[
  {
    "path": ".gitattributes",
    "content": "*.md linguist-detectable\n"
  },
  {
    "path": ".github/CODEOWNERS",
    "content": "# Global Repo Owners\n* @oai/openapi-maintainers @oai/tsc\n\n# Specification Versions\n/versions/ @oai/tsc\n\n# Protect specific top level files\n/MAINTAINERS.md @oai/tsc\n/TOB.md @oai/tsc\n/GOVERNANCE.md @oai/tsc\n/LICENSE @oai/tsc"
  },
  {
    "path": ".github/ISSUE_TEMPLATE/config.yml",
    "content": "blank_issues_enabled: false\n\ncontact_links:\n  - name: Have a question about using OpenAPI?\n    url: https://communityinviter.com/apps/open-api/openapi\n    about: Ask us on our Slack!\n  - name: Have a question about OpenAPI Tooling?\n    url: https://tools.openapis.org/\n    about: Please ask your tooling vendor!\n  - name: Want to add to our list of OpenAPI Tools?\n    url: https://tools.openapis.org/\n    about: Please take a look at our tooling site's instructions!\n  - name: Want to suggest more how-to documentation and examples?\n    url: https://github.com/OAI/learn.openapis.org/issues/new\n    about: Please open an issue on our learning site!\n  - name: Want to request a new feature in the specification?\n    url: https://github.com/OAI/OpenAPI-Specification/discussions/new?category=enhancements\n    about: Please start a discussion in this repository!\n"
  },
  {
    "path": ".github/ISSUE_TEMPLATE/registry_feature_request.md",
    "content": "---\nname: Contribute to the registries at spec.openapis.org/registry\nabout: Add a new registry entry, or edit an existing one\ntitle: 'Registry: ...'\nlabels: registries\nassignees: ''\n\n---\n\n**Which registry do you want to contribute to**\n- [ ] [Alternative Schema Type Registry](https://spec.openapis.org/registry/alternative-schema)\n- [ ] [Draft Features Registry](https://spec.openapis.org/registry/draft-feature)\n- [ ] [Specification Extension Registry](https://spec.openapis.org/registry/extension)\n- [ ] [Format Registry](https://spec.openapis.org/registry/format)\n- [ ] [Extension Namespace Registry](https://spec.openapis.org/registry/namespace)\n- [ ] [Tag Kind Registry](https://spec.openapis.org/registry/tag-kind)\n\n**Describe your contribution**\nA clear and concise description of what you want to add or change.\n\n**Describe alternatives you've considered**\nA clear and concise description of any alternative solutions or features you've considered.\n\n**Additional context**\nAdd any other context or screenshots about the feature request here.\n"
  },
  {
    "path": ".github/ISSUE_TEMPLATE/spec_bug_report.md",
    "content": "---\nname: Report an error in the specification\nabout: Create a report to help us improve the specification\ntitle: 'vX.Y: ...'\nlabels: ''\nassignees: ''\n\n---\n\n**Describe the error in the specification**\nA clear and concise description of\n- what the error is, \n- which specification versions are affected, \n- what you would expect the specification to say instead,  and \n- a link to the corresponding specification section in the \"oldest\" affected version.\n\n**Additional context**\nAdd any other context about the problem here.\n"
  },
  {
    "path": ".github/dependabot.yml",
    "content": "version: 2\nupdates:\n  - package-ecosystem: github-actions\n    directory: \"/\"\n    schedule:\n      interval: daily\n    open-pull-requests-limit: 10\n  - package-ecosystem: npm\n    directory: \"/\"\n    schedule:\n      interval: daily\n    open-pull-requests-limit: 10\n    groups:\n      vitest:\n        patterns:\n          - \"*vitest*\"\n"
  },
  {
    "path": ".github/pull_request_template.md",
    "content": "<!--\nThank you for contributing to the OpenAPI Specification!\n\nPlease make certain you are submitting your PR on the correct\nbranch, to the files under the \"src/\" directory (which is not\npresent on the main branch, only on the development branches).\n\n* 3.1.x spec and schemas: v3.1-dev branch\n* 3.2.x spec and schemas: v3.2-dev branch\n* 3.3.x spec and schemas: v3.3-dev branch\n* process documentation and build infrastructure: main\n\nNote that we do not accept changes to published specifications.\n-->\n\n<!-- Tick one of the following options and remove the other two: -->\n\n- [ ] schema changes are included in this pull request\n- [ ] schema changes are needed for this pull request but not done yet\n- [ ] no schema changes are needed for this pull request\n"
  },
  {
    "path": ".github/templates/agenda.md",
    "content": "## Weekly meetings happen on Thursdays at 9am - 10am Pacific\n\nThis agenda gives visibility into discussion topics for the weekly Technical Developer Community (TDC) meetings. Sharing agenda items in advance allows people to plan to attend meetings where they have an interest in specific topics. \n\nWhether attending or not, **anyone can comment on this issue prior to the meeting to suggest topics or to add comments on planned topics or proposals**.\n\nMeetings take place over Zoom: https://zoom-lfx.platform.linuxfoundation.org/meeting/92028872923?password=9ddcd542-4f5b-484a-a254-e00d8a8b15d8\n\n### Accessibility & Etiquette\n\n* Participants must abide by our [Code-of-Conduct](https://github.com/OAI/OpenAPI-Specification?tab=coc-ov-file).\n\n* Meetings are recorded for future reference, and for those who are not able to attend in-person.\n\n* We invite you to feel comfortable to challenge any language or behaviour that is harmful or not inclusive during this meeting.\n\n* We look forward to your participation, but please consider these acts of etiquette:\n  * Remain on mute when not speaking to prevent interruptions.\n  * Blur your background to reduce visual distractions.\n  * Use the Zoom meeting \"Raise Hand\" feature to notify the group when you wish to speak.\n\n| Blur My Background | Raise Hand |\n|-|-|\n| <img width=\"323\" alt=\"Screenshot of Zoom UI showing the 'Stop Video' and 'Blur My Background' control\" src=\"https://github.com/OAI/OpenAPI-Specification/assets/7367/7e43dbbb-6529-46e6-8b04-4c1aa852d9dd\"> | <img width=\"323\" alt=\"Screenshot of Zoom UI showing the 'Reaction' and 'Raise Hand' control\" src=\"https://github.com/user-attachments/assets/bf19ee70-59b1-410e-b893-645f26c2c96e\"> |\n\n### Agenda Structure\n\n| Topic | Owner | Decision/NextStep |\n|-|-|-|\nIntros and governance meta-topics (5 mins) | TDC | |\nReports from Special Interest Groups (5 mins) | SIG members | |\nAny other business (add comments below to suggest topics) | TDC | |\n[Approved spec PRs](https://github.com/OAI/OpenAPI-Specification/pulls?q=is%3Apr+is%3Aopen+review%3Aapproved) | @OAI/tsc | |\n[Active Projects](https://github.com/OAI/OpenAPI-Specification/projects?query=is%3Aopen) | @OAI/openapi-maintainers | |\n[New issues needing attention](https://github.com/search?q=repo%3Aoai%2Fopenapi-specification+is%3Aissue+comments%3A0+no%3Alabel+is%3Aopen) | @OAI/triage  | |\nIdentify next week's meeting host (2 mins) | All | Comment on next week's agenda |\n\n/cc [@OAI/tsc](https://github.com/orgs/OAI/teams/tsc) please suggest items for inclusion.\n"
  },
  {
    "path": ".github/workflows/agenda.yaml",
    "content": "name: agenda\n\n# author: @MikeRalphson\n# issue: various\n\n#\n# This workflow creates the agenda issue each week. It runs on a cron every\n# Monday morning, raising an issue for the following Thursday.\n# It can also be run manually, in case GitHub Actions has a failure.\n#\n\non:\n  schedule:\n    - cron: '0 16 * * 4'\n  workflow_dispatch: {}\n\npermissions:\n  issues: write\n  contents: read\n\njobs:\n  agenda:\n    if: github.repository == 'OAI/OpenAPI-Specification'\n    env:\n      GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}\n      TITLE_PREFIX: \"Open Community (TDC) Meeting, \"\n      LABEL: \"Housekeeping\"\n      POST_MEETING_CLOSE_DURATION_IN_DAYS: 10\n\n    runs-on: ubuntu-latest\n\n    steps:\n    - uses: actions/checkout@v6 # checkout repo content\n\n    # we want to close old agenda issues before creating a new one because there's a limit of 3 pinned items on a repo\n    - name: Close old agenda issues\n      run: gh issue list -l ${{ env.LABEL }} --author \"app/github-actions\" --json number,title | ConvertFrom-Json | Where-Object { $_.title -like \"${{ env.TITLE_PREFIX }}*\" -and ([datetime]::UtcNow - [datetime]::Parse([regex]::Replace($_.title.Replace(\"${{ env.TITLE_PREFIX }}\", \"\"), \"\\([^)]+\\)\", \"\"))) -ge [timespan]::FromDays([int]::Parse(\"${{ env.POST_MEETING_CLOSE_DURATION_IN_DAYS }}\"))} | ForEach-Object { gh issue close $_.number && gh issue unpin $_.number }\n      shell: pwsh\n    \n    - name: Unpin any issue that was closed manually\n      run: gh issue list -l ${{ env.LABEL }} --author \"app/github-actions\" --json \"number,title,isPinned\" -s closed | ConvertFrom-Json | Where-Object { $_.isPinned -eq $true -and $_.title -like \"${{ env.TITLE_PREFIX }}*\" -and ([datetime]::UtcNow - [datetime]::Parse([regex]::Replace($_.title.Replace(\"${{ env.TITLE_PREFIX }}\", \"\"), \"\\([^)]+\\)\", \"\"))) -ge [timespan]::FromDays([int]::Parse(\"${{ env.POST_MEETING_CLOSE_DURATION_IN_DAYS }}\"))} | ForEach-Object { gh issue unpin $_.number }\n      shell: pwsh\n\n    - name: Create agenda issue\n      run: |\n        $nextThursday = @(@(1..8) | % {$(Get-Date).AddDays($_)} | ? {$_.DayOfWeek -ieq \"Thursday\"})[0].ToString(\"dddd dd MMMM yyyy\", [CultureInfo]::InvariantCulture)\n        $result = gh issue create -l ${{ env.LABEL }} -t \"${{ env.TITLE_PREFIX }}$nextThursday\" -F .github/templates/agenda.md\n        gh issue pin $result\n      shell: pwsh\n\n\n"
  },
  {
    "path": ".github/workflows/check-restricted-files.yaml",
    "content": "name: check-restricted-files\n\n# Author: @ralfhandl\n# Issue: https://github.com/OAI/OpenAPI-Specification/issues/3432\n\n# This workflow fails if restricted files are changed in a pull request\n\non:\n  pull_request:\n    paths:\n      - \"versions/*.md\"\n\njobs:\n  check-files:\n    runs-on: ubuntu-latest\n    steps:\n      - uses: actions/checkout@v6 # checkout repo content\n        with:\n          fetch-depth: 0\n\n      - name: Check changed files\n        shell: bash\n        run: |\n          if [[ \"${{ github.event.pull_request.head.repo.full_name }}\" == \"OAI/OpenAPI-Specification\" ]] && \\\n             [[ \"${{ github.event.pull_request.base.repo.full_name }}\" == \"OAI/OpenAPI-Specification\" ]]; then\n\n            if [[ \"${{ github.event.pull_request.head.ref }}\" == \"dev-sync-with-main\" ]] && \\\n               [[ \"${{ github.event.pull_request.base.ref }}\" == \"dev\" ]]; then\n              echo Sync from main to dev via ${{ github.event.pull_request.head.ref }}\n              exit 0\n            fi\n\n            if [[ \"${{ github.event.pull_request.head.ref }}\" =~ ^v[0-9]+\\.[0-9]+-dev-sync-with-dev$ ]] && \\\n               [[ \"${{ github.event.pull_request.base.ref }}\" =~ ^v[0-9]+\\.[0-9]+-dev$ ]] && \\\n               [[ ${{ github.event.pull_request.head.ref }} == ${{ github.event.pull_request.base.ref }}* ]]; then\n              echo Sync from dev to ${{ github.event.pull_request.base.ref }} via ${{ github.event.pull_request.head.ref }}\n              exit 0\n            fi\n\n            if [[ \"${{ github.event.pull_request.head.ref }}\" =~ ^v[0-9]+\\.[0-9]+\\.[0-9]+-rel$ ]] && \\\n               [[ \"${{ github.event.pull_request.base.ref }}\" == \"main\" ]]; then\n              echo Release from ${{ github.event.pull_request.head.ref }} to main\n              exit 0\n            fi\n          fi\n\n          echo This PR contains changes to files that should not be changed:\n          echo\n          git diff --compact-summary origin/${{ github.event.pull_request.base.ref }} -- versions/\n\n          exit 1\n"
  },
  {
    "path": ".github/workflows/inactive-issues.yml",
    "content": "on:\n  issues:\n    types: labeled\n  workflow_dispatch:\n  schedule:\n    - cron: '*/5 * * * *'\n\npermissions:\n  issues: write\n  contents: read\n\nname: Label and close issues with no recent activity\n\nenv:\n  GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}\n  NEEDS_ATTENTION_LABEL: \"Needs attention\"\n  NEEDS_AUTHOR_FEEDBACK_LABEL: \"Needs author feedback\"\n  NO_RECENT_ACTIVITY_LABEL: \"No recent activity\"\n  NO_RECENT_ACTIVITY_DURATION_IN_DAYS: 7\n  NO_RECENT_ACTIVITY_DURATION_CLOSE_IN_DAYS: 28\n  ORG_NAME: ${{ github.repository_owner }}\n  REPO_NAME: ${{ github.event.repository.name }}\n  NO_RECENT_ACTIVITY_COMMENT: \"This issue has been labeled with `No recent activity` because there has been no recent activity. It will be closed if no further activity occurs within 28 days. Please re-open this issue or open a new one after this delay if you need to.\"\n\n\njobs:\n  run:\n    if: github.repository == 'OAI/OpenAPI-Specification'\n    runs-on: ubuntu-latest\n    name: Label issues with no recent activity\n    steps:\n      - uses: actions/checkout@v6\n      - run: scripts/label-no-recent.ps1\n        shell: pwsh\n      - run: scripts/close-no-recent.ps1\n        shell: pwsh\n"
  },
  {
    "path": ".github/workflows/respec.yaml",
    "content": "name: respec\n\n# author: @MikeRalphson, @ralfhandl\n# issue: https://github.com/OAI/OpenAPI-Specification/issues/1564\n\n#\n# This workflow creates a pull request for publishing HTML spec versions to the spec.openapis.org site.\n#\n\n# run this manually from main\non:\n  workflow_dispatch: {}\n\njobs:\n  respec:\n    if: github.ref == 'refs/heads/main'\n\n    runs-on: ubuntu-latest\n\n    steps:\n      - name: Generate access token\n        id: generate-token\n        uses: actions/create-github-app-token@v2\n        with:\n          app-id: ${{ secrets.OAI_SPEC_PUBLISHER_APPID }}\n          private-key: ${{ secrets.OAI_SPEC_PUBLISHER_PRIVATE_KEY }}\n          owner: OAI\n          repositories: spec.openapis.org\n\n      - uses: actions/checkout@v6 # checkout main branch of this repo\n        with:\n          fetch-depth: 0\n\n      - uses: actions/setup-node@v6 # setup Node.js\n        with:\n          node-version: \"22.x\"\n\n      - name: Install dependencies\n        run: npm ci\n\n      - uses: actions/checkout@v6 # checkout main branch of website repo\n        with:\n          token: ${{ steps.generate-token.outputs.token }}\n          repository: OAI/spec.openapis.org\n          ref: main\n          path: deploy\n\n      - name: run main script\n        run: scripts/md2html/build.sh\n\n      - name: Create Pull Request\n        uses: peter-evans/create-pull-request@v8\n        with:\n          token: ${{ steps.generate-token.outputs.token }}\n          branch: openapi-spec-versions\n          base: main\n          delete-branch: true\n          path: deploy\n          labels: OpenAPI,Specification\n          reviewers: earth2marsh,lornajane,mikekistler,miqui,ralfhandl,whitlockjc,handrews,karenetheridge\n          title: OpenAPI - update ReSpec-rendered specification versions\n          commit-message: Update ReSpec-rendered specification versions\n          signoff: true\n          body: |\n            This pull request is automatically generated by GitHub action `respec` in the OAI/OpenAPI-Specification repo.\n\n            The `versions/*.md` files of the OpenAPI Specification have changed and the corresponding HTML files are regenerated.\n"
  },
  {
    "path": ".github/workflows/schema-publish.yaml",
    "content": "name: schema-publish\n\n# author: @ralfhandl\n# issue: https://github.com/OAI/OpenAPI-Specification/issues/3715\n\n#\n# This workflow creates a pull request for publishing schema iterations to the spec.openapis.org site.\n#\n\n# run this on push to vX.Y-dev branches or manually\non:\n  push:\n    branches:\n      - \"v[0-9].[0-9]-dev\"\n    paths:\n      - \"src/schemas/validation/*.yaml\"\n  workflow_dispatch: {}\n\njobs:\n  publish:\n    runs-on: ubuntu-latest\n\n    steps:\n      - name: Generate access token\n        id: generate-token\n        uses: actions/create-github-app-token@v2\n        with:\n          app-id: ${{ secrets.OAI_SPEC_PUBLISHER_APPID }}\n          private-key: ${{ secrets.OAI_SPEC_PUBLISHER_PRIVATE_KEY }}\n          owner: OAI\n          repositories: spec.openapis.org\n\n      - uses: actions/checkout@v6 # checkout main branch of this repo\n        with:\n          fetch-depth: 0\n\n      - uses: actions/setup-node@v6 # setup Node.js\n        with:\n          node-version: \"22.x\"\n\n      - name: Install dependencies\n        run: npm ci\n\n      - uses: actions/checkout@v6 # checkout main branch of website repo\n        with:\n          token: ${{ steps.generate-token.outputs.token }}\n          repository: OAI/spec.openapis.org\n          ref: main\n          path: deploy\n\n      - name: run main script\n        run: scripts/schema-publish.sh\n\n      - name: Create Pull Request\n        uses: peter-evans/create-pull-request@v8\n        with:\n          token: ${{ steps.generate-token.outputs.token }}\n          branch: openapi-${{ github.ref_name }}-schema-iterations\n          base: main\n          delete-branch: true\n          path: deploy\n          labels: OpenAPI,Schema\n          reviewers: earth2marsh,lornajane,mikekistler,miqui,ralfhandl,whitlockjc,handrews,karenetheridge\n          title: \"OpenAPI - publish ${{ github.ref_name }} schema iterations\"\n          commit-message: \"New OpenAPI schema iterations published from ${{ github.ref_name }}\"\n          signoff: true\n          body: |\n            This pull request is automatically generated by GitHub action `schema-publish` in the OAI/OpenAPI-Specification repo.\n            The `src/schemas/validation/*.yaml` files have changed and JSON files are automatically generated.\n"
  },
  {
    "path": ".github/workflows/schema-tests.yaml",
    "content": "name: schema-test\n\n# Author: @MikeRalphson / runs @jdesrosiers tests\n# Issue: https://github.com/OAI/OpenAPI-Specification/pull/2489\n\n#\n# This workflow runs the npm test script to validate passing and failing\n# testcases for the metaschemas\n#\n\n# run this on push to any branch and creation of pull-requests\non:\n  pull_request: {}\n  workflow_dispatch: {}\n\njobs:\n  test:\n\n    runs-on: ubuntu-latest\n\n    steps:\n    - uses: actions/checkout@v6 # checkout repo content\n      with:\n        fetch-depth: 0\n\n    - uses: actions/setup-node@v6 # setup Node.js\n      with:\n        node-version: '20.x'\n\n    - name: Install dependencies\n      run: npm ci\n\n    - name: Run tests\n      run: npm run test\n      env:\n        BASE: ${{ github.event.pull_request.base.ref }}\n"
  },
  {
    "path": ".github/workflows/sync-dev-to-vX.Y-dev.yaml",
    "content": "name: sync-dev-to-vX.Y-dev\n\n# author: @ralfhandl\n\n#\n# This workflow creates PRs to update the vX.Y-dev branch with the latest changes from dev\n#\n\n# run this on push to dev\non:\n  push:\n    branches:\n      - dev\n  workflow_dispatch: {}\n\njobs:\n  sync-branches:\n    if: github.repository == 'OAI/OpenAPI-Specification'\n    runs-on: ubuntu-latest\n    steps:\n      - name: Generate access token\n        id: generate-token\n        uses: actions/create-github-app-token@v2\n        with:\n          app-id: ${{ secrets.OAI_SPEC_PUBLISHER_APPID }}\n          private-key: ${{ secrets.OAI_SPEC_PUBLISHER_PRIVATE_KEY }}\n\n      - name: Checkout repository\n        uses: actions/checkout@v6\n        with:\n          fetch-depth: 0\n          token: ${{ steps.generate-token.outputs.token }}\n\n      - name: Create pull requests\n        id: pull_requests\n        shell: bash\n        run: |\n          git config user.name \"github-actions[bot]\"\n          git config user.email \"41898282+github-actions[bot]@users.noreply.github.com\"\n\n          DEV_BRANCHES=$(git branch -r --list origin/v?.?-dev)\n          for DEV_BRANCH in $DEV_BRANCHES; do\n            BASE=${DEV_BRANCH:7}\n            SYNC=\"$BASE-sync-with-$HEAD\"\n            \n            git checkout -b $SYNC origin/$SYNC || git checkout -b $SYNC origin/$BASE\n            git merge origin/$HEAD -m \"Merge $HEAD into $SYNC\"\n            git checkout origin/$BASE src/\n            git checkout origin/$BASE tests/schema/\n            git commit -m \"Restored src/ and tests/schema/\" || echo \"\"\n            git push -u origin $SYNC\n\n            EXISTS=$(gh pr list --base $BASE --head $SYNC \\\n              --json number --jq '.[] | .number')\n            if [ ! -z \"$EXISTS\" ]; then\n              echo \"PR #$EXISTS already wants to merge $SYNC into $BASE\"\n              continue\n            fi\n\n            PR=$(gh pr create --base $BASE --head $SYNC \\\n              --label \"Housekeeping\" \\\n              --title \"$BASE: sync with $HEAD\" \\\n              --body \"Merge relevant changes from \\`$HEAD\\` into \\`$BASE\\`.\")\n            echo \"\"\n            echo \"PR to sync $BASE with $HEAD: $PR\"\n            sleep 60 # allow status checks to be triggered\n            \n            gh pr checks $PR --watch --required || continue\n            gh pr merge $PR --merge --admin\n          done\n        env:\n          GH_TOKEN: ${{ steps.generate-token.outputs.token }}\n          HEAD: dev\n"
  },
  {
    "path": ".github/workflows/sync-main-to-dev.yaml",
    "content": "name: sync-main-to-dev\n\n# author: @ralfhandl\n\n#\n# This workflow creates PRs to update the dev branch with the latest changes from main\n#\n\n# run this on push to main\non:\n  push:\n    branches:\n      - main\n  workflow_dispatch: {}\n\njobs:\n  sync-branch:\n    if: github.repository == 'OAI/OpenAPI-Specification'\n    runs-on: ubuntu-latest\n    steps:\n      - name: Generate access token\n        id: generate-token\n        uses: actions/create-github-app-token@v2\n        with:\n          app-id: ${{ secrets.OAI_SPEC_PUBLISHER_APPID }}\n          private-key: ${{ secrets.OAI_SPEC_PUBLISHER_PRIVATE_KEY }}\n\n      - name: Checkout repository\n        uses: actions/checkout@v6\n        with:\n          fetch-depth: 0\n          token: ${{ steps.generate-token.outputs.token }}\n\n      - name: Create pull request\n        id: pull_request\n        shell: bash\n        run: |\n          git config user.name \"github-actions[bot]\"\n          git config user.email \"41898282+github-actions[bot]@users.noreply.github.com\"\n          SYNC=\"$BASE-sync-with-$HEAD\"\n\n          git checkout -b $SYNC origin/$SYNC || git checkout -b $SYNC origin/$BASE\n          git merge origin/$HEAD -m \"Merge $HEAD into $SYNC\"\n          git checkout origin/$BASE src/\n          git checkout origin/$BASE tests/schema/\n          git commit -m \"Restored src/ and tests/schema/\" || echo \"\"\n          git push -u origin $SYNC\n\n          EXISTS=$(gh pr list --base $BASE --head $SYNC \\\n            --json number --jq '.[] | .number')\n          if [ ! -z \"$EXISTS\" ]; then\n            echo \"PR #$EXISTS already wants to merge $SYNC into $BASE\"\n            exit 0\n          fi\n\n          gh pr create --base $BASE --head $SYNC \\\n            --label \"Housekeeping\" \\\n            --title \"$BASE: sync with $HEAD\" \\\n            --body \"Merge relevant changes from \\`$HEAD\\` into \\`$BASE\\`.\"\n        env:\n          GH_TOKEN: ${{ steps.generate-token.outputs.token }}\n          HEAD: main\n          BASE: dev\n"
  },
  {
    "path": ".github/workflows/validate-markdown.yaml",
    "content": "name: validate-markdown\n\n# Author: @MikeRalphson\n# Issue: https://github.com/OAI/OpenAPI-Specification/issues/2130\n\n# This workflow validates markdown files in the project root.\n# It also validates the work-in-progress specification file src/oas.md with slightly different rules.\n\n# run this on pull requests (which includes pushes to their head branch)\non:\n  - pull_request\n\njobs:\n  lint:\n    runs-on: ubuntu-latest\n\n    steps:\n      - uses: actions/checkout@v6 # checkout repo content\n\n      - uses: actions/setup-node@v6 # setup Node.js\n        with:\n          node-version: \"20.x\"\n\n      - name: Lint work-in-progress spec\n        run: npx --yes markdownlint-cli2 --config spec.markdownlint.yaml src/oas.md\n\n      - name: Lint other files\n        run: npx --yes markdownlint-cli2 *.md\n\n      - name: Check links in markdown files\n        uses: umbrelladocs/action-linkspector@v1\n        with:\n          reporter: github-check\n          fail_level: any\n          filter_mode: file\n"
  },
  {
    "path": ".gitignore",
    "content": ".idea\n*.iml\n*.ipr\n*.iws\ntarget\natlassian-ide-plugin.xml\nnode_modules/\ndeploy/\ndeploy-preview/\ncoverage/\n_site/\nGemfile.lock\n"
  },
  {
    "path": ".gitmodules",
    "content": ""
  },
  {
    "path": ".linkspector.yml",
    "content": "files:\n  - src/oas.md\n  - CONTRIBUTING.md\n  - EDITORS.md\n  - GOVERNANCE.md\n  - IMPLEMENTATIONS.md\n  - MAINTAINERS.md\n  - README.md\n  - SECURITY_CONSIDERATIONS.md\n  - SPECIAL_INTEREST_GROUPS.md\n  - style-guide.md\n  - TOB.md\nignorePatterns:\n  - pattern: 'clientdomain.com'\n  - pattern: 'example.org'\n"
  },
  {
    "path": ".markdownlint.yaml",
    "content": "# First heading is a top-level heading\nMD002: true\n\n# Heading style (ATX is leading # symbols)\nMD003:\n  style: atx\n\n# Unordered list symbol can be anything\nMD004: false\n\n# Unordered list indentation size\nMD007:\n    indent: 2\n\n# Allow additional blank lines\nMD012: false\n\n# Maximum line length\nMD013:\n    line_length: 800\n    tables: false\n\n# Headings need blank lines before and after\nMD022: true\n\n# Duplicate headings are allowed\nMD024: false\n\n# Surround lists with blank lines\nMD032: true\n\n# Allow inline HTML\nMD033: false\n"
  },
  {
    "path": "CONTRIBUTING.md",
    "content": "# Contribute to the OpenAPI Specification\n\n## Key information\n\nThis project is covered by our [Code of Conduct](https://github.com/OAI/OpenAPI-Specification?tab=coc-ov-file#readme).\nAll participants are expected to read and follow this code.\n\nNo changes, however trivial, are ever made to the contents of published specifications (the files in the `versions/` folder).\nExceptions may be made when links to external URLs have been changed by a 3rd party, in order to keep our documents accurate.\n\nPublished versions of the specification are in the `versions/` folder.\nThe under-development versions of the specification are in the file `src/oas.md` on the appropriately-versioned branch.\nFor example, work on the next patch release for 3.2 is on `v3.2-dev` in the file `src/oas.md`, and work on the next minor release with additional features for 3.3 is on `v3.3-dev`.\n\nThe [spec site](https://spec.openapis.org) is the source of truth for the OpenAPI specification as it contains all the citations and author credits (the markdown in this repository was previously the authoritative version until 2024).\n\nThe OpenAPI project is almost entirely staffed by volunteers.\nPlease be patient with the people in this project, who all have other jobs and are active here because we believe this project has a positive impact in the world.\n\n### Active branches\n\nThe current active specification releases are:\n\n| Version | Branch | Notes |\n| ------- | ------ | ----- |\n| 3.1.3 | `v3.1-dev` | active patch release line |\n| 3.2.1 | `v3.2-dev` | active patch release line |\n| 3.3.0 | `v3.3-dev` | minor release in development |\n| 4.0.0 | [OAI/sig-moonwalk](https://github.com/OAI/sig-moonwalk) | [discussions only](https://github.com/OAI/sig-moonwalk/discussions) |\n\n## How to contribute\n\nWe welcome new contributors to the project whether you have changes to suggest, problems to report, or some feedback for us.\nPlease jump to the most relevant section from the list below:\n\n- Ask a question or offer feedback: use a [discussion](#discussions)\n- Suggest a change or report a problem: open an [issue](#issues)\n- Contribute a change to the repository: open a [pull request](#pull-requests)\n- Or just [get in touch](#get-in-touch)\n\n## Discussions\n\nWe use [discussions](https://github.com/OAI/OpenAPI-Specification/discussions?discussions_q=is%3Aopen) for anything that doesn't (yet) have a specific action associated with it.\nMost ideas start as discussions.\n\nPlease do come and start a discussion to:\n\n- ask questions\n- make suggestions\n- give feedback\n\nAnyone can start a discussion and you're very welcome to do so! Write a message and pick a relevant discussion category.\n\n### Discussion management\n\nParticipation in discussions and especially answering of questions is encouraged (and appreciated) by everyone.\n\nDiscussions are closed when:\n\n- the question has been answered.\n- no further action or conversation would be useful.\n- there has been no engagement for a while, or a previously popular thread has been inactive for an extended period.\n- activity is now taking place elsewhere, such as in an issue.\n- the discussion is out of scope for the project.\n\n## Issues\n\nIssues are for planned tasks, problems to solve, or requests for (specific) changes.\nMost issues should have a clear outcome; something will be fixed, improved or otherwise measurably different when the issue is complete.\n\nWe use [discussions](#discussions) for ideas and early-stage suggestions.\n\n> [!NOTE]\n> For larger or more extensive changes, we have a formal [proposal process](#propose-a-specification-change) to give more structure where it's needed.\n\nThe best issues give a clear and concise explanation of the problem at hand, and ideally some examples of what the problem is.\nSuggested solutions are also welcome, but it is very important that the issue outlines the problem that is being solved as well as the solution.\nSome issues may be a backlog of a task that needs to be done; other issues might be automatically created as part of the project processes.\n\n### Issue management\n\nWe have some issue automation to close inactive issues and create/pin/archive the weekly meeting issues.\nMore information is in the [Appendix: Issue automation](#appendix-issue-automation) section.\n\nEveryone is encouraged to open and comment on issues in the project.\nIf you want to tag/assign/close something and you don't have enough permissions, add a comment and someone will help.\n\nIssues are managed by the [Triage](#triage), [Maintainers](#maintainers) and [TSC](#tsc) teams.\nThey may move issues to other repositories within the project as needed.\n\nIn order to keep the issues list manageable and realistic for a relatively small group of volunteers, issues are proactively closed when it's not clear that they can be completed.\nIssues may be closed when:\n\n- they have been inactive for a long time\n- they are out of scope or no further constructive action can be taken\n- they are complete (yay!)\n- they are unclear and more details are not forthcoming\n- as a group, there is agreement that no further action will be taken\n\nWhen issues are closed, a comment is added about why.\nClosing issues is a reversible action, and it is always acceptable to comment and explain (politely) why an issue should not have been closed.\n\n### Labels\n\nWe make extensive use of labels.\nThe main categories are:\n\n- [Housekeeping](https://github.com/OAI/OpenAPI-Specification/labels/Housekeeping) for meetings, project logistics, etc.\n- [approved pr port](https://github.com/OAI/OpenAPI-Specification/labels/approved%20pr%20port) for pull requests that repeat a change from one version to another\n- most other tags are used to group similar or related issues into topic areas; this list is ever-changing\n\nLabels related to [issue automation](#appendix-issue-automation)\n\n- [Needs attention](https://github.com/OAI/OpenAPI-Specification/labels/Needs%20attention) automated tag when an issue is updated\n- [Needs author feedback](https://github.com/OAI/OpenAPI-Specification/labels/Needs%20author%20feedback) used to indicate that more information is needed from the issue creator\n- [No recent activity](https://github.com/OAI/OpenAPI-Specification/labels/No%20recent%20activity) if no information is received, the issue is marked for closure (automatic after 30 days)\n\n### Milestones\n\nWe use milestones in GitHub to plan what should be included in future releases.\nIssues and pull requests should both be added to the earliest milestone we expect they will be released in.\nAny changes that aren't ready in time for release should be moved to the next milestone or untagged.\n\nThe milestones and items assigned to them are under constant review and subject to change.\n\n### Projects\n\nThe OpenAPI Initiative uses GitHub Projects to manage work _outside_ of the specification development process.  There are currently two active projects:\n\n* [Contributor Guidance](https://github.com/orgs/OAI/projects/5/views/1)\n* [Automation & Infrastructure](https://github.com/orgs/OAI/projects/4/views/1)\n\n## Pull requests\n\n> [!NOTE]\n> Since the 3.0.4 and 3.1.1 releases (October 2024), the OAS is developed in the `src/oas.md` file.\n> Check the [Appendix: Branch Strategy](#appendix-branch-strategy) for more information about the updated branching strategy.\n\nChanges to the next version of the specification are welcome and can be proposed by anyone.\n\nFor large changes that will need discussion, please use the [Proposal process](#propose-a-specification-change).\nFor other changes, we recommend [opening an issue](#issues) first, so that you can get some feedback and any extra input you need before spending a lot of time on something.\n\nSchema changes are made on the same branch, but can be released independently.\nWhen making a specification change for a new minor or major release that has a schema impact, including the schema change in the PR is preferred.\nPatch releases cannot contain changes that _require_ a schema update.\n\n### Use a fork\n\nAll work **MUST be done on a fork** and be submitted as a pull request.\n\n### Target the earliest active `*-dev` branch\n\nBranch from and submit pull requests to the a branch from the _earliest relevant and [active](#active-branches)_ `vX.Y-dev` branch.\nFor example, if a change applies to both 3.1 and 3.2, the PR would go to the `v3.1-dev` branch, which will be merged up to `v3.2-dev` before the next 3.2 release.\nAll changes to the specification must conform to the [style guide](./style-guide.md).\n\nBoth specification and schema changes follow this approach.\n\nFor changes to repository files that affect all versions, use the `main` branch.\nThis might apply to, for example, Markdown files, automation, and scripts.\n\nFor all pull requests, if they should not be merged yet for any reason (they depend on something else, you would like feedback from a specific reviewer), mark them as draft and they will not be merged while in that state.\nDraft pull requests can still be reviewed while in draft state.\n\n### Preview specification HTML locally\n\n> [!NOTE]\n> `npm run build-src` calls bash scripts. Use [Git Bash](https://gitforwindows.org/) on Windows, or use the Windows Subsystem for Linux (WSL).\n\nThe markdown source files are converted to HTML before publishing.\nTo do this locally, please\n\n1. Install [Node.js](https://nodejs.org/)\n2. Check out this repo, go to the repo root, and switch to a development branch\n3. Execute `npm install` (once, repeat after merging upstream changes)\n4. Execute `npm run build-src` after changing `src/oas.md` (this first executes `npm run validate-markdown`, which can also be run separately)\n5. Open output file `deploy-preview/oas.html` with a browser and check your changes\n\nPlease make sure the markdown validates and builds using the above steps before creating a pull request or marking a draft pull request as ready for review.\n\n## Reviewers\n\n> [!NOTE]\n> See also the detailed team outlines in the [roles section](#roles).\n\nAll pull requests must be reviewed and approved by one member of the TSC or Maintainers teams.\nReviews from other contributors are always welcome.\n\nAdditionally, all pull requests that change the specification file `src/oas.md` must be approved by two TSC members.\n\nReviews requesting changes should have their changes addressed regardless of how many other approvers there are.\n\n## Publishing\n\n### Specification Versions\n\nThe specification versions are published to the [spec site](https://spec.openapis.org/oas) by creating an `vX.Y.Z-rel` branch where `src/oas.md` is renamed to the appropriate `versions/X.Y.Z.md` file and then merged to `main`.\nThis renaming on the `vX.Y.Z-rel` branch preserves the commit history for the published file on `main` when using `git log --follow` (as is the case for all older published files).\n\nThe steps for creating a `vX.Y.Z-rel` branch are:\n\n1. Update `EDITORS.md` on `main`\n2. Merge `main` into `dev` and `dev` into `vX.Y-dev` via PRs\n   - sync PRs are automatically created by workflows `sync-main-to-dev` and `sync-dev-to-vX.Y-dev`\n3. Prepare spec files in `vX.Y-dev`\n   - `npm run format-markdown`\n   - `npm run build-src`\n   - open `deploy-preview/oas.html` in browser and verify correct formatting\n   - adjust and repeat until done\n   - merge changes to `src/oas.md` back into `vX.Y-dev` via PR\n4. Create `vX.Y.Z-rel` from `vX.Y-dev` and adjust it\n   - the bash script `scripts/adjust-release-branch.sh` does this:\n     - copy file `src/oas.md` to `versions/X.Y.Z.md` and replace the release date placeholder `| TBD |` in the history table of Appendix A with the current date\n     - copy file `EDITORS.md` to `versions/X.Y.Z-editors.md`\n     - delete folder `src`\n     - delete version-specific files and folders from `tests/schema`\n       - file `schema.test.mjs`\n       - folders `pass` and `fail`\n5. Merge `vX.Y.Z-rel` into `main` via PR\n   - this PR should only add files `versions/X.Y.Z.md` and `versions/X.Y.Z-editors.md`\n\nThe HTML renderings of the specification versions are generated from the `versions` directory on `main` by manually triggering the [`respec` workflow](https://github.com/OAI/OpenAPI-Specification/blob/main/.github/workflows/respec.yaml), which generates a pull request for publishing the HTML renderings to the [spec site](https://spec.openapis.org).\n\n#### Start Next Patch Version\n\nOnce the released specification version is [synced](#branch-sync-automation) back to the `vX.Y-dev` branch, the next patch version X.Y.(Z+1) can be started:\n\n1. Run bash script `scripts/start-release.sh` in branch `vX.Y-dev` to\n   - create branch `vX.Y-dev-start-X.Y.(Z+1)`\n   - initialize `src/oas.md` with empty history and content from `versions/X.Y.Z.md`\n   - change version heading to X.Y.(Z+1) and add a new line to the version history table in Appendix A of  `src/oas.md`\n   - commit and push changes\n2. Merge `vX.Y-dev-start-X.Y.(Z+1)` into  `vX.Y-dev` via pull request\n\nAlternatively, if no patch version X.Y.(Z+1) is planned, delete file `src/oas.md` from branch `vX.Y-dev` via pull request.\n\n#### Start New Minor or Major Version\n\nA new minor version X.