Removed tokens from API spec

With the suggested usage of an Authorization header instead of relying on session-cookies, the API will finally become stateless. Therefore we don't need the tokens for user password change and deletion anymore. Signed-off-by: Erik Michelson <github@erik.michelson.eu>
2024-11-21 17:26:29 -05:00 · 2020-06-02 00:04:24 +02:00 · 2020-06-02 00:04:24 +02:00 · fc8f5dbbf5
commit fc8f5dbbf5
parent ab251b429e
1 changed files with 0 additions and 15 deletions
--- a/docs/dev/openapi.yml
+++ b/docs/dev/openapi.yml
@ -109,13 +109,6 @@ paths:
        - user
      summary: "Deletes the currently logged-in user from the system and removes all it's notes"
      operationId: deleteMe
-      parameters:
-        - in: header
-          name: X-Token
-          schema:
-            type: string
-          required: true
-          description: Token to ensure that no accidental account deletions will be performed
      responses:
        '200':
          description: The user was deleted successfully
@ -600,14 +593,6 @@ components:
      properties:
        password:
          type: string
-        token:
-          type: string
-          description: Token to avoid unwanted password change requests
-    UserDeleteToken:
-      type: object
-      properties:
-        token:
-          type: string
    UserUpdate:
      type: object
      properties: