateway` settings:
+As of 0.0.64, you can now make use of [Request Schema Validators](https://www.serverless.com/framework/docs/providers/aws/events/apigateway#request-schema-validators). This allows you to define Request models via the `apiGateway` settings:
 ```yml
 provider:
@@ -439,11 +442,10 @@ functions:
           request:
             schemas:
               application/json: post-create-model
-          documentation:
-            ...
+          documentation: ...
 ```
-The generator will match to the model within the `apiGateway` settings model list.  If you are using the `apiGateway` to define models, please do not re-use any names that you might define in the [`models`](#models) list.
+The generator will match to the model within the `apiGateway` settings model list. If you are using the `apiGateway` to define models, please do not re-use any names that you might define in the [`models`](#models) list.
 You can also skip writing a `requestBody` and `requestModels` if you have defined a `request` property in your event.
@@ -462,8 +464,7 @@ functions:
               application/json:
                 schema: ${file(create_request.json)}
                 name: PostCreateModel
-                description: 'Validation model for Creating Posts'
+                description: "Validation model for Creating Posts"
 ```
 or
@@ -487,26 +488,27 @@ To define the documentation for a given function event, you need to create a `do
 The `documentation` section of the event configuration can contain the following attributes:
-* `summary`: a short description of the method
-* `description`: a detailed description of the method
-* `tags`: an array of tags for this event
-* `deprecated`: boolean indicator that indicates clients should migrate away from this function
-* `requestBody`: contains description of the request
-    * `description`: a description of the request body
-* `requestModels`: a list of models to describe the request bodies (see [requestModels](#requestmodels) below)
-* `queryParams`: a list of query parameters (see [queryParams](#queryparams) below)
-* `pathParams`: a list of path parameters (see [pathParams](#pathparams) below)
-* `cookieParams`: a list of cookie parameters (see [cookieParams](#cookieparams) below)
-* `headerParams`: a list of headers (see [headerParams](#headerparams---request-headers) below)
-* `security`: The security requirement to apply (see [security](#security) below)
-* `methodResponses`: an array of response models and applicable status codes
-  * `statusCode`: applicable http status code (ie. 200/404/500 etc.)
-  * `responseBody`: contains description of the response
-    * `description`: a description of the body response
-  * `responseHeaders`: a list of response headers (see [responseHeaders](#responseheaders) below)
-  * `responseModels`: a list of models to describe the request bodies (see [responseModels](#responsemodels) below) for each `Content-Type`
-If you don't want a `http` or `httpApi` event to be documented, you can leave off the `documentation` object.  The configuration schema will only check that you have specified a `methodResponses` on the `documentation` event, previously the plugin would cause serverless to warn or error (depending on your `configValidationMode`) if you had not supplied a `documentation` on an event.
+- `summary`: A short description of the method
+- `description`: A detailed description of the method
+- `tags`: An array of tags for this event
+- `deprecated`: Boolean indicator that indicates clients should migrate away from this function
+- `requestBody`: Contains description of the request
+  - `description`: A description of the request body
+  - `required`: Whether the request body is required, defaults to false
+- `requestModels`: A list of models to describe the request bodies (see [requestModels](#requestmodels) below)
+- `queryParams`: A list of query parameters (see [queryParams](#queryparams) below)
+- `pathParams`: A list of path parameters (see [pathParams](#pathparams) below)
+- `cookieParams`: A list of cookie parameters (see [cookieParams](#cookieparams) below)
+- `headerParams`: A list of headers (see [headerParams](#headerparams---request-headers) below)
+- `security`: The security requirement to apply (see [security](#security) below)
+- `methodResponses`: An array of response models and applicable status codes
+  - `statusCode`: Applicable http status code (ie. 200/404/500 etc.)
+  - `responseBody`: Contains description of the response
+    - `description`: A description of the body response
+  - `responseHeaders`: A list of response headers (see [responseHeaders](#responseheaders) below)
+  - `responseModels`: A list of models to describe the request bodies (see [responseModels](#responsemodels) below) for each `Content-Type`
+If you don't want a `http` or `httpApi` event to be documented, you can leave off the `documentation` object. The configuration schema will only check that you have specified a `methodResponses` on the `documentation` event, previously the plugin would cause serverless to warn or error (depending on your `configValidationMode`) if you had not supplied a `documentation` on an event.
