This is the new version of swagger-ui, 3.x.
For the older version of swagger-ui, refer to the 2.x branch.
The OpenAPI Specification has undergone 4 revisions since initial creation in 2010. Compatibility between swagger-ui and the OpenAPI Specification is as follows:
|Swagger UI Version||Release Date||OpenAPI Spec compatibility||Notes||Status|
|2.2.10||2017-01-04||1.1, 1.2, 2.0||tag v2.2.10|
|2.1.5||2016-07-20||1.1, 1.2, 2.0||tag v2.1.5|
|2.0.24||2014-09-12||1.1, 1.2||tag v2.0.24|
|1.0.13||2013-03-08||1.1, 1.2||tag v1.0.13|
|1.0.1||2011-10-11||1.0, 1.1||tag v1.0.1|
You can pull a pre-built docker image of the swagger-ui directly from Dockerhub:
docker pull swaggerapi/swagger-uidocker run -p 80:8080 swaggerapi/swagger-ui
Will start nginx with swagger-ui on port 80.
If you just want to see your specs, open
public/index.html in your browser directly from your filesystem.
If you'd like to make modifications to the codebase, run the dev server with:
npm run dev.
Swagger UI works in the latest versions of Chrome, Safari, Firefox, Edge and IE11.
You can read about CORS here: http://www.w3.org/TR/cors.
There are two cases where no action is needed for CORS support:
Otherwise, CORS support needs to be enabled for:
swagger.yamland any externally
Try it nowbutton to work, CORS needs to be enabled on your API endpoints as well.
You can verify CORS support with one of three techniques:
$ curl -I ""HTTP/1.1 200 OKDate: Sat, 31 Jan 2015 23:05:44 GMTAccess-Control-Allow-Origin: *Access-Control-Allow-Methods: GET, POST, DELETE, PUT, PATCH, OPTIONSAccess-Control-Allow-Headers: Content-Type, api_key, AuthorizationContent-Type: application/jsonContent-Length: 0
This tells us that the petstore resource listing supports OPTIONS, and the following headers:
XMLHttpRequest cannot load . No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'null' is therefore not allowed access.
Swagger-UI cannot easily show this error state.
Access-Control-Allow-Headersis not available, which is still required for Swagger-UI to function properly.
The method of enabling CORS depends on the server and/or framework you use to host your application. http://enable-cors.org provides information on how to enable CORS in some common web servers.
Other servers/frameworks may provide you information on how to enable it specifically in their use case.
Swagger lets you easily send headers as parameters to requests. The name of these headers MUST be supported in your CORS configuration as well. From our example above:
Access-Control-Allow-Headers: Content-Type, api_key, Authorization
Only headers with these names will be allowed to be sent by Swagger-UI.
Copyright 2017 SmartBear Software
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.