openapi: 3.0.1
info:
  title: Different default and per-operation security schemes
  description: Spec with multiple security schemes, not all of which are default
  version: "1.0"
servers:
- url: https://api.bitbucket.org/2.0
security:
- api_key1: []
- api_key2: []
paths:
  /users/{username}/repositories:
    get:
      tags:
      - Repo
      description: |-
        All repositories.
      parameters:
      - name: username
        in: path
        description: |
          This can either be the username or the UUID of the account.
        required: true
        schema:
          type: string
      responses:
        default:
          description: Unexpected error.
      security:
      - basic: []

  /users/{username}/repositories-2:
    get:
      tags:
      - Repo
      description: |-
        All repositories owned by a user/team. 
      parameters:
      - name: username
        in: path
        description: |
          This can either be the username or the UUID of the account.
        required: true
        schema:
          type: string
      responses:
        default:
          description: Unexpected error.

  /no-security:
    get:
      tags:
      - Repo
      description: |-
        An open endpoint. 
      parameters:
      security:
      - []
      responses:
        default:
          description: Unexpected error.

components:
  securitySchemes:
    api_key1:
      type: apiKey
      name: Authorization
      in: header
    api_key2:
      type: apiKey
      name: specialKey
      in: header
    basic:
      type: http
      scheme: basic