 ```yml
 functions:
@@ -576,10 +578,10 @@ functions:
 Query parameters can be described as follow:
-* `name`: the name of the query variable
-* `description`: a description of the query variable
-* `required`: whether the query parameter is mandatory (boolean)
-* `schema`: JSON schema (inline, file or externally hosted)
+- `name`: the name of the query variable
+- `description`: a description of the query variable
+- `required`: whether the query parameter is mandatory (boolean)
+- `schema`: JSON schema (inline, file or externally hosted)
 ```yml
 queryParams:
@@ -594,9 +596,9 @@ queryParams:
 Path parameters can be described as follow:
-* `name`: the name of the path parameter
-* `description`: a description of the path parameter
-* `schema`: JSON schema (inline, file or externally hosted)
+- `name`: the name of the path parameter
+- `description`: a description of the path parameter
+- `schema`: JSON schema (inline, file or externally hosted)
 ```yml
 pathParams:
@@ -610,10 +612,10 @@ pathParams:
 Cookie parameters can be described as follow:
-* `name`: the name of the cookie parameter
-* `description`: a description of the cookie parameter
-* `required`: whether the cookie parameter is mandatory (boolean)
-* `schema`: JSON schema (inline, file or externally hosted)
+- `name`: the name of the cookie parameter
+- `description`: a description of the cookie parameter
+- `required`: whether the cookie parameter is mandatory (boolean)
+- `schema`: JSON schema (inline, file or externally hosted)
 ```yml
 cookieParams:
@@ -628,10 +630,10 @@ cookieParams:
 Request Headers can be described as follow:
-* `name`: the name of the header
-* `description`: a description of the header
-* `required`: whether the header is mandatory (boolean)
-* `schema`: JSON schema (inline, file or externally hosted)
+- `name`: the name of the header
+- `description`: a description of the header
+- `required`: whether the header is mandatory (boolean)
+- `schema`: JSON schema (inline, file or externally hosted)
 ```yml
 headerParams:
@@ -644,7 +646,7 @@ headerParams:
 #### `security`
-The `security` property allows you to specify the [Security Scheme](#securityschemes) to apply to the HTTP Request.  If you have applied an `security` ([see Security on each operation](#security-on-each-operation)) then you can either leave this field off, or to override it with a different scheme you can write it like:
+The `security` property allows you to specify the [Security Scheme](#securityschemes) to apply to the HTTP Request. If you have applied an `security` ([see Security on each operation](#security-on-each-operation)) then you can either leave this field off, or to override it with a different scheme you can write it like:
 ```yml
 custom:
@@ -672,8 +674,8 @@ functions:
           documentation:
             security:
               - petstore_auth:
-                - write:pets
-                - read:pets
+                  - write:pets
+                  - read:pets
 ```
 If you have specified an `security` at the document root, but this HTTP Request should not apply any security schemes, you should set security to be an array with an empty object:
@@ -712,7 +714,7 @@ functions:
           private: true
 ```
-It will automatically setup an apiKey security scheme of `x-api-key` attached to that method.  You don't need to add this to the [Security Scheme](#securityschemes) in the main documentation.  If you have already added a Security Scheme of an `apiKey` with a name of `x-api-key`, it will associate with that key.
+It will automatically setup an apiKey security scheme of `x-api-key` attached to that method. You don't need to add this to the [Security Scheme](#securityschemes) in the main documentation. If you have already added a Security Scheme of an `apiKey` with a name of `x-api-key`, it will associate with that key.
 ```yml
 custom:
@@ -732,8 +734,7 @@ functions:
           path: /
           method: get
           private: true
-          documentation:
-            ...
+          documentation: ...
 ```
 Will set the Security Scheme to `my_api_key` for that operation.
@@ -789,7 +790,7 @@ responseModels:
 ##### `responseHeaders`
-The `responseHeaders` property allows you to define the headers expected in a HTTP Response of the function event.  This should only contain a description and a schema, which must be a JSON schema (inline, file or externally hosted).
+The `responseHeaders` property allows you to define the headers expected in a HTTP Response of the function event. This should only contain a description and a schema, which must be a JSON schema (inline, file or externally hosted).
 ```yml
 responseHeaders:
@@ -801,15 +802,15 @@ responseHeaders:
 ###### CORS
-You can automatically generate CORS response headers by setting `cors` at the function level.  Serverless allows you to modify how CORS is setup, so you can have the default options with `cors: true`, or you can modify the settings as shown in the [serverless documentation for CORS](https://www.serverless.com/framework/docs/providers/aws/events/apigateway#enabling-cors).
+You can automatically generate CORS response headers by setting `cors` at the function level. Serverless allows you to modify how CORS is setup, so you can have the default options with `cors: true`, or you can modify the settings as shown in the [serverless documentation for CORS](https://www.serverless.com/framework/docs/providers/aws/events/apigateway#enabling-cors).
-The generator will interpret your settings for CORS and automatically add the response headers.  If for whatever reason you wish to override these, you can set them via the above `responseHeaders` setting and it'll apply your overrides.