(Y+1).0 or major version (X+1).0.0 is started similarly:\n\n1. Create branch `vX'.Y'-dev` from `vX.Y-dev`\n2. Run bash script `scripts/start-release.sh` in the new branch to\n   - create branch `vX'.Y'-dev-start-X'.Y'.0`\n   - initialize `src/oas.md` with empty history and content from `versions/X.Y.Z.md`\n   - change version heading to X'.Y'.0 and add a new line to the version history table in Appendix A of  `src/oas.md`\n   - change version in all schema files `src/schemas/validation/.yaml`\n   - change version in schema test script `tests/schema/schema.test.mjs`\n   - change version in schema test fixtures in folders `tests/schema/pass` and `tests/schema/fail`\n   - commit and push changes\n3. Merge `vX'.Y'-dev-start-X'.Y'.0` into `vX'.Y'-dev` via pull request\n\n### Schema Iterations\n\nThe schema iterations are published independently from the specification releases [in the schema section on the spec site](https://spec.openapis.org/oas).\nSchemas are updated in and directly published from the `vX.Y-dev` branches.\n\nAs part of the publishing process, the YAML source files are converted to JSON, renamed to the relevant last-changed dates, and `WORK-IN-PROGRESS` placeholders are replaced with these dates as appropriate. This is usually done by the [`schema-publish` workflow](https://github.com/OAI/OpenAPI-Specification/blob/main/.github/workflows/schema-publish.yaml) which detects changes on each `vX.Y-dev` branch, which generates a pull request for publishing the new schema iterations to the [spec site](https://spec.openapis.org). The workflow can also be run manually if required.\n\n#### Schemas and OAS Requirements\n\nThe schemas published by the OpenAPI Initiative _only_ validate mandatory\nOAS requirements.  This means that a field value or combination with another\nfield is only forbidden in a schema if there is a corresponding MUST / MUST NOT /\nSHALL / SHALL NOT requirement that prevents it.\n\nSchemas that apply further restrictions to enforce desired usage are outside\nof the scope of the OpenAPI Initiative.  When opening an issue or PR for\nschema changes, please ensure that the changes are backed by clear OAS\nrequirements.  Otherwise, the issue or PR will be closed with a note pointing\nto this section.\n\n## Release Process and Scope\n\nThis section relates to the 3.x versions only.\n\n### Minor Releases\n\nOur roadmap for 3.x releases is community-driven, meaning the specification is open for proposed additions by anyone (see [Propose a Specification Change](#propose-a-specification-change)), in addition to the issues already on the project backlog.\n\nChanges in minor releases (such as 3.2, 3.3) meet the following criteria:\n\n* Are **backwards-compatible** and be reasonably easy to implement in tooling that already supports the previous minor version.\n  For example, new optional fields can be added.\n* Drive quality-of-life improvements to support how OpenAPI is used by practitioners, so that OpenAPI evolves to continue to meet user needs.\n  For example, adding fields to support changes in other standards, or adopting common `x-*` extension fields into the specification.\n* Bring the future closer by making changes that are in line with future 3.x releases and the planned OpenAPI 4.x (Moonwalk) specification as the details of that become available.\n* Make the specification document clearer or easier to understand.\n\nA minor release is due when there are some meaningful features (including one or a small number of headline features).\n\n### Patch Releases\n\nPatch releases reflect a constant quest for improving the active minor versions of OpenAPI.\nSince we do not edit specification documents after publication, even the smallest change has to be in a new release.\n\nChanges in patch releases meet the following criteria:\n\n* Editorial changes such as spelling or formatting fixes, including link updates.\n* Clarifications or additions that do not change the meaning of the specification.\n\nPatch releases are created as often as there are changes to the specification worth releasing.\n\n### Release Process\n\nA release requires a vote on the specification at a particular version and the associated release notes by TSC members within the voting period.\nMajor or minor release voting periods will be announced in the Slack channel and noted on the calendar at least 6 days in advance.\nDuring this time, TSC members who have not yet voted must note their approval by leaving a comment on the GitHub pull request proposing the release; release notes should be included with the description.\nTSC members are responsible for coordinating the information about the release to the outreach team as appropriate.\n\n* Patch-level releases require majority approval by TSC members. (Max voting period 3 days)\n\n* Minor: requires approval by 66% of TSC members. (Max voting period 7 days)\n\n* Major: requires approval by 66% of TSC members. (Max voting period 14 days)\n\nDuring the voting period, further changes should not be made to the specification being considered.\n\nOnce the threshold of approvals is met, the release can be performed by any TSC member.\n\n## Propose a Specification Change\n\nAs an organisation, we're open to changes, and these can be proposed by anyone.\nThe specification is very widely adopted, and there is an appropriately high bar for wide appeal and due scrutiny as a result.\nWe do not accept changes lightly (but we will consider any that we can).\n\nSmall changes are welcome as pull requests.\n\nBigger changes require a more formal process.\n\n1. Start a [discussion](https://github.com/OAI/OpenAPI-Specification/discussions) of type \"Enhancements\".\n   The discussion entry must include some use cases, your proposed solution and the alternatives you have considered.\n   If there is engagement and support for the proposal over time, then it can be considered as a candidate to move to the next stage.\n\n2. It really helps to see the proposed change in action.\n   Start using it as a `x-*` extension if that's appropriate, or try to bring other evidence of your proposed solution being adopted.\n\n3. If you are adding support for something from another specification (such as OAuth), please point to implementations of that\n   specification so that we can understand how, and to what degree, it is being used.\n\n4. If the suggested change has good support, you will be asked to create a formal proposal.\n   Use the [template in the proposals directory](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals), copy it to a new file, and complete it.\n   Once you the document is ready, open a pull request on the main branch.\n\n5. The proposal will be more closely reviewed and commented on or amended until it is either rejected or accepted.\n   At that point, the proposal is merged into the `main` branch and a pull request is opened to add the feature to the appropriate `dev` version of the specification.\n\nQuestions are welcome on the process at any time. Use the discussions feature or find us in Slack.\n\n## Roles\n\nThe OpenAPI project has some key roles that are played by multiple people.\n\n### TSC\n\nThe Technical Steering Committee are listed in the [MAINTAINERS file](./MAINTAINERS.md).\nThey are the maintainers of the OpenAPI Specification itself and every other aspect of the project operation and direction.\nTSC members can review changes to all parts of the repository and make decisions about the project.\n\n### Maintainers\n\nThe maintainers have write access to the repository and play a key role in the project.\nThey review pull requests to non-specification parts of the repository, and take on other strategic tasks around project planning and maintenance.\n\n### Triage\n\nThe triage team are active OpenAPI members who help with discussion and issue management.\nThey respond to new issues and discussions, direct people to our existing resources or raise conversations to a wider audience.\nThe triage team keeps an eye on the backlog and closes issues and discussions that are no longer active or needed.\n\n## Get in touch\n\nTo get in touch with other people on the project, ask questions, or anything else:\n\n- Find us [on the OpenAPI Slack](https://communityinviter.com/apps/open-api/openapi).\n- Start a [GitHub Discussion](https://github.com/OAI/OpenAPI-Specification/discussions/).\n- Join one of our weekly meetings by checking the [issues list for an upcoming meetings](https://github.com/OAI/OpenAPI-Specification/issues?q=is%3Aissue%20state%3Aopen%20label%3AHousekeeping).\n\n## Appendix: Branch strategy\n\nFor information on the branch and release strategy for OAS 3.0.4 and 3.1.1 and earlier, see the comments in [issue #3677](https://github.com/OAI/OpenAPI-Specification/issues/3677).\n\n### Branch roles\n\n* `main` is used to publish finished work and hold the authoritative versions of general documentation such as this document, which can be merged out to other branches as needed.  The `src` tree is _**not**_ present on `main`.\n* `dev` is the primary branch for working with the `src` tree.  Development infrastructure that is not needed on `main` is maintained here, and can be merged out to other non-`main` branches as needed.\n  Changes on `main` are automatically included in a pull request to `dev` (see the section on [branch sync](#branch-sync-automation)).\n* `vX.Y-dev` is the minor release line development branch for X.Y, including both the initial X.Y.0 minor version and all subsequent X.Y.Z patch versions.  All PRs are made to oldest active `vX.Y-dev` branch to which the change is relevant, and then merged forward as shown in the diagram further down in this document.\n* `vX.Y.Z-rel` is the release branch for an X.Y.Z release (including when Z == 0).  It exists primarily for `git mv`-ing `src/oas.md` to the appropriate `versions/X.Y.Z.md` location and removing schema-related files before merging back to `main`, and is deleted once merged into `main` via a pull request.\n\n### Branching and merging (3.1.2, 3.2.0, and later)\n\nUpon release:\n\n* Pre-release steps:\n  * The most recent _published_ patch release from the previous line is merged up to `vX.Y-dev`, if relevant\n  * If doing simultaneous releases on multiple lines, do them from the oldest to newest line\n  * For example, if releasing 3.1.3 and 3.2.0:\n    * release 3.1.3 first\n    * release 3.2.0 second\n* Release branching and merging:\n  * branch `vX.Y.Z-rel` from `vX.Y-dev` (same commit that was merged to `dev` if relevant)\n  * After renaming `src/oas.md` to `versions/X.Y.Z.md` and [other adjustments](#specification-versions), merge `vX.Y.Z-rel` to `main`\n* Publishing to the [spec site](https://spec.openapis.org) is triggered by the merge to `main`\n* Post-release steps:\n  * If this was a major or minor release (Z == 0), branch `vX.Y+1-dev` from `vX.Y-dev`\n\n_Release lines are grouped by color, although the colors of `dev` and `main` are not significant as these diagrams are limited to only 8 colors._\n\n```mermaid\n---\nconfig:\n  themeVariables:\n    git0: \"#5588bb\"\n    git1: \"#cc8899\"\n    git2: \"#eedd88\"\n    git3: \"#ccbb66\"\n    git4: \"#aa9944\"\n    git5: \"#44ff77\"\n    git6: \"#22cc22\"\n    git7: \"#11aa11\"\n    gitBranchLabel1: \"#000000\"\n    gitBranchLabel2: \"#000000\"\n    gitBranchLabel3: \"#000000\"\n    gitBranchLabel4: \"#000000\"\n    gitBranchLabel5: \"#000000\"\n    gitBranchLabel6: \"#000000\"\n    gitBranchLabel7: \"#000000\"\n---\ngitGraph TB:\n  commit id:\"merge 3.1.1.md to main\" tag:\"3.1.1\"\n  branch dev order:1\n  commit id:\"rename 3.1.1.md to src/oas.md\"\n  branch v3.1-dev order:2\n  commit id:\"update version in src/oas.md to 3.1.2\"\n  checkout dev\n  branch v3.2-dev order:6\n  commit id:\"update version in src/oas.md to 3.2.0\"\n  commit id:\"some 3.2.0 work\"\n  checkout v3.1-dev\n  commit id:\"a 3.1.2 fix\"\n\n  checkout v3.1-dev\n  branch v3.1.2-rel order:3\n  commit id:\"rename src/oas.md to versions/3.1.2.md\"\n\n  checkout main\n  merge v3.1.2-rel tag:\"3.1.2\"\n  checkout dev\n  merge main id:\"auto-sync from main\"\n  checkout v3.1-dev\n  merge dev  id:\"auto-sync from dev\"\n  checkout v3.2-dev\n  merge dev  id:\"auto-sync from dev \"\n\n  commit id:\"more 3.2.0 work\"\n  checkout v3.1-dev\n  commit id:\"update version in src/oas.md to 3.1.3\"\n  commit id:\"a 3.1.3 fix\"\n  checkout v3.2-dev\n  commit id:\"still more 3.2.0 work\"\n\n  checkout v3.1-dev\n  branch v3.1.3-rel order:4\n  commit id:\"rename src/oas.md to versions/3.1.3.md\"\n  checkout v3.2-dev\n  branch v3.2.0-rel order:7\n  commit id:\"rename src/oas.md to versions/3.2.0.md\"\n\n  checkout main\n  merge v3.1.3-rel tag:\"3.1.3\"\n  checkout dev\n  merge main id:\" auto-sync from main\"\n  checkout v3.1-dev\n  merge dev  id:\" auto-sync from dev\"\n  checkout v3.2-dev\n  merge dev  id:\" auto-sync from dev \"\n\n  checkout main\n  merge v3.2.0-rel tag:\"3.2.0\"\n  checkout dev\n  merge main id:\"  auto-sync from main\"\n  checkout v3.1-dev\n  merge dev  id:\"  auto-sync from dev\"\n  checkout v3.2-dev\n  merge dev  id:\"  auto-sync from dev \"\n\n  checkout v3.2-dev\n  branch v3.3-dev order:9\n  checkout v3.2-dev\n  commit id:\"update version in src/oas.md to 3.2.1\"\n  checkout v3.3-dev\n  commit id:\"update version in src/oas.md to 3.3.0\"\n\n  checkout v3.2-dev\n  commit id:\"a 3.2.1 fix\"\n\n  checkout v3.2-dev\n  branch v3.2.1-rel order:8\n  commit id:\"rename src/oas.md to versions/3.2.1.md\"\n\n  checkout dev\n  merge main id:\"   auto-sync from main\"\n  checkout v3.1-dev\n  merge dev  id:\"   auto-sync from dev\"\n  checkout v3.2-dev\n  merge dev  id:\"   auto-sync from dev \"\n  checkout v3.3-dev\n  merge dev  id:\"   auto-sync from dev  \"\n\n  checkout main\n  merge v3.2.1-rel tag:\"3.2.1\"\n  checkout dev\n  merge main id:\"    auto-sync from main\"\n  checkout v3.1-dev\n  merge dev  id:\"    auto-sync from dev\"\n  checkout v3.2-dev\n  merge dev  id:\"    auto-sync from dev \"\n  checkout v3.3-dev\n  merge dev  id:\"    auto-sync from dev  \"\n\n  checkout v3.2-dev\n  commit id:\"update version in src/oas.md to 3.2.2\"\n  checkout v3.3-dev\n  commit id:\"3.3 work\"\n```\n\n### Branch sync automation\n\nTo keep changes in sync, we have some GitHub actions that open pull requests to take changes from `main` onto the `dev` branch, and from `dev` to each active version branch.\n\n- `sync-main-to-dev` opens a pull request with all the changes from the `main` branch that aren't yet included on `dev`. This pull request needs a single approval from either maintainers or TSC and can be merged.\n- `sync-dev-to-vX.Y-dev` opens pull requests with all the changes from `dev` that aren't yet included on the corresponding `vX.Y-dev` branch. These pull requests are automatically merged if all required status checks pass.\n\nThe aim is to bring build script and repository documentation changes to the other branches.\nPublished versions of the specifications will also move across branches with this approach.\n\n## Appendix: Issue Automation\n\n### Automated closure of issues Process\n\nIn an effort to keep the list of issues up to date and easier to navigate through, issues get closed automatically when they become inactive.\n\nThis process makes use of the following labels:\n\n* `Needs author feedback`: the issue has been replied to by the triage team and is awaiting a follow up from the issue's author. This label needs to be added manually by people doing triage/experts whenever they reply. It's removed automatically by the workflow.\n* `No recent activity`: the issue hasn't received a reply from its author within the last 10 days since `Needs author feedback` was added and will be closed within 28 days if the author doesn't follow up. This label is added/removed automatically by the workflow.\n* `Needs attention`: The issue's author has replied since the `Needs author feedback` label was set and the triage team will reply as soon as possible. This label needs to be removed manually by people doing triage/experts whenever they reply. It's added automatically by the workflow.\n\n### Automated TDC agenda issues Process\n\nAn issue is opened every week, 7 days in advance, for the Technical Developer Community (TDC), it provides the information to connect the meeting, and serves as a placeholder to build the agenda for the meeting. Anyone is welcome to attend the meeting, or to add items to the agenda as long as they plan on attending to present the item. These issues are also automatically pinned for visibility and labeled with \"Housekeeping\".\n\nTen (10) days after the meeting date is passed (date in the title of the issue), it gets closed and unpinned automatically.\n\n"
  },
  {
    "path": "EDITORS.md",
    "content": "# OpenAPI Specification Editors\n\n## Active\n\n* Henry Andrews [@handrews](https://github.com/handrews)\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Karen Etheridge [@karenetheridge](https://github.com/karenetheridge)\n* Lorna Mitchell [@lornajane](https://github.com/lornajane)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Miguel Quintero [@miqui](https://github.com/miqui)\n* Mike Kistler [@mikekistler](https://github.com/mikekistler)\n* Ralf Handl [@ralfhandl](https://github.com/ralfhandl)\n* Vincent Biret [@baywet](https://github.com/baywet)\n\n## Emeritus\n\n* Ron Ratovsky [@webron](https://github.com/webron)\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Mike Ralphson [@MikeRalphson](https://github.com/MikeRalphson)\n* Uri Sarid [@usarid](https://github.com/usarid)\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "GOVERNANCE.md",
    "content": "# Governance\n\nThe OpenAPI Specification is a project of the OpenAPI Initiative (OAI), under the auspices of the Linux Foundation. For governance of the OAI, review the [OAI's charter](https://www.openapis.org/participatehow-to-contribute/governance).\n\n## Processes and procedures of the Technical Steering Committee (TSC)\n\nThe TSC is a self-organizing sub-group of the OAI. Herein are its principles and guidelines.\n\n### 1. The establishment of roles and the responsibilities for each role\n\nRoles:\n\n* [Liaison](https://www.merriam-webster.com/dictionary/liaison) — Elected by TSC members in a plurality vote (oral count). Liaison represents the TSC to the OAI's Business Governing Board (BGB) at board meetings (though this itself does not confer voting rights) and is the public facing mouthpiece of the TSC.\n\n* [Maintainer](https://www.merriam-webster.com/dictionary/maintainer) — all and only members of the TSC are maintainers, and are responsible for approving proposed changes to the specification. If membership drops below 3, work is suspended until the BGB can re-establish the minimum. To maintain agility, the TSC should be capped at a maximum 9 members, though that number can be reconsidered by the TSC in the future. Past members will be noted as emeritus status once they are no longer members.\n\n* [Community Manager](https://en.wikipedia.org/wiki/Online_community_manager) — responsible for onboarding of new contributors, dealing with antisocial behaviour before it becomes a code of conduct violation, and managing the issue triage team.\n\n* [Rick](https://www.youtube.com/watch?v=dQw4w9WgXcQ) — Responsible for not giving up or letting down. Requires plurality vote of TSC members.\n\n### 2. Adding members to the TSC\n\nA call-for-nominations period may be agreed upon by the TSC voting members and announced in a timely manner on a weekly TDC call (and documented on the agenda issue), assuming the TSC membership is not already at its maximum.\nA candidate may be nominated through a motion by a voting TSC member in a closed TSC meeting.\nA nominee must not receive opposition votes of more than 25% of the TSC voting membership via a confidential vote held electronically within a week following the nomination meeting.\nApproved nominees become provisional members and are expected to comport themselves as full members of the TSC during the provisional period of 6 months.\nThe provisional period is concluded by a second, confidential vote similar to the nomination period's vote, after which newly confirmed members gain their voting rights.\nAt most there are four voting periods per year (no more than one every three months), with a minimum of one per year.\n\n### 3. Removal of membership from the TSC\n\nOccasionally it may be necessary to remove a TSC member, such as behavior that violates the code of conduct or prolonged absenteeism. A 66% vote (confidential, electronic) of the other TSC members is required to remove a member. Otherwise, TSC members are removed when they renounce their position by informing the TSC of their effective resignation date via email.\n\n### 4. Criteria for decisions\n\nThe group will strive to achieve all decisions via unopposed consensus. When not possible, unresolved conflicts will be raised to the OAI's Technical Oversight Board (TOB).\n\nThe TSC will maintain a publicly available document specifying the process in the contributor guidelines for how proposed changes are merged into the specification. The TSC will document and publicize the schedule of merge parties and release parties for the benefit of the developer community.\n"
  },
  {
    "path": "IMPLEMENTATIONS.md",
    "content": "# Implementations\n\nThe list of implementations formerly in this file is no-longer maintained here.\n\nYou may find a more comprehensive list at <https://tools.openapis.org>\n\nInstructions on listing your projects are contained in <https://github.com/OAI/Tooling#how-can-you-help>\n\nThese tools are not endorsed by the OAI.\n"
  },
  {
    "path": "LICENSE",
    "content": "                                 Apache License\n                           Version 2.0, January 2004\n                        http://www.apache.org/licenses/\n\n   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION\n\n   1. Definitions.\n\n      \"License\" shall mean the terms and conditions for use, reproduction,\n      and distribution as defined by Sections 1 through 9 of this document.\n\n      \"Licensor\" shall mean the copyright owner or entity authorized by\n      the copyright owner that is granting the License.\n\n      \"Legal Entity\" shall mean the union of the acting entity and all\n      other entities that control, are controlled by, or are under common\n      control with that entity. For the purposes of this definition,\n      \"control\" means (i) the power, direct or indirect, to cause the\n      direction or management of such entity, whether by contract or\n      otherwise, or (ii) ownership of fifty percent (50%) or more of the\n      outstanding shares, or (iii) beneficial ownership of such entity.\n\n      \"You\" (or \"Your\") shall mean an individual or Legal Entity\n      exercising permissions granted by this License.\n\n      \"Source\" form shall mean the preferred form for making modifications,\n      including but not limited to software source code, documentation\n      source, and configuration files.\n\n      \"Object\" form shall mean any form resulting from mechanical\n      transformation or translation of a Source form, including but\n      not limited to compiled object code, generated documentation,\n      and conversions to other media types.\n\n      \"Work\" shall mean the work of authorship, whether in Source or\n      Object form, made available under the License, as indicated by a\n      copyright notice that is included in or attached to the work\n      (an example is provided in the Appendix below).\n\n      \"Derivative Works\" shall mean any work, whether in Source or Object\n      form, that is based on (or derived from) the Work and for which the\n      editorial revisions, annotations, elaborations, or other modifications\n      represent, as a whole, an original work of authorship. For the purposes\n      of this License, Derivative Works shall not include works that remain\n      separable from, or merely link (or bind by name) to the interfaces of,\n      the Work and Derivative Works thereof.\n\n      \"Contribution\" shall mean any work of authorship, including\n      the original version of the Work and any modifications or additions\n      to that Work or Derivative Works thereof, that is intentionally\n      submitted to Licensor for inclusion in the Work by the copyright owner\n      or by an individual or Legal Entity authorized to submit on behalf of\n      the copyright owner. For the purposes of this definition, \"submitted\"\n      means any form of electronic, verbal, or written communication sent\n      to the Licensor or its representatives, including but not limited to\n      communication on electronic mailing lists, source code control systems,\n      and issue tracking systems that are managed by, or on behalf of, the\n      Licensor for the purpose of discussing and improving the Work, but\n      excluding communication that is conspicuously marked or otherwise\n      designated in writing by the copyright owner as \"Not a Contribution.\"\n\n      \"Contributor\" shall mean Licensor and any individual or Legal Entity\n      on behalf of whom a Contribution has been received by Licensor and\n      subsequently incorporated within the Work.\n\n   2. Grant of Copyright License. Subject to the terms and conditions of\n      this License, each Contributor hereby grants to You a perpetual,\n      worldwide, non-exclusive, no-charge, royalty-free, irrevocable\n      copyright license to reproduce, prepare Derivative Works of,\n      publicly display, publicly perform, sublicense, and distribute the\n      Work and such Derivative Works in Source or Object form.\n\n   3. Grant of Patent License. Subject to the terms and conditions of\n      this License, each Contributor hereby grants to You a perpetual,\n      worldwide, non-exclusive, no-charge, royalty-free, irrevocable\n      (except as stated in this section) patent license to make, have made,\n      use, offer to sell, sell, import, and otherwise transfer the Work,\n      where such license applies only to those patent claims licensable\n      by such Contributor that are necessarily infringed by their\n      Contribution(s) alone or by combination of their Contribution(s)\n      with the Work to which such Contribution(s) was submitted. If You\n      institute patent litigation against any entity (including a\n      cross-claim or counterclaim in a lawsuit) alleging that the Work\n      or a Contribution incorporated within the Work constitutes direct\n      or contributory patent infringement, then any patent licenses\n      granted to You under this License for that Work shall terminate\n      as of the date such litigation is filed.\n\n   4. Redistribution. You may reproduce and distribute copies of the\n      Work or Derivative Works thereof in any medium, with or without\n      modifications, and in Source or Object form, provided that You\n      meet the following conditions:\n\n      (a) You must give any other recipients of the Work or\n          Derivative Works a copy of this License; and\n\n      (b) You must cause any modified files to carry prominent notices\n          stating that You changed the files; and\n\n      (c) You must retain, in the Source form of any Derivative Works\n          that You distribute, all copyright, patent, trademark, and\n          attribution notices from the Source form of the Work,\n          excluding those notices that do not pertain to any part of\n          the Derivative Works; and\n\n      (d) If the Work includes a \"NOTICE\" text file as part of its\n          distribution, then any Derivative Works that You distribute must\n          include a readable copy of the attribution notices contained\n          within such NOTICE file, excluding those notices that do not\n          pertain to any part of the Derivative Works, in at least one\n          of the following places: within a NOTICE text file distributed\n          as part of the Derivative Works; within the Source form or\n          documentation, if provided along with the Derivative Works; or,\n          within a display generated by the Derivative Works, if and\n          wherever such third-party notices normally appear. The contents\n          of the NOTICE file are for informational purposes only and\n          do not modify the License. You may add Your own attribution\n          notices within Derivative Works that You distribute, alongside\n          or as an addendum to the NOTICE text from the Work, provided\n          that such additional attribution notices cannot be construed\n          as modifying the License.\n\n      You may add Your own copyright statement to Your modifications and\n      may provide additional or different license terms and conditions\n      for use, reproduction, or distribution of Your modifications, or\n      for any such Derivative Works as a whole, provided Your use,\n      reproduction, and distribution of the Work otherwise complies with\n      the conditions stated in this License.\n\n   5. Submission of Contributions. Unless You explicitly state otherwise,\n      any Contribution intentionally submitted for inclusion in the Work\n      by You to the Licensor shall be under the terms and conditions of\n      this License, without any additional terms or conditions.\n      Notwithstanding the above, nothing herein shall supersede or modify\n      the terms of any separate license agreement you may have executed\n      with Licensor regarding such Contributions.\n\n   6. Trademarks. This License does not grant permission to use the trade\n      names, trademarks, service marks, or product names of the Licensor,\n      except as required for reasonable and customary use in describing the\n      origin of the Work and reproducing the content of the NOTICE file.\n\n   7. Disclaimer of Warranty. Unless required by applicable law or\n      agreed to in writing, Licensor provides the Work (and each\n      Contributor provides its Contributions) on an \"AS IS\" BASIS,\n      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or\n      implied, including, without limitation, any warranties or conditions\n      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A\n      PARTICULAR PURPOSE. You are solely responsible for determining the\n      appropriateness of using or redistributing the Work and assume any\n      risks associated with Your exercise of permissions under this License.\n\n   8. Limitation of Liability. In no event and under no legal theory,\n      whether in tort (including negligence), contract, or otherwise,\n      unless required by applicable law (such as deliberate and grossly\n      negligent acts) or agreed to in writing, shall any Contributor be\n      liable to You for damages, including any direct, indirect, special,\n      incidental, or consequential damages of any character arising as a\n      result of this License or out of the use or inability to use the\n      Work (including but not limited to damages for loss of goodwill,\n      work stoppage, computer failure or malfunction, or any and all\n      other commercial damages or losses), even if such Contributor\n      has been advised of the possibility of such damages.\n\n   9. Accepting Warranty or Additional Liability. While redistributing\n      the Work or Derivative Works thereof, You may choose to offer,\n      and charge a fee for, acceptance of support, warranty, indemnity,\n      or other liability obligations and/or rights consistent with this\n      License. However, in accepting such obligations, You may act only\n      on Your own behalf and on Your sole responsibility, not on behalf\n      of any other Contributor, and only if You agree to indemnify,\n      defend, and hold each Contributor harmless for any liability\n      incurred by, or claims asserted against, such Contributor by reason\n      of your accepting any such warranty or additional liability.\n\n   END OF TERMS AND CONDITIONS\n\n   APPENDIX: How to apply the Apache License to your work.\n\n      To apply the Apache License to your work, attach the following\n      boilerplate notice, with the fields enclosed by brackets \"{}\"\n      replaced with your own identifying information. (Don't include\n      the brackets!)  The text should be enclosed in the appropriate\n      comment syntax for the file format. We also recommend that a\n      file or class name and description of purpose be included on the\n      same \"printed page\" as the copyright notice for easier\n      identification within third-party archives.\n\n   Copyright The Linux Foundation\n\n   Licensed under the Apache License, Version 2.0 (the \"License\");\n   you may not use this file except in compliance with the License.\n   You may obtain a copy of the License at\n\n       http://www.apache.org/licenses/LICENSE-2.0\n\n   Unless required by applicable law or agreed to in writing, software\n   distributed under the License is distributed on an \"AS IS\" BASIS,\n   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n   See the License for the specific language governing permissions and\n   limitations under the License.\n"
  },
  {
    "path": "MAINTAINERS.md",
    "content": "# OpenAPI Initiative Technical Steering Committee Members\n\n## Active\n\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Lorna Mitchell [@lornajane](https://github.com/lornajane)\n* Mike Kistler [@mikekistler](https://github.com/mikekistler)\n* Miguel Quintero [@miqui](https://github.com/miqui)\n* Ralf Handl [@ralfhandl](https://github.com/ralfhandl)\n\n## Emeritus\n\n* Ron Ratovsky [@webron](https://github.com/webron)\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Mike Ralphson [@MikeRalphson](https://github.com/MikeRalphson)\n* Uri Sarid [@usarid](https://github.com/usarid)\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "README.md",
    "content": "# The OpenAPI Specification\n\n![Build Status](https://github.com/OAI/OpenAPI-Specification/workflows/validate-markdown/badge.svg) [![Issue triagers](https://www.codetriage.com/oai/openapi-specification/badges/users.svg)](https://www.codetriage.com/oai/openapi-specification)\n\n![OpenAPI logo](https://avatars3.githubusercontent.com/u/16343502?v=3&s=200)\n\n\nThe OpenAPI Specification is a community-driven open specification within the [OpenAPI Initiative](https://www.openapis.org/), a Linux Foundation Collaborative Project.\n\nThe OpenAPI Specification (OAS) defines a standard, programming language-agnostic interface description for HTTP APIs. This allows both humans and computers to discover and understand the capabilities of a service without requiring access to source code, additional documentation, or inspection of network traffic. When properly defined via OpenAPI, a consumer can understand and interact with the remote service with a minimal amount of implementation logic. Similar to what interface descriptions have done for lower-level programming, the OpenAPI Specification removes guesswork in calling a service.\n\nUse cases for machine-readable API definition documents include, but are not limited to: interactive documentation; code generation for documentation, clients, and servers; and automation of test cases. OpenAPI documents describe API services and are represented in YAML or JSON formats. These documents may be produced and served statically or generated dynamically from an application.\n\nThe OpenAPI Specification does not require rewriting existing APIs. It does not require binding any software to a service – the described service may not even be owned by the creator of its description. It does, however, require that the service's capabilities be described in the structure of the OpenAPI Specification. Not all services can be described by OpenAPI – this specification is not intended to cover every possible style of HTTP APIs, but does include support for [REST APIs](https://en.wikipedia.org/wiki/Representational_state_transfer). The OpenAPI Specification does not mandate a specific development process such as design-first or code-first. It does facilitate either technique by establishing clear interactions with an HTTP API.\n\nThis GitHub project is the starting point for OpenAPI. Here you will find the information you need about the OpenAPI Specification, simple examples of what it looks like, and some general information regarding the project.\n\n## Versions\n\nThis repository contains [the Markdown sources](versions) for [all published OpenAPI Specification versions](https://spec.openapis.org/). For release notes and release candidate versions, refer to the [releases page](https://github.com/OAI/OpenAPI-Specification/releases).\n\n## See It in Action\n\nIf you just want to see it work, check out the [list of current examples](https://learn.openapis.org/examples/).\n\n## Tools and Libraries\n\nLooking to see how you can create your own OpenAPI definition, present it, or otherwise use it? Check out the growing\n[list of implementations](IMPLEMENTATIONS.md).\n\n## Participation\n\nThe current process for developing the OpenAPI Specification is described in\nthe [Contributing Guidelines](CONTRIBUTING.md).\n\nDeveloping the next version of the OpenAPI Specification is guided by the [Technical Steering Committee (TSC)](MAINTAINERS.md). This group of committers bring their API expertise, incorporate feedback from the community, and expand the group of committers as appropriate. All development activity on the future specification will be performed as features and merged into this branch. Upon release of the future specification, this branch will be merged to `main`.\n\nThe TSC holds weekly web conferences to review open pull requests and discuss open issues related to the evolving OpenAPI Specification. Participation in weekly calls and scheduled working sessions is open to the community. You can view the entire OpenAPI [technical meeting calendar](https://calendar.google.com/calendar/u/0/embed?src=c_fue82vsncog6ahhjvuokjo8qsk@group.calendar.google.com) online.\n\nThe OpenAPI Initiative encourages participation from individuals and companies alike. If you want to participate in the evolution of the OpenAPI Specification, consider taking the following actions:\n\n* Review the specification [markdown sources](versions) and [authoritative _source-of-truth_ HTML renderings](https://spec.openapis.org/), including full credits and citations.\n* Review the [contributing](CONTRIBUTING.md) process so you understand how the spec is evolving.\n* Check the [discussions](https://github.com/OAI/OpenAPI-Specification/discussions), [issues](https://github.com/OAI/OpenAPI-Specification/issues) and [pull requests](https://github.com/OAI/OpenAPI-Specification/pulls) to see if someone has already documented your idea or feedback on the specification. You can follow an existing conversation by subscribing to the existing issue or PR.\n* Subscribe to an open issue a day (or a week) in your inbox via [CodeTriage.com](https://www.codetriage.com/oai/openapi-specification).\n* Create a discussion to describe a new concern, ideally with clear explanations of related use cases.\n\nNot all feedback can be accommodated, and there may be solid arguments for or against a change being appropriate for the specification.\n\n## Licensing\n\nSee: [License (Apache-2.0)](https://github.com/OAI/OpenAPI-Specification/blob/main/LICENSE)\n\n\n"
  },
  {
    "path": "SECURITY_CONSIDERATIONS.md",
    "content": "# Security Considerations\n\n## OpenAPI Document Formats\n\nOpenAPI documents use JSON, YAML, and JSON Schema, and therefore share their security considerations:\n\n- [JSON](https://www.iana.org/assignments/media-types/application/json)\n- [YAML](https://www.iana.org/assignments/media-types/application/yaml)\n- [JSON Schema Core](https://json-schema.org/draft/2020-12/json-schema-core#section-13)\n- [JSON Schema Validation](https://json-schema.org/draft/2020-12/json-schema-validation#name-security-considerations)\n\n## Tooling and Usage Scenarios\n\nIn addition, OpenAPI documents are processed by a wide variety of tooling for numerous different purposes, such as client code generation, documentation generation, server side routing, and API testing. OpenAPI document authors must consider the risks of the scenarios where the OpenAPI document may be used.\n\n## Security Schemes\n\nAn OpenAPI document describes the security schemes used to protect the resources it defines. The security schemes available offer varying degrees of protection. Factors such as the sensitivity of the data and the potential impact of a security breach should guide the selection of security schemes for the API resources. Some security schemes, such as basic auth and OAuth Implicit flow, are supported for compatibility with existing APIs. However, their inclusion in OpenAPI does not constitute an endorsement of their use, particularly for highly sensitive data or operations.\n\n## Handling External Resources\n\nOpenAPI documents may contain references to external resources that may be dereferenced automatically by consuming tools. External resources may be hosted on different domains that may be untrusted. References in an OpenAPI document, or across OpenAPI documents may cause a cycle. Tooling must detect and handle cycles to prevent resource exhaustion.\n\n## Markdown and HTML Sanitization\n\nCertain properties allow the use of Markdown which can contain HTML including script. It is the responsibility of tooling to appropriately sanitize the Markdown.\n"
  },
  {
    "path": "SPECIAL_INTEREST_GROUPS.md",
    "content": "# OpenAPI Special Interest Groups (SIGs)\n\nOpenAPI Special Interest Groups, or \"SIGs\", are the OpenAPI Initiative's way of focusing work in particular areas. SIGs may start with just a Slack channel to gauge interest. SIGs with enough traction to produce work may have their own GitHub repositories and regular Zoom calls, and ultimately produce work that becomes part of, or a companion to, the OpenAPI Specification.\n\nSee the [OAS community repository](https://github.com/OAI/community/blob/main/SPECIAL_INTEREST_GROUPS.md) for a complete list of SIGs, and for more information about forming a SIG.\n"
  },
  {
    "path": "TOB.md",
    "content": "# Technical Oversight Board (\"TOB\")\n\n## Description\n\n> The TOB is responsible for managing conflicts, violations of procedures or guidelines or other issues that cannot be resolved in the TSC for the OAS. For further details please consult the OpenAPI Project Charter.\n\n## TSC Elected - terms through May 2023\n\nIsabelle Mauny @isamauny\n\nUri Sarid @usarid\n\nMarsh Gardiner @earth2marsh\n\nRon Ratovsky @webron\n\n## BGB Elected - terms through May 2022\n\nDarrel Miller @darrelmiller\n\nJerome Louvel @jlouvel\n\nJeremy Whitlock @whitlockjc\n"
  },
  {
    "path": "_archive_/README.md",
    "content": "# Archive\n\nThis folder contains files that are no longer actively maintained.\n"
  },
  {
    "path": "_archive_/schemas/README.md",
    "content": "# Archive of outdated JSON Schema Files\n\n> [!TIP]\n> JSON Schema files for validating OpenAPI descriptions using current OpenAPI versions are available on https://spec.openapis.org/#openapi-specification-schemas.\n>\n> These schema files are maintained in the `src/schemas` folder of the corresponding `vX.Y-dev` branch in this repository.\n\n> [!CAUTION]\n> Schema files in this folder are not maintained any more and are not intended for productive use.\n"
  },
  {
    "path": "_archive_/schemas/v1.2/README.md",
    "content": "# Swagger Specification JSON Schemas\n\nThe work on the JSON Schema for the Swagger Specification was donated to the community by [Francis Galiegue](https://github.com/fge)!\n\nKeep in mind that due to some JSON Schema limitations, not all constraints can be described. The missing constraints will be listed here in the future.\n"
  },
  {
    "path": "_archive_/schemas/v1.2/apiDeclaration.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/apiDeclaration.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"type\": \"object\",\n    \"required\": [ \"swaggerVersion\", \"basePath\", \"apis\" ],\n    \"properties\": {\n        \"swaggerVersion\": { \"enum\": [ \"1.2\" ] },\n        \"apiVersion\": { \"type\": \"string\" },\n        \"basePath\": {\n            \"type\": \"string\",\n            \"format\": \"uri\",\n            \"pattern\": \"^https?://\"\n        },\n        \"resourcePath\": {\n            \"type\": \"string\",\n            \"format\": \"uri\",\n            \"pattern\": \"^/\"\n        },\n        \"apis\": {\n            \"type\": \"array\",\n            \"items\": { \"$ref\": \"#/definitions/apiObject\" }\n        },\n        \"models\": {\n            \"type\": \"object\",\n            \"additionalProperties\": {\n                \"$ref\": \"modelsObject.json#\"\n            }\n        },\n        \"produces\": { \"$ref\": \"#/definitions/mimeTypeArray\" },\n        \"consumes\": { \"$ref\": \"#/definitions/mimeTypeArray\" },\n        \"authorizations\": { \"$ref\": \"authorizationObject.json#\" }\n    },\n    \"additionalProperties\": false,\n    \"definitions\": {\n        \"apiObject\": {\n            \"type\": \"object\",\n            \"required\": [ \"path\", \"operations\" ],\n            \"properties\": {\n                \"path\": {\n                    \"type\": \"string\",\n                    \"format\": \"uri-template\",\n                    \"pattern\": \"^/\"\n                },\n                \"description\": { \"type\": \"string\" },\n                \"operations\": {\n                    \"type\": \"array\",\n                    \"items\": { \"$ref\": \"operationObject.json#\" }\n                }\n            },\n            \"additionalProperties\": false\n        },\n        \"mimeTypeArray\": {\n            \"type\": \"array\",\n            \"items\": {\n                \"type\": \"string\",\n                \"format\": \"mime-type\"\n            },\n            \"uniqueItems\": true\n        }\n    }\n}\n"
  },
  {
    "path": "_archive_/schemas/v1.2/authorizationObject.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/authorizationObject.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"type\": \"object\",\n    \"additionalProperties\": {\n        \"oneOf\": [\n            {\n                \"$ref\": \"#/definitions/basicAuth\"\n            },\n            {\n                \"$ref\": \"#/definitions/apiKey\"\n            },\n            {\n                \"$ref\": \"#/definitions/oauth2\"\n            }\n        ]\n    },\n    \"definitions\": {\n        \"basicAuth\": {\n            \"required\": [ \"type\" ],\n            \"properties\": {\n                \"type\": { \"enum\": [ \"basicAuth\" ] }\n            },\n            \"additionalProperties\": false\n        },\n        \"apiKey\": {\n            \"required\": [ \"type\", \"passAs\", \"keyname\" ],\n            \"properties\": {\n                \"type\": { \"enum\": [ \"apiKey\" ] },\n                \"passAs\": { \"enum\": [ \"header\", \"query\" ] },\n                \"keyname\": { \"type\": \"string\" }\n            },\n            \"additionalProperties\": false\n        },\n        \"oauth2\": {\n            \"type\": \"object\",\n            \"required\": [ \"type\", \"grantTypes\" ],\n            \"properties\": {\n                \"type\": { \"enum\": [ \"oauth2\" ] },\n                \"scopes\": {\n                    \"type\": \"array\",\n                    \"items\": { \"$ref\": \"#/definitions/oauth2Scope\" }\n                },\n                \"grantTypes\": { \"$ref\": \"oauth2GrantType.json#\" }\n            },\n            \"additionalProperties\": false\n        },\n        \"oauth2Scope\": {\n            \"type\": \"object\",\n            \"required\": [ \"scope\" ],\n            \"properties\": {\n                \"scope\": { \"type\": \"string\" },\n                \"description\": { \"type\": \"string\" }\n            },\n            \"additionalProperties\": false\n        }\n    }\n}\n\n"
  },
  {
    "path": "_archive_/schemas/v1.2/dataType.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/dataType.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"description\": \"Data type as described by the specification (version 1.2)\",\n    \"type\": \"object\",\n    \"oneOf\": [\n        { \"$ref\": \"#/definitions/refType\" },\n        { \"$ref\": \"#/definitions/voidType\" },\n        { \"$ref\": \"#/definitions/primitiveType\" },\n        { \"$ref\": \"#/definitions/modelType\" },\n        { \"$ref\": \"#/definitions/arrayType\" }\n    ],\n    \"definitions\": {\n        \"refType\": {\n            \"required\": [ \"$ref\" ],\n            \"properties\": {\n                \"$ref\": { \"type\": \"string\" }\n            },\n            \"additionalProperties\": false\n        },\n        \"voidType\": {\n            \"enum\": [ { \"type\": \"void\" } ]\n        },\n        \"modelType\": {\n            \"required\": [ \"type\" ],\n            \"properties\": {\n                \"type\": {\n                    \"type\": \"string\",\n                    \"not\": {\n                        \"enum\": [ \"boolean\", \"integer\", \"number\", \"string\", \"array\" ]\n                    }\n                }\n            },\n            \"additionalProperties\": false\n        },\n        \"primitiveType\": {\n            \"required\": [ \"type\" ],\n            \"properties\": {\n                \"type\": {\n                    \"enum\": [ \"boolean\", \"integer\", \"number\", \"string\" ]\n                },\n                \"format\": { \"type\": \"string\" },\n                \"defaultValue\": {\n                    \"not\": { \"type\": [ \"array\", \"object\", \"null\" ] }\n                },\n                \"enum\": {\n                    \"type\": \"array\",\n                    \"items\": { \"type\": \"string\" },\n                    \"minItems\": 1,\n                    \"uniqueItems\": true\n                },\n                \"minimum\": { \"type\": \"string\" },\n                \"maximum\": { \"type\": \"string\" }\n            },\n            \"additionalProperties\": false,\n            \"dependencies\": {\n                \"format\": {\n                    \"oneOf\": [\n                        {\n                            \"properties\": {\n                                \"type\": { \"enum\": [ \"integer\" ] },\n                                \"format\": { \"enum\": [ \"int32\", \"int64\" ] }\n                            }\n                        },\n                        {\n                            \"properties\": {\n                                \"type\": { \"enum\": [ \"number\" ] },\n                                \"format\": { \"enum\": [ \"float\", \"double\" ] }\n                            }\n                        },\n                        {\n                            \"properties\": {\n                                \"type\": { \"enum\": [ \"string\" ] },\n                                \"format\": {\n                                    \"enum\": [ \"byte\", \"date\", \"date-time\" ]\n                                }\n                            }\n                        }\n                    ]\n                },\n                \"enum\": {\n                    \"properties\": {\n                        \"type\": { \"enum\": [ \"string\" ] }\n                    }\n                },\n                \"minimum\": {\n                    \"properties\": {\n                        \"type\": { \"enum\": [ \"integer\", \"number\" ] }\n                    }\n                },\n                \"maximum\": {\n                    \"properties\": {\n                        \"type\": { \"enum\": [ \"integer\", \"number\" ] }\n                    }\n                }\n            }\n        },\n        \"arrayType\": {\n            \"required\": [ \"type\", \"items\" ],\n            \"properties\": {\n                \"type\": { \"enum\": [ \"array\" ] },\n                \"items\": {\n                    \"type\": \"array\",\n                    \"items\": { \"$ref\": \"#/definitions/itemsObject\" }\n                },\n                \"uniqueItems\": { \"type\": \"boolean\" }\n            },\n            \"additionalProperties\": false\n        },\n        \"itemsObject\": {\n            \"oneOf\": [\n                {\n                    \"$ref\": \"#/definitions/refType\"\n                },\n                {\n                    \"allOf\": [\n                        {\n                            \"$ref\": \"#/definitions/primitiveType\"\n                        },\n                        {\n                            \"properties\": {\n                                \"type\": {},\n                                \"format\": {}\n                            },\n                            \"additionalProperties\": false\n                        }\n                    ]\n                }\n            ]\n        }\n    }\n}"
  },
  {
    "path": "_archive_/schemas/v1.2/dataTypeBase.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/dataTypeBase.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"description\": \"Data type fields (section 4.3.3)\",\n    \"type\": \"object\",\n    \"oneOf\": [\n        { \"required\": [ \"type\" ] },\n        { \"required\": [ \"$ref\" ] }\n    ],\n    \"properties\": {\n        \"type\": { \"type\": \"string\" },\n        \"$ref\": { \"type\": \"string\" },\n        \"format\": { \"type\": \"string\" },\n        \"defaultValue\": {\n            \"not\": { \"type\": [ \"array\", \"object\", \"null\" ] }\n        },\n        \"enum\": {\n            \"type\": \"array\",\n            \"items\": { \"type\": \"string\" },\n            \"uniqueItems\": true,\n            \"minItems\": 1\n        },\n        \"minimum\": { \"type\": \"string\" },\n        \"maximum\": { \"type\": \"string\" },\n        \"items\": { \"$ref\": \"#/definitions/itemsObject\" },\n        \"uniqueItems\": { \"type\": \"boolean\" }\n    },\n    \"dependencies\": {\n        \"format\": {\n            \"oneOf\": [\n                {\n                    \"properties\": {\n                        \"type\": { \"enum\": [ \"integer\" ] },\n                        \"format\": { \"enum\": [ \"int32\", \"int64\" ] }\n                    }\n                },\n                {\n                    \"properties\": {\n                        \"type\": { \"enum\": [ \"number\" ] },\n                        \"format\": { \"enum\": [ \"float\", \"double\" ] }\n                    }\n                },\n                {\n                    \"properties\": {\n                        \"type\": { \"enum\": [ \"string\" ] },\n                        \"format\": {\n                            \"enum\": [ \"byte\", \"date\", \"date-time\" ]\n                        }\n                    }\n                }\n            ]\n        }\n    },\n    \"definitions\": {\n        \"itemsObject\": {\n            \"oneOf\": [\n                {\n                    \"type\": \"object\",\n                    \"required\": [ \"$ref\" ],\n                    \"properties\": {\n                        \"$ref\": { \"type\": \"string\" }\n                    },\n                    \"additionalProperties\": false\n                },\n                {\n                    \"allOf\": [\n                        { \"$ref\": \"#\" },\n                        {\n                            \"required\": [ \"type\" ],\n                            \"properties\": {\n                                \"type\": {},\n                                \"format\": {}\n                            },\n                            \"additionalProperties\": false\n                        }\n                    ]\n                }\n            ]\n        }\n    }\n}\n"
  },
  {
    "path": "_archive_/schemas/v1.2/infoObject.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/infoObject.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"description\": \"info object (section 5.1.3)\",\n    \"type\": \"object\",\n    \"required\": [ \"title\", \"description\" ],\n    \"properties\": {\n        \"title\": { \"type\": \"string\" },\n        \"description\": { \"type\": \"string\" },\n        \"termsOfServiceUrl\": { \"type\": \"string\", \"format\": \"uri\" },\n        \"contact\": { \"type\": \"string\", \"format\": \"email\" },\n        \"license\": { \"type\": \"string\" },\n        \"licenseUrl\": { \"type\": \"string\", \"format\": \"uri\" }\n    },\n    \"additionalProperties\": false\n}"
  },
  {
    "path": "_archive_/schemas/v1.2/modelsObject.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/modelsObject.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"type\": \"object\",\n    \"required\": [ \"id\", \"properties\" ],\n    \"properties\": {\n        \"id\": { \"type\": \"string\" },\n        \"description\": { \"type\": \"string\" },\n        \"properties\": {\n            \"type\": \"object\",\n            \"additionalProperties\": { \"$ref\": \"#/definitions/propertyObject\" }\n        },\n        \"subTypes\": {\n            \"type\": \"array\",\n            \"items\": { \"type\": \"string\" },\n            \"uniqueItems\": true\n        },\n        \"discriminator\": { \"type\": \"string\" }\n    },\n    \"dependencies\": {\n        \"subTypes\": [ \"discriminator\" ]\n    },\n    \"definitions\": {\n        \"propertyObject\": {\n            \"allOf\": [\n                {\n                    \"not\": { \"$ref\": \"#\" }\n                },\n                {\n                    \"$ref\": \"dataTypeBase.json#\"\n                }\n            ]\n        }\n    }\n}\n\n"
  },
  {
    "path": "_archive_/schemas/v1.2/oauth2GrantType.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/oauth2GrantType.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"type\": \"object\",\n    \"minProperties\": 1,\n    \"properties\": {\n        \"implicit\": { \"$ref\": \"#/definitions/implicit\" },\n        \"authorization_code\": { \"$ref\": \"#/definitions/authorizationCode\" }\n    },\n    \"definitions\": {\n        \"implicit\": {\n            \"type\": \"object\",\n            \"required\": [ \"loginEndpoint\" ],\n            \"properties\": {\n                \"loginEndpoint\": { \"$ref\": \"#/definitions/loginEndpoint\" },\n                \"tokenName\": { \"type\": \"string\" }\n            },\n            \"additionalProperties\": false\n        },\n        \"authorizationCode\": {\n            \"type\": \"object\",\n            \"required\": [ \"tokenEndpoint\", \"tokenRequestEndpoint\" ],\n            \"properties\": {\n                \"tokenEndpoint\": { \"$ref\": \"#/definitions/tokenEndpoint\" },\n                \"tokenRequestEndpoint\": { \"$ref\": \"#/definitions/tokenRequestEndpoint\" }\n            },\n            \"additionalProperties\": false\n        },\n        \"loginEndpoint\": {\n            \"type\": \"object\",\n            \"required\": [ \"url\" ],\n            \"properties\": {\n                \"url\": { \"type\": \"string\", \"format\": \"uri\" }\n            },\n            \"additionalProperties\": false\n        },\n        \"tokenEndpoint\": {\n            \"type\": \"object\",\n            \"required\": [ \"url\" ],\n            \"properties\": {\n                \"url\": { \"type\": \"string\", \"format\": \"uri\" },\n                \"tokenName\": { \"type\": \"string\" }\n            },\n            \"additionalProperties\": false\n        },\n        \"tokenRequestEndpoint\": {\n            \"type\": \"object\",\n            \"required\": [ \"url\" ],\n            \"properties\": {\n                \"url\": { \"type\": \"string\", \"format\": \"uri\" },\n                \"clientIdName\": { \"type\": \"string\" },\n                \"clientSecretName\": { \"type\": \"string\" }\n            },\n            \"additionalProperties\": false\n        }\n    }\n}"
  },
  {
    "path": "_archive_/schemas/v1.2/operationObject.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/operationObject.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"type\": \"object\",\n    \"allOf\": [\n        { \"$ref\": \"dataTypeBase.json#\" },\n        {\n            \"required\": [ \"method\", \"nickname\", \"parameters\" ],\n            \"properties\": {\n                \"method\": { \"enum\": [ \"GET\", \"HEAD\", \"POST\", \"PUT\", \"PATCH\", \"DELETE\", \"OPTIONS\" ] },\n                \"summary\": { \"type\": \"string\" },\n                \"notes\": { \"type\": \"string\" },\n                \"nickname\": {\n                    \"type\": \"string\",\n                    \"pattern\": \"^[a-zA-Z0-9_]+$\"\n                },\n                \"authorizations\": {\n                    \"type\": \"object\",\n                    \"additionalProperties\": {\n                        \"type\": \"array\",\n                        \"items\": {\n                            \"$ref\": \"authorizationObject.json#/definitions/oauth2Scope\"\n                        }\n                    }\n                },\n                \"parameters\": {\n                    \"type\": \"array\",\n                    \"items\": { \"$ref\": \"parameterObject.json#\" }\n                },\n                \"responseMessages\": {\n                    \"type\": \"array\",\n                    \"items\": { \"$ref\": \"#/definitions/responseMessageObject\"}\n                },\n                \"produces\": { \"$ref\": \"#/definitions/mimeTypeArray\" },\n                \"consumes\": { \"$ref\": \"#/definitions/mimeTypeArray\" },\n                \"deprecated\": { \"enum\": [ \"true\", \"false\" ] }\n            }\n        }\n    ],\n    \"definitions\": {\n        \"responseMessageObject\": {\n            \"type\": \"object\",\n            \"required\": [ \"code\", \"message\" ],\n            \"properties\": {\n                \"code\": { \"$ref\": \"#/definitions/rfc2616section10\" },\n                \"message\": { \"type\": \"string\" },\n                \"responseModel\": { \"type\": \"string\" }\n            }\n        },\n        \"rfc2616section10\": {\n            \"type\": \"integer\",\n            \"minimum\": 100,\n            \"maximum\": 600,\n            \"exclusiveMaximum\": true\n        },\n        \"mimeTypeArray\": {\n            \"type\": \"array\",\n            \"items\": {\n                \"type\": \"string\",\n                \"format\": \"mime-type\"\n            },\n            \"uniqueItems\": true\n        }\n    }\n}\n"
  },
  {
    "path": "_archive_/schemas/v1.2/parameterObject.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/parameterObject.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"type\": \"object\",\n    \"allOf\": [\n        { \"$ref\": \"dataTypeBase.json#\" },\n        {\n            \"required\": [ \"paramType\", \"name\" ],\n            \"properties\": {\n                \"paramType\": {\n                    \"enum\": [ \"path\", \"query\", \"body\", \"header\", \"form\" ]\n                },\n                \"name\": { \"type\": \"string\" },\n                \"description\": { \"type\": \"string\" },\n                \"required\": { \"type\": \"boolean\" },\n                \"allowMultiple\": { \"type\": \"boolean\" }\n            }\n        },\n        {\n            \"description\": \"type File requires special paramType and consumes\",\n            \"oneOf\": [\n                {\n                    \"properties\": {\n                        \"type\": { \"not\": { \"enum\": [ \"File\" ] } }\n                    }\n                },\n                {\n                    \"properties\": {\n                        \"type\": { \"enum\": [ \"File\" ] },\n                        \"paramType\": { \"enum\": [ \"form\" ] },\n                        \"consumes\": { \"enum\": [ \"multipart/form-data\" ] }\n                    }\n                }\n            ]\n        }\n    ]\n}\n"
  },
  {
    "path": "_archive_/schemas/v1.2/resourceListing.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/resourceListing.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"type\": \"object\",\n    \"required\": [ \"swaggerVersion\", \"apis\" ],\n    \"properties\": {\n        \"swaggerVersion\": { \"enum\": [ \"1.2\" ] },\n        \"apis\": {\n            \"type\": \"array\",\n            \"items\": { \"$ref\": \"resourceObject.json#\" }\n        },\n        \"apiVersion\": { \"type\": \"string\" },\n        \"info\": { \"$ref\": \"infoObject.json#\" },\n        \"authorizations\": { \"$ref\": \"authorizationObject.json#\" }\n    }\n}\n"
  },
  {
    "path": "_archive_/schemas/v1.2/resourceObject.json",
    "content": "{\n    \"id\": \"https://raw.githubusercontent.com/OAI/OpenAPI-Specification/master/schemas/v1.2/resourceObject.json#\",\n    \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n    \"type\": \"object\",\n    \"required\": [ \"path\" ],\n    \"properties\": {\n        \"path\": { \"type\": \"string\", \"format\": \"uri\" },\n        \"description\": { \"type\": \"string\" }\n    },\n    \"additionalProperties\": false\n}"
  },
  {
    "path": "_archive_/schemas/v2.0/README.md",
    "content": "# OpenAPI Specification v2.0 JSON Schema\n\nThis is the JSON Schema file for the OpenAPI Specification version 2.0. Download and install it via NPM.\n\n## Install via NPM\n\n```shell\nnpm install --save swagger-schema-official\n```\n\n## License\n\nApache-2.0\n"
  },
  {
    "path": "_archive_/schemas/v2.0/schema.json",
    "content": "{\n  \"title\": \"A JSON Schema for Swagger 2.0 API.\",\n  \"id\": \"http://swagger.io/v2/schema.json#\",\n  \"$schema\": \"http://json-schema.org/draft-04/schema#\",\n  \"type\": \"object\",\n  \"required\": [\n    \"swagger\",\n    \"info\",\n    \"paths\"\n  ],\n  \"additionalProperties\": false,\n  \"patternProperties\": {\n    \"^x-\": {\n      \"$ref\": \"#/definitions/vendorExtension\"\n    }\n  },\n  \"properties\": {\n    \"swagger\": {\n      \"type\": \"string\",\n      \"enum\": [\n        \"2.0\"\n      ],\n      \"description\": \"The Swagger version of this document.\"\n    },\n    \"info\": {\n      \"$ref\": \"#/definitions/info\"\n    },\n    \"host\": {\n      \"type\": \"string\",\n      \"pattern\": \"^[^{}/ :\\\\\\\\]+(?::\\\\d+)?$\",\n      \"description\": \"The host (name or ip) of the API. Example: 'swagger.io'\"\n    },\n    \"basePath\": {\n      \"type\": \"string\",\n      \"pattern\": \"^/\",\n      \"description\": \"The base path to the API. Example: '/api'.\"\n    },\n    \"schemes\": {\n      \"$ref\": \"#/definitions/schemesList\"\n    },\n    \"consumes\": {\n      \"description\": \"A list of MIME types accepted by the API.\",\n      \"allOf\": [\n        {\n          \"$ref\": \"#/definitions/mediaTypeList\"\n        }\n      ]\n    },\n    \"produces\": {\n      \"description\": \"A list of MIME types the API can produce.\",\n      \"allOf\": [\n        {\n          \"$ref\": \"#/definitions/mediaTypeList\"\n        }\n      ]\n    },\n    \"paths\": {\n      \"$ref\": \"#/definitions/paths\"\n    },\n    \"definitions\": {\n      \"$ref\": \"#/definitions/definitions\"\n    },\n    \"parameters\": {\n      \"$ref\": \"#/definitions/parameterDefinitions\"\n    },\n    \"responses\": {\n      \"$ref\": \"#/definitions/responseDefinitions\"\n    },\n    \"security\": {\n      \"$ref\": \"#/definitions/security\"\n    },\n    \"securityDefinitions\": {\n      \"$ref\": \"#/definitions/securityDefinitions\"\n    },\n    \"tags\": {\n      \"type\": \"array\",\n      \"items\": {\n        \"$ref\": \"#/definitions/tag\"\n      },\n      \"uniqueItems\": true\n    },\n    \"externalDocs\": {\n      \"$ref\": \"#/definitions/externalDocs\"\n    }\n  },\n  \"definitions\": {\n    \"info\": {\n      \"type\": \"object\",\n      \"description\": \"General information about the API.\",\n      \"required\": [\n        \"version\",\n        \"title\"\n      ],\n      \"additionalProperties\": false,\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"properties\": {\n        \"title\": {\n          \"type\": \"string\",\n          \"description\": \"A unique and precise title of the API.\"\n        },\n        \"version\": {\n          \"type\": \"string\",\n          \"description\": \"A semantic version number of the API.\"\n        },\n        \"description\": {\n          \"type\": \"string\",\n          \"description\": \"A longer description of the API. Should be different from the title.  GitHub Flavored Markdown is allowed.\"\n        },\n        \"termsOfService\": {\n          \"type\": \"string\",\n          \"description\": \"The terms of service for the API.\"\n        },\n        \"contact\": {\n          \"$ref\": \"#/definitions/contact\"\n        },\n        \"license\": {\n          \"$ref\": \"#/definitions/license\"\n        }\n      }\n    },\n    \"contact\": {\n      \"type\": \"object\",\n      \"description\": \"Contact information for the owners of the API.\",\n      \"additionalProperties\": false,\n      \"properties\": {\n        \"name\": {\n          \"type\": \"string\",\n          \"description\": \"The identifying name of the contact person/organization.\"\n        },\n        \"url\": {\n          \"type\": \"string\",\n          \"description\": \"The URL pointing to the contact information.\",\n          \"format\": \"uri\"\n        },\n        \"email\": {\n          \"type\": \"string\",\n          \"description\": \"The email address of the contact person/organization.\",\n          \"format\": \"email\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"license\": {\n      \"type\": \"object\",\n      \"required\": [\n        \"name\"\n      ],\n      \"additionalProperties\": false,\n      \"properties\": {\n        \"name\": {\n          \"type\": \"string\",\n          \"description\": \"The name of the license type. It's encouraged to use an OSI compatible license.\"\n        },\n        \"url\": {\n          \"type\": \"string\",\n          \"description\": \"The URL pointing to the license.\",\n          \"format\": \"uri\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"paths\": {\n      \"type\": \"object\",\n      \"description\": \"Relative paths to the individual endpoints. They must be relative to the 'basePath'.\",\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        },\n        \"^/\": {\n          \"$ref\": \"#/definitions/pathItem\"\n        }\n      },\n      \"additionalProperties\": false\n    },\n    \"definitions\": {\n      \"type\": \"object\",\n      \"additionalProperties\": {\n        \"$ref\": \"#/definitions/schema\"\n      },\n      \"description\": \"One or more JSON objects describing the schemas being consumed and produced by the API.\"\n    },\n    \"parameterDefinitions\": {\n      \"type\": \"object\",\n      \"additionalProperties\": {\n        \"$ref\": \"#/definitions/parameter\"\n      },\n      \"description\": \"One or more JSON representations for parameters\"\n    },\n    \"responseDefinitions\": {\n      \"type\": \"object\",\n      \"additionalProperties\": {\n        \"$ref\": \"#/definitions/response\"\n      },\n      \"description\": \"One or more JSON representations for responses\"\n    },\n    \"externalDocs\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"description\": \"information about external documentation\",\n      \"required\": [\n        \"url\"\n      ],\n      \"properties\": {\n        \"description\": {\n          \"type\": \"string\"\n        },\n        \"url\": {\n          \"type\": \"string\",\n          \"format\": \"uri\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"examples\": {\n      \"type\": \"object\",\n      \"additionalProperties\": true\n    },\n    \"mimeType\": {\n      \"type\": \"string\",\n      \"description\": \"The MIME type of the HTTP message.\"\n    },\n    \"operation\": {\n      \"type\": \"object\",\n      \"required\": [\n        \"responses\"\n      ],\n      \"additionalProperties\": false,\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"properties\": {\n        \"tags\": {\n          \"type\": \"array\",\n          \"items\": {\n            \"type\": \"string\"\n          },\n          \"uniqueItems\": true\n        },\n        \"summary\": {\n          \"type\": \"string\",\n          \"description\": \"A brief summary of the operation.\"\n        },\n        \"description\": {\n          \"type\": \"string\",\n          \"description\": \"A longer description of the operation, GitHub Flavored Markdown is allowed.\"\n        },\n        \"externalDocs\": {\n          \"$ref\": \"#/definitions/externalDocs\"\n        },\n        \"operationId\": {\n          \"type\": \"string\",\n          \"description\": \"A unique identifier of the operation.\"\n        },\n        \"produces\": {\n          \"description\": \"A list of MIME types the API can produce.\",\n          \"allOf\": [\n            {\n              \"$ref\": \"#/definitions/mediaTypeList\"\n            }\n          ]\n        },\n        \"consumes\": {\n          \"description\": \"A list of MIME types the API can consume.\",\n          \"allOf\": [\n            {\n              \"$ref\": \"#/definitions/mediaTypeList\"\n            }\n          ]\n        },\n        \"parameters\": {\n          \"$ref\": \"#/definitions/parametersList\"\n        },\n        \"responses\": {\n          \"$ref\": \"#/definitions/responses\"\n        },\n        \"schemes\": {\n          \"$ref\": \"#/definitions/schemesList\"\n        },\n        \"deprecated\": {\n          \"type\": \"boolean\",\n          \"default\": false\n        },\n        \"security\": {\n          \"$ref\": \"#/definitions/security\"\n        }\n      }\n    },\n    \"pathItem\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"properties\": {\n        \"$ref\": {\n          \"type\": \"string\"\n        },\n        \"get\": {\n          \"$ref\": \"#/definitions/operation\"\n        },\n        \"put\": {\n          \"$ref\": \"#/definitions/operation\"\n        },\n        \"post\": {\n          \"$ref\": \"#/definitions/operation\"\n        },\n        \"delete\": {\n          \"$ref\": \"#/definitions/operation\"\n        },\n        \"options\": {\n          \"$ref\": \"#/definitions/operation\"\n        },\n        \"head\": {\n          \"$ref\": \"#/definitions/operation\"\n        },\n        \"patch\": {\n          \"$ref\": \"#/definitions/operation\"\n        },\n        \"parameters\": {\n          \"$ref\": \"#/definitions/parametersList\"\n        }\n      }\n    },\n    \"responses\": {\n      \"type\": \"object\",\n      \"description\": \"Response objects names can either be any valid HTTP status code or 'default'.\",\n      \"minProperties\": 1,\n      \"additionalProperties\": false,\n      \"patternProperties\": {\n        \"^([0-9]{3})$|^(default)$\": {\n          \"$ref\": \"#/definitions/responseValue\"\n        },\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"not\": {\n        \"type\": \"object\",\n        \"additionalProperties\": false,\n        \"patternProperties\": {\n          \"^x-\": {\n            \"$ref\": \"#/definitions/vendorExtension\"\n          }\n        }\n      }\n    },\n    \"responseValue\": {\n      \"oneOf\": [\n        {\n          \"$ref\": \"#/definitions/response\"\n        },\n        {\n          \"$ref\": \"#/definitions/jsonReference\"\n        }\n      ]\n    },\n    \"response\": {\n      \"type\": \"object\",\n      \"required\": [\n        \"description\"\n      ],\n      \"properties\": {\n        \"description\": {\n          \"type\": \"string\"\n        },\n        \"schema\": {\n          \"oneOf\": [\n            {\n              \"$ref\": \"#/definitions/schema\"\n            },\n            {\n              \"$ref\": \"#/definitions/fileSchema\"\n            }\n          ]\n        },\n        \"headers\": {\n          \"$ref\": \"#/definitions/headers\"\n        },\n        \"examples\": {\n          \"$ref\": \"#/definitions/examples\"\n        }\n      },\n      \"additionalProperties\": false,\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"headers\": {\n      \"type\": \"object\",\n      \"additionalProperties\": {\n        \"$ref\": \"#/definitions/header\"\n      }\n    },\n    \"header\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"required\": [\n        \"type\"\n      ],\n      \"properties\": {\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"string\",\n            \"number\",\n            \"integer\",\n            \"boolean\",\n            \"array\"\n          ]\n        },\n        \"format\": {\n          \"type\": \"string\"\n        },\n        \"items\": {\n          \"$ref\": \"#/definitions/primitivesItems\"\n        },\n        \"collectionFormat\": {\n          \"$ref\": \"#/definitions/collectionFormat\"\n        },\n        \"default\": {\n          \"$ref\": \"#/definitions/default\"\n        },\n        \"maximum\": {\n          \"$ref\": \"#/definitions/maximum\"\n        },\n        \"exclusiveMaximum\": {\n          \"$ref\": \"#/definitions/exclusiveMaximum\"\n        },\n        \"minimum\": {\n          \"$ref\": \"#/definitions/minimum\"\n        },\n        \"exclusiveMinimum\": {\n          \"$ref\": \"#/definitions/exclusiveMinimum\"\n        },\n        \"maxLength\": {\n          \"$ref\": \"#/definitions/maxLength\"\n        },\n        \"minLength\": {\n          \"$ref\": \"#/definitions/minLength\"\n        },\n        \"pattern\": {\n          \"$ref\": \"#/definitions/pattern\"\n        },\n        \"maxItems\": {\n          \"$ref\": \"#/definitions/maxItems\"\n        },\n        \"minItems\": {\n          \"$ref\": \"#/definitions/minItems\"\n        },\n        \"uniqueItems\": {\n          \"$ref\": \"#/definitions/uniqueItems\"\n        },\n        \"enum\": {\n          \"$ref\": \"#/definitions/enum\"\n        },\n        \"multipleOf\": {\n          \"$ref\": \"#/definitions/multipleOf\"\n        },\n        \"description\": {\n          \"type\": \"string\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"vendorExtension\": {\n      \"description\": \"Any property starting with x- is valid.\",\n      \"additionalProperties\": true,\n      \"additionalItems\": true\n    },\n    \"bodyParameter\": {\n      \"type\": \"object\",\n      \"required\": [\n        \"name\",\n        \"in\",\n        \"schema\"\n      ],\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"properties\": {\n        \"description\": {\n          \"type\": \"string\",\n          \"description\": \"A brief description of the parameter. This could contain examples of use.  GitHub Flavored Markdown is allowed.\"\n        },\n        \"name\": {\n          \"type\": \"string\",\n          \"description\": \"The name of the parameter.\"\n        },\n        \"in\": {\n          \"type\": \"string\",\n          \"description\": \"Determines the location of the parameter.\",\n          \"enum\": [\n            \"body\"\n          ]\n        },\n        \"required\": {\n          \"type\": \"boolean\",\n          \"description\": \"Determines whether or not this parameter is required or optional.\",\n          \"default\": false\n        },\n        \"schema\": {\n          \"$ref\": \"#/definitions/schema\"\n        }\n      },\n      \"additionalProperties\": false\n    },\n    \"headerParameterSubSchema\": {\n      \"additionalProperties\": false,\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"properties\": {\n        \"required\": {\n          \"type\": \"boolean\",\n          \"description\": \"Determines whether or not this parameter is required or optional.\",\n          \"default\": false\n        },\n        \"in\": {\n          \"type\": \"string\",\n          \"description\": \"Determines the location of the parameter.\",\n          \"enum\": [\n            \"header\"\n          ]\n        },\n        \"description\": {\n          \"type\": \"string\",\n          \"description\": \"A brief description of the parameter. This could contain examples of use.  GitHub Flavored Markdown is allowed.\"\n        },\n        \"name\": {\n          \"type\": \"string\",\n          \"description\": \"The name of the parameter.\"\n        },\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"string\",\n            \"number\",\n            \"boolean\",\n            \"integer\",\n            \"array\"\n          ]\n        },\n        \"format\": {\n          \"type\": \"string\"\n        },\n        \"items\": {\n          \"$ref\": \"#/definitions/primitivesItems\"\n        },\n        \"collectionFormat\": {\n          \"$ref\": \"#/definitions/collectionFormat\"\n        },\n        \"default\": {\n          \"$ref\": \"#/definitions/default\"\n        },\n        \"maximum\": {\n          \"$ref\": \"#/definitions/maximum\"\n        },\n        \"exclusiveMaximum\": {\n          \"$ref\": \"#/definitions/exclusiveMaximum\"\n        },\n        \"minimum\": {\n          \"$ref\": \"#/definitions/minimum\"\n        },\n        \"exclusiveMinimum\": {\n          \"$ref\": \"#/definitions/exclusiveMinimum\"\n        },\n        \"maxLength\": {\n          \"$ref\": \"#/definitions/maxLength\"\n        },\n        \"minLength\": {\n          \"$ref\": \"#/definitions/minLength\"\n        },\n        \"pattern\": {\n          \"$ref\": \"#/definitions/pattern\"\n        },\n        \"maxItems\": {\n          \"$ref\": \"#/definitions/maxItems\"\n        },\n        \"minItems\": {\n          \"$ref\": \"#/definitions/minItems\"\n        },\n        \"uniqueItems\": {\n          \"$ref\": \"#/definitions/uniqueItems\"\n        },\n        \"enum\": {\n          \"$ref\": \"#/definitions/enum\"\n        },\n        \"multipleOf\": {\n          \"$ref\": \"#/definitions/multipleOf\"\n        }\n      }\n    },\n    \"queryParameterSubSchema\": {\n      \"additionalProperties\": false,\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"properties\": {\n        \"required\": {\n          \"type\": \"boolean\",\n          \"description\": \"Determines whether or not this parameter is required or optional.\",\n          \"default\": false\n        },\n        \"in\": {\n          \"type\": \"string\",\n          \"description\": \"Determines the location of the parameter.\",\n          \"enum\": [\n            \"query\"\n          ]\n        },\n        \"description\": {\n          \"type\": \"string\",\n          \"description\": \"A brief description of the parameter. This could contain examples of use.  GitHub Flavored Markdown is allowed.\"\n        },\n        \"name\": {\n          \"type\": \"string\",\n          \"description\": \"The name of the parameter.\"\n        },\n        \"allowEmptyValue\": {\n          \"type\": \"boolean\",\n          \"default\": false,\n          \"description\": \"allows sending a parameter by name only or with an empty value.\"\n        },\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"string\",\n            \"number\",\n            \"boolean\",\n            \"integer\",\n            \"array\"\n          ]\n        },\n        \"format\": {\n          \"type\": \"string\"\n        },\n        \"items\": {\n          \"$ref\": \"#/definitions/primitivesItems\"\n        },\n        \"collectionFormat\": {\n          \"$ref\": \"#/definitions/collectionFormatWithMulti\"\n        },\n        \"default\": {\n          \"$ref\": \"#/definitions/default\"\n        },\n        \"maximum\": {\n          \"$ref\": \"#/definitions/maximum\"\n        },\n        \"exclusiveMaximum\": {\n          \"$ref\": \"#/definitions/exclusiveMaximum\"\n        },\n        \"minimum\": {\n          \"$ref\": \"#/definitions/minimum\"\n        },\n        \"exclusiveMinimum\": {\n          \"$ref\": \"#/definitions/exclusiveMinimum\"\n        },\n        \"maxLength\": {\n          \"$ref\": \"#/definitions/maxLength\"\n        },\n        \"minLength\": {\n          \"$ref\": \"#/definitions/minLength\"\n        },\n        \"pattern\": {\n          \"$ref\": \"#/definitions/pattern\"\n        },\n        \"maxItems\": {\n          \"$ref\": \"#/definitions/maxItems\"\n        },\n        \"minItems\": {\n          \"$ref\": \"#/definitions/minItems\"\n        },\n        \"uniqueItems\": {\n          \"$ref\": \"#/definitions/uniqueItems\"\n        },\n        \"enum\": {\n          \"$ref\": \"#/definitions/enum\"\n        },\n        \"multipleOf\": {\n          \"$ref\": \"#/definitions/multipleOf\"\n        }\n      }\n    },\n    \"formDataParameterSubSchema\": {\n      \"additionalProperties\": false,\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"properties\": {\n        \"required\": {\n          \"type\": \"boolean\",\n          \"description\": \"Determines whether or not this parameter is required or optional.\",\n          \"default\": false\n        },\n        \"in\": {\n          \"type\": \"string\",\n          \"description\": \"Determines the location of the parameter.\",\n          \"enum\": [\n            \"formData\"\n          ]\n        },\n        \"description\": {\n          \"type\": \"string\",\n          \"description\": \"A brief description of the parameter. This could contain examples of use.  GitHub Flavored Markdown is allowed.\"\n        },\n        \"name\": {\n          \"type\": \"string\",\n          \"description\": \"The name of the parameter.\"\n        },\n        \"allowEmptyValue\": {\n          \"type\": \"boolean\",\n          \"default\": false,\n          \"description\": \"allows sending a parameter by name only or with an empty value.\"\n        },\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"string\",\n            \"number\",\n            \"boolean\",\n            \"integer\",\n            \"array\",\n            \"file\"\n          ]\n        },\n        \"format\": {\n          \"type\": \"string\"\n        },\n        \"items\": {\n          \"$ref\": \"#/definitions/primitivesItems\"\n        },\n        \"collectionFormat\": {\n          \"$ref\": \"#/definitions/collectionFormatWithMulti\"\n        },\n        \"default\": {\n          \"$ref\": \"#/definitions/default\"\n        },\n        \"maximum\": {\n          \"$ref\": \"#/definitions/maximum\"\n        },\n        \"exclusiveMaximum\": {\n          \"$ref\": \"#/definitions/exclusiveMaximum\"\n        },\n        \"minimum\": {\n          \"$ref\": \"#/definitions/minimum\"\n        },\n        \"exclusiveMinimum\": {\n          \"$ref\": \"#/definitions/exclusiveMinimum\"\n        },\n        \"maxLength\": {\n          \"$ref\": \"#/definitions/maxLength\"\n        },\n        \"minLength\": {\n          \"$ref\": \"#/definitions/minLength\"\n        },\n        \"pattern\": {\n          \"$ref\": \"#/definitions/pattern\"\n        },\n        \"maxItems\": {\n          \"$ref\": \"#/definitions/maxItems\"\n        },\n        \"minItems\": {\n          \"$ref\": \"#/definitions/minItems\"\n        },\n        \"uniqueItems\": {\n          \"$ref\": \"#/definitions/uniqueItems\"\n        },\n        \"enum\": {\n          \"$ref\": \"#/definitions/enum\"\n        },\n        \"multipleOf\": {\n          \"$ref\": \"#/definitions/multipleOf\"\n        }\n      }\n    },\n    \"pathParameterSubSchema\": {\n      \"additionalProperties\": false,\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"required\": [\n        \"required\"\n      ],\n      \"properties\": {\n        \"required\": {\n          \"type\": \"boolean\",\n          \"enum\": [\n            true\n          ],\n          \"description\": \"Determines whether or not this parameter is required or optional.\"\n        },\n        \"in\": {\n          \"type\": \"string\",\n          \"description\": \"Determines the location of the parameter.\",\n          \"enum\": [\n            \"path\"\n          ]\n        },\n        \"description\": {\n          \"type\": \"string\",\n          \"description\": \"A brief description of the parameter. This could contain examples of use.  GitHub Flavored Markdown is allowed.\"\n        },\n        \"name\": {\n          \"type\": \"string\",\n          \"description\": \"The name of the parameter.\"\n        },\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"string\",\n            \"number\",\n            \"boolean\",\n            \"integer\",\n            \"array\"\n          ]\n        },\n        \"format\": {\n          \"type\": \"string\"\n        },\n        \"items\": {\n          \"$ref\": \"#/definitions/primitivesItems\"\n        },\n        \"collectionFormat\": {\n          \"$ref\": \"#/definitions/collectionFormat\"\n        },\n        \"default\": {\n          \"$ref\": \"#/definitions/default\"\n        },\n        \"maximum\": {\n          \"$ref\": \"#/definitions/maximum\"\n        },\n        \"exclusiveMaximum\": {\n          \"$ref\": \"#/definitions/exclusiveMaximum\"\n        },\n        \"minimum\": {\n          \"$ref\": \"#/definitions/minimum\"\n        },\n        \"exclusiveMinimum\": {\n          \"$ref\": \"#/definitions/exclusiveMinimum\"\n        },\n        \"maxLength\": {\n          \"$ref\": \"#/definitions/maxLength\"\n        },\n        \"minLength\": {\n          \"$ref\": \"#/definitions/minLength\"\n        },\n        \"pattern\": {\n          \"$ref\": \"#/definitions/pattern\"\n        },\n        \"maxItems\": {\n          \"$ref\": \"#/definitions/maxItems\"\n        },\n        \"minItems\": {\n          \"$ref\": \"#/definitions/minItems\"\n        },\n        \"uniqueItems\": {\n          \"$ref\": \"#/definitions/uniqueItems\"\n        },\n        \"enum\": {\n          \"$ref\": \"#/definitions/enum\"\n        },\n        \"multipleOf\": {\n          \"$ref\": \"#/definitions/multipleOf\"\n        }\n      }\n    },\n    \"nonBodyParameter\": {\n      \"type\": \"object\",\n      \"required\": [\n        \"name\",\n        \"in\",\n        \"type\"\n      ],\n      \"oneOf\": [\n        {\n          \"$ref\": \"#/definitions/headerParameterSubSchema\"\n        },\n        {\n          \"$ref\": \"#/definitions/formDataParameterSubSchema\"\n        },\n        {\n          \"$ref\": \"#/definitions/queryParameterSubSchema\"\n        },\n        {\n          \"$ref\": \"#/definitions/pathParameterSubSchema\"\n        }\n      ]\n    },\n    \"parameter\": {\n      \"oneOf\": [\n        {\n          \"$ref\": \"#/definitions/bodyParameter\"\n        },\n        {\n          \"$ref\": \"#/definitions/nonBodyParameter\"\n        }\n      ]\n    },\n    \"schema\": {\n      \"type\": \"object\",\n      \"description\": \"A deterministic version of a JSON Schema object.\",\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"properties\": {\n        \"$ref\": {\n          \"type\": \"string\"\n        },\n        \"format\": {\n          \"type\": \"string\"\n        },\n        \"title\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/title\"\n        },\n        \"description\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/description\"\n        },\n        \"default\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/default\"\n        },\n        \"multipleOf\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/multipleOf\"\n        },\n        \"maximum\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/maximum\"\n        },\n        \"exclusiveMaximum\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/exclusiveMaximum\"\n        },\n        \"minimum\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/minimum\"\n        },\n        \"exclusiveMinimum\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/exclusiveMinimum\"\n        },\n        \"maxLength\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveInteger\"\n        },\n        \"minLength\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveIntegerDefault0\"\n        },\n        \"pattern\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/pattern\"\n        },\n        \"maxItems\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveInteger\"\n        },\n        \"minItems\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveIntegerDefault0\"\n        },\n        \"uniqueItems\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/uniqueItems\"\n        },\n        \"maxProperties\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveInteger\"\n        },\n        \"minProperties\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveIntegerDefault0\"\n        },\n        \"required\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/stringArray\"\n        },\n        \"enum\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/enum\"\n        },\n        \"additionalProperties\": {\n          \"anyOf\": [\n            {\n              \"$ref\": \"#/definitions/schema\"\n            },\n            {\n              \"type\": \"boolean\"\n            }\n          ],\n          \"default\": {}\n        },\n        \"type\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/type\"\n        },\n        \"items\": {\n          \"anyOf\": [\n            {\n              \"$ref\": \"#/definitions/schema\"\n            },\n            {\n              \"type\": \"array\",\n              \"minItems\": 1,\n              \"items\": {\n                \"$ref\": \"#/definitions/schema\"\n              }\n            }\n          ],\n          \"default\": {}\n        },\n        \"allOf\": {\n          \"type\": \"array\",\n          \"minItems\": 1,\n          \"items\": {\n            \"$ref\": \"#/definitions/schema\"\n          }\n        },\n        \"properties\": {\n          \"type\": \"object\",\n          \"additionalProperties\": {\n            \"$ref\": \"#/definitions/schema\"\n          },\n          \"default\": {}\n        },\n        \"discriminator\": {\n          \"type\": \"string\"\n        },\n        \"readOnly\": {\n          \"type\": \"boolean\",\n          \"default\": false\n        },\n        \"xml\": {\n          \"$ref\": \"#/definitions/xml\"\n        },\n        \"externalDocs\": {\n          \"$ref\": \"#/definitions/externalDocs\"\n        },\n        \"example\": {}\n      },\n      \"additionalProperties\": false\n    },\n    \"fileSchema\": {\n      \"type\": \"object\",\n      \"description\": \"A deterministic version of a JSON Schema object.\",\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      },\n      \"required\": [\n        \"type\"\n      ],\n      \"properties\": {\n        \"format\": {\n          \"type\": \"string\"\n        },\n        \"title\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/title\"\n        },\n        \"description\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/description\"\n        },\n        \"default\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/default\"\n        },\n        \"required\": {\n          \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/stringArray\"\n        },\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"file\"\n          ]\n        },\n        \"readOnly\": {\n          \"type\": \"boolean\",\n          \"default\": false\n        },\n        \"externalDocs\": {\n          \"$ref\": \"#/definitions/externalDocs\"\n        },\n        \"example\": {}\n      },\n      \"additionalProperties\": false\n    },\n    \"primitivesItems\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"properties\": {\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"string\",\n            \"number\",\n            \"integer\",\n            \"boolean\",\n            \"array\"\n          ]\n        },\n        \"format\": {\n          \"type\": \"string\"\n        },\n        \"items\": {\n          \"$ref\": \"#/definitions/primitivesItems\"\n        },\n        \"collectionFormat\": {\n          \"$ref\": \"#/definitions/collectionFormat\"\n        },\n        \"default\": {\n          \"$ref\": \"#/definitions/default\"\n        },\n        \"maximum\": {\n          \"$ref\": \"#/definitions/maximum\"\n        },\n        \"exclusiveMaximum\": {\n          \"$ref\": \"#/definitions/exclusiveMaximum\"\n        },\n        \"minimum\": {\n          \"$ref\": \"#/definitions/minimum\"\n        },\n        \"exclusiveMinimum\": {\n          \"$ref\": \"#/definitions/exclusiveMinimum\"\n        },\n        \"maxLength\": {\n          \"$ref\": \"#/definitions/maxLength\"\n        },\n        \"minLength\": {\n          \"$ref\": \"#/definitions/minLength\"\n        },\n        \"pattern\": {\n          \"$ref\": \"#/definitions/pattern\"\n        },\n        \"maxItems\": {\n          \"$ref\": \"#/definitions/maxItems\"\n        },\n        \"minItems\": {\n          \"$ref\": \"#/definitions/minItems\"\n        },\n        \"uniqueItems\": {\n          \"$ref\": \"#/definitions/uniqueItems\"\n        },\n        \"enum\": {\n          \"$ref\": \"#/definitions/enum\"\n        },\n        \"multipleOf\": {\n          \"$ref\": \"#/definitions/multipleOf\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"security\": {\n      \"type\": \"array\",\n      \"items\": {\n        \"$ref\": \"#/definitions/securityRequirement\"\n      },\n      \"uniqueItems\": true\n    },\n    \"securityRequirement\": {\n      \"type\": \"object\",\n      \"additionalProperties\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        },\n        \"uniqueItems\": true\n      }\n    },\n    \"xml\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"properties\": {\n        \"name\": {\n          \"type\": \"string\"\n        },\n        \"namespace\": {\n          \"type\": \"string\"\n        },\n        \"prefix\": {\n          \"type\": \"string\"\n        },\n        \"attribute\": {\n          \"type\": \"boolean\",\n          \"default\": false\n        },\n        \"wrapped\": {\n          \"type\": \"boolean\",\n          \"default\": false\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"tag\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"required\": [\n        \"name\"\n      ],\n      \"properties\": {\n        \"name\": {\n          \"type\": \"string\"\n        },\n        \"description\": {\n          \"type\": \"string\"\n        },\n        \"externalDocs\": {\n          \"$ref\": \"#/definitions/externalDocs\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"securityDefinitions\": {\n      \"type\": \"object\",\n      \"additionalProperties\": {\n        \"oneOf\": [\n          {\n            \"$ref\": \"#/definitions/basicAuthenticationSecurity\"\n          },\n          {\n            \"$ref\": \"#/definitions/apiKeySecurity\"\n          },\n          {\n            \"$ref\": \"#/definitions/oauth2ImplicitSecurity\"\n          },\n          {\n            \"$ref\": \"#/definitions/oauth2PasswordSecurity\"\n          },\n          {\n            \"$ref\": \"#/definitions/oauth2ApplicationSecurity\"\n          },\n          {\n            \"$ref\": \"#/definitions/oauth2AccessCodeSecurity\"\n          }\n        ]\n      }\n    },\n    \"basicAuthenticationSecurity\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"required\": [\n        \"type\"\n      ],\n      \"properties\": {\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"basic\"\n          ]\n        },\n        \"description\": {\n          \"type\": \"string\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"apiKeySecurity\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"required\": [\n        \"type\",\n        \"name\",\n        \"in\"\n      ],\n      \"properties\": {\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"apiKey\"\n          ]\n        },\n        \"name\": {\n          \"type\": \"string\"\n        },\n        \"in\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"header\",\n            \"query\"\n          ]\n        },\n        \"description\": {\n          \"type\": \"string\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"oauth2ImplicitSecurity\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"required\": [\n        \"type\",\n        \"flow\",\n        \"authorizationUrl\"\n      ],\n      \"properties\": {\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"oauth2\"\n          ]\n        },\n        \"flow\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"implicit\"\n          ]\n        },\n        \"scopes\": {\n          \"$ref\": \"#/definitions/oauth2Scopes\"\n        },\n        \"authorizationUrl\": {\n          \"type\": \"string\",\n          \"format\": \"uri\"\n        },\n        \"description\": {\n          \"type\": \"string\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"oauth2PasswordSecurity\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"required\": [\n        \"type\",\n        \"flow\",\n        \"tokenUrl\"\n      ],\n      \"properties\": {\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"oauth2\"\n          ]\n        },\n        \"flow\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"password\"\n          ]\n        },\n        \"scopes\": {\n          \"$ref\": \"#/definitions/oauth2Scopes\"\n        },\n        \"tokenUrl\": {\n          \"type\": \"string\",\n          \"format\": \"uri\"\n        },\n        \"description\": {\n          \"type\": \"string\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"oauth2ApplicationSecurity\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"required\": [\n        \"type\",\n        \"flow\",\n        \"tokenUrl\"\n      ],\n      \"properties\": {\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"oauth2\"\n          ]\n        },\n        \"flow\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"application\"\n          ]\n        },\n        \"scopes\": {\n          \"$ref\": \"#/definitions/oauth2Scopes\"\n        },\n        \"tokenUrl\": {\n          \"type\": \"string\",\n          \"format\": \"uri\"\n        },\n        \"description\": {\n          \"type\": \"string\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"oauth2AccessCodeSecurity\": {\n      \"type\": \"object\",\n      \"additionalProperties\": false,\n      \"required\": [\n        \"type\",\n        \"flow\",\n        \"authorizationUrl\",\n        \"tokenUrl\"\n      ],\n      \"properties\": {\n        \"type\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"oauth2\"\n          ]\n        },\n        \"flow\": {\n          \"type\": \"string\",\n          \"enum\": [\n            \"accessCode\"\n          ]\n        },\n        \"scopes\": {\n          \"$ref\": \"#/definitions/oauth2Scopes\"\n        },\n        \"authorizationUrl\": {\n          \"type\": \"string\",\n          \"format\": \"uri\"\n        },\n        \"tokenUrl\": {\n          \"type\": \"string\",\n          \"format\": \"uri\"\n        },\n        \"description\": {\n          \"type\": \"string\"\n        }\n      },\n      \"patternProperties\": {\n        \"^x-\": {\n          \"$ref\": \"#/definitions/vendorExtension\"\n        }\n      }\n    },\n    \"oauth2Scopes\": {\n      \"type\": \"object\",\n      \"additionalProperties\": {\n        \"type\": \"string\"\n      }\n    },\n    \"mediaTypeList\": {\n      \"type\": \"array\",\n      \"items\": {\n        \"$ref\": \"#/definitions/mimeType\"\n      },\n      \"uniqueItems\": true\n    },\n    \"parametersList\": {\n      \"type\": \"array\",\n      \"description\": \"The parameters needed to send a valid API call.\",\n      \"additionalItems\": false,\n      \"items\": {\n        \"oneOf\": [\n          {\n            \"$ref\": \"#/definitions/parameter\"\n          },\n          {\n            \"$ref\": \"#/definitions/jsonReference\"\n          }\n        ]\n      },\n      \"uniqueItems\": true\n    },\n    \"schemesList\": {\n      \"type\": \"array\",\n      \"description\": \"The transfer protocol of the API.\",\n      \"items\": {\n        \"type\": \"string\",\n        \"enum\": [\n          \"http\",\n          \"https\",\n          \"ws\",\n          \"wss\"\n        ]\n      },\n      \"uniqueItems\": true\n    },\n    \"collectionFormat\": {\n      \"type\": \"string\",\n      \"enum\": [\n        \"csv\",\n        \"ssv\",\n        \"tsv\",\n        \"pipes\"\n      ],\n      \"default\": \"csv\"\n    },\n    \"collectionFormatWithMulti\": {\n      \"type\": \"string\",\n      \"enum\": [\n        \"csv\",\n        \"ssv\",\n        \"tsv\",\n        \"pipes\",\n        \"multi\"\n      ],\n      \"default\": \"csv\"\n    },\n    \"title\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/title\"\n    },\n    \"description\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/description\"\n    },\n    \"default\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/default\"\n    },\n    \"multipleOf\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/multipleOf\"\n    },\n    \"maximum\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/maximum\"\n    },\n    \"exclusiveMaximum\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/exclusiveMaximum\"\n    },\n    \"minimum\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/minimum\"\n    },\n    \"exclusiveMinimum\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/exclusiveMinimum\"\n    },\n    \"maxLength\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveInteger\"\n    },\n    \"minLength\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveIntegerDefault0\"\n    },\n    \"pattern\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/pattern\"\n    },\n    \"maxItems\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveInteger\"\n    },\n    \"minItems\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/definitions/positiveIntegerDefault0\"\n    },\n    \"uniqueItems\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/uniqueItems\"\n    },\n    \"enum\": {\n      \"$ref\": \"http://json-schema.org/draft-04/schema#/properties/enum\"\n    },\n    \"jsonReference\": {\n      \"type\": \"object\",\n      \"required\": [\n        \"$ref\"\n      ],\n      \"additionalProperties\": false,\n      \"properties\": {\n        \"$ref\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  }\n}"
  },
  {
    "path": "_archive_/schemas/v3.0/README.md",
    "content": "# OpenAPI 3.0.X JSON Schema\n\nThis directory contains the YAML source for generating the JSON Schema for validating OpenAPI definitions of versions 3.0.X, which is published on [https://spec.openapis.org](https://spec.openapis.org).\n\nDue to limitations of GitHub pages, the schemas on the spec site are served with `Content-Type: application/octet-stream`, but should be interpreted as `application/schema+json`.\n\nThe source in this directory, which has `WORK-IN-PROGRESS` in its `id`, is _not intended for direct use_.\n\n## Schema `id` dates\n\nThe published schemas on the spec site have an _iteration date_ in their `id`s.\nThis allows the schemas for a release line (in this case 3.0) to be updated independent of the spec patch release cycle.\n\nThe iteration version of the JSON Schema can be found in the `id` field.\nFor example, the value of `id: https://spec.openapis.org/oas/3.0/schema/2019-04-02` means this iteration was created on April 2nd, 2019.\n\nWe are [working on](https://github.com/OAI/OpenAPI-Specification/issues/4152) how to best provide programmatic access for determining the latest date for each schema.\n\n## Improving the schema\n\nAs a reminder, the JSON Schema is not the source of truth for the Specification.\nIn cases of conflicts between the Specification itself and the JSON Schema, the Specification wins.\nAlso, some Specification constraints cannot be represented with the JSON Schema so it's highly recommended to employ other methods to ensure compliance.\n\nThe schema only validates the mandatory aspects of the OAS.\nValidating requirements that are optional, or field usage that has undefined or ignored behavior are not within the scope of this schema.\nSchemas to perform additional optional validation are [under consideration](https://github.com/OAI/OpenAPI-Specification/issues/4141).\n\nImprovements can be submitted by opening a PR against the `main` branch.\n\nModify the `schema.yaml` file and add test cases for your changes.\n\nThe TSC will then:\n- Run tests on the updated schema\n- Update the iteration version\n- Publish the new version\n\nThe [test suite](../../tests/v3.0) is part of this package.\n\n```bash\nnpm install\nnpm test\n```\n"
  },
  {
    "path": "_archive_/schemas/v3.0/pass/api-with-examples.yaml",
    "content": "openapi: \"3.0.0\"\ninfo:\n  title: Simple API overview\n  version: 2.0.0\npaths:\n  /:\n    get:\n      operationId: listVersionsv2\n      summary: List API versions\n      responses:\n        '200':\n          description: |-\n            200 response\n          content:\n            application/json:\n              examples: \n                foo:\n                  value:\n                    {\n                      \"versions\": [\n                        {\n                            \"status\": \"CURRENT\",\n                            \"updated\": \"2011-01-21T11:33:21Z\",\n                            \"id\": \"v2.0\",\n                            \"links\": [\n                                {\n                                    \"href\": \"http://127.0.0.1:8774/v2/\",\n                                    \"rel\": \"self\"\n                                }\n                            ]\n                        },\n                        {\n                            \"status\": \"EXPERIMENTAL\",\n                            \"updated\": \"2013-07-23T11:33:21Z\",\n                            \"id\": \"v3.0\",\n                            \"links\": [\n                                {\n                                    \"href\": \"http://127.0.0.1:8774/v3/\",\n                                    \"rel\": \"self\"\n                                }\n                            ]\n                        }\n                      ]\n                    }\n        '300':\n          description: |-\n            300 response\n          content:\n            application/json: \n              examples: \n                foo:\n                  value: |\n                   {\n                    \"versions\": [\n                          {\n                            \"status\": \"CURRENT\",\n                            \"updated\": \"2011-01-21T11:33:21Z\",\n                            \"id\": \"v2.0\",\n                            \"links\": [\n                                {\n                                    \"href\": \"http://127.0.0.1:8774/v2/\",\n                                    \"rel\": \"self\"\n                                }\n                            ]\n                        },\n                        {\n                            \"status\": \"EXPERIMENTAL\",\n                            \"updated\": \"2013-07-23T11:33:21Z\",\n                            \"id\": \"v3.0\",\n                            \"links\": [\n                                {\n                                    \"href\": \"http://127.0.0.1:8774/v3/\",\n                                    \"rel\": \"self\"\n                                }\n                            ]\n                        }\n                    ]\n                   }\n  /v2:\n    get:\n      operationId: getVersionDetailsv2\n      summary: Show API version details\n      responses:\n        '200':\n          description: |-\n            200 response\n          content:\n            application/json: \n              examples:\n                foo:\n                  value:\n                    {\n                      \"version\": {\n                        \"status\": \"CURRENT\",\n                        \"updated\": \"2011-01-21T11:33:21Z\",\n                        \"media-types\": [\n                          {\n                              \"base\": \"application/xml\",\n                              \"type\": \"application/vnd.openstack.compute+xml;version=2\"\n                          },\n                          {\n                              \"base\": \"application/json\",\n                              \"type\": \"application/vnd.openstack.compute+json;version=2\"\n                          }\n                        ],\n                        \"id\": \"v2.0\",\n                        \"links\": [\n                          {\n                              \"href\": \"http://127.0.0.1:8774/v2/\",\n                              \"rel\": \"self\"\n                          },\n                          {\n                              \"href\": \"http://docs.openstack.org/api/openstack-compute/2/os-compute-devguide-2.pdf\",\n                              \"type\": \"application/pdf\",\n                              \"rel\": \"describedby\"\n                          },\n                          {\n                              \"href\": \"http://docs.openstack.org/api/openstack-compute/2/wadl/os-compute-2.wadl\",\n                              \"type\": \"application/vnd.sun.wadl+xml\",\n                              \"rel\": \"describedby\"\n                          },\n                          {\n                            \"href\": \"http://docs.openstack.org/api/openstack-compute/2/wadl/os-compute-2.wadl\",\n                            \"type\": \"application/vnd.sun.wadl+xml\",\n                            \"rel\": \"describedby\"\n                          }\n                        ]\n                      }\n                    }\n        '203':\n          description: |-\n            203 response\n          content:\n            application/json: \n              examples:\n                foo:\n                  value:\n                    {\n                      \"version\": {\n                        \"status\": \"CURRENT\",\n                        \"updated\": \"2011-01-21T11:33:21Z\",\n                        \"media-types\": [\n                          {\n                              \"base\": \"application/xml\",\n                              \"type\": \"application/vnd.openstack.compute+xml;version=2\"\n                          },\n                          {\n                              \"base\": \"application/json\",\n                              \"type\": \"application/vnd.openstack.compute+json;version=2\"\n                          }\n                        ],\n                        \"id\": \"v2.0\",\n                        \"links\": [\n                          {\n                              \"href\": \"http://23.253.228.211:8774/v2/\",\n                              \"rel\": \"self\"\n                          },\n                          {\n                              \"href\": \"http://docs.openstack.org/api/openstack-compute/2/os-compute-devguide-2.pdf\",\n                              \"type\": \"application/pdf\",\n                              \"rel\": \"describedby\"\n                          },\n                          {\n                              \"href\": \"http://docs.openstack.org/api/openstack-compute/2/wadl/os-compute-2.wadl\",\n                              \"type\": \"application/vnd.sun.wadl+xml\",\n                              \"rel\": \"describedby\"\n                          }\n                        ]\n                      }\n                    }\n"
  },
  {
    "path": "_archive_/schemas/v3.0/pass/callback-example.yaml",
    "content": "openapi: 3.0.0\ninfo:\n  title: Callback Example\n  version: 1.0.0\npaths:\n  /streams:\n    post:\n      description: subscribes a client to receive out-of-band data\n      parameters:\n        - name: callbackUrl\n          in: query\n          required: true\n          description: |\n            the location where data will be sent.  Must be network accessible\n            by the source server\n          schema:\n            type: string\n            format: uri\n            example: https://tonys-server.com\n      responses:\n        '201':\n          description: subscription successfully created\n          content:\n            application/json:\n              schema:\n                description: subscription information\n                required:\n                  - subscriptionId\n                properties:\n                  subscriptionId:\n                    description: this unique identifier allows management of the subscription\n                    type: string\n                    example: 2531329f-fb09-4ef7-887e-84e648214436\n      callbacks:\n        # the name `onData` is a convenience locator\n        onData:\n          # when data is sent, it will be sent to the `callbackUrl` provided\n          # when making the subscription PLUS the suffix `/data`\n          '{$request.query.callbackUrl}/data':\n            post:\n              requestBody:\n                description: subscription payload\n                content:\n                  application/json:\n                    schema:\n                      type: object\n                      properties:\n                        timestamp:\n                          type: string\n                          format: date-time\n                        userData:\n                          type: string\n              responses:\n                '202':\n                  description: |\n                    Your server implementation should return this HTTP status code\n                    if the data was received successfully\n                '204':\n                  description: |\n                    Your server should return this HTTP status code if no longer interested\n                    in further updates\n"
  },
  {
    "path": "_archive_/schemas/v3.0/pass/link-example.yaml",
    "content": "openapi: 3.0.0\ninfo: \n  title: Link Example\n  version: 1.0.0\npaths: \n  /2.0/users/{username}: \n    get: \n      operationId: getUserByName\n      parameters: \n      - name: username\n        in: path\n        required: true\n        schema:\n          type: string\n      responses: \n        '200':\n          description: The User\n          content:\n            application/json:\n              schema: \n                $ref: '#/components/schemas/user'\n          links:\n            userRepositories:\n              $ref: '#/components/links/UserRepositories'\n  /2.0/repositories/{username}:\n    get:\n      operationId: getRepositoriesByOwner\n      parameters:\n        - name: username\n          in: path\n          required: true\n          schema:\n            type: string\n      responses:\n        '200':\n          description: repositories owned by the supplied user\n          content: \n            application/json:\n              schema:\n                type: array\n                items:\n                  $ref: '#/components/schemas/repository'\n          links:\n            userRepository:\n              $ref: '#/components/links/UserRepository'\n  /2.0/repositories/{username}/{slug}: \n    get: \n      operationId: getRepository\n      parameters: \n        - name: username\n          in: path\n          required: true\n          schema:\n            type: string\n        - name: slug\n          in: path\n          required: true\n          schema:\n            type: string\n      responses: \n        '200':\n          description: The repository\n          content:\n              application/json: \n                schema: \n                  $ref: '#/components/schemas/repository'\n          links:\n            repositoryPullRequests:\n              $ref: '#/components/links/RepositoryPullRequests'\n  /2.0/repositories/{username}/{slug}/pullrequests: \n    get: \n      operationId: getPullRequestsByRepository\n      parameters: \n      - name: username\n        in: path\n        required: true\n        schema:\n          type: string\n      - name: slug\n        in: path\n        required: true\n        schema:\n          type: string\n      - name: state\n        in: query\n        schema:\n          type: string\n          enum: \n            - open\n            - merged\n            - declined\n      responses: \n        '200':\n          description: an array of pull request objects\n          content:\n            application/json: \n              schema: \n                type: array\n                items: \n                  $ref: '#/components/schemas/pullrequest'\n  /2.0/repositories/{username}/{slug}/pullrequests/{pid}: \n    get: \n      operationId: getPullRequestsById\n      parameters: \n      - name: username\n        in: path\n        required: true\n        schema:\n          type: string\n      - name: slug\n        in: path\n        required: true\n        schema:\n          type: string\n      - name: pid\n        in: path\n        required: true\n        schema:\n          type: string\n      responses: \n        '200':\n          description: a pull request object\n          content:\n            application/json: \n              schema: \n                $ref: '#/components/schemas/pullrequest'\n          links:\n            pullRequestMerge:\n              $ref: '#/components/links/PullRequestMerge'\n  /2.0/repositories/{username}/{slug}/pullrequests/{pid}/merge: \n    post: \n      operationId: mergePullRequest\n      parameters: \n      - name: username\n        in: path\n        required: true\n        schema:\n          type: string\n      - name: slug\n        in: path\n        required: true\n        schema:\n          type: string\n      - name: pid\n        in: path\n        required: true\n        schema:\n          type: string\n      responses: \n        '204':\n          description: the PR was successfully merged\ncomponents:\n  links:\n    UserRepositories:\n      # returns array of '#/components/schemas/repository'\n      operationId: getRepositoriesByOwner\n      parameters:\n        username: $response.body#/username\n    UserRepository:\n      # returns '#/components/schemas/repository'\n      operationId: getRepository\n      parameters:\n        username: $response.body#/owner/username\n        slug: $response.body#/slug\n    RepositoryPullRequests:\n      # returns '#/components/schemas/pullrequest'\n      operationId: getPullRequestsByRepository\n      parameters: \n          username: $response.body#/owner/username\n          slug: $response.body#/slug\n    PullRequestMerge:\n      # executes /2.0/repositories/{username}/{slug}/pullrequests/{pid}/merge\n      operationId: mergePullRequest\n      parameters:\n        username: $response.body#/author/username\n        slug: $response.body#/repository/slug\n        pid: $response.body#/id\n  schemas: \n    user: \n      type: object\n      properties: \n        username: \n          type: string\n        uuid: \n          type: string\n    repository: \n      type: object\n      properties: \n        slug: \n          type: string\n        owner: \n          $ref: '#/components/schemas/user'\n    pullrequest: \n      type: object\n      properties: \n        id: \n          type: integer\n        title: \n          type: string\n        repository: \n          $ref: '#/components/schemas/repository'\n        author: \n          $ref: '#/components/schemas/user'\n"
  },
  {
    "path": "_archive_/schemas/v3.0/pass/petstore-expanded.yaml",
    "content": "openapi: \"3.0.0\"\ninfo:\n  version: 1.0.0\n  title: Swagger Petstore\n  description: A sample API that uses a petstore as an example to demonstrate features in the OpenAPI 3.0 specification\n  termsOfService: http://swagger.io/terms/\n  contact:\n    name: Swagger API Team\n    email: apiteam@swagger.io\n    url: http://swagger.io\n  license:\n    name: Apache 2.0\n    url: https://www.apache.org/licenses/LICENSE-2.0.html\nservers:\n  - url: https://petstore.swagger.io/v2\npaths:\n  /pets:\n    get:\n      description: |\n        Returns all pets from the system that the user has access to\n        Nam sed condimentum est. Maecenas tempor sagittis sapien, nec rhoncus sem sagittis sit amet. Aenean at gravida augue, ac iaculis sem. Curabitur odio lorem, ornare eget elementum nec, cursus id lectus. Duis mi turpis, pulvinar ac eros ac, tincidunt varius justo. In hac habitasse platea dictumst. Integer at adipiscing ante, a sagittis ligula. Aenean pharetra tempor ante molestie imperdiet. Vivamus id aliquam diam. Cras quis velit non tortor eleifend sagittis. Praesent at enim pharetra urna volutpat venenatis eget eget mauris. In eleifend fermentum facilisis. Praesent enim enim, gravida ac sodales sed, placerat id erat. Suspendisse lacus dolor, consectetur non augue vel, vehicula interdum libero. Morbi euismod sagittis libero sed lacinia.\n\n        Sed tempus felis lobortis leo pulvinar rutrum. Nam mattis velit nisl, eu condimentum ligula luctus nec. Phasellus semper velit eget aliquet faucibus. In a mattis elit. Phasellus vel urna viverra, condimentum lorem id, rhoncus nibh. Ut pellentesque posuere elementum. Sed a varius odio. Morbi rhoncus ligula libero, vel eleifend nunc tristique vitae. Fusce et sem dui. Aenean nec scelerisque tortor. Fusce malesuada accumsan magna vel tempus. Quisque mollis felis eu dolor tristique, sit amet auctor felis gravida. Sed libero lorem, molestie sed nisl in, accumsan tempor nisi. Fusce sollicitudin massa ut lacinia mattis. Sed vel eleifend lorem. Pellentesque vitae felis pretium, pulvinar elit eu, euismod sapien.\n      operationId: findPets\n      parameters:\n        - name: tags\n          in: query\n          description: tags to filter by\n          required: false\n          style: form\n          schema:\n            type: array\n            items:\n              type: string\n        - name: limit\n          in: query\n          description: maximum number of results to return\n          required: false\n          schema:\n            type: integer\n            format: int32\n      responses:\n        '200':\n          description: pet response\n          content:\n            application/json:\n              schema:\n                type: array\n                items:\n                  $ref: '#/components/schemas/Pet'\n        default:\n          description: unexpected error\n          content:\n            application/json:\n              schema:\n                $ref: '#/components/schemas/Error'\n    post:\n      description: Creates a new pet in the store. Duplicates are allowed\n      operationId: addPet\n      requestBody:\n        description: Pet to add to the store\n        required: true\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/NewPet'\n      responses:\n        '200':\n          description: pet response\n          content:\n            application/json:\n              schema:\n                $ref: '#/components/schemas/Pet'\n        default:\n          description: unexpected error\n          content:\n            application/json:\n              schema:\n                $ref: '#/components/schemas/Error'\n  /pets/{id}:\n    get:\n      description: Returns a user based on a single ID, if the user does not have access to the pet\n      operationId: find pet by id\n      parameters:\n        - name: id\n          in: path\n          description: ID of pet to fetch\n          required: true\n          schema:\n            type: integer\n            format: int64\n      responses:\n        '200':\n          description: pet response\n          content:\n            application/json:\n              schema:\n                $ref: '#/components/schemas/Pet'\n        default:\n          description: unexpected error\n          content:\n            application/json:\n              schema:\n                $ref: '#/components/schemas/Error'\n    delete:\n      description: deletes a single pet based on the ID supplied\n      operationId: deletePet\n      parameters:\n        - name: id\n          in: path\n          description: ID of pet to delete\n          required: true\n          schema:\n            type: integer\n            format: int64\n      responses:\n        '204':\n          description: pet deleted\n        default:\n          description: unexpected error\n          content:\n            application/json:\n              schema:\n                $ref: '#/components/schemas/Error'\ncomponents:\n  schemas:\n    Pet:\n      allOf:\n        - $ref: '#/components/schemas/NewPet'\n        - type: object\n          required:\n          - id\n          properties:\n            id:\n              type: integer\n              format: int64\n\n    NewPet:\n      type: object\n      required:\n        - name  \n      properties:\n        name:\n          type: string\n        tag:\n          type: string    \n\n    Error:\n      type: object\n      required:\n        - code\n        - message\n      properties:\n        code:\n          type: integer\n          format: int32\n        message:\n          type: string\n"
  },
  {
    "path": "_archive_/schemas/v3.0/pass/petstore.yaml",
    "content": "openapi: \"3.0.0\"\ninfo:\n  version: 1.0.0\n  title: Swagger Petstore\n  license:\n    name: MIT\nservers:\n  - url: http://petstore.swagger.io/v1\npaths:\n  /pets:\n    get:\n      summary: List all pets\n      operationId: listPets\n      tags:\n        - pets\n      parameters:\n        - name: limit\n          in: query\n          description: How many items to return at one time (max 100)\n          required: false\n          schema:\n            type: integer\n            maximum: 100\n            format: int32\n      responses:\n        '200':\n          description: A paged array of pets\n          headers:\n            x-next:\n              description: A link to the next page of responses\n              schema:\n                type: string\n          content:\n            application/json:    \n              schema:\n                $ref: \"#/components/schemas/Pets\"\n        default:\n          description: unexpected error\n          content:\n            application/json:\n              schema:\n                $ref: \"#/components/schemas/Error\"\n    post:\n      summary: Create a pet\n      operationId: createPets\n      tags:\n        - pets\n      requestBody:\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/Pet'\n        required: true\n      responses:\n        '201':\n          description: Null response\n        default:\n          description: unexpected error\n          content:\n            application/json:\n              schema:\n                $ref: \"#/components/schemas/Error\"\n  /pets/{petId}:\n    get:\n      summary: Info for a specific pet\n      operationId: showPetById\n      tags:\n        - pets\n      parameters:\n        - name: petId\n          in: path\n          required: true\n          description: The id of the pet to retrieve\n          schema:\n            type: string\n      responses:\n        '200':\n          description: Expected response to a valid request\n          content:\n            application/json:\n              schema:\n                $ref: \"#/components/schemas/Pet\"\n        default:\n          description: unexpected error\n          content:\n            application/json:\n              schema:\n                $ref: \"#/components/schemas/Error\"\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n        - id\n        - name\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n        tag:\n          type: string\n    Pets:\n      type: array\n      maxItems: 100\n      items:\n        $ref: \"#/components/schemas/Pet\"\n    Error:\n      type: object\n      required:\n        - code\n        - message\n      properties:\n        code:\n          type: integer\n          format: int32\n        message:\n          type: string\n"
  },
  {
    "path": "_archive_/schemas/v3.0/pass/uspto.yaml",
    "content": "openapi: 3.0.1\nservers:\n  - url: '{scheme}://developer.uspto.gov/ds-api'\n    variables:\n      scheme:\n        description: 'The Data Set API is accessible via https and http'\n        enum:\n          - 'https'\n          - 'http'\n        default: 'https'\ninfo:\n  description: >-\n    The Data Set API (DSAPI) allows the public users to discover and search\n    USPTO exported data sets. This is a generic API that allows USPTO users to\n    make any CSV based data files searchable through API. With the help of GET\n    call, it returns the list of data fields that are searchable. With the help\n    of POST call, data can be fetched based on the filters on the field names.\n    Please note that POST call is used to search the actual data. The reason for\n    the POST call is that it allows users to specify any complex search criteria\n    without worry about the GET size limitations as well as encoding of the\n    input parameters.\n  version: 1.0.0\n  title: USPTO Data Set API\n  contact:\n    name: Open Data Portal\n    url: 'https://developer.uspto.gov'\n    email: developer@uspto.gov\ntags:\n  - name: metadata\n    description: Find out about the data sets\n  - name: search\n    description: Search a data set\npaths:\n  /:\n    get:\n      tags:\n        - metadata\n      operationId: list-data-sets\n      summary: List available data sets\n      responses:\n        '200':\n          description: Returns a list of data sets\n          content:\n            application/json:\n              schema:\n                $ref: '#/components/schemas/dataSetList'\n              example:\n                {\n                  \"total\": 2,\n                  \"apis\": [\n                    {\n                      \"apiKey\": \"oa_citations\",\n                      \"apiVersionNumber\": \"v1\",\n                      \"apiUrl\": \"https://developer.uspto.gov/ds-api/oa_citations/v1/fields\",\n                      \"apiDocumentationUrl\": \"https://developer.uspto.gov/ds-api-docs/index.html?url=https://developer.uspto.gov/ds-api/swagger/docs/oa_citations.json\"\n                    },\n                    {\n                      \"apiKey\": \"cancer_moonshot\",\n                      \"apiVersionNumber\": \"v1\",\n                      \"apiUrl\": \"https://developer.uspto.gov/ds-api/cancer_moonshot/v1/fields\",\n                      \"apiDocumentationUrl\": \"https://developer.uspto.gov/ds-api-docs/index.html?url=https://developer.uspto.gov/ds-api/swagger/docs/cancer_moonshot.json\"\n                    }\n                  ]\n                }\n  /{dataset}/{version}/fields:\n    get:\n      tags:\n        - metadata\n      summary: >-\n        Provides the general information about the API and the list of fields\n        that can be used to query the dataset.\n      description: >-\n        This GET API returns the list of all the searchable field names that are\n        in the oa_citations. Please see the 'fields' attribute which returns an\n        array of field names. Each field or a combination of fields can be\n        searched using the syntax options shown below.\n      operationId: list-searchable-fields\n      parameters:\n        - name: dataset\n          in: path\n          description: 'Name of the dataset.'\n          required: true\n          example: \"oa_citations\"\n          schema:\n            type: string\n        - name: version\n          in: path\n          description: Version of the dataset.\n          required: true\n          example: \"v1\"\n          schema:\n            type: string\n      responses:\n        '200':\n          description: >-\n            The dataset API for the given version is found and it is accessible\n            to consume.\n          content:\n            application/json:\n              schema:\n                type: string\n        '404':\n          description: >-\n            The combination of dataset name and version is not found in the\n            system or it is not published yet to be consumed by public.\n          content:\n            application/json:\n              schema:\n                type: string\n  /{dataset}/{version}/records:\n    post:\n      tags:\n        - search\n      summary: >-\n        Provides search capability for the data set with the given search\n        criteria.\n      description: >-\n        This API is based on Solr/Lucene Search. The data is indexed using\n        SOLR. This GET API returns the list of all the searchable field names\n        that are in the Solr Index. Please see the 'fields' attribute which\n        returns an array of field names. Each field or a combination of fields\n        can be searched using the Solr/Lucene Syntax. Please refer\n        https://lucene.apache.org/core/3_6_2/queryparsersyntax.html#Overview for\n        the query syntax. List of field names that are searchable can be\n        determined using above GET api.\n      operationId: perform-search\n      parameters:\n        - name: version\n          in: path\n          description: Version of the dataset.\n          required: true\n          schema:\n            type: string\n            default: v1\n        - name: dataset\n          in: path\n          description: 'Name of the dataset. In this case, the default value is oa_citations'\n          required: true\n          schema:\n            type: string\n            default: oa_citations\n      responses:\n        '200':\n          description: successful operation\n          content:\n            application/json:\n              schema:\n                type: array\n                items:\n                  type: object\n                  additionalProperties:\n                    type: object\n        '404':\n          description: No matching record found for the given criteria.\n      requestBody:\n        content:\n          application/x-www-form-urlencoded:\n            schema:\n              type: object\n              properties:\n                criteria:\n                  description: >-\n                    Uses Lucene Query Syntax in the format of\n                    propertyName:value, propertyName:[num1 TO num2] and date\n                    range format: propertyName:[yyyyMMdd TO yyyyMMdd]. In the\n                    response please see the 'docs' element which has the list of\n                    record objects. Each record structure would consist of all\n                    the fields and their corresponding values.\n                  type: string\n                  default: '*:*'\n                start:\n                  description: Starting record number. Default value is 0.\n                  type: integer\n                  default: 0\n                rows:\n                  description: >-\n                    Specify number of rows to be returned. If you run the search\n                    with default values, in the response you will see 'numFound'\n                    attribute which will tell the number of records available in\n                    the dataset.\n                  type: integer\n                  default: 100\n              required:\n                - criteria\ncomponents:\n  schemas:\n    dataSetList:\n      type: object\n      properties:\n        total:\n          type: integer\n        apis:\n          type: array\n          items:\n            type: object\n            properties:\n              apiKey:\n                type: string\n                description: To be used as a dataset parameter value\n              apiVersionNumber:\n                type: string\n                description: To be used as a version parameter value\n              apiUrl:\n                type: string\n                format: uriref\n                description: \"The URL describing the dataset's fields\"\n              apiDocumentationUrl:\n                type: string\n                format: uriref\n                description: A URL to the API console for each API\n"
  },
  {
    "path": "_archive_/schemas/v3.0/schema.test.mjs",
    "content": "import { readdirSync, readFileSync } from \"node:fs\";\nimport YAML from \"yaml\";\nimport { validate, setMetaSchemaOutputFormat } from \"@hyperjump/json-schema/openapi-3-0\";\nimport { BASIC } from \"@hyperjump/json-schema/experimental\";\nimport { describe, test, expect } from \"vitest\";\n\nimport contentTypeParser from \"content-type\";\nimport { addMediaTypePlugin } from \"@hyperjump/browser\";\nimport { buildSchemaDocument } from \"@hyperjump/json-schema/experimental\";\n\naddMediaTypePlugin(\"application/schema+yaml\", {\n    parse: async (response) => {\n      const contentType = contentTypeParser.parse(response.headers.get(\"content-type\") ?? \"\");\n      const contextDialectId = contentType.parameters.schema ?? contentType.parameters.profile;\n  \n      const foo = YAML.parse(await response.text());\n      return buildSchemaDocument(foo, response.url, contextDialectId);\n    },\n    fileMatcher: (path) => path.endsWith(\".yaml\")\n  });\n\nconst parseYamlFromFile = (filePath) => {\n    const schemaYaml = readFileSync(filePath, \"utf8\");\n    return YAML.parse(schemaYaml, { prettyErrors: true });\n};\n\nsetMetaSchemaOutputFormat(BASIC);\n\nconst validateOpenApi = await validate(\"./_archive_/schemas/v3.0/schema.yaml\");\nconst folder = './_archive_/schemas/v3.0/pass/';\n\ndescribe(\"pass\", async () => {\n    readdirSync(folder, { withFileTypes: true })\n        .filter((entry) => entry.isFile() && /\\.yaml$/.test(entry.name))\n        .forEach((entry) => {\n            test(entry.name, () => {\n                const instance = parseYamlFromFile(folder + entry.name);\n                const output = validateOpenApi(instance, BASIC);\n                expect(output.valid).to.equal(true);\n            });\n        });\n});\n"
  },
  {
    "path": "_archive_/schemas/v3.0/schema.yaml",
    "content": "id: https://spec.openapis.org/oas/3.0/schema/WORK-IN-PROGRESS\n$schema: http://json-schema.org/draft-04/schema#\ndescription: The description of OpenAPI v3.0.x Documents\ntype: object\nrequired:\n  - openapi\n  - info\n  - paths\nproperties:\n  openapi:\n    type: string\n    pattern: ^3\\.0\\.\\d(-.+)?$\n  info:\n    $ref: '#/definitions/Info'\n  externalDocs:\n    $ref: '#/definitions/ExternalDocumentation'\n  servers:\n    type: array\n    items:\n      $ref: '#/definitions/Server'\n  security:\n    type: array\n    items:\n      $ref: '#/definitions/SecurityRequirement'\n  tags:\n    type: array\n    items:\n      $ref: '#/definitions/Tag'\n    uniqueItems: true\n  paths:\n    $ref: '#/definitions/Paths'\n  components:\n    $ref: '#/definitions/Components'\npatternProperties:\n  '^x-': {}\nadditionalProperties: false\ndefinitions:\n  Reference:\n    type: object\n    required:\n      - $ref\n    patternProperties:\n      '^\\$ref$':\n        type: string\n        format: uri-reference\n  Info:\n    type: object\n    required:\n      - title\n      - version\n    properties:\n      title:\n        type: string\n      description:\n        type: string\n      termsOfService:\n        type: string\n        format: uri-reference\n      contact:\n        $ref: '#/definitions/Contact'\n      license:\n        $ref: '#/definitions/License'\n      version:\n        type: string\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n\n  Contact:\n    type: object\n    properties:\n      name:\n        type: string\n      url:\n        type: string\n        format: uri-reference\n      email:\n        type: string\n        format: email\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  License:\n    type: object\n    required:\n      - name\n    properties:\n      name:\n        type: string\n      url:\n        type: string\n        format: uri-reference\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  Server:\n    type: object\n    required:\n      - url\n    properties:\n      url:\n        type: string\n      description:\n        type: string\n      variables:\n        type: object\n        additionalProperties:\n          $ref: '#/definitions/ServerVariable'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  ServerVariable:\n    type: object\n    required:\n      - default\n    properties:\n      enum:\n        type: array\n        items:\n          type: string\n      default:\n        type: string\n      description:\n        type: string\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  Components:\n    type: object\n    properties:\n      schemas:\n        type: object\n        patternProperties:\n          '^[a-zA-Z0-9\\.\\-_]+$':\n            oneOf:\n              - $ref: '#/definitions/Schema'\n              - $ref: '#/definitions/Reference'\n      responses:\n        type: object\n        patternProperties:\n          '^[a-zA-Z0-9\\.\\-_]+$':\n            oneOf:\n              - $ref: '#/definitions/Reference'\n              - $ref: '#/definitions/Response'\n      parameters:\n        type: object\n        patternProperties:\n          '^[a-zA-Z0-9\\.\\-_]+$':\n            oneOf:\n              - $ref: '#/definitions/Reference'\n              - $ref: '#/definitions/Parameter'\n      examples:\n        type: object\n        patternProperties:\n          '^[a-zA-Z0-9\\.\\-_]+$':\n            oneOf:\n              - $ref: '#/definitions/Reference'\n              - $ref: '#/definitions/Example'\n      requestBodies:\n        type: object\n        patternProperties:\n          '^[a-zA-Z0-9\\.\\-_]+$':\n            oneOf:\n              - $ref: '#/definitions/Reference'\n              - $ref: '#/definitions/RequestBody'\n      headers:\n        type: object\n        patternProperties:\n          '^[a-zA-Z0-9\\.\\-_]+$':\n            oneOf:\n              - $ref: '#/definitions/Reference'\n              - $ref: '#/definitions/Header'\n      securitySchemes:\n        type: object\n        patternProperties:\n          '^[a-zA-Z0-9\\.\\-_]+$':\n            oneOf:\n              - $ref: '#/definitions/Reference'\n              - $ref: '#/definitions/SecurityScheme'\n      links:\n        type: object\n        patternProperties:\n          '^[a-zA-Z0-9\\.\\-_]+$':\n            oneOf:\n              - $ref: '#/definitions/Reference'\n              - $ref: '#/definitions/Link'\n      callbacks:\n        type: object\n        patternProperties:\n          '^[a-zA-Z0-9\\.\\-_]+$':\n            oneOf:\n              - $ref: '#/definitions/Reference'\n              - $ref: '#/definitions/Callback'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  Schema:\n    type: object\n    properties:\n      title:\n        type: string\n      multipleOf:\n        type: number\n        minimum: 0\n        exclusiveMinimum: true\n      maximum:\n        type: number\n      exclusiveMaximum:\n        type: boolean\n        default: false\n      minimum:\n        type: number\n      exclusiveMinimum:\n        type: boolean\n        default: false\n      maxLength:\n        type: integer\n        minimum: 0\n      minLength:\n        type: integer\n        minimum: 0\n        default: 0\n      pattern:\n        type: string\n        format: regex\n      maxItems:\n        type: integer\n        minimum: 0\n      minItems:\n        type: integer\n        minimum: 0\n        default: 0\n      uniqueItems:\n        type: boolean\n        default: false\n      maxProperties:\n        type: integer\n        minimum: 0\n      minProperties:\n        type: integer\n        minimum: 0\n        default: 0\n      required:\n        type: array\n        items:\n          type: string\n        minItems: 1\n        uniqueItems: true\n      enum:\n        type: array\n        items: {}\n        minItems: 1\n        uniqueItems: false\n      type:\n        type: string\n        enum:\n          - array\n          - boolean\n          - integer\n          - number\n          - object\n          - string\n      not:\n        oneOf:\n          - $ref: '#/definitions/Schema'\n          - $ref: '#/definitions/Reference'\n      allOf:\n        type: array\n        items:\n          oneOf:\n            - $ref: '#/definitions/Schema'\n            - $ref: '#/definitions/Reference'\n      oneOf:\n        type: array\n        items:\n          oneOf:\n            - $ref: '#/definitions/Schema'\n            - $ref: '#/definitions/Reference'\n      anyOf:\n        type: array\n        items:\n          oneOf:\n            - $ref: '#/definitions/Schema'\n            - $ref: '#/definitions/Reference'\n      items:\n        oneOf:\n          - $ref: '#/definitions/Schema'\n          - $ref: '#/definitions/Reference'\n      properties:\n        type: object\n        additionalProperties:\n          oneOf:\n            - $ref: '#/definitions/Schema'\n            - $ref: '#/definitions/Reference'\n      additionalProperties:\n        oneOf:\n          - $ref: '#/definitions/Schema'\n          - $ref: '#/definitions/Reference'\n          - type: boolean\n        default: true\n      description:\n        type: string\n      format:\n        type: string\n      default: {}\n      nullable:\n        type: boolean\n        default: false\n      discriminator:\n        $ref: '#/definitions/Discriminator'\n      readOnly:\n        type: boolean\n        default: false\n      writeOnly:\n        type: boolean\n        default: false\n      example: {}\n      externalDocs:\n        $ref: '#/definitions/ExternalDocumentation'\n      deprecated:\n        type: boolean\n        default: false\n      xml:\n        $ref: '#/definitions/XML'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  Discriminator:\n    type: object\n    required:\n      - propertyName\n    properties:\n      propertyName:\n        type: string\n      mapping:\n        type: object\n        additionalProperties:\n          type: string\n\n  XML:\n    type: object\n    properties:\n      name:\n        type: string\n      namespace:\n        type: string\n        format: uri\n      prefix:\n        type: string\n      attribute:\n        type: boolean\n        default: false\n      wrapped:\n        type: boolean\n        default: false\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  Response:\n    type: object\n    required:\n      - description\n    properties:\n      description:\n        type: string\n      headers:\n        type: object\n        additionalProperties:\n          oneOf:\n            - $ref: '#/definitions/Header'\n            - $ref: '#/definitions/Reference'\n      content:\n        type: object\n        additionalProperties:\n          $ref: '#/definitions/MediaType'\n      links:\n        type: object\n        additionalProperties:\n          oneOf:\n            - $ref: '#/definitions/Link'\n            - $ref: '#/definitions/Reference'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  MediaType:\n    type: object\n    properties:\n      schema:\n        oneOf:\n          - $ref: '#/definitions/Schema'\n          - $ref: '#/definitions/Reference'\n      example: {}\n      examples:\n        type: object\n        additionalProperties:\n          oneOf:\n            - $ref: '#/definitions/Example'\n            - $ref: '#/definitions/Reference'\n      encoding:\n        type: object\n        additionalProperties:\n          $ref: '#/definitions/Encoding'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n    allOf:\n      - $ref: '#/definitions/ExampleXORExamples'\n\n  Example:\n    type: object\n    properties:\n      summary:\n        type: string\n      description:\n        type: string\n      value: {}\n      externalValue:\n        type: string\n        format: uri-reference\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  Header:\n    type: object\n    properties:\n      description:\n        type: string\n      required:\n        type: boolean\n        default: false\n      deprecated:\n        type: boolean\n        default: false\n      allowEmptyValue:\n        type: boolean\n        default: false\n      style:\n        type: string\n        enum:\n          - simple\n        default: simple\n      explode:\n        type: boolean\n      allowReserved:\n        type: boolean\n        default: false\n      schema:\n        oneOf:\n          - $ref: '#/definitions/Schema'\n          - $ref: '#/definitions/Reference'\n      content:\n        type: object\n        additionalProperties:\n          $ref: '#/definitions/MediaType'\n        minProperties: 1\n        maxProperties: 1\n      example: {}\n      examples:\n        type: object\n        additionalProperties:\n          oneOf:\n            - $ref: '#/definitions/Example'\n            - $ref: '#/definitions/Reference'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n    allOf:\n      - $ref: '#/definitions/ExampleXORExamples'\n      - $ref: '#/definitions/SchemaXORContent'\n\n  Paths:\n    type: object\n    patternProperties:\n      '^\\/':\n        $ref: '#/definitions/PathItem'\n      '^x-': {}\n    additionalProperties: false\n\n  PathItem:\n    type: object\n    properties:\n      $ref:\n        type: string\n      summary:\n        type: string\n      description:\n        type: string\n      get:\n        $ref: '#/definitions/Operation'\n      put:\n        $ref: '#/definitions/Operation'\n      post:\n        $ref: '#/definitions/Operation'\n      delete:\n        $ref: '#/definitions/Operation'\n      options:\n        $ref: '#/definitions/Operation'\n      head:\n        $ref: '#/definitions/Operation'\n      patch:\n        $ref: '#/definitions/Operation'\n      trace:\n        $ref: '#/definitions/Operation'\n      servers:\n        type: array\n        items:\n          $ref: '#/definitions/Server'\n      parameters:\n        type: array\n        items:\n          oneOf:\n            - $ref: '#/definitions/Parameter'\n            - $ref: '#/definitions/Reference'\n        uniqueItems: true\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  Operation:\n    type: object\n    required:\n      - responses\n    properties:\n      tags:\n        type: array\n        items:\n          type: string\n      summary:\n        type: string\n      description:\n        type: string\n      externalDocs:\n        $ref: '#/definitions/ExternalDocumentation'\n      operationId:\n        type: string\n      parameters:\n        type: array\n        items:\n          oneOf:\n            - $ref: '#/definitions/Parameter'\n            - $ref: '#/definitions/Reference'\n        uniqueItems: true\n      requestBody:\n        oneOf:\n          - $ref: '#/definitions/RequestBody'\n          - $ref: '#/definitions/Reference'\n      responses:\n        $ref: '#/definitions/Responses'\n      callbacks:\n        type: object\n        additionalProperties:\n          oneOf:\n            - $ref: '#/definitions/Callback'\n            - $ref: '#/definitions/Reference'\n      deprecated:\n        type: boolean\n        default: false\n      security:\n        type: array\n        items:\n          $ref: '#/definitions/SecurityRequirement'\n      servers:\n        type: array\n        items:\n          $ref: '#/definitions/Server'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  Responses:\n    type: object\n    properties:\n      default:\n        oneOf:\n          - $ref: '#/definitions/Response'\n          - $ref: '#/definitions/Reference'\n    patternProperties:\n      '^[1-5](?:\\d{2}|XX)$':\n        oneOf:\n          - $ref: '#/definitions/Response'\n          - $ref: '#/definitions/Reference'\n      '^x-': {}\n    minProperties: 1\n    additionalProperties: false\n\n\n  SecurityRequirement:\n    type: object\n    additionalProperties:\n      type: array\n      items:\n        type: string\n\n  Tag:\n    type: object\n    required:\n      - name\n    properties:\n      name:\n        type: string\n      description:\n        type: string\n      externalDocs:\n        $ref: '#/definitions/ExternalDocumentation'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  ExternalDocumentation:\n    type: object\n    required:\n      - url\n    properties:\n      description:\n        type: string\n      url:\n        type: string\n        format: uri-reference\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  ExampleXORExamples:\n    description: Example and examples are mutually exclusive\n    not:\n      required: [example, examples]\n\n  SchemaXORContent:\n    description: Schema and content are mutually exclusive, at least one is required\n    not:\n      required: [schema, content]\n    oneOf:\n      - required: [schema]\n      - required: [content]\n        description: Some properties are not allowed if content is present\n        allOf:\n          - not:\n              required: [style]\n          - not:\n              required: [explode]\n          - not:\n              required: [allowReserved]\n          - not:\n              required: [example]\n          - not:\n              required: [examples]\n\n  Parameter:\n    type: object\n    properties:\n      name:\n        type: string\n      in:\n        type: string\n      description:\n        type: string\n      required:\n        type: boolean\n        default: false\n      deprecated:\n        type: boolean\n        default: false\n      allowEmptyValue:\n        type: boolean\n        default: false\n      style:\n        type: string\n      explode:\n        type: boolean\n      allowReserved:\n        type: boolean\n        default: false\n      schema:\n        oneOf:\n          - $ref: '#/definitions/Schema'\n          - $ref: '#/definitions/Reference'\n      content:\n        type: object\n        additionalProperties:\n          $ref: '#/definitions/MediaType'\n        minProperties: 1\n        maxProperties: 1\n      example: {}\n      examples:\n        type: object\n        additionalProperties:\n          oneOf:\n            - $ref: '#/definitions/Example'\n            - $ref: '#/definitions/Reference'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n    required:\n      - name\n      - in\n    allOf:\n      - $ref: '#/definitions/ExampleXORExamples'\n      - $ref: '#/definitions/SchemaXORContent'\n    oneOf:\n      - $ref: '#/definitions/PathParameter'\n      - $ref: '#/definitions/QueryParameter'\n      - $ref: '#/definitions/HeaderParameter'\n      - $ref: '#/definitions/CookieParameter'\n\n  PathParameter:\n    description: Parameter in path\n    required:\n      - required\n    properties:\n      in:\n        enum: [path]\n      style:\n        enum: [matrix, label, simple]\n        default: simple\n      required:\n        enum: [true]\n\n  QueryParameter:\n    description: Parameter in query\n    properties:\n      in:\n        enum: [query]\n      style:\n        enum: [form, spaceDelimited, pipeDelimited, deepObject]\n        default: form\n\n  HeaderParameter:\n    description: Parameter in header\n    properties:\n      in:\n        enum: [header]\n      style:\n        enum: [simple]\n        default: simple\n\n  CookieParameter:\n    description: Parameter in cookie\n    properties:\n      in:\n        enum: [cookie]\n      style:\n        enum: [form]\n        default: form\n\n  RequestBody:\n    type: object\n    required:\n      - content\n    properties:\n      description:\n        type: string\n      content:\n        type: object\n        additionalProperties:\n          $ref: '#/definitions/MediaType'\n      required:\n        type: boolean\n        default: false\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  SecurityScheme:\n    oneOf:\n      - $ref: '#/definitions/APIKeySecurityScheme'\n      - $ref: '#/definitions/HTTPSecurityScheme'\n      - $ref: '#/definitions/OAuth2SecurityScheme'\n      - $ref: '#/definitions/OpenIdConnectSecurityScheme'\n\n  APIKeySecurityScheme:\n    type: object\n    required:\n      - type\n      - name\n      - in\n    properties:\n      type:\n        type: string\n        enum:\n          - apiKey\n      name:\n        type: string\n      in:\n        type: string\n        enum:\n          - header\n          - query\n          - cookie\n      description:\n        type: string\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  HTTPSecurityScheme:\n    type: object\n    required:\n      - scheme\n      - type\n    properties:\n      scheme:\n        type: string\n      bearerFormat:\n        type: string\n      description:\n        type: string\n      type:\n        type: string\n        enum:\n          - http\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n    oneOf:\n      - description: Bearer\n        properties:\n          scheme:\n            type: string\n            pattern: ^[Bb][Ee][Aa][Rr][Ee][Rr]$\n\n      - description: Non Bearer\n        not:\n          required: [bearerFormat]\n        properties:\n          scheme:\n            not:\n              type: string\n              pattern: ^[Bb][Ee][Aa][Rr][Ee][Rr]$\n\n  OAuth2SecurityScheme:\n    type: object\n    required:\n      - type\n      - flows\n    properties:\n      type:\n        type: string\n        enum:\n          - oauth2\n      flows:\n        $ref: '#/definitions/OAuthFlows'\n      description:\n        type: string\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  OpenIdConnectSecurityScheme:\n    type: object\n    required:\n      - type\n      - openIdConnectUrl\n    properties:\n      type:\n        type: string\n        enum:\n          - openIdConnect\n      openIdConnectUrl:\n        type: string\n        format: uri-reference\n      description:\n        type: string\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  OAuthFlows:\n    type: object\n    properties:\n      implicit:\n        $ref: '#/definitions/ImplicitOAuthFlow'\n      password:\n        $ref: '#/definitions/PasswordOAuthFlow'\n      clientCredentials:\n        $ref: '#/definitions/ClientCredentialsFlow'\n      authorizationCode:\n        $ref: '#/definitions/AuthorizationCodeOAuthFlow'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  ImplicitOAuthFlow:\n    type: object\n    required:\n      - authorizationUrl\n      - scopes\n    properties:\n      authorizationUrl:\n        type: string\n        format: uri-reference\n      refreshUrl:\n        type: string\n        format: uri-reference\n      scopes:\n        type: object\n        additionalProperties:\n          type: string\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  PasswordOAuthFlow:\n    type: object\n    required:\n      - tokenUrl\n      - scopes\n    properties:\n      tokenUrl:\n        type: string\n        format: uri-reference\n      refreshUrl:\n        type: string\n        format: uri-reference\n      scopes:\n        type: object\n        additionalProperties:\n          type: string\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  ClientCredentialsFlow:\n    type: object\n    required:\n      - tokenUrl\n      - scopes\n    properties:\n      tokenUrl:\n        type: string\n        format: uri-reference\n      refreshUrl:\n        type: string\n        format: uri-reference\n      scopes:\n        type: object\n        additionalProperties:\n          type: string\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  AuthorizationCodeOAuthFlow:\n    type: object\n    required:\n      - authorizationUrl\n      - tokenUrl\n      - scopes\n    properties:\n      authorizationUrl:\n        type: string\n        format: uri-reference\n      tokenUrl:\n        type: string\n        format: uri-reference\n      refreshUrl:\n        type: string\n        format: uri-reference\n      scopes:\n        type: object\n        additionalProperties:\n          type: string\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n\n  Link:\n    type: object\n    properties:\n      operationId:\n        type: string\n      operationRef:\n        type: string\n        format: uri-reference\n      parameters:\n        type: object\n        additionalProperties: {}\n      requestBody: {}\n      description:\n        type: string\n      server:\n        $ref: '#/definitions/Server'\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n    not:\n      description: Operation Id and Operation Ref are mutually exclusive\n      required: [operationId, operationRef]\n\n  Callback:\n    type: object\n    additionalProperties:\n      $ref: '#/definitions/PathItem'\n    patternProperties:\n      '^x-': {}\n\n  Encoding:\n    type: object\n    properties:\n      contentType:\n        type: string\n      headers:\n        type: object\n        additionalProperties:\n          oneOf:\n            - $ref: '#/definitions/Header'\n            - $ref: '#/definitions/Reference'\n      style:\n        type: string\n        enum:\n          - form\n          - spaceDelimited\n          - pipeDelimited\n          - deepObject\n      explode:\n        type: boolean\n      allowReserved:\n        type: boolean\n        default: false\n    patternProperties:\n      '^x-': {}\n    additionalProperties: false\n"
  },
  {
    "path": "package.json",
    "content": "{\n  \"name\": \"oas-infra\",\n  \"version\": \"0.0.0\",\n  \"description\": \"OpenAPI Specification Automation & Infrastructure\",\n  \"author\": {\n    \"name\": \"OpenAPI Initiative TSC\",\n    \"email\": \"tsc@openapis.org\",\n    \"url\": \"https://openapis.org/\"\n  },\n  \"repository\": {\n    \"type\": \"git\",\n    \"url\": \"https://github.com/OAI/OpenAPI-Specification.git\"\n  },\n  \"license\": \"Apache-2.0\",\n  \"scripts\": {\n    \"build\": \"bash ./scripts/md2html/build.sh\",\n    \"build-src\": \"npm run validate-markdown && bash ./scripts/md2html/build.sh src && bash ./scripts/schema-publish.sh src\",\n    \"test\": \"c8 --100 vitest run --coverage\",\n    \"format-markdown\": \"npx markdownlint-cli2 --config spec.markdownlint.yaml --fix src/oas.md && npx markdownlint-cli2 --fix *.md\",\n    \"validate-markdown\": \"npx markdownlint-cli2 --config spec.markdownlint.yaml src/oas.md && npx markdownlint-cli2 *.md && npx linkspector check\"\n  },\n  \"dependencies\": {\n    \"cheerio\": \"^1.2.0\",\n    \"highlight.js\": \"^11.11.1\",\n    \"markdown-it\": \"^14.1.0\",\n    \"respec\": \"35.8.0\",\n    \"yargs\": \"^18.0.0\"\n  },\n  \"devDependencies\": {\n    \"@hyperjump/json-schema-coverage\": \"^1.2.1\",\n    \"@umbrelladocs/linkspector\": \"^0.4.7\",\n    \"@vitest/coverage-v8\": \"^4.1.0\",\n    \"c8\": \"^11.0.0\",\n    \"markdownlint-cli2\": \"^0.21.0\",\n    \"vitest\": \"^4.0.1\",\n    \"yaml\": \"^2.8.2\"\n  },\n  \"keywords\": [\n    \"OpenAPI\",\n    \"OAS\",\n    \"Swagger\",\n    \"schema\",\n    \"API\"\n  ]\n}\n"
  },
  {
    "path": "proposals/2019-01-01-Proposal-Template.md",
    "content": "# Feature name\n\n\n## Metadata\n\n|Tag |Value |\n|---- | ---------------- |\n|Proposal |[YYYY-MM-DD-Short-Name](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/{YYYY-MM-DD-Short-Name.md})|\n|Authors|[Author 1](https://github.com/{author1}), [Author 2](https://github.com/{author2})|\n|Review Manager | TBD |\n|Status |Proposal, Draft, Promoted, or Abandoned|\n|Implementations |[Click Here](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/{YYYY-MM-DD-Short-Name}/implementations.md)|\n|Issues |[{issueid}](https://github.com/OAI/OpenAPI-Specification/issues/{IssueId})|\n|Previous Revisions |[{revid}](https://github.com/OAI/OpenAPI-Specification/pull/{revid}) |\n\n## Change Log\n\n|Date |Responsible Party |Description |\n|---- | ---------------- | ---------- |\n\n## Introduction\n\nA short description of what the feature is. Try to keep it to a single-paragraph \"elevator pitch\" so the reader understands what problem this proposal is addressing.\n\n## Motivation\n\nDescribe the problems that this proposal seeks to address. If the problem is that some common pattern is currently hard to express, show how one can currently get a similar effect and describe its drawbacks. If it's completely new functionality that cannot be emulated, motivate why this new functionality would help OpenAPI developers create better code.\n\n## Proposed solution\n\nDescribe your solution to the problem. Provide examples and describe how they work. Show how your solution is better than current workarounds: is it cleaner, safer, or more efficient?\n\n## Detailed design\n\nDescribe the design of the solution in detail. This should include an exact description of the changes to the contents of the OpenAPI specification. That description should include a extract of each section of the OpenAPI specification which is impacted by the proposal with all proposed modifications applied. These extracts may be provided through additional files which are identified and described in this section.\n\n## Backwards compatibility\n\nProposals should be structure so that they can be handled by existing OAS compliant software. Any potential issues should be identified and discussed.\n\n## Alternatives considered\n\nDescribe alternative approaches to addressing the same problem, and why you chose this approach instead.\n\n"
  },
  {
    "path": "proposals/2019-03-15-Alternative-Schema.md",
    "content": "# Alternative Schema\n\n## Metadata\n\n|Tag |Value |\n|---- | ---------------- |\n|Proposal |[Alternative Schema](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/2019-03-15-Alternative-Schema.md)|\n|Authors|[Chuck Heazel](https://github.com/cmheazel)|\n|Review Manager |TBD |\n|Status |**Draft** |\n|Implementations |[Click Here](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/Alternative-Schema/implementations.md)\n|Issues |[1532](https://github.com/OAI/OpenAPI-Specification/issues/1532)|\n|Previous Revisions |[March 15](https://github.com/OAI/OpenAPI-Specification/pull/1868#issue-261689900) |\n \n.Change Log\n\n|Date |Responsible Party |Description |\n|---- | ---------------- | ---------- |\n|2019-03-15 |C. Heazel|Initial Markup Draft |\n|2019-04-17 |C. Heazel|Re-structured based on Apple Swift|\n\n## Introduction\n\nThis a proposal to add a new field called ``alternativeSchema`` to the OAS.\n\n## Motivation\n\nOpenAPI allows APIs to describe the syntax of their request and response messaged using a JSON Schema-like syntax. However, not all messages will be in JSON. The ability to refer to one or more external schema will allow an API to describe the syntax of a message regardless of the format used.\n\nFor example: Some XML payloads are defined by an XML schema (the syntax) and a suite of Schematron rules (valid values). JSON Schema cannot effectively represent their content. By providing access to the appropriate appropriate XML Schema and Schematron files, the payload can be validated the way it was intended to be.\n\n## Proposed solution\n\nThis proposal makes the following changes to the OAS 3.0 specification:\n\n1. Extend the Schema Object by the addition of the x-oas-draft-alternativeSchema field.\n1. Addition of the Alternative Schema Object.\n1. Addition of Alternative Schema examples.\n1. Addition of a preliminary discussion of the Alternative Schema registry.\n\n## Detailed design\n\n###  Extend the Schema Object \n\nThe OpenAPI Schema Object is extended by the addition of the x-oas-draft-alternativeSchema field. The proposed changes to the OpenAPI specification are provided in [schema_object.md](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/Alternative%20Schema/schema_object.md)\n\n###  Add the Alternative Schema Object \n\nThe new object, the Alternative Schema Object is added to the OpenAPI specification. The proposed changes to the OpenAPI specification are provided in [alternative_schema_object.md](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/Alternative%20Schema/alternative_schema_object.md)\n\n### Provide Alternative Schema Examples\nExamples of the use of the Alternative Schema capability is added to the OpenAPI specification. The proposed changes to the OpenAPI specification are provided in [alternative_schema_examples.md](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/Alternative%20Schema/alternative_schema_examples.md)\n\n### Alternative Schema Registry\n\nValues used to populate the Alternative Schema Object are required to come from the Alternative Schema Registry. The preliminary Alternative Schema Registry is located at <https://spec.openapis.org/registries/alternative-schema>.\n\n*** Note this is a placeholder registry. Don't take the values seriously. ***  \n\nInitial contents of the registry will include:\n\n|Name  |Link  |Description | \n|--- | --- | --- |\n|jsonSchema |TBD  |JSON Schema | |xsdSchema |TBD  |XML Schema |\n\n## Backwards compatibility\n\nThis proposal makes use of the extensibility features of OpenAPI. All changes sould appear as extensions and handled accordingly.\n\n## Alternatives considered\n\nEmbedding non-JSON content in the OAS document would have imposed an unacceptable burden on tooling. Therefore, an external link was preferred. Considerable discussion was held over exactly how the links should be represented in the Schema Object. The selected option should support the greatest number of possible combinations of external schema that can be expressed with the OpenAPI schema language.\n\n"
  },
  {
    "path": "proposals/2019-07-17-Webhooks.md",
    "content": "# Webhooks\n\n\n## Metadata\n\n|Tag |Value |\n|---- | ---------------- |\n|Proposal |[2019-07-17-Webhooks](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/2019-07-17-Webhooks.md)|\n|Authors|[Lorna Mitchell](https://github.com/lornajane)|\n|Review Manager |TBD |\n|Status |Proposal|\n|Issues |[#1968](https://github.com/OAI/OpenAPI-Specification/issues/1968)|\n\n## Change Log\n\n|Date |Responsible Party |Description |\n|---- | ---------------- | ---------- |\n| 17th July 2019 | Lorna Mitchell | Initial draft |\n\n## Introduction\n\nModern APIs often consist of two-way API traffic, but OpenAPI currently only supports some types of requests. Standard client-to-server API calls are well supported. Server-to-client callbacks are only supported if they are the result of an earlier API call and are documented by nesting under the path of that earlier call. Incoming HTTP requests (\"webhooks\") cannot be described in the current version of OpenAPI if they are the result of subscription arranged outside of the scope of the API (e.g. by setting a callback URL in a web interface).\n\n## Motivation\n\nOpenAPI supports a `callback` element, where the result of an API call is delivered at some later time as an incoming HTTP request to a nominated URL. However it does not support webhooks, where events arrive as an incoming HTTP request but the configuration of these requests was arranged outside of the scope of the API, e.g. on a website.\n\nFor example: at Nexmo we have an SMS API (the docs are here: <https://developer.nexmo.com/api/sms> and the source spec here: <https://github.com/Nexmo/api-specification/blob/master/definitions/sms.yml>). It supports:\n\n* sending an SMS (an outgoing API call, currently supported)\n* receiving a delivery receipt when you just sent an SMS (callback, currently supported)\n* receiving an incoming SMS (webhook, not currently supported)\n\nThe docs have an `x-webhooks` top-level element (we use [our own docs renderer](https://github.com/Nexmo/nexmo-oas-renderer)) and then a meaningless URL fieldname before the path item object that descrives the webhook.\n\nOn one of the other Nexmo APIs, we simply documented our webhooks in a markdown file separate from our API even though the two directions are very closely linked (see [Voice API webhook reference](https://developer.nexmo.com/voice/voice-api/webhook-reference) ).\n\nNeither solution is great. I'm aware of other organisations (Ebay, GitHub) who also offer webhooks as part of their API platform who have run into the same problems when looking to adopt OpenAPI. The existing approach for callbacks, which allow a Path Item Object to be described in another location, could be adapted to also describe webhooks.\n\n## Proposed solution\n\nAllow a top-level `webhooks` element, with named entries inside it, each containing a Path Item Object. No other new fields or changes would be needed, since this already works brilliantly for `callbacks` within a path item. The only difference here is that there's no existing path item for the callback/webhook to belong to, and the URL is usually set somewhere else by the user (and there's no request context for an expression to be evaluated).\n\nThis solution builds on the existing proven approach for callbacks, but detaches them from the following-a-previous-API-call constraint.\n\nTo borrow the Nexmo SMS API example from above (because it's simple, I can add more examples as needed), the spec for the incoming webhook that occurs because a message has arrived might look like this:\n\n```\nwebhooks:\n  inbound-sms:\n    post:\n      summary: Inbound SMS to your Nexmo number\n      operationId: inbound-sms\n      description: |\n        If you rent one or more virtual numbers from Nexmo, inbound messages to that number are sent to your [webhook endpoint](https://developer.nexmo.com/concepts/guides/webhooks).\n      requestBody:\n        required: true\n        content:\n          application/json:\n            schema:\n              type: object\n              required:\n                - msisdn\n                - to\n                - messageid\n                - text\n                - type\n                - keyword\n                - message-timestamp\n              properties:\n                msisdn:\n                  type: string\n                  description: the phone number that this inbound message was sent from. numbers are specified in e.164 format.\n                  example: '447700900001'\n                to:\n                  type: string\n                  description: the phone number the message was sent to. **this is your virtual number**. numbers are specified in e.164 format.\n                  example: '447700900000'\n                messageid:\n                  type: string\n                  description: the id of the message\n                  example: 0a0000000123abcd1\n                text:\n                  type: string\n                  description: The message body for this inbound message.\n                  example: Hello world\n                type:\n                  type: string\n                  description: |\n                    Possible values are:\n\n                      - `text` - standard text.\n                      - `unicode` - URLencoded   unicode  . This is valid for standard GSM, Arabic, Chinese, double-encoded characters and so on.\n                      - `binary` - a binary message.\n                  example: 'text'\n                keyword:\n                  type: string\n                  description: The first word in the message body. This is typically used with short codes.\n                  example: Hello\n                message-timestamp:\n                  description: The time when Nexmo started to push this Delivery Receipt to your webhook endpoint.\n                  type: string\n                  example: 2020-01-01 12:00:00\n      responses:\n        '200':\n          description: |\n            Your server returns this code if it accepts the callback. Note that\n            Nexmo will retry messages that are not successfully acknowledged.\n```\n\n## Detailed design\n\n### Add the `webhooks` top-level element to the list\n\n**Existing Spec:**\n\n```\n#### <a name=\"oasObject\"></a>OpenAPI Object\n\nThis is the root document object of the [OpenAPI document](#oasDocument).\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"oasVersion\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [semantic version number](https://semver.org/spec/v2.0.0.html) of the [OpenAPI Specification version](#versions) that the OpenAPI document uses. The `openapi` field SHOULD be used by tooling specifications and clients to interpret the OpenAPI document. This is *not* related to the API [`info.version`](#infoVersion) string.\n<a name=\"oasInfo\"></a>info | [Info Object](#infoObject) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required.\n<a name=\"oasServers\"></a>servers | [[Server Object](#serverObject)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` property is not provided, or is an empty array, the default value would be a [Server Object](#serverObject) with a [url](#serverUrl) value of `/`.\n<a name=\"oasPaths\"></a>paths | [Paths Object](#pathsObject) | **REQUIRED**. The available paths and operations for the API.\n<a name=\"oasComponents\"></a>components | [Components Object](#componentsObject) | An element to hold various schemas for the specification.\n<a name=\"oasSecurity\"></a>security | [[Security Requirement Object](#securityRequirementObject)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. Individual operations can override this definition.\n<a name=\"oasTags\"></a>tags | [[Tag Object](#tagObject)] | A list of tags used by the specification with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operationObject) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique.\n<a name=\"oasExternalDocs\"></a>externalDocs | [External Documentation Object](#externalDocumentationObject) | Additional external documentation.\n\nThis object MAY be extended with [Specification Extensions](#specificationExtensions).\n```\n\n**Change: Add to the end of the table**\n\n```\n<a name=\"oasWebhooks\"></a>webhooks | [[Webhooks Object](#webhooksObject)] | The incoming webhooks that may be received as part of this API.\n```\n\n### Describe a new Webhook Object\n\n(new spec section)\n\n```\n#### <a name=\"webhooksObject\"></a>Webhooks Object\n\nA map of webhooks that may be received as incoming HTTP requests as part of the API. The key of the map is a unique short name for the webhook e.g. `messageEvent`. Each value in the map is a [Path Item Object](#pathItemObject) that describes a set of requests that may be initiated by the API provider and the expected responses.\n\nWebhook Objects differ from [Callback Objects](#callbackObject) in that the webhooks are the result of some external event, not an earlier API call to subscribe or cause some other effect.\n\n##### Webhook Object Example\n\nThe following example shows an incoming webhook delivering a status update for a particular item ID:\n\n````yaml\nwebhooks:\n  statusUpdate:\n    requestBody:\n      description: Status updates on an item. You can set the URL for these updates in your example.com dashboard.\n      content: \n        'application/json':\n          schema:\n              type: object\n              required:\n                - item_id\n                - status\n              properties:\n                item_id:\n                  type: string\n                  description: The ID of the item\n                  example: 0a000000012345678\n                status:\n                  type: integer\n                  description: The status of this message, zero for success\n                  example: 14\n    responses:\n      '200':\n        description: webhook successfully processed and no retries will be performed\n\n```\n\n## Backwards compatibility\n\nAdding a new top-level entry is not something to take lightly, however hopefully most tools will simply ignore what they weren't expecting and continue to operate on the parts of the spec they do understand until their functionality catches up with the spec change.\n\n## Alternatives considered\n\nAnother option is to add a special `path` that could contain the various webhooks using the existing `callback` syntax but existing tools which aren't expecting this special value may not handle it well, so this option was discounted.\n"
  },
  {
    "path": "proposals/2019-10-31-Clarify-Nullable.md",
    "content": "# Clarify Semantics of `nullable` in OpenAPI 3.0\n\n\n## Metadata\n\n|Tag |Value |\n|---- | ---------------- |\n|Proposal |[2019-10-31-Clarify-Nullable](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/2019-10-31-Clarify-Nullable.md)|\n|Authors|[Ted Epstein](https://github.com/tedepstein)|\n|Review Manager |TBD|\n|Status |Promoted|\n|Implementations |N/A|\n|Issues | [1900](https://github.com/OAI/OpenAPI-Specification/issues/1900), [1368](https://github.com/OAI/OpenAPI-Specification/issues/1368), [1389](https://github.com/OAI/OpenAPI-Specification/issues/1389), [1957](https://github.com/OAI/OpenAPI-Specification/pull/1957), [2046](https://github.com/OAI/OpenAPI-Specification/pull/2046), [1977](https://github.com/OAI/OpenAPI-Specification/pull/1977#issuecomment-533333957), [2057](https://github.com/OAI/OpenAPI-Specification/issues/2057)|\n|Previous Revisions |N/A |\n\n## Change Log\n\n|Date |Responsible Party |Description |\n|---- | ---------------- |------------|\n|Oct 31, 2019 | Ted Epstein | Initial proposal |\n|Apr 8, 2021 | Ted Epstein | Update status to Promoted. The proposal was adopted in [OpenAPI 3.0.3](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.0.3.md). |\n\n## Introduction\n\nThis proposal aims to clarify the semantics of the `nullable` keyword in OpenAPI 3.0. This clarification would resolve ambiguities, reinforce the intended alignment with JSON Schema, and provide guidance for schema validators, translators, and other tools.\n\n## Motivation\n\nThe documentation of the `nullable` keyword is incomplete and ambiguous, leaving many questions unanswered, and causing significant difficulty in reconciling certain assumed semantics with JSON Schema.\n\nTo summarize the problems:\n\n* `nullable: true` is an _expanding assertion_ that doesn't fit JSON Schema's constraint-based processing model. It is not clear how it interacts with other keywords, and within what scope.\n\n* `nullable: false`, which is the default value, is not clearly defined, and could be interpreted in a way that breaks fundamental assumptions of JSON Schema.\n\n* Different OpenAPI schema validators and other tool implementations are likely to have different behaviors because the semantics of `nullable` are not fully specified.\n\n* Because of the above ambiguities, it is not clear how to translate an OpenAPI Schema Object into a standard JSON Schema for message validation and for other purposes. Some possible interpretations of the OpenAPI spec could make translating to JSON Schema much more difficult.\n\n* Depending on the interpretation, `nullable` might interact with `oneOf` and `anyOf` in problematic and counter-intuitive ways.\n\nThe solution proposed herein should:\n\n* Clarify the boundaries around `nullable` so we know how it interacts with other assertions, applicators, subtypes and supertypes within its context.\n\n* Clarify the meaning of `nullable: false`.\n\n* Reaffirm the intended alignment of OpenAPI's Schema Object with JSON Schema, and reconcile `nullable` with JSON Schema semantics.\n\n* Allow a straightforward translation from `nullable` in OpenAPI to type arrays in JSON Schema.\n\nFurther details follow.\n\n### Primary Use Case for `nullable`\n\nA Schema Object allows values of any data type, unless the type is restricted by the `type` keyword. The `type` keyword restricts the schema to a single data type, which can be `\"string\"`, `\"number\"`, `\"integer\"`, `\"boolean\"`, `\"array\"`, or `\"object\"`, but cannot be `\"null\"`.\n\nSome APIs restrict values to a single data type, but also allow explicit null values. OpenAPI Schema Objects can allow explicit null values by combining the `type` and `nullable` keywords. A `nullable` value of `true` modifies a typed schema to allow non-null values of a given type, and also allow `null`. This was the envisioned use case, and the primary motivation for introducing `nullable` into the OpenAPI 3.0 spec.\n\nThere may be other possible usage scenarios or consequences of the `nullable` keyword, the way it is specified, or the way in which the spec may be interpreted or implemented. In our view, these other scenarios should be considered side effects or oversights. To the best of our knowledge, the `nullable` keyword was not intended for any purpose other than to allow `null` in a typed schema.\n\n### Expanding vs. Constraining Assertions\n\n`nullable: true` is an _expanding assertion_, meaning it has the effect of expanding the range of acceptable values. By contrast, JSON Schema's central operating principle is constraint-based, where _constraining assertions_ are cumulative, immutable, and each constraint has veto power to disallow some range of values.\n\nThe semantics of constraining assertions are well-defined by JSON Schema and implemented in many JSON Schema validators and other tools. But JSON Schema doesn't have expanding assertions, so those well-defined semantics don't apply to `nullable`.\n\nTo address this, we need to translate `nullable: true` into a constraining assertion. Otherwise, we would have to specify in detail how `nullable` interacts with constraining assertions like `enum` and with boolean applicators like `allOf` and `anyOf`.\n\n### Interpretation of `nullable: false`\n\nThe documentation specifies that `nullable: false` is the default, but doesn't clearly state what that means.\n\nOne reasonable interpretation suggests that null values are disallowed unless `nullable` is explicitly set to `true`. This breaks a fundamental rule of JSON Schema, which states that an empty object `{}` is a valid schema that permits all values, with no constraints. Breaking that rule takes OpenAPI's Schema Object even further out of alignment with JSON Schema's processing model.\n\nFor example, if null values are disallowed by default, does the following `UTCDate` schema accept `null`?\n\n```yaml\ncomponents:\n\n  schemas:\n\n    OptionalDate:\n      type: string\n      format: date\n      nullable: true\n\n    UTCDate:\n      allOf:\n      - $ref: \"#/components/schemas/OptionalDate\"\n      not:\n        type: string\n        pattern: \"^.*Z.*$\"\n```\n\n`UTCDate` does not specify a type of its own, and does not directly specify `nullable: true`. So if `null` is disallowed by default, even for untyped schemas, then `UTCDate` won't accept nulls. If we want it to accept nulls, we have to repeat `nullable: true` in `UTCDate`. This is not at all intuitive for API designers, and it breaks with JSON Schema's rule that any value is allowed unless it's explicitly disallowed.\n\nOn the other hand, we could say that `UTCDate` inherits `nullable: true` from `OptionalDate`, therefore null values are allowed. But this kind of inheritance logic is completely foreign to JSON Schema. So this behavior is also counterintuitive, though for a different reason. It's also difficult to implement. Any JSON Schema validator would need to be hacked in highly disruptive ways to retrofit this behavior. Or a preprocessor would have to be introduced to propagate the effect of `nullable: true` through the `*Of` inheritance hierarchy.\n\nWhichever semantics we choose, it gets very messy.\n\n### A closer look at `nullable: false`\n\nIn fact, the OpenAPI 3.0 specification doesn't explicitly say that untyped schemas disallow null values.\n\nHere are the relevant parts:\n\n#### Data Types\n> Primitive data types in the OAS are based on the types supported by the JSON Schema Specification Wright Draft 00. Note that integer as a type is also supported and is defined as a JSON number without a fraction or exponent part. null is not supported as a type (see nullable for an alternative solution). Models are defined using the Schema Object, which is an extended subset of JSON Schema Specification Wright Draft 00.\n\nTo say that null is \"not supported _as a type_\" would definitely disallow `type: \"null\"` in a schema object. But it doesn't necessarily mean that an untyped schema disallows _null values_.\n\n#### Definition of `nullable`\n> Allows sending a null value for the defined schema. Default value is false.\n\nThis uses the word \"allows,\" but there's no mention of \"disallows.\" To say that `nullable: true` _allows_ null where it would otherwise be prohibited, doesn't necessarily mean that `nullable: false` _disallows_ null where it would otherwise be allowed.\n\n`nullable: true` _modifies_ a typed schema by adding null to the allowed types. `nullable: false` could mean \"no null values allowed\" or it could just mean \"no modification to the specified type assertion, if any.\"\n\n#### Schema Object\n> The following properties are taken from the JSON Schema definition but their definitions were adjusted to the OpenAPI Specification.\n>\n> type - Value MUST be a string. Multiple types via an array are not supported.\n\nThere is no specified adjustment to the `type` property that disallows null values. So it should defer to the JSON Schema specification, which says that, in the absence of a `type` assertion, any valid JSON value is allowed.\n\nSo the 3.0 spec is ambiguous about null values. It's not clear whether the spec intended to disallow null values by default, even in untyped schemas. This looks more like an accidental oversight, or an unfortunate choice of words, than a clear intention.\n\n### Specific Questions\n\nQuestions that are not answered by the current specification include the following: \n\n* If a schema specifies `nullable: true` and `enum: [1, 2, 3]`, does that schema allow null values? (See [#1900](https://github.com/OAI/OpenAPI-Specification/issues/1900).)\n\n* Does an untyped schema (without a `type` keyword) allow null values by default? What effect, if any, does `nullable: true` have on an untyped schema?\n\n* Can `allOf` be used to define a nullable subtype of a non-nullable base schema? (See [#1368](https://github.com/OAI/OpenAPI-Specification/issues/1368).)\n\n* Can `allOf` be used to define a non-nullable subtype of a nullable base schema?\n\n* What is the correct translation of a nullable schema from OpenAPI into an equivalent JSON Schema?\n\n* Is `null` allowed as the `default` value of a nullable schema? (See [#2057](https://github.com/OAI/OpenAPI-Specification/issues/2057).)\n\n## Proposed solution\n\nWe propose to clarify the 3.0 specification in the next patch release, to resolve these questions and align OpenAPI's Schema Object with JSON Schema's well-defined, constraint-based semantics.\n\nIn our view, and consistent with the original intent, `nullable` should have a very limited, well-defined scope. It should satisfy the primary use case, i.e. allowing `null` in a typed schema, with minimal side effects.\n\nThis is the proposed replacement for the `nullable` definition:\n<hr>\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"schemaNullable\"></a>nullable | `boolean` | A `true` value adds `\"null\"` to the allowed type specified by the `type` keyword, only if `type` is explicitly defined within the same Schema Object. Other Schema Object constraints retain their defined behavior, and therefore may disallow the use of `null` as a value. A `false` value leaves the specified or default `type` unmodified. The default value is `false`.\n<hr>\n\n## Detailed design\n\nAccording to the above specification, `nullable` only operates within a narrow scope, wherein its translation to JSON Schema is straightforward:\n\n* `nullable` is only meaningful if its value is `true`.\n\n* `nullable: true` is only meaningful in combination with a `type` assertion specified in the same Schema Object. `nullable` acts as a `type` modifier, allowing `null` in addition to the specified type.\n\n* `nullable: true` operates within a single Schema Object. It does not \"override\" or otherwise compete with supertype or subtype schemas defined with `allOf` or other applicators. It cannot be directly \"inherited\" through those applicators, and it cannot be applied to an inherited `type` constraint.\n\nThis also solves the issues of alignment with JSON Schema:\n\n* Since `type` is a constraint, JSON Schema's constraint-based processing model is fully applicable. Interactions between `type` and other constraining assertions and applicators are unambiguous, with each constraint having independent veto power.\n\n* It is now clear that `nullable: false`, whether explicit or by default, _does not_ prohibit null values. Consistent with JSON Schema, an empty object allows all values, including `null`.\n\n### Questions Answered\n\nFollowing are answers to the questions posed above, assuming the proposed clarification is adopted:\n\n#### If a schema specifies `nullable: true` and `enum: [1, 2, 3]`, does that schema allow null values? (See [#1900](https://github.com/OAI/OpenAPI-Specification/issues/1900).)\n\nNo. The `nullable: true` assertion folds into the `type` assertion, which presumably specifies `integer` or `number`. \n\nWhile the modified `type` now allows `null`, the `enum` does not. Consistent with JSON schema, a value conforms to the schema only if it is valid against _all_ constraints. Any constraint, in this case `enum`, can cause a value to fail validation, even if that value meets all of the other constraints.\n\n#### Does an untyped schema (without a `type` keyword) allow null values by default? What effect, if any, does `nullable: true` have on an untyped schema?\n\nYes, an untyped schema allows null values, in addition to all other types. `nullable: true` has no effect, because null values are already allowed. And `nullable: false` has no effect because it just leaves the `type` constraint unmodified.\n\n#### Can `allOf` be used to define a nullable subtype of a non-nullable base schema? (See [#1368](https://github.com/OAI/OpenAPI-Specification/issues/1368).)\n\nNo. Subtypes can add constraints, but not relax them.\n\n#### Can `allOf` be used to define a non-nullable subtype of a nullable base schema?\n\nYes. The subtype can specify a `type` without `nullable: true`, or can specify `not: {enum: [null]}`. \n\n#### What is the correct translation of a nullable schema from OpenAPI into an equivalent JSON Schema?\n\nA nullable type should translate into a type array with two string elements: the name of the type specified in the Schema Object, and `\"null\"`.\n\n####  Is `null` allowed as the `default` value of a nullable schema? (See [#2057](https://github.com/OAI/OpenAPI-Specification/issues/2057).)\n\nYes. For example, a Schema Object with `\"type\" : \"string\", \"nullable\" : true` would translate to a JSON Schema with `\"type\" : [\"string\", \"null\"]`. That schema permits `\"default\" : null`, even with the [strict typing rule](https://github.com/OAI/OpenAPI-Specification/blob/OpenAPI.next/versions/3.0.0.md#properties) specified by OpenAPI 3.0:\n\n> default - The default value represents what would be assumed by the consumer of the input as the value of the schema if one is not provided. Unlike JSON Schema, the value MUST conform to the defined type for the Schema Object defined at the same level. For example, if `type` is `string`, then `default` can be `\"foo\"` but cannot be `1`.\n\n## Backwards compatibility\n\nSpec revisions through 3.0.2 are ambiguous as described above, so any possible clarification has the potential to break existing implementations. \n\nWith the clarification of `nullable: false`, we think the risk of actual breakage is miniscule, because the current ambiguity only affects untyped Schema Objects, which by their nature leave a lot of room for unexpected values. Any implementation that relies on schema validation to prevent null values should use explicitly typed schemas, and typed schemas unambiguously disallow `null` unless `nullable` is `true`.\n\nThere might be a somewhat greater risk of breakage by specifying the effect of `nullable: true` as a `type` modifier. A more heavy-handed interpretation of `nullable: true`, [described here](https://github.com/OAI/OpenAPI-Specification/issues/1900#issuecomment-486772917), would make it equivalent to `anyOf [s, {type: \"null\"}]` where `s` is the schema as specified (excluding `nullable`). This would allow nulls even where they would be prohibited by other schema keywords, like `enum`. But this interpretation introduces far greater complexity than the narrowly scoped `type` modifier. We are not aware of any OpenAPI schema validator that actually attempts this, and there is nothing in the OpenAPI spec that says `nullable` can override constraining assertions.\n\n## Alternatives considered\n\n[Pull request #1977](https://github.com/OAI/OpenAPI-Specification/pull/1977#issuecomment-533333957) has some history of other approaches considered along the way. The first attempt assumed that `nullable: false` would prohibit null values, and attempted to work around this while maintaining backward compatibility.\n\nOn closer inspection, the specification does not say anything about `null` values being disallowed. So we believe our interpretation is correct, and highly advantageous in its alignment with JSON Schema.\n"
  },
  {
    "path": "proposals/2019-12-24-Overlays.md",
    "content": "# Overlays\n\n## Metadata\n\n|Tag |Value |\n|---- | ---------------- |\n|Proposal |[2019-12-24-Overlays](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/2019-12-24-Overlays.md)|\n|Authors|[Darrel Miller](https://github.com/darrelmiller)|\n|Status |Proposal|\n|Issues |[1442](https://github.com/OAI/OpenAPI-Specification/issues/1442) [1722](https://github.com/OAI/OpenAPI-Specification/issues/1722)|\n\n## Change Log\n\n|Date |Responsible Party |Description |\n|---- | ---------------- | ---------- |\n| 24th December 2019 | Darrel Miller | Initial draft |\n| 2nd January 2019 | Darrel Miller | Update to wording around removing items from arrays.  Added section on backward compatibility. Clarified process around applying a set of updates. Started to add supported scenarios.|\n| 29th July 2020 | Darrel Miller | Updated to be explicit about update operations |\n\n## Introduction\n\nIn recent months we have been discussing various use cases for overlays and various solutions.  The following proposal takes a somewhat more radical approach to the problem.  It is a more ambitious proposal than the others we have seen before but the additional complexity does allow for supporting many of the scenarios that have been discussed to date.\n\n#### <a name=\"overlayDocument\"></a>Overlay Document\n\nAn overlay document contains a list of [Update Objects](#overlayUpdates) that are to be applied to the target document.  Each [Update Object](#updateObject) has a `target` property and a `value` property.  The `target` property is a [JMESPath](http://jmespath.org/specification.html) query that identifies what part of the target document is to be updated and the `value` property contains an object with the properties to be overlaid.\n\n\n#### <a name=\"overlayObject\"></a>Overlay Object\n\nThis is the root object of the [OpenAPI Overlay document](#oasDocument).\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"overlayVersion\"></a>overlay | `string` | Version of the Overlay specification that this document conforms to. \n<a name=\"overlayInfo\"></a>info | [[Info Object](#overlayInfoObject)] | Identifying information about the overlay.\n<a name=\"overlayExtends\"></a>extends | `url` | URL to an OpenAPI document this overlay applies to. \n<a name=\"overlayUpdates\"></a>updates | [[Update Object](#updateObject)] | A list of update objects to be applied to the target document.\n\nThe list of update objects MUST be applied in sequential order to ensure a consistent outcome.  Updates are applied to the result of the previous updates. This enables objects to be deleted in one update and then re-created in a subsequent update.\n\nThe `extends` property can be used to indicate that the Overlay was designed to update a specific OpenAPI description.  This is an optional property.  Where no `extends` is provided it is the responsibility of tooling to apply the Overlay documents to the appropriate OpenAPI description.\n\n#### <a name=\"overlayInfoObject\"></a>Info Object\n\nThis object contains identifying information about the [OpenAPI Overlay document](#oasDocument).\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"overlayTitle\"></a>title | `string` | A human readable description of the purpose of the overlay.\n<a name=\"overlayVersion\"></a>version | `string` | A version identifier for indicating changes to an overlay document.\n\n#### <a name=\"updateObject\"></a>Update Object\n\nThis object represents one or more changes to be applied to the target document at the location defined by the target JMESPath.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"updateTarget\"></a>target | `string` | A JMESPath expression referencing the target objects in the target document.\n<a name=\"updateAdd\"></a>add | [Any](#addObject) | An object to be added as a child of the object(s) referenced by the target. Property has no impact if `remove` property is `true`.\n<a name=\"updateMerge\"></a>merge | [Any](#mergeObject) | An object with the properties and values to be merged with the object(s) referenced by the target.  Property has no impact if `remove` property is `true`.\n<a name=\"updateRemove\"></a>remove | `boolean` | A boolean value that indicates that the target object is to be removed from the the map or array it is contained in. The default value is false.  \n\nThe properties of the merge object MUST be compatible with the target object referenced by the JMESPath key.  When the Overlay document is applied, the properties in the merge object replace properties in the target object with the same name and new properties are appended to the target object.\n\n##### Structured Overlays Example\n\nWhen updating properties throughout the target document it may be more efficient to create a single `Update Object` that mirrors the structure of the target document. e.g.\n\n```yaml\noverlay: 1.0.0\ninfo:\n  title: Structured Overlay\n  version: 1.0.0\nupdates:\n- target: \"@\"\n  merge:\n    info:\n      x-overlay-applied: structured-overlay\n    paths:\n      \"/\":\n        summary: \"The root resource\"\n        get:\n          summary: \"Retrieve the root resource\"\n          x-rate-limit: 100\n      \"/pets\":\n        get:\n          summary: \"Retrieve a list of pets\"\n          x-rate-limit: 100\n    components:\n    tags:\n```\n\n##### Targeted Overlays\n\nAlternatively, where only a small number of updates need to be applied to a large document, each [Update Object](#updateObject) can be more targeted.\n\n```yaml\noverlay: 1.0.0\ninfo:\n  title: Targeted Overlays\n  version: 1.0.0\nupdates:\n- target: paths.\"/foo\".get\n  merge:\n    description: This is the new description\n- target: paths.\"/bar\".get\n  merge:\n    description: This is the updated description\n- target: paths.\"/bar\"\n  merge:\n      post:\n          description: This is an updated description of a child object\n          x-safe: false\n```\n\n##### Wildcard Overlays Examples\n\nOne significant advantage of using the JMESPath syntax that it allows referencing multiple nodes in the target document.  This would allow a single update object to be applied to multiple target objects using wildcards.\n\n```yaml\noverlay: 1.0.0\ninfo:\n  title: Update many objects at once\n  version: 1.0.0\nupdates:\n- target: paths.*.get\n  merge:\n    x-safe: true\n- target: paths.*.get.parameters[?name=='filter' && in=='query']\n  merge:\n    schema:\n      $ref: \"/components/schemas/filterSchema\"\n```\n\n##### Array Modification Examples\n\nDue to the fact that we can now reference specific elements of the parameter array, it allows adding parameters. Parameters can be deleted using the `remove` property.  Use of indexes to remove array items should be avoided where possible as indexes will change when items are removed.\n\n```yaml\noverlay: 1.0.0\ninfo:\n  title: Add an array element\n  version: 1.0.0\nupdates:\n- target: paths.*.get.parameters\n  add:\n    name: newParam\n    in: query\n```\n\n```yaml\noverlay: 1.0.0\ninfo:\n  title: Remove a array element\n  version: 1.0.0\nupdates:\n- target: paths[*].get.parameters[? name == 'dummy']\n  remove: true\n```\n\n##### Traits Examples\n\nBy annotating an OpenAPI description using extension such as `x-oai-traits` an author of OpenAPI description can identify where overlay updates should be applied.\n\n```yaml\nopenapi: 3.1.0\ninfo:\n  title: Api with a paged collection\n  version: 1.0.0\npaths:\n  /items:\n    get:\n      x-oai-traits: [\"paged\"]\n      responses:\n        200:\n          description: OK\n```\n\nWith the above OpenAPI description, following Overlay document will apply the necessary updates to describe how paging is implemented, where that trait has been applied.\n\n```yaml\noverlay: 1.0.0\ninfo:\n  title: Apply Traits\n  version: 1.0.0\nupdates:\n- target: $.paths[*].get[?contains(x-traits,'paged')]\n  merge:\n    parameters:\n      - name: top\n        in: query\n      - name: skip\n        in: query\n```\n\nThis approach allows flipping control of where Overlays apply updates to the OpenAPI description itself.\n\n## Proposal Summary\n\n### Benefits\n\n- This approach addresses the two distinct approaches of structured overlay vs targeted overlay which suits distinct but equally valid scenarios.\n- Addresses the problem of modifying the parameters array and removes the need to replace the entire array when a small change is required.\n- Allows sets of related overlays to be stored in a same file.\n- Enables updating a set of objects based on a pattern. This might be an effective way of apply common behaviour across many operations in an API.\n\n### Challenges\n\n- Tooling will need a JMESPath implementation.\n- Large overlays may be slow to process.\n- Multiple complex pattern based overlays may cause overlapping updates causing confusing outcomes.\n\n## Alternatives considered\n\nJMESPath was chosen over JSONPath due to the fact that JMESPath has a [specification](http://jmespath.org/specification.html) and a set of test cases.  This will help to ensure compatibility between implementations.\n\n## Backwards compatibility\n\nOverlays will be described in a new specification that can be used alongside an OpenAPI Description, therefore there will be no compatibility issues for the initial release. Overlay documents can be used against OpenAPI v2 and v3 descriptions.\n\n## Scenarios Considered\n\n- Multi-language support.  An Overlay document for each language is used to target a specific OpenAPI description.  The Overlay document will likely use a duplicate structure to the original OpenAPI description and replace all `description` properties.\n- Applying API wide standards.  An Overlay document contains update objects that describe standard headers, parameters, responses.  These documents would use JMESPath queries to target the appropriate objects in the OpenAPI description.  Tooling could be used to target the OpenAPI description rather than using extends.\n- Add tool specific OpenAPI metadata. Overlay adds additional metadata such as SLA information, client codegen hints or middleware policies. Using Overlays to manage this data separately is valuable when there is a different audience for the data and/or there the information has different sensitivity levels.\n"
  },
  {
    "path": "proposals/2020-10-28-Experimental.md",
    "content": "# Experimental marker\n\n## Metadata\n\n|Tag |Value |\n|---- | ---------------- |\n|Proposal |[Experimental](https://github.com/OAI/OpenAPI-Specification/blob/main/proposals/2020-10-28-Experimental.md)|\n|Authors|[David Goss](https://github.com/davidjgoss)|\n|Review Manager |TBD |\n|Status |Proposal|\n|Implementations ||\n|Issues ||\n|Previous Revisions ||\n\n## Change Log\n\n|Date |Responsible Party |Description |\n|---- | ---------------- | ---------- |\n\n## Introduction\n\nA way to mark an aspect of the API as \"experimental\", indicating that it is not yet a fully stable and supported part of the API.\n\n## Motivation\n\nConsider an API with two categories of thing in it:\n\n- Core, stable things, where we are committed to the ongoing stability and have no intention of making breaking changes.\n- New, experimental things, where we are getting them out there for feedback and early adopters, but they may change before we consider them to be in the first category, or even just get removed.\n\nThese sit together fine in principle, but cause friction when trying to apply something like semver to the API as a whole. How do we make changes to the experimental stuff - without bumping the major version several times a year and scaring consumers - while also ensuring we can't make breaking changes to the core stuff we never _want_ to break.\n\n## Proposed solution\n\nAdd an \"experimental\" field which specifies that an items in the API is not yet fully stable and supported, may change or be removed without a major version bump, and as such should be used with caution.\n\n_(I don't have a strong opinion about the naming - \"beta\" is another idea, though I think \"experimental\" does the job better in terms of being the most noncommital.)_\n\nDownstream tools could then make use of this metadata:\n\n- Tools like swagger-ui could surface this in the documentation they generate so consumers are made aware. Experimental items could also be filtered out of the documentation and stubs if desired.\n- Tools for detecting and preventing breaking changes could take this into consideration when deciding whether a change is breaking.\n\n## Detailed design\n\nA new boolean field named `experimental`, defaulting to `false`, is added to:\n\n- Operation\n- Parameter\n- Schema\n\nThis specifies that the operation, parameter or schema is not yet stable and SHOULD be used with caution.\n\n### Operation Object\n\n...\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n... | ... | ...\n<a name=\"operationExperimental\"></a>experimental | `boolean` | Specifies that an operation is in experimental status, meaning it may change outside of the normal breaking change process. Consumers SHOULD use with caution. Default value is `false`.\n\n### Parameter Object\n\n...\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n... | ... | ...\n<a name=\"parameterExperimental\"></a>experimental | `boolean` | Specifies that a parameter is in experimental status, meaning it may change outside of the normal breaking change process. Consumers SHOULD use with caution. Default value is `false`. Cannot be `true` when the parameter is `required`.\n\n### Schema Object\n\n...\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n... | ... | ...\n<a name=\"schemaExperimental\"></a>experimental | `boolean` | Specifies that a schema is in experimental status, meaning it may change outside of the normal breaking change process. Consumers SHOULD use with caution. Default value is `false`.\n\n### Example Spec\n\n```yaml\n  /asset/constraints:\n    get:\n      tags:\n        - Asset\n        - Constraints\n      summary: Get a set of asset constraints\n      operationId: constraints\n      parameters:\n        - name: siteToken\n          in: query\n          description: Site token obtained from Site API\n          required: true\n          schema:\n            type: string\n      experimental: true\n```\n### Prior Art\n\nThis kind of requirement is handled for TypeScript libraries by [api-extractor](https://api-extractor.com/pages/tsdoc/doc_comment_syntax/#release-tags) - they have both \"alpha\" and \"beta\" markers with a somewhat opinionated flow attached - I'm not sure that level of granularity is necessary. But the \"beta\" and \"public\" ones map well to the motivations described here:\n\n> - **beta**: Indicates that an API item has been released as a preview or for experimental purposes. Third parties are encouraged to try it and provide feedback. However, a “beta” API should NOT be used in production, because it may be changed or removed in a future version.\n> - **public**: Indicates that an API item has been officially released, and is now part of the supported contract for a package. If the SemVer versioning scheme is used, then the API signature cannot be changed without a MAJOR version increment.\n\n### Unanswered Questions\n\n- If an operation is not marked as experimental, but it is using a schema which is (i.e. as its request object), then it is implicitly also unstable. Would this usage be considered invalid?\n\n## Backwards compatibility\n\nThe `experimental` field would default to false, meaning existing behaviour is preserved, and the new field is only used on an opt-in basis.\n\n`experimental` can coexist with `deprecated` - an operation, parameter or schema can be both experimental and deprecated, having never gotten to a stable point before being deprecated.\n\n## Alternatives considered\n\n- _Specification extensions_ - publishers could add an extension in their own domain, but the benefit of the metadata being available to downstream tools (including those used by consumers, not just publishers) would be lost.\n- _Tags_ - as above, but this also gets to mixing other kinds of metadata in with resource taxonomy, which seems wrong.\n- _Overlays_ - The [Overlays proposal](https://github.com/OAI/OpenAPI-Specification/blob/main/proposals/2019-12-24-Overlays.md) is sufficiently powerful to be able to implement this, with a canonical spec representing the stable API and an overlay used to apply experimental additions. Downsides: not as ergonomic for authors, the OpenAPI specification would still not have \"experimental\" as a first-class concept so there'd be reliance on conventions being observed across the ecosystem for how it's done with overlays.\n- _Different API_ - this would be the least messy from a technical perspective - maintain a completely separate API for experimental items, and then \"promote\" them to the main API once they are considered stable. This has increased overhead for publishers and consumers, and could also reduce the likelihood of getting feedback on, and early uptake of, experimental items if they are segregated in a different place altogether.\n\n"
  },
  {
    "path": "proposals/2024-08-01-Self-Identification.md",
    "content": "# Self-Identification\n\n## Metadata\n\n|Tag |Value |\n|---- | ---------------- |\n|Proposal |[2024-08-01 Self-Identification](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/{2024-08-01-Self-Identification-and-Bundling.md})|\n|Relevant Specification(s)|OpenAPI Specification (OAS), Arazzo Specification|\n|Authors|[Henry Andrews](https://github.com/handrews)|\n|Review Manager | TBD |\n|Status |Proposal|\n|Implementations |n/a|\n|Issues | |\n|Previous Revisions | |\n\n## Change Log\n\n|Date |Responsible Party |Description |\n|---- | ---------------- | ---------- |\n|2024-08-01 | @handrews | Initial submission\n\n## Introduction\n\nOpenAPI 3.1 references are treated as identifiers rather than locators.  This behavior is inherited from JSON Schema 2020-12, and is made more explicit in the forthcoming OAS 3.1.1 patch release.  This separation can support stable, self-assigned identifiers which allow certain sorts of OpenAPI Description refactoring _without_ having to re-write the values of `\"$ref\"` and similar keywords.  However, OAS lacks a mechanism to fully define such identifiers within each document, which substantially limits the benefits of this separation.\n\n## Motivation\n\nOne of the main motivations for separating identity (URIs/IRIs) and location (URLs) is to have stable, persistent identifiers regardless of the resource's location.  Such identifiers are typically assigned within the resource.  There are two varieties:\n\n* Setting the complete resource's absolute URI, which is also used as the resource's base URI per [RFC3986 §5.1.1](https://www.rfc-editor.org/rfc/rfc3986.html#section-5.1.1) (example: [the Schema Object's `$id`](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#name-the-id-keyword))\n* Setting a [\"plain name\" URI fragment](https://www.w3.org/TR/2012/WD-fragid-best-practices-20121025/#dfn-plain-name-fragid) that does not rely on the JSON/YAML structure of the document (example: [the Schema Object's `$anchor`](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#name-defining-location-independe), and technically also `$dynamicAnchor` although this proposal will not mention `$dynamicAnchor` further as its additional complexities are not relevant here).\n\nAs suggested by the above examples, in OAS 3.1 only the Schema Object can set stable, location-independent identifiers.  OpenAPI Description documents as a whole cannot do so, nor can other Objects within the document.\n\nNote also that due to the recursive structure of schemas, resolving the Schema Object's `$id` keyword can be complex, as each can itself be a relative URI-reference that is resolved against the `$id` in parent schemas.  There is no clear use case for such complexity within other parts of an OpenAPI Description.\n\n### Use Cases\n\nThere are several use cases for separating identity and location, including:\n\n* Working around network challenges:\n    * Restrictive network security policies\n    * Intermittent connectivity\n    * High latency / low bandwidth\n    * Document hosts that [require authentication](https://github.com/OAI/OpenAPI-Specification/issues/3270)\n* Abstracting development vs testing vs deployment details\n    * Allowing `.json` and `.yaml` file extensions during development, as is preferred by most IDEs\n    * Using extensions in development and HTTP content negotiation in production\n    * Differing source control repository structure (particularly of shared documents) vs deployment directory and server layouts\n* This separation is necessary (although not, on its own, sufficient) to implement [bundling](https://www.openapis.org/blog/2021/08/23/json-schema-bundling-finally-formalised).\n\nFor a more detailed real-world example, see the [OGC example](https://github.com/OAI/sig-moonwalk/discussions/72#user-content-ogc) in the Moonwalk discussion on imports.\n\nMany of these use cases can be worked around, but only by restricting deployment options or performing error-prone reference target rewriting.  Many tools that perform reference rewriting do not take into account the added complexities of referencing in OAS 3.1 compared to 3.0 and earlier.\n\n### Prior Art\n\nSelf-identification of resources with identity independent of location is common in the JSON Schema world.  This demonstrates that implementation is not just feasible but well-proven, particularly given that JSON Schema's `$id` is more complex to support than this proposal.\n\nThe JSON Schema package used by the [OASComply](https://github.com/OAI/oascomply) project includes a [schema catalog](https://jschon.readthedocs.io/en/latest/tutorial/catalog.html) with [configurable file and network sources](https://jschon.readthedocs.io/en/latest/examples/file_based_schemas.html) to manage the URI-to-URL mapping (local files can be considered `file:` URLs).\n\nSelf-identification is common in other formats as well.  Notably, the Atom format pioneered the use of [web links with `rel=\"self\"`](https://www.rfc-editor.org/rfc/rfc4287.html#section-4.2.7.2) for this purpose.\n\n## Proposed solution\n\nThe proposal is a simplified analog of JSON Schema's `$id` that appears in exactly one place: a new `self` field in the root OpenAPI Object (OAS) and Arazzo Object (Arazzo).  When referencing a document that has a `self` field, the `self` field SHOULD be used in reference values so that reference values remain the same even if the document is moved.\n\nPlacing the `self` field only in the OpenAPI Object or Arazzo Object makes it align with the existing bootstrapping process for parsing:\n\n1.  Check the `openapi` or `arazzo` field in the root OpenAPI or Arazzo Object to determine the specification version\n1.  Check the `jsonSchemaDialect` field for the default Schema Object dialect\n1.  Determine the base URI per RFC3986 §5.1.2-5.1.4 (in most cases, use the retrieval URL per §5.1.3)\n1.  ***NEW*** Check the `self` field for a base URI per RFC3986 §5.1.1; if it exists, resolve it against the base URI from the previous step and use the result as the document's actual base URI\n1.  Continue parsing the remainder of the document as usual\n\nAs [OAS 3.1.1 clarifies](https://github.com/OAI/OpenAPI-Specification/pull/3758), it is already mandatory to separate location and identity for Schema Object support.\n\nCurrently, associating a URI other than the current URL with a document to meet this requirement has to be done externally.  Many tools effectively support this by allowing the retrieval URL to be set manually, without verifying that the document actually lives at the given URL.  However, this relies on users to make use of a non-standard implementation feature rather than offering well-defined behavior based on the document author's intent.\n\nWith the new `self` field, tools need to be configured to know how to locate documents whose `self` values do not match their locations.  The JSON Schema implementation linked under [Prior Art](#prior-art) above demonstrates several ways to accomplish this.\n\n## Detailed design\n\nThis is written for the structure of the OAS, but it should be clear how it would be adapted for Arazzo.  Some amount of guidance around how to configure tools to resolve `self`-references that do not match locations probably also needs to be added in the sections on reference resolution and base URIs.\n\n```MARKDOWN\n## OpenAPI Object\n\n### Fixed Fields\n\nField Name | Type | Description\n---|:---|:---\nself | `URI-reference` (without a fragment) | Sets the URI of this document, which also serves as its base URI in accordance with [RFC 3986 §5.1.1](https://www.rfc-editor.org/rfc/rfc3986#section-5.1.1); the value MUST NOT be the empty string and MUST NOT contain a fragment\n```\n\n## Backwards compatibility\n\nOAS 3.2 and Arazzo 1.1 documents that do not use the `self` field will behave exactly the same as OAS 3.1 and Arazzo 1.0 documents.  The change in minor version is sufficient to manage the compatibility issues, as no software that only supports up to 3.1/1.0 should attempt to parse 3.2/1.1 documents.\n\n## Alternatives considered\n\n### Plain name fragments in every Object\n\nWhile including `self` in every Object would produce the same complexity as JSON Schema's nested `$id`, we could just adopt an equivalent of JSON Schema's `$anchor` keyword, which (like HTML/XML's `id` attribute) creates a plain name fragment that is not tied to the location of the Object in the JSON/YAML structure.\n\nHandling a fragment declaration keyword would require scanning all Objects for the keyword prior to declaring that a reference target with a plain name fragment cannot be resolved.  This would likely be done on document load, but could be deferred and done incrementally as-needed when unknown fragments are encountered.\n\nSupport for `$anchor` in JSON Schema demonstrates that this is feasible, and the mental model is familiar to most from HTML.  But it would be a bit more work to support.\n\nWhile it would be a significant advantage to have completely location-independent referencing support, this is given as an alternative because the `self` field is a pre-requisite, and can be added whether we later support plain name fragments or not.\n"
  },
  {
    "path": "proposals/2024-09-01-Tags-Improvement.md",
    "content": "# Tags Improvement\n\n\n## Metadata\n\n|Tag |Value |\n|---- | ---------------- |\n|Proposal |[2024-09-01-Tags-Improvement](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/{2024-09-01-Tags-Improvement.md})|\n|Authors|[Lorna Mitchell](https://github.com/lornajane)|\n|Review Manager | TBD |\n|Status |Proposal|\n|Implementations | |\n|Issues | [1367](https://github.com/OAI/OpenAPI-Specification/issues/1367), [2843](https://github.com/OAI/OpenAPI-Specification/issues/2843), |\n|Previous Revisions | None, but see [Moonwalk discussion](https://github.com/OAI/sig-moonwalk/discussions/67)\n\n## Change Log\n\n|Date |Responsible Party |Description |\n|---- | ---------------- | ---------- |\n| 2024-09-01 | @lornajane | Initial draft |\n\n## Introduction\n\nEvolve the existing `tags` implementation to (optionally) support more use cases, such as giving the tags some grouping/relationships and adding more metadata.\n\n## Motivation\n\nThe tags feature hasn't changed since the spec was still called Swagger, but it's one of the most-extended aspects of OpenAPI with most tools supporting some sort of grouping or additional metadata. One motivation for this proposal is to \"pave the cowpath\" and formalise some of the patterns from those extensions as part of the specification.\n\nThe existing tags implementation is also quite limiting, so users/tools feel they \"cannot\" use tags, because they are so widely implemented for documentation navigation and required exactly one tag per operation, to be used only for this single purpose or to be opted out using extensions such as `x-traitTag`. The result is that we see lots of extensions that add arbitrary metadata to operations, some of them even become part of the specification officially (looking at you, `deprecated: true`) or being so widely used that we should probably adopt them (`x-internal`, `x-experimental`). The specification does have a way of tagging operations, but it's too limited and the result is that everything has to be added as an extension field.\n\nOn a personal note, I work for a tool vendor and was proposing these changes internally; but the problems affect all OpenAPI users so I brought it to the main project.\n\n### Supporting evidence\n\nThere are several examples \"in the wild\" of where a better tags implementation would have helped. Here is a selection of publicly-accessible examples to illustrate some of the problems this proposal could help with:\n\n- Grouping of tags is a very common use case, almost everyone uses some sort of extra hierarchy to group the tags themselves, which makes sense as our APIs are only getting more complex, something like [`x-tagGroups`](https://redocly.com/docs/api-reference-docs/specification-extensions/x-tag-groups/) is a good example - and there's a [very active open issue on OpenAPI specification itself](https://github.com/OAI/OpenAPI-Specification/issues/1367)\n- Various tag-alike additions exist, sometimes called \"badges\" or similar; I'd include extensions such as [`x-internal`](https://redocly.com/docs/cli/guides/hide-apis/#step-1-add-x-internal-to-the-api-description) as a tag-alike since they could be tags if more than one tag (or tag type) could be applied.\n- Additional display metadata is also in active use in the wild, see [`x-displayName`](https://redocly.com/docs/api-reference-docs/specification-extensions/x-display-name) and this [OpenAPI specification issue](https://github.com/OAI/OpenAPI-Specification/issues/2843)\n\n## Proposed solution\n\nOriginally proposed in a [Moonwalk discussion](https://github.com/OAI/sig-moonwalk/discussions/67), I am proposing three backwards-compatible additions to the existing tags feature:\n\n* Tags get a `summary` alongside `name` and `description`. In keeping with our existing practices: name is the identifier, summary is the short display content, and description is available in contexts where more information is appropriate.\n* A `parent` field is added to support a hierarchy without adding either separators or a new data type. Your tag can belong to another tag.\n* A `kind` field to explain which family of tags this tag belongs to (previously proposed as `type`). We'd expecting these to be `nav`, `badge`, `internal` and probably some other things that other tooling types would find useful.\n\nAn example could look something like this:\n\n```yaml\ntags:\n- name: deprecated\n  kind: internal\n  summary: Deprecated\n  description: This operation has been deprecated and will be removed in the future. Avoid using items with this tag.\n- name: shop\n  kind: nav\n  summary: Order Online\n  description: Operations relating to the retail operations behind the [online shopping site](https://example.com/shopping).\n- name: products\n  kind: nav\n  parent: shop\n  summary: Products\n  description: View and manage the product catalog.\n- name: orders\n  kind: nav\n  parent: shop\n  summary: Online Orders\n  description: Place, fulfil and invoice orders for the online shop.\n\n```\n\nRather than making an allowed list of kinds, we will instead leave that open for user extension and keep a list of the recommended/expected types in a registry and evolve that as conventions emerge.\n\n## Detailed design\n\nThe following section is an updated specification section, for the top-level tags object only (no other changes are needed):\n\n---\n\n#### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nEach tag used in the Operation Object instances MAY have a Tag Object defined.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"tagName\"></a>name | `string` | **REQUIRED**. The name of the tag. Use this value in the `tags` array of an Operation.\n<a name=\"tagSummary\"></a>summary | `string` | A short summary of the tag, used for display purposes.\n<a name=\"tagDescription\"></a>description | `string` | A description for the tag. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"tagExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag.\n<a name=\"tagParent\"></a>parent | `string` | The `name` of a tag that this tags is nested under. The named tag MUST exist in the API description, and circular references between parent and child tags MUST NOT be used.\n<a name=\"tagKind\"></a>kind | `string` | A machine-readable string to categorize what sort of tag it is. Common uses are `nav` for Navigation, `badge` for badges, `internal` for internal APIs, but any string value can be used. A registry of known values is available.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Tag Object Example\n\n```json\n{\n  \"name\": \"account-updates\",\n  \"summary\": \"Account Updates\",\n  \"description\": \"Account update operations\",\n  \"kind\": \"nav\"\n},\n{\n  \"name\": \"partner\",\n  \"summary\": \"Partner\",\n  \"description\": \"Operations available to the partners network\",\n  \"parent\": \"external\",\n  \"kind\": \"audience\"\n},\n{\n  \"name\": \"external\",\n  \"summary\": \"External\",\n  \"description\": \"Operations available to external consumers\",\n  \"kind\": \"audience\"\n}\n```\n\n```yaml\n- name: account-updates\n  summary: Account Updates\n  description: Account update operations\n  kind: nav\n\n- name: partner\n  summary: Partner\n  description: Operations available to the partners network\n  parent: external\n  kind: audience\n\n- name: external\n  summary: External\n  description: Operations available to external consumers\n  kind: audience\n```\n\n---\n\n## Backwards compatibility\n\nAll new fields are optional, so existing API descriptions will remain valid and useful.\nSome users may wish to adopt some of the following steps on upgrade:\n\n- Set `kind: nav` if their existing tags are currently used for navigation entries in documentation tooling.\n- Change `x-displayName` in `tag` objects to `summary` instead.\n- Add a tag to replace each `x-tagGroups` entry, and set the `parent` field for each of the tags in the groups.\n- Change `x-badges` extensions to instead be a tag with `kind: badge`.\n- Change features like `x-internal` to be a tag with a specific `kind` set. Similarly some lifecycle use cases such as `x-beta` could be replaced with tags.\n\n## Alternatives considered\n\n- Continue to use tags as-is, and extend the spec for each use case that users need rather than providing an open metadata implementation.\n  We've been slow to iterate and I would rather \"open\" the options than try to control them.\n  The API space evolves quite quickly.\n\n- Set `children` rather than `parent` on the tags and operate a top-down relationship.\n  The suggestion of allowing multiple links or a graph approach was also mentioned.\n  In both cases, there are good ideas in every direction, but our responsibility is to implement a structure that users can easily understand and maintain.\n\n"
