From fc8f5dbbf5ec5da2cd72c3fb9ff88b1e7e974faf Mon Sep 17 00:00:00 2001
From: Erik Michelson <github@erik.michelson.eu>
Date: Tue, 2 Jun 2020 00:04:24 +0200
Subject: [PATCH] Removed tokens from API spec

With the suggested usage of an Authorization header instead of relying on session-cookies, the API will finally become stateless. Therefore we don't need the tokens for user password change and deletion anymore.

Signed-off-by: Erik Michelson <github@erik.michelson.eu>
---
 docs/dev/openapi.yml | 15 ---------------
 1 file changed, 15 deletions(-)

diff --git a/docs/dev/openapi.yml b/docs/dev/openapi.yml
index ca7a534bd..5e1244c1b 100644
--- a/docs/dev/openapi.yml
+++ b/docs/dev/openapi.yml
@@ -109,13 +109,6 @@ paths:
         - user
       summary: "Deletes the currently logged-in user from the system and removes all it's notes"
       operationId: deleteMe
-      parameters:
-        - in: header
-          name: X-Token
-          schema:
-            type: string
-          required: true
-          description: Token to ensure that no accidental account deletions will be performed
       responses:
         '200':
           description: The user was deleted successfully
@@ -600,14 +593,6 @@ components:
       properties:
         password:
           type: string
-        token:
-          type: string
-          description: Token to avoid unwanted password change requests
-    UserDeleteToken:
-      type: object
-      properties:
-        token:
-          type: string
     UserUpdate:
       type: object
       properties: