feat: adicionado security ao swagger

erikfig · Sep 19, 2024 · 069076f · 069076f
1 parent 5ad295d
commit 069076f
Show file tree

Hide file tree

Showing 3 changed files with 16 additions and 0 deletions.
diff --git a/src/main.ts b/src/main.ts
@@ -16,6 +16,7 @@ async function bootstrap() {
     .setDescription('Login Service')
     .setVersion('1.0')
     .addTag('login')
+    .addBearerAuth()
     .build();
 
   const document = SwaggerModule.createDocument(app, config);

diff --git a/src/users/auth/auth.controller.ts b/src/users/auth/auth.controller.ts
@@ -9,22 +9,30 @@ import {
 import { AuthService } from './auth.service';
 import { AuthGuard } from './auth.guard';
 import { AuthRequestDto } from './auth-request.dto';
+import { ApiBearerAuth, ApiResponse } from '@nestjs/swagger';
 
 @Controller('auth')
 export class AuthController {
   constructor(private service: AuthService) {}
 
+  @ApiBearerAuth()
+  @ApiResponse({ status: 200, description: 'Success.' })
+  @ApiResponse({ status: 403, description: 'Forbidden.' })
   @UseGuards(AuthGuard)
   @Get('me')
   public me(@Request() req) {
     return this.service.me(req.user);
   }
 
+  @ApiResponse({ status: 200, description: 'Success.' })
   @Post('login')
   public login(@Body() data: AuthRequestDto) {
     return this.service.login(data);
   }
 
+  @ApiBearerAuth()
+  @ApiResponse({ status: 200, description: 'Success.' })
+  @ApiResponse({ status: 403, description: 'Forbidden.' })
   @UseGuards(AuthGuard)
   @Post('logout')
   public logout(@Request() req) {

diff --git a/src/users/user/user.controller.ts b/src/users/user/user.controller.ts
@@ -10,17 +10,24 @@ import { UserCreateRequestDto } from './user-create-request.dto';
 import { UserUpdateRequestDto } from './user-update-request.dto';
 import { UserService } from './user.service';
 import { AuthGuard } from '../auth/auth.guard';
+import { ApiBearerAuth, ApiResponse } from '@nestjs/swagger';
 
 @Controller('user')
 export class UserController {
   constructor(private service: UserService) {}
 
+  @ApiBearerAuth()
+  @ApiResponse({ status: 200, description: 'Success.' })
+  @ApiResponse({ status: 403, description: 'Forbidden.' })
   @UseGuards(AuthGuard)
   @Post()
   public create(@Body() data: UserCreateRequestDto) {
     return this.service.create(data);
   }
 
+  @ApiBearerAuth()
+  @ApiResponse({ status: 200, description: 'Success.' })
+  @ApiResponse({ status: 403, description: 'Forbidden.' })
   @UseGuards(AuthGuard)
   @Patch(':id')
   public update(@Param('id') id, @Body() data: UserUpdateRequestDto) {