+The generator will interpret your settings for CORS and automatically add the response headers. If for whatever reason you wish to override these, you can set them via the above `responseHeaders` setting and it'll apply your overrides.
 ##### OWASP
-You can make use of the [OWASP Secure Headers](https://owasp.org/www-project-secure-headers/#x-permitted-cross-domain-policies) to generate response headers.  These are a selection of response headers with default values that OWASP recommends returning with your response to help secure your application.
+You can make use of the [OWASP Secure Headers](https://owasp.org/www-project-secure-headers/#x-permitted-cross-domain-policies) to generate response headers. These are a selection of response headers with default values that OWASP recommends returning with your response to help secure your application.
-The OWASP Secure Headers Project contains a set of recommended headers to return with recommended values, when generating the documentation, the generator will attempt to get the latest version of this document and apply the latest recommendations.  If you do not allow outside connections, it will default to a version of recommendations from **2023-05-26 12:22:30 UTC**.
+The OWASP Secure Headers Project contains a set of recommended headers to return with recommended values, when generating the documentation, the generator will attempt to get the latest version of this document and apply the latest recommendations. If you do not allow outside connections, it will default to a version of recommendations from **2023-05-26 12:22:30 UTC**.
 Like CORS, if you have already set any of the OWASP Secure headers via `responseHeaders`, it will not overwrite them.
@@ -827,7 +828,7 @@ methodResponse:
     owasp: true
 ```
-This will use the full set of OWASP Secure Headers and their recommended values.  Some of these might not be appropriate for your application.
+This will use the full set of OWASP Secure Headers and their recommended values. Some of these might not be appropriate for your application.
 ###### Subset of OWASP Secure Headers
@@ -847,19 +848,19 @@ This will set only the `cacheControl` and `referrerPolicy` response header with
 The full list of OWASP Secure Headers you can set are:
-* cacheControl - Cache-Control,
-* clearSiteData - Clear-Site-Data,
-* contentSecurityPolicy - Content-Security-Policy,
-* crossOriginEmbedderPolicy - Cross-Origin-Embedder-Policy,
-* crossOriginOpenerPolicy - Cross-Origin-Opener-Policy,
-* crossOriginResourcePolicy - Cross-Origin-Resource-Policy,
-* permissionsPolicy - Permissions-Policy,
-* pragma - Pragma,
-* referrerPolicy - Referrer-Policy,
-* strictTransportSecurity - Strict-Transport-Security,
-* xContentTypeOptions - X-Content-Type-Options,
-* xFrameOptions - X-Frame-Options,
-* xPermittedCrossDomainPolicies - X-Permitted-Cross-Domain-Policies
+- cacheControl - Cache-Control,
+- clearSiteData - Clear-Site-Data,
+- contentSecurityPolicy - Content-Security-Policy,
+- crossOriginEmbedderPolicy - Cross-Origin-Embedder-Policy,
+- crossOriginOpenerPolicy - Cross-Origin-Opener-Policy,
+- crossOriginResourcePolicy - Cross-Origin-Resource-Policy,
+- permissionsPolicy - Permissions-Policy,
+- pragma - Pragma,
+- referrerPolicy - Referrer-Policy,
+- strictTransportSecurity - Strict-Transport-Security,
+- xContentTypeOptions - X-Content-Type-Options,
+- xFrameOptions - X-Frame-Options,
+- xPermittedCrossDomainPolicies - X-Permitted-Cross-Domain-Policies
 ###### Subset of OWASP Secure Headers with user defined values
@@ -885,7 +886,7 @@ Please view the example [serverless.yml](test/serverless-tests/serverless%202/se
 ## Notes on schemas
-Schemas can be either: inline, in file or externally hosted.  If they're inline or in file, the plugin will attempt to normalise the schema to [OpenAPI 3.0.X specification](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.0.0.md#schemaObject).
+Schemas can be either: inline, in file or externally hosted. If they're inline or in file, the plugin will attempt to normalise the schema to [OpenAPI 3.0.X specification](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.0.0.md#schemaObject).
 If they exist as an external reference, for instance:
@@ -893,68 +894,70 @@ If they exist as an external reference, for instance:
 schema: https://raw.githubusercontent.com/SchemaStore/schemastore/master/src/schemas/json/bettercodehub.json
 ```
-We use the plugin [JSON Schema $Ref Parser](https://apitools.dev/json-schema-ref-parser/) to attempt to parse and resolve the references.  There are limitations to this.  Consider the schema:
+We use the plugin [JSON Schema $Ref Parser](https://apitools.dev/json-schema-ref-parser/) to attempt to parse and resolve the references. There are limitations to this. Consider the schema:
 ```json
 {
-    "$schema": "https://json-schema.org/draft-04/schema",
-    "title": "Reusable Definitions",
-    "type": "object",
-    "id": "https://raw.githubusercontent.com/json-editor/json-editor/master/tests/fixtures/definitions.json",
-    "definitions": {
-        "address": {
-            "title": "Address",
-            "type": "object",
-            "properties": {
-                "street_address": { "type": "string" },
-                "city":           { "type": "string" },
-                "state":          { "type": "string" }
-            },
-            "required": ["street_address"]
-        },
-        "link" : {"$refs": "./properties.json#/properties/title"}
+  "$schema": "https://json-schema.org/draft-04/schema",
+  "title": "Reusable Definitions",
+  "type": "object",
+  "id": "https://raw.githubusercontent.com/json-editor/json-editor/master/tests/fixtures/definitions.json",
+  "definitions": {
+    "address": {
+      "title": "Address",
+      "type": "object",
+      "properties": {
+        "street_address": { "type": "string" },
+        "city": { "type": "string" },
+        "state": { "type": "string" }
+      },
+      "required": ["street_address"]
     },
-    "properties": {
-        "address" : {"$refs": "#/definitions/address"}
-    }
+    "link": { "$refs": "./properties.json#/properties/title" }
+  },
+  "properties": {
+    "address": { "$refs": "#/definitions/address" }
   }
+}
 ```
 Where the definition "link" refers to a schema held in a directory that the resolver does not know about, we will not be able to fully resolve the schema which will likely cause errors in validation of the openAPI 3.0.X specification.
 Because of the dependency we use to parse externally linked schemas, we can supply our own options to resolve schemas that are more difficult than a straight forward example.
-You can create your own options file: https://apitools.dev/json-schema-ref-parser/docs/options.html to pass into the dependency that contains it's own resolver to allow you to resolve references that might be in hard to reach places.  In your main project folder, you should have a folder called `options` with a file called `ref-parser.js` that looks like:
+You can create your own options file: https://apitools.dev/json-schema-ref-parser/docs/options.html to pass into the dependency that contains it's own resolver to allow you to resolve references that might be in hard to reach places. In your main project folder, you should have a folder called `options` with a file called `ref-parser.js` that looks like:
 ```js
-'use strict'
+"use strict";
 // options from: https://apitools.dev/json-schema-ref-parser/docs/options.html
 module.exports = {
-  continueOnError: true,            // Don't throw on the first error
+  continueOnError: true, // Don't throw on the first error
   parse: {
-    json: false,                    // Disable the JSON parser
+    json: false, // Disable the JSON parser
     yaml: {
-      allowEmpty: false             // Don't allow empty YAML files
+      allowEmpty: false, // Don't allow empty YAML files
     },
     text: {
-      canParse: [".txt", ".html"],  // Parse .txt and .html files as plain text (strings)
-      encoding: 'utf16'             // Use UTF-16 encoding
-    }
+      canParse: [".txt", ".html"], // Parse .txt and .html files as plain text (strings)
+      encoding: "utf16", // Use UTF-16 encoding
+    },
   },
   resolve: {
-    file: false,                    // Don't resolve local file references
+    file: false, // Don't resolve local file references
     http: {
-      timeout: 2000,                // 2 second timeout
-      withCredentials: true,        // Include auth credentials when resolving HTTP references
-    }
+      timeout: 2000, // 2 second timeout
+      withCredentials: true, // Include auth credentials when resolving HTTP references
+    },
   },
   dereference: {
-    circular: false,                // Don't allow circular $refs
-    excludedPathMatcher: (path) =>  // Skip dereferencing content under any 'example' key
-      path.includes("/example/")
-  }
-}
+    circular: false, // Don't allow circular $refs
+    excludedPathMatcher: (
+      path // Skip dereferencing content under any 'example' key
+    ) => path.includes("/example/"),
+  },
+};
 ```
 If you don't supply this file, it will use the default options.

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "serverless-openapi-documenter",
-  "version": "0.0.67",
+  "version": "0.0.68",
   "description": "Generate OpenAPI v3 documentation and Postman Collections from your Serverless Config",
   "main": "index.js",
   "keywords": [

package/src/definitionGenerator.js CHANGED Viewed

@@ -348,7 +348,8 @@ class DefinitionGenerator {
                     requestModel,
                     {
                         description: documentation.requestBody.description,
-                        models: documentation.requestModels
+                        models: documentation.requestModels,
+                        required: documentation.requestBody.required
                     }
                 )
             } else {
@@ -511,7 +512,7 @@ class DefinitionGenerator {
     async createRequestBody(requestBodyDetails) {
         const obj = {
             description: requestBodyDetails.description,
-            required: false
+            required: requestBodyDetails.required || false
         }
         obj.content = await this.createMediaTypeObject(requestBodyDetails.models)