# OpenAPI Comment Parser
[![npm Version](https://img.shields.io/npm/v/openapi-comment-parser)](https://www.npmjs.com/package/openapi-comment-parser) [![travis](https://img.shields.io/travis/bee-travels/openapi-comment-parser)](https://travis-ci.org/github/bee-travels/openapi-comment-parser) [![npm Downloads](https://img.shields.io/npm/dm/openapi-comment-parser)](https://www.npmjs.com/package/openapi-comment-parser) A clean and simple way to document your code for generating OpenAPI (Swagger) specs. ## Goal ![goal](/assets/openapi-comment-parser.png) ## Installation ```bash $ npm install openapi-comment-parser --save ``` or ```bash $ yarn add openapi-comment-parser ``` ## Usage Create a yaml file with a base OpenAPI definition: ```yaml openapi: 3.0.0 info: title: Title of your service version: 1.0.0 ``` Add the following to your code: ```js const openapi = require('openapi-comment-parser'); const spec = openapi(); ``` ### Swagger UI Express example [Swagger UI Express](https://github.com/scottie1984/swagger-ui-express) is a popular module that allows you to serve OpenAPI docs from express. The result is living documentation for your API hosted from your API server via a route. ```js const openapi = require('openapi-comment-parser'); const swaggerUi = require('swagger-ui-express'); const spec = openapi(); app.use('/api-docs', swaggerUi.serve, swaggerUi.setup(spec)); ``` ### Configuration options There are several configuration options for parsing. For example, including and excluding certain files and paths: ```js const spec = openapi({ exclude: ['**/some/path/**'] }); ``` #### Options | Option name | Default | | -------------------- | ------- | | `cwd` | The directory where `commentParser` was called | | `extension` | `['.js', '.cjs', '.mjs', '.ts', '.tsx', '.jsx', '.yaml', '.yml']` | | `include` | `['**']`| | `exclude` | A large list that covers tests, coverage, and various development configs | | `excludeNodeModules` | `true` | | `verbose` | `true` | | `throwLevel` | `off` | ## Eslint plugin To enable linting of the OpenAPI jsdoc comments, install the `eslint` plugin: ```bash $ npm install eslint-plugin-openapi --save-dev ``` or with yarn: ```bash $ yarn add -D eslint-plugin-openapi ``` Then create an `.eslintrc.json`: ```json { "extends": ["plugin:openapi/recommended"] } ``` ## Basic structure You can write OpenAPI definitions in JSDoc comments or YAML files. In this guide, we use only JSDoc comments examples. However, YAML files work equally as well. Each comment defines individual endpoints (paths) in your API, and the HTTP methods (operations) supported by these endpoints. For example, `GET /users` can be described as: ```js /** * GET /users * @summary Returns a list of users. * @description Optional extended description in CommonMark or HTML. * @response 200 - A JSON array of user names * @responseContent {string[]} 200.application/json */ ``` ### Parameters Operations can have parameters passed via URL path (`/users/{userId}`), query string (`/users?role=admin`), headers (`X-CustomHeader: Value`) or cookies (`Cookie: debug=0`). You can define the parameter data types, format, whether they are required or optional, and other details: ```js /** * GET /users/{userId} * @summary Returns a user by ID. * @pathParam {int64} userId - Parameter description in CommonMark or HTML. * @response 200 - OK */ ``` For more information, see [Describing Parameters](/docs/describing-parameters.md). ### Request body If an operation sends a request body, use the `bodyContent` keyword to describe the body content and media type. Use `bodyRequired` to indicate that a request body is required. ```js /** * POST /users * @summary Creates a user. * @bodyContent {User} application/json * @bodyRequired * @response 201 - Created */ ``` For more information, see [Describing Request Body](/docs/describing-request-body.md). ### Responses For each operation, you can define possible status codes, such as 200 OK or 404 Not Found, and the response body content. You can also provide example responses for different content types: ```js /** * GET /users/{userId} * @summary Returns a user by ID. * @pathParam {int64} userId - The ID of the user to return. * @response 200 - A user object. * @responseContent {User} 200.application/json * @response 400 - The specified user ID is invalid (not a number). * @response 404 - A user with the specified ID was not found. * @response default - Unexpected error */ ``` For more information, see [Describing Responses](/docs/describing-responses.md). ### Input and output models You can create global `components/schemas` section lets you define common data structures used in your API. They can be referenced by name whenever a schema is required – in parameters, request bodies, and response bodies. For example, this JSON object: ```json { "id": 4, "name": "Arthur Dent" } ``` can be represented as: ```yaml components: schemas: User: properties: id: type: integer name: type: string # Both properties are required required: - id - name ``` and then referenced in the request body schema and response body schema as follows: ```js /** * GET /users/{userId} * @summary Returns a user by ID. * @pathParam {integer} userId * @response 200 - OK * @responseContent {User} 200.application/json */ /** * POST /users * @summary Creates a new user. * @bodyContent {User} application/json * @bodyRequired * @response 201 - Created */ ``` ### Authentication The `securitySchemes` and `security` keywords are used to describe the authentication methods used in your API. ```yaml components: securitySchemes: BasicAuth: type: http scheme: basic ``` ```js /** * GET /users * @security BasicAuth */ ``` Supported authentication methods are: - HTTP authentication: Basic, Bearer, and so on. - API key as a header or query parameter or in cookies - OAuth 2 - OpenID Connect Discovery For more information, see [Authentication](/docs/authentication.md).