  },
  {
    "path": "proposals/2025-03-20-URIs-for-Tags.md",
    "content": "# URIs for Tags\n\n\n## Metadata\n\n|Tag |Value |\n|---- | ---------------- |\n|Proposal |[2025-03-20-URIs-for-Tags](https://github.com/OAI/OpenAPI-Specification/tree/main/proposals/{2025-03-20-URIs-for-Tags.md})|\n|Authors|[Henry Andrews](https://github.com/handrews)|\n|Review Manager | [Lorna Mitchell](https://github.com/lornajane) |\n|Status | rejected |\n|Implementations | n/a |\n|Issues |[#2905 Allow the use of $ref and json pointer in tags](https://github.com/OAI/OpenAPI-Specification/issues/2905), consolidated into [#3853 Consolidated $ref-to-Some Object feature request](https://github.com/OAI/OpenAPI-Specification/issues/3853)|\n|Previous Revisions |n/a|\n\n## Change Log\n\n|Date |Responsible Party |Description |\n|---- | ---------------- | ---------- |\n|2025-03-20 | @handrews | Initial publication |\n|2025-03-26 | @handrews | Document rejection |\n\n## Introduction\n\nTags are the last remaining [implicit connection](https://spec.openapis.org/oas/v3.1.1#resolving-implicit-connections) that do not have a URI-based alternative for deterministic, universal referencing (Security Requirement Objects are fixed in [PR #4388](https://github.com/OAI/OpenAPI-Specification/pull/4388), currently awaiting re-approval after review feedback changes).\nThis proposal adds such an alternative, giving tags the same capabilities as all other similar mechanisms within the OAS.\n\n## Motivation\n\n### A user request and proposal\n\nFrom @SandroG in issue #2905 (which is only closed because it was consolidated into #3853), which got two further thumbs-ups:\n\n_**[NOTE:** The mechanism proposed here is **not** the one favored by this proposal, which is explained further down]_\n\n> I have a large specification, which I need to break down in different files. I use an approach where each file is like a sub-specification that lists all endpoints regarding the same subject and then I include these endpoints in the main openapi file.\n> The documentation of a tag is in the same file as the endpoint that uses it.\n> \n> I'm not able to reuse that tag declaration in the main file, so I'm not able to include the description of the tag.\n> \n> For example, I have a separate file for customer's endpoints\n\n`customers.yaml`\n```YAML\ninfo:\n...\ntags:\n  - name: Customer\n    description: APIs to manage customers. A customer is a representation of ...\n  \npaths:\n  /customers/{id}/:\n    parameters:\n      - name: id\n        . . .\n    get:\n      . . .\n  /customers/:\n    . . .\n```\n> I need to do this:\n\n`openapi.yaml`\n```YAML\ninfo:\n...\ntags:\n  - $ref: \"./customers.yaml#/tags/0\"\n  \npaths:\n  /customers/{id}/:\n    $ref: \"./customers.yaml#/paths/~customers~1{id}~1\"\n  /customers/:\n    $ref: \"./customers.yaml#/paths/~customers~1\"\n```\n\n### Proof of confusion over tag to Tag Object resolution\n\nIn the above example, @SandroG proposes using `$ref` for Tag Objects to pull Tag Objects from one [OpenAPI Document](https://spec.openapis.org/oas/v3.1.1#openapi-document) into another, where they can be used by the `tags` field in Operation Objects.\nThis makes clear that they expect tags to be resolved from the _current document_, which may be a [referenced document rather than the entry document](https://spec.openapis.org/oas/v3.1.1#openapi-description).\n\nHowever, in [3.0.4](https://spec.openapis.org/oas/v3.0.4#resolving-implicit-connections) and [3.1.1](https://spec.openapis.org/oas/v3.1.1#resolving-implicit-connections) we RECOMMEND (== SHOULD) that tag names are resolved to Tag Objects in the _entry document_.\nThis means that there is no way to resolve them from the current document, which is the mirror image of the problem as that encountered by @SandroG.\n\nIn today's TDC call, @lornajane stated that she expects tag names to be resolved from the entry document, and @kevinswiber expressed doubt that anyone implements anything else (sadly @SandroG does not mention their tool, which presumably resolves from the current document or else they would not have explained the issue in this way).\n\n### Fragility of JSON Pointers with arrays\n\nTag Objects are ordered, and tools MAY treat the ordering as significant for presentation purposes.  JSON Pointers include the array index, which will change whenever someone decides to re-order the tag display, breaking any URI references that include a JSON Pointer.\nHowever, the use of the `name` field and the requirement that all Tag Objects in a list have a unique name mean that it is only necessary to identify the OpenAPI Object (or as a simpler proxy, the OpenAPI Document) in which to find the list of Tag Objects.\nOnce the correct OpenAPI Document is identified, the list can be searched by name as it is now.\n\n### Additional scenarios\n\nAnother scenario to consider is a standards group that is publishing OpenAPI Documents that are intended to be used by multiple API providers.\nSuch standards groups have no control over the entry documents used, so if they wish to provide Tag Objects, they MUST place them in the shared, referenced document.\nIf the API provider wishes to use those Tag Objects in their entry document, or in their own referenced documents, then they currently cannot do.\n\n## Proposed solution\n\nA new field or fields would be added to identify, with a URI, the OpenAPI Document from which a tag MUST be resolved.\nThis would bring tags into alignment with other implicitly resolved names (e.g. Schema names in the Discriminator Object and Security Scheme names in the Security Requirement Object), with the variation that only the Document rather than the exact Object is identified.\n\n## Detailed design\n\nIn the Tag Object, a `parentDocument` field would be an optional URI qualifier to the `parent` field, and only allowed if `parent` is present.\n\nIn the Operation Object, a `tagRefs` field would be added alongside the `tags` field.\nThis new field would be a map with a Document URI as the keys, and an array of tags (as in the `tags` field) as the values.\nTags under `tagRefs` would be resolved within the document identified by the key, while tags within `tags` would continue to be RECOMMENDED to resolve from the entry document.\n\n## Backwards compatibility\n\nThe proposal is fully backwards compatible.\n\n## Alternatives considered\n\nThe option proposed by @SandroG would require the Operation Object's `tags` field to resolve from the current document, which would be a breaking change and therefore not possible in 3.2.\n\n@baywet proposed a top-level (per-document) association of URIs and tags, to reduce the number of places where it is necessary to look for URIs.\nHowever, this requires duplicating tags that would otherwise only appear in Operation Objects in the top-level field, and does not fully solve the namespacing issue as each tag could only resolve from one place, rather than allowing the same tag name to have different meanings by resolving it to a different Tag Object in a different document.\n\n@karenetheridge proposed treating tags like `operationId` and resolving within the entire description (a PR to this proposal with more details of this alternative would be welcome).\nTo me, `operationId` is not a good precedent to follow, as we already have to provide numerous disclaimers regarding collisions in the specification text, and the results are not well-defined.\nWhile we could make collisions an error for this new mechanism, @baywet noted that trying to prevent such collisions is highly burdensome in large organizations (although @karenetheridge similarly pointed to experience of it working).\nThe fact that `operationRef` had to be included to provide a URI-based alternative to using `operationId` in the Link Object is a strong piece of evidence in favor of a URI-based solution for tags.\n\n## Outcome\n\nRejected per @lornajane, with concurrence by @ralfhandl:\n\n> I am not in favour of these additions for the 3.x branch. I wish that we'd implemented tags differently in the first place, and I'm sure that all the constructive discussion around the tags feature will help us a lot in future major releases.\n> \n> I believe that the limitations of the current tag situation can be overcome with helper tooling and that this change (while solving a narrow but valid use case) adds complexity to the specification that is unnecessary and does not benefit the majority of users. As custodians of a widely-used standard, we have a responsibility to maintain something that is appropriate for its audience, and we should be \"reluctant\" in all our changes unless we see that they are really needed.\n> \n> I propose that users would be equally well served by leaving the requirement to resolve tags from the entry document. Organisations can either maintain an extensive list of tags in all OpenAPI documents, and then remove any that aren't used before publishing (tooling exists for this use case), or alternatively if a tool wants to include tags found in the wider context of referenced OpenAPI documents by adding them to the top-level tags array during processing, that would work well too.\n> \n> The tags array is a list of strings. It isn't an ID like the Operation uses, and it's not a named entry like the security schemes, so it is appropriate to approach the limitations of it differently. My proposal is to offer some advice or documentation on approaching this problem, but not to bring it in scope of the specification for 3.x since other options are available.\n"
  },
  {
    "path": "proposals/Alternative-Schema/CONTRIBUTORS.md",
    "content": "* Chuck Heazel [@cmheazel](https://github.com/cmheazel)\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)"
  },
  {
    "path": "proposals/Alternative-Schema/alternative_schema_object.md",
    "content": "## Change: Add the Alternative Schema Object\n\nThe following text is to be inserted after the XML Object section\n\n### Alternative Schema Object\n\nThis object makes it possible to reference an external file that contains a schema that does not follow the OAS specification. If tooling does not support the _type_, tooling MUST consider the content valid but SHOULD provide a warning that the alternative schema was not processed.\n\n## Fixed Fields\n\n|Field Name | Type | Description |\n|---|:---:|---|\n|type | string | **REQUIRED**. The value MUST match one of the values identified in the alternative Schema Registry. |\n|location | url | **REQUIRED**.  This is a absolute or relative reference to an external resource containing a schema of a known type.  This reference may contain a fragment identifier to reference only a subset of an external document. |\n\nThis object MAY be extended with Specification Extensions.\n\n"
  },
  {
    "path": "proposals/Alternative-Schema/examples.md",
    "content": "## Change: Add Alternative Schema Examples\n\nThe following text is to be inserted after the Alternative Schema Object section.\n\n### Alternative Schema Examples\n\nMinimalist usage of alternative schema:\n\n    schema:\n        x-oas-draft-alternativeSchema:\n          type: jsonSchema\n          location: ./real-jsonschema.json\n\nCombination of OAS schema and alternative:\n\n    schema:\n        type: object\n        nullable: true\n        x-oas-draft-alternativeSchema:\n            type: jsonSchema\n            location: ./real-jsonschema.json\n\nMultiple different versions of alternative schema:\n\n    schema:\n        anyOf:\n            - x-oas-draft-alternativeSchema:\n                type: jsonSchema\n                location: ./real-jsonschema-08.json\n            - x-oas-draft-alternativeSchema:\n                type: jsonSchema\n                location: ./real-jsonschema-07.json\n\nCombined alternative schemas:\n\n    schema:\n        allOf:\n            - x-oas-draft-alternativeSchema:\n                type: xmlSchema\n                location: ./xmlSchema.xsd\n            - x-oas-draft-alternativeSchema:\n                type: schematron\n                location: ./schema.sch\n\nMixed OAS schema and alternative schema:\n\n    schema:\n        type: array\n        items:\n            x-oas-draft-alternativeSchema:\n                type: jsonSchema\n                location: ./real-jsonschema.json\n\n"
  },
  {
    "path": "proposals/Alternative-Schema/implementations.md",
    "content": "# Implementations\n\n## Overview\n\nBelow is a list of tooling that claims to implement the Alternative Schema proposal. While support for this feature matures, refer to the details of projects listed below for any notes about stability and roadmap. The process to improve the OpenAPI specification includes feedback from end-users and tooling creators. We strongly encourage draft tooling be made available for early users of OAS drafts.\n\nThese tools are not endorsed by the OAI\n\n## Implementations:\n\n#### Low-Level tooling\n\n| Title | Project Link | Language | Description\n| ----------- | ----------- | ----------- | -----------\n|TBD |TBD |TBD |TBD |\n\n#### Editors\n\n| Title          | Project Link | Language |Description                          |\n|----------------|--------------|----------|---------------------|\n|TBD |TBD |TBD |TBD |\n\n#### User Interfaces\n\n| Title          | Project Link | Language |Description                          |\n|----------------|--------------|----------|---------------------|\n|TBD |TBD |TBD |TBD |\n\n#### Mock Servers\n| Title          | Project Link | Language | Description |\n| -------------- | ------------ | -------- | ----------- |\n|TBD |TBD |TBD |TBD |\n\n#### Server Implementations\n| Title          | Project Link | Language |Description          |\n|----------------|--------------|----------|---------------------|\n|TBD |TBD |TBD |TBD |\n\n#### Code Generators\n\n| Title          | Project Link | Language |Description          |\n|----------------|--------------|----------|---------------------|\n|TBD |TBD |TBD |TBD |\n\n\n\n"
  },
  {
    "path": "proposals/Alternative-Schema/schema_object.md",
    "content": "## Change: Extend the Schema Object to support Alternative Schemas\n\nThe following content shall be used to replace the Fixed Fields table in the Schema Object section\n\n#### Fixed Fields\n\n|Field Name | Type | Description |\n|---|:---:|---|\n| nullable | `boolean` | Allows sending a `null` value for the defined schema. Default value is `false`.|\n| discriminator | [Discriminator Object](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.0.2.md#discriminatorObject) | Adds support for polymorphism. The discriminator is an object name that is used to differentiate between other schemas which may satisfy the payload description. See [Composition and Inheritance](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.0.2.md#schemaComposition) for more details. |\n| readOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"read only\". This means that it MAY be sent as part of a response but SHOULD NOT be sent as part of the request. If the property is marked as `readOnly` being `true` and is in the `required` list, the `required` will take effect on the response only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`. |\n| writeOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"write only\". Therefore, it MAY be sent as part of a request but SHOULD NOT be sent as part of the response. If the property is marked as `writeOnly` being `true` and is in the `required` list, the `required` will take effect on the request only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`. |\n| xml | [XML Object](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.0.2.md#xmlObject) | This MAY be used only on properties schemas. It has no effect on root schemas. Adds additional metadata to describe the XML representation of this property. |\n| externalDocs | [External Documentation Object](https://github.com/OAI/OpenAPI-Specification/blob/main/versions/3.0.2.md#externalDocumentationObject) | Additional external documentation for this schema.\n| example | Any | A free-form property to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary.|\n| deprecated | `boolean` | Specifies that a schema is deprecated and SHOULD be transitioned out of usage. Default value is `false`.|\n|x-oas-draft-alternativeSchema  |alternative Schema Object  |An external schema that participates in the validation of content along with other schema keywords. |  \n"
  },
  {
    "path": "proposals/Overlays/Changes.yml",
    "content": "# Create update methods (add,replace,merge,delete)? Is merge necessary?\n# Multiple additions or updates to the same target is more efficient with merge\n\n# Different than JSON Patch because is works in JSON and YAML\n# Has info object and spec version\n# values\n    \noverlay: 1.0.0\ninfo:\n  title: An example of an overlay that captures changes to an API\n  version: 1.0.0\nupdates:\n# Add a property to a schema\n- target: components.schemas.\"todo\".properties   \n  merge:\n    createdBy:\n      type: string\n# Add constraints to a schema\n- target: components.schemas.\"todo\"\n  merge:\n    additionalProperties: false\n- target: components.schemas.\"todo\"\n  merge:\n    type: [\"object\",\"null\"]\n#Change a schema\n- target: components.schemas.\"todo\"\n  replace:\n    type: integer\n# Add multiple constraints to a schema using merge\n- target: components.schemas.\"todo\"\n  merge:\n    additionalProperties: false\n    type: [\"object\",\"null\"]\n# Add multiple constraints to a schema using merge\n- target: components.schemas.\"todo\"\n  merge:\n    additionalProperties: false\n    type: [\"object\",\"null\"]\n    properties: \n      someprop:\n        type: string\n# Add an operation\n- target: paths.\"/foo\"\n  add:  \n    delete:\n        description: delete a foo\n        responses:\n          200: \n            description: ok\n# Add a path\n- target: paths\n  add:  \n    \"/items\":\n      get:\n        responses:\n          200:\n            description: ok\n# Add an optional query parameter\n- target: paths.\"/bar\".parameters\n  add:  \n    name: skip\n    in: query\n    type: string\n# Mark an operation as deprecated\n\n# Change the value of a JSON schema constraint\n# Update the version of the API\n# Change the license of an API\n# Add support for a new request media type\n# Add support for a new response media type\n"
  },
  {
    "path": "proposals/Overlays/MergePatch.yml",
    "content": "overlay: 1.0.0\ninfo:\n  title: An example of an overlay that performs a Merge Patch\n  version: 1.0.0\nupdates:\n- target: \"@\"   \n  merge:\n    openapi: 3.0.3\n    paths: {}\n\n"
  },
  {
    "path": "scripts/adjust-release-branch.sh",
    "content": "#!/usr/bin/env bash\n\n# Author: @ralfhandl\n\n# Run this script from the root of the repo. It is designed to be run manually in a release branch.\n\nbranch=$(git branch --show-current)\ntoday=$(date +%Y-%m-%d)\n\nif [[ ! $branch =~ ^v[0-9]+\\.[0-9]+\\.[0-9]+-rel$ ]]; then\n  echo \"This script is intended to be run from a release branch, e.g. v3.1.2-rel\"\n  exit 1\nfi\n\nvVersion=$(basename \"$branch\" \"-rel\")\nversion=${vVersion:1}\necho Prepare release of $version\n\n# create snapshot of current editors\ncp EDITORS.md versions/$version-editors.md\n# Replace release date placeholder with current date - should only appear in the history table\nsed \"s/| TBD |/| $today |/g\" src/oas.md > versions/$version.md\n# show what changed in the spec - should only be the history table line for the current release\ndiff -Z src/oas.md versions/$version.md\n# remove files that only exist in development branches and not on main\nrm -r src\nrm -r tests/schema/pass tests/schema/fail\nrm tests/schema/schema.test.mjs\n"
  },
  {
    "path": "scripts/close-no-recent.ps1",
    "content": "$inactivityDelay = [timespan]::FromDays([int]::Parse($Env:NO_RECENT_ACTIVITY_DURATION_CLOSE_IN_DAYS))\n$oldIssues = gh issue list --label \"$Env:NO_RECENT_ACTIVITY_LABEL\" --state open --limit 100 --json number,author,createdAt,labels | ConvertFrom-Json | Where-Object {$_.labels.name -notcontains $Env:NEEDS_ATTENTION_LABEL }\nforeach($oldIssue in $oldIssues) {\n\t$lastComment = gh issue view $oldIssue.number --json comments | ConvertFrom-Json | Select-Object -ExpandProperty comments | Where-Object {$_.author.login -eq $oldIssue.author.login} | Select-Object -Last 1\n\tif($null -eq $lastComment) {\n\t\t$lastCommentDate = [Nullable[datetime]]$null\n\t} else {\n\t\t$lastCommentDate = $lastComment.createdAt #powershell already parses the date for us with the json conversion\n\t}\n\t$lastLabelEvent = gh api -H \"Accept: application/vnd.github+json\" -H \"X-GitHub-Api-Version: 2022-11-28\" \"/repos/$($Env:ORG_NAME)/$($Env:REPO_NAME)/issues/$($oldIssue.number)/events?per_page=100\" | ConvertFrom-Json | Where-Object {$_.event -eq \"labeled\" -and $_.label.name -eq \"$Env:NO_RECENT_ACTIVITY_LABEL\"} | Select-Object -Last 1\n\t$lastLabelEventDate = $lastLabelEvent.created_at\n\tif ($null -ne $lastCommentDate -and $lastCommentDate -gt $lastLabelEventDate) {\n\t\tgh issue edit $oldIssue.number --remove-label \"$Env:NO_RECENT_ACTIVITY_LABEL\" --remove-label \"$Env:NEEDS_AUTHOR_FEEDBACK_LABEL\" --add-label \"$Env:NEEDS_ATTENTION_LABEL\"\n\t} elseif (([datetime]::UtcNow - $lastLabelEventDate) -ge $inactivityDelay) {\n\t\tgh issue close $oldIssue.number -r \"not planned\"\n\t}\n}"
  },
  {
    "path": "scripts/fwdabort.sh",
    "content": "#!/bin/sh\n\n# Aborts a fwdport.sh run cleanly\n\n# Author: @MikeRalphson\n\ngit am -i --abort\nrm -f *.mbox *.patch *.rej\ngit checkout main\n\n"
  },
  {
    "path": "scripts/fwdport.sh",
    "content": "#!/bin/sh\n\n# Forward ports changes from the spec file of a source branch to the spec file of a target branch\n# For example: porting interim changes made in v3.1.x patch releases to the v3.2.0 branch\n\n# This script is designed to be run once per branch, when interim changes need merging in\n# before another branch is released. It is not intended to be run multiple times to keep\n# two branches in sync.\n\n# Author: @MikeRalphson\n# Issues: https://github.com/OAI/OpenAPI-Specification/pull/2163\n\nmainbranch=main\nmyremote=origin\nupstream=upstream\n\nsource=$1\ntarget=$2\n\nif [ -z \"$source\" ]; then\n  echo You must specify a source and target branch\n  exit 1\nfi\nif [ -z \"$target\" ]; then\n  echo You must specify a source and target branch\n  exit 1\nfi\n\necho Checking working dir...\nstatus=`git ls-files -m`\nif [ -z \"$status\" ]; then\n  echo All clear\nelse\n  echo You have a dirty working tree, aborting\n  echo ${status}\n  exit 1\nfi\n\ncruft=`ls -1 *.patch *.rej *.mbox 2>/dev/null`\nif [ -z \"$cruft\" ]; then\n  echo No .patch, .rej or .mbox files found, continuing\nelse\n  echo .patch / .rej / .mbox files found, aborting\n  exit 1\nfi\n\ntmpbranch=forward-port-${source}\nexisting=`git branch | grep ${tmpbranch}`\nif [ -z \"$existing\" ]; then\n  echo No matching temp branch found, continuing\nelse\n  echo Temp branch ${tmpbranch} already exists, aborting\n  exit 1\nfi\n\nsrcver=`echo $source | sed s/-dev//g | sed s/v//g`.md\ntgtver=`echo $target | sed s/-dev//g | sed s/v//g`.md\n\necho Forward-porting changes from ${source}:versions/${srcver} to ${target}:${tgtver}\necho You may use the commands \\'git fwdskip\\' and \\'git fwdcont\\' to skip patches, or to continue after manually fixing.\necho Use `fwdabort.sh` to abort cleanly.\necho\necho Due to a bug in \\`git am\\`, git v2.22.1+ is required, you\\'re running:\ngit --version\necho\necho Press a key to continue...\nread\n\ngit config --add rerere.enabled true\ngit config alias.fwdskip '!git am -i --skip'\ngit config alias.fwdcont '!git am -i --continue'\n\ngit checkout ${source}\ngit pull ${upstream} ${source}\n\n# look at using git merge-base as an alternative? say if we branched 3.1.0 part way through 3.0.2's life\n\nfirstsrc=`git log --abbrev-commit --format=format:%H -n 1 --reverse -- versions/${srcver}`\nlastsrc=`git log --abbrev-commit --format=format:%H -- versions/${srcver} | tail -n 1`\nchanges=`git log --format=format:%H --reverse versions/${srcver}`\n\necho Applying changes from ${firstsrc} to ${lastsrc}\n\n# remove first (creation) commit and uniq without sorting\noIFS=\"$IFS\"\nIFS=' '\nchanges=`echo ${changes} | tail -n +2 | awk '!x[$0]++'`\nIFS=\"$oIFS\"\n\nfor c in ${changes}; do\n  git format-patch --stdout -1 $c | sed s/${srcver}/${tgtver}/g > $c.patch\ndone\n\ngit checkout ${target}\ngit pull ${upstream} ${target}\ngit checkout -b ${tmpbranch}\ncat *.patch > fwdport.mbox\nrm -f *.patch\ngit am -3 --interactive --ignore-whitespace -s fwdport.mbox\n\n"
  },
  {
    "path": "scripts/label-no-recent.ps1",
    "content": "$inactivityDelay = [timespan]::FromDays([int]::Parse($Env:NO_RECENT_ACTIVITY_DURATION_IN_DAYS))\n$oldIssues = gh issue list --label \"$Env:NEEDS_AUTHOR_FEEDBACK_LABEL\" --state open --limit 100 --json number,author,createdAt,labels | ConvertFrom-Json | Where-Object {$_.labels.name -notcontains $Env:NO_RECENT_ACTIVITY_LABEL }\nforeach($oldIssue in $oldIssues) {\n\t$lastComment = gh issue view $oldIssue.number --json comments | ConvertFrom-Json | Select-Object -ExpandProperty comments | Where-Object {$_.author.login -eq $oldIssue.author.login} | Select-Object -Last 1\n\tif($null -eq $lastComment) {\n\t\t$lastCommentDate = [Nullable[datetime]]$null\n\t} else {\n\t\t$lastCommentDate = $lastComment.createdAt #powershell already parses the date for us with the json conversion\n\t}\n\t$lastLabelEvent = gh api -H \"Accept: application/vnd.github+json\" -H \"X-GitHub-Api-Version: 2022-11-28\" \"/repos/$($Env:ORG_NAME)/$($Env:REPO_NAME)/issues/$($oldIssue.number)/events?per_page=100\" | ConvertFrom-Json | Where-Object {$_.event -eq \"labeled\" -and $_.label.name -eq \"$Env:NEEDS_AUTHOR_FEEDBACK_LABEL\"} | Select-Object -Last 1\n\t$lastLabelEventDate = $lastLabelEvent.created_at\n\tif ($null -ne $lastCommentDate -and $lastCommentDate -gt $lastLabelEventDate) {\n\t\tgh issue edit $oldIssue.number --remove-label \"$Env:NO_RECENT_ACTIVITY_LABEL\" --remove-label \"$Env:NEEDS_AUTHOR_FEEDBACK_LABEL\" --add-label \"$Env:NEEDS_ATTENTION_LABEL\"\n\t} elseif (([datetime]::UtcNow - $lastLabelEventDate) -ge $inactivityDelay) {\n\t\tgh issue edit $oldIssue.number --add-label \"$Env:NO_RECENT_ACTIVITY_LABEL\" --remove-label \"$Env:NEEDS_ATTENTION_LABEL\"\n\t\tgh issue comment $oldIssue.number -b \"$Env:NO_RECENT_ACTIVITY_COMMENT\"\n\t}\n}"
  },
  {
    "path": "scripts/md2html/.gitignore",
    "content": "*.err\ninput.bs\n"
  },
  {
    "path": "scripts/md2html/analytics/google.html",
    "content": "<!-- Global site tag (gtag.js) - Google Analytics -->\n<script async src=\"https://www.googletagmanager.com/gtag/js?id=UA-831873-42\"></script>\n<script>\n window.dataLayer = window.dataLayer || [];\n function gtag(){dataLayer.push(arguments);}\n gtag('js', new Date());\n gtag('config', 'UA-831873-42');\n</script>\n"
  },
  {
    "path": "scripts/md2html/build.sh",
    "content": "#!/bin/bash\n\n# Author: @MikeRalphson\n\n# run this script from the root of the repo\n# It is designed to be run by a GitHub workflow\n\n# Usage: build.sh [version | \"latest\" | \"src\"]\n# When run with no arguments, it builds artifacts for all published specification versions.\n# It may also be run with a specific version argument, such as \"3.1.1\" or \"latest\"\n# Finally, it may be run with \"src\" to build \"src/oas.md\"\n#\n# It contains bashisms\n\nif [ \"$1\" = \"src\" ]; then\n  deploydir=\"deploy-preview\"\nelse\n  deploydir=\"deploy/oas\"\nfi\n\nmkdir -p $deploydir/js\nmkdir -p $deploydir/temp\ncp -p node_modules/respec/builds/respec-w3c.* $deploydir/js/\n\nlatest=$(git describe --abbrev=0 --tags)\n\nallVersions=$(ls -1 versions/[23456789].*.md | grep -v -e \"\\-editors\" | sort -r)\n\nif [ -z \"$1\" ]; then\n  specifications=$allVersions\nelif [ \"$1\" = \"latest\" ]; then\n  specifications=$(ls -1 versions/$latest.md)\nelif [ \"$1\" = \"src\" ]; then\n  specifications=\"src/oas.md\"\nelse\n  specifications=$(ls -1 versions/$1.md)\nfi\n\nlatestCopied=\"none\"\nlastMinor=\"-\"\n\nfor specification in $specifications; do\n  version=$(basename $specification .md)\n\n  if [ \"$1\" = \"src\" ]; then\n    destination=\"$deploydir/$version.html\"\n    maintainers=\"EDITORS.md\"\n  else\n    destination=\"$deploydir/v$version.html\"\n    maintainers=\"$(dirname $specification)/$version-editors.md\"\n  fi\n\n  minorVersion=${version:0:3}\n  tempfile=\"$deploydir/temp/$version.html\"\n  tempfile2=\"$deploydir/temp/$version-2.html\"\n\n  echo === Building $version to $destination\n\n  node scripts/md2html/md2html.js --maintainers $maintainers $specification \"$allVersions\" > $tempfile\n  npx respec --no-sandbox --use-local --src $tempfile --out $tempfile2\n  # remove unwanted Google Tag Manager and Google Analytics scripts\n  sed -e 's/<script type=\"text\\/javascript\" async=\"\" src=\"https:\\/\\/www.google-analytics.com\\/analytics.js\"><\\/script>//' \\\n      -e 's/<script type=\"text\\/javascript\" async=\"\" src=\"https:\\/\\/www.googletagmanager.com\\/gtag\\/js?id=G-[^\"]*\"><\\/script>//' \\\n      $tempfile2 > $destination\n\n  echo === Built $destination\n\n  if [ $version = $latest ]; then\n    if [[ ${version} != *\"rc\"* ]]; then\n      # version is not a Release Candidate\n      ln -sf $(basename $destination) $deploydir/latest.html\n      latestCopied=\"v$version\"\n    fi\n  fi\n\n  if [ ${minorVersion} != ${lastMinor} ] && [[ ${minorVersion} =~ ^[3-9] ]]; then\n    ln -sf $(basename $destination) $deploydir/v$minorVersion.html\n    lastMinor=$minorVersion\n  fi\ndone\n\nif [ \"$latestCopied\" != \"none\" ]; then\n  echo Latest tag is $latest, copied $latestCopied to latest.html\nfi\n\nrm -r $deploydir/js\nrm -r $deploydir/temp\n"
  },
  {
    "path": "scripts/md2html/gist.css",
    "content": "/**\n * GitHub Gist Theme\n * Author : Louis Barranqueiro - https://github.com/LouisBarranqueiro\n */\n\n.hljs {\n  display: block;\n  background: white;\n  padding: 0.5em;\n  color: #333333;\n  overflow-x: auto;\n}\n\n.hljs-comment,\n.hljs-meta {\n  color: #727070;\n}\n\n.hljs-string,\n.hljs-variable,\n.hljs-template-variable,\n.hljs-strong,\n.hljs-emphasis,\n.hljs-quote {\n  color: #c74700;\n}\n\n.hljs-number {\n  color: #005e5e;\n}\n\n.hljs-keyword,\n.hljs-selector-tag,\n.hljs-type {\n  color: #a71d5d;\n}\n\n.hljs-literal,\n.hljs-symbol,\n.hljs-bullet,\n.hljs-attribute {\n  color: #007aa2;\n}\n\n.hljs-section,\n.hljs-name {\n  color: #4b7c46;\n}\n\n.hljs-tag {\n  color: #333333;\n}\n\n.hljs-title,\n.hljs-attr,\n.hljs-selector-id,\n.hljs-selector-class,\n.hljs-selector-attr,\n.hljs-selector-pseudo {\n  color: #795da3;\n}\n\n.hljs-addition {\n  color: #55a532;\n  background-color: #eaffea;\n}\n\n.hljs-deletion {\n  color: #bd2c00;\n  background-color: #ffecec;\n}\n\n.hljs-link {\n  text-decoration: underline;\n}\n"
  },
  {
    "path": "scripts/md2html/main.css",
    "content": "#respec-ui {\n    visibility: hidden;\n}\n\n#title {\n    color: #578000;\n}\n\n#subtitle {\n    color: #578000;\n}\n\n.dt-published {\n    color: #578000;\n}\n\n.dt-published::before {\n    content: \"Published \";\n}\n\nh1, h2, h3, h4, h5, h6 {\n    color: #578000;\n    font-weight: normal;\n    font-style: normal;\n}\n\na[href] {\n    color: #45512c;\n}\n\nbody:not(.toc-inline) #toc h2 {\n    color: #45512c;\n}\n\ntable {\n    display: block;\n    width: 100%;\n    overflow: auto;\n}\n\ntable th {\n    font-weight: 600;\n}\n\ntable th, table td {\n    padding: 6px 13px;\n    border: 1px solid #dfe2e5;\n}\n\ntable tr {\n    background-color: #fff;\n    border-top: 1px solid #c6cbd1;\n}\n\ntable tr:nth-child(2n) {\n    background-color: #f6f8fa;\n}\n\npre {\n    background-color: #f6f8fa !important;\n}\n\ncode {\n    color: #c83500\n}\n\nth code {\n    color: inherit\n}\n\na.bibref {\n    text-decoration: underline;\n}\n\nbody.darkmode {\n    --toclink-underline: #6a9000;\n    --toclink-visited-underline: #fff;\n}\n\nbody.darkmode a,\nbody.darkmode .tocxref,\nbody.darkmode .u-url {\n    color: #6a9000;\n}\n\nbody.darkmode code {\n    color: #e66c33;\n}\n\nbody.darkmode:not(.toc-inline) #toc h2,\nbody.darkmode h1,\nbody.darkmode h2,\nbody.darkmode h3,\nbody.darkmode h4,\nbody.darkmode h5,\nbody.darkmode h6,\nbody.darkmode #title,\nbody.darkmode #subtitle,\nbody.darkmode .toc-inline,\nbody.darkmode .dt-published {\n    color: #7bb01c;\n}\n\nbody.darkmode pre,\nbody.darkmode table tr:nth-child(2n),\nbody.darkmode table tr {\n    background-color: #1e1e1e !important;\n    color: #dcdcdc;\n}\n\nbody.darkmode img {\n    background: transparent;\n}\n\nbody.darkmode .logo img {\n    display: none;\n}\n\nbody.darkmode .logo::before {\n    content: \"\";\n    display: inline-block;\n    height: 48px;\n    width: 175px;\n    background: url(\"https://raw.githubusercontent.com/OAI/OpenAPI-Style-Guide/refs/heads/main/graphics/bitmap/OpenAPI_Logo_Pantone.png\") no-repeat center / contain;\n    vertical-align: middle;\n}\n\n/** This contains the content of the https://www.w3.org/StyleSheets/TR/2021/dark.css file */\nbody.darkmode {\n    --text: #ddd;\n    --bg: black;\n\n    /* Absolute URLs due to https://bugs.webkit.org/show_bug.cgi?id=230243 */\n    --unofficial-watermark: url(https://www.w3.org/StyleSheets/TR/2021/logos/UD-watermark-dark-unofficial);\n    --draft-watermark: url(https://www.w3.org/StyleSheets/TR/2021/logos/UD-watermark-dark-draft);\n\n    --logo-bg: #1a5e9a;\n    --logo-active-bg: #c00;\n    --logo-text: white;\n\n    --tocnav-normal-text: #999;\n    --tocnav-normal-bg: var(--bg);\n    --tocnav-hover-text: var(--tocnav-normal-text);\n    --tocnav-hover-bg: #080808;\n    --tocnav-active-text: #f44;\n    --tocnav-active-bg: var(--tocnav-normal-bg);\n\n    --tocsidebar-text: var(--text);\n    --tocsidebar-bg: #080808;\n    --tocsidebar-shadow: rgba(255,255,255,.1);\n    --tocsidebar-heading-text: hsla(203,20%,40%,.7);\n\n    --toclink-text: var(--text);\n    --toclink-underline: #6af;\n    --toclink-visited-text: var(--toclink-text);\n    --toclink-visited-underline: #054572;\n\n    --heading-text: #8af;\n\n    --hr-text: var(--text);\n\n    --algo-border: #456;\n\n    --del-text: #f44;\n    --del-bg: transparent;\n    --ins-text: #4a4;\n    --ins-bg: transparent;\n\n    --a-normal-text: #6af;\n    --a-normal-underline: #555;\n    --a-visited-text: var(--a-normal-text);\n    --a-visited-underline: var(--a-normal-underline);\n    --a-hover-bg: rgba(25%, 25%, 25%, .2);\n    --a-active-text: #f44;\n    --a-active-underline: var(--a-active-text);\n\n    --borderedblock-bg: rgba(255, 255, 255, .05);\n\n    --blockquote-border: silver;\n    --blockquote-bg: var(--borderedblock-bg);\n    --blockquote-text: currentcolor;\n\n    --issue-border: #e05252;\n    --issue-bg: var(--borderedblock-bg);\n    --issue-text: var(--text);\n    --issueheading-text: hsl(0deg, 70%, 70%);\n\n    --example-border: hsl(50deg, 90%, 60%);\n    --example-bg: var(--borderedblock-bg);\n    --example-text: var(--text);\n    --exampleheading-text: hsl(50deg, 70%, 70%);\n\n    --note-border: hsl(120deg, 100%, 35%);\n    --note-bg: var(--borderedblock-bg);\n    --note-text: var(--text);\n    --noteheading-text: hsl(120, 70%, 70%);\n    --notesummary-underline: silver;\n\n    --advisement-border: orange;\n    --advisement-bg: #222218;\n    --advisement-text: var(--text);\n    --advisementheading-text: #f84;\n\n    --amendment-border: #330099;\n    --amendment-bg: var(--borderedblock-bg);\n    --amendment-text: var(--text);\n    --amendmentheading-text: #a086ff;\n\n    --amendment-border: #330099;\n    --amendment-bg: #080010;\n    --amendment-text: var(--text);\n    --amendmentheading-text: #cc00ff;\n\n    --warning-border: red;\n    --warning-bg: hsla(40,100%,20%,0.95);\n    --warning-text: var(--text);\n\n    --def-border: #8ccbf2;\n    --def-bg: #080818;\n    --def-text: var(--text);\n    --defrow-border: #136;\n\n    --datacell-border: silver;\n\n    --indexinfo-text: #aaa;\n\n    --indextable-hover-text: var(--text);\n    --indextable-hover-bg: #181818;\n\n    --outdatedspec-bg: rgba(255, 255, 255, .5);\n    --outdatedspec-text: black;\n    --outdated-bg: maroon;\n    --outdated-text: white;\n    --outdated-shadow: red;\n\n    --editedrec-bg: darkorange;\n}"
  },
  {
    "path": "scripts/md2html/md2html.js",
    "content": "/* ReSpec supports markdown formatting, but this shows up on the page before being rendered\nHence we render the markdown to HTML ourselves, this gives us\ncomplete control over formatting and syntax highlighting */\n\n'use strict';\n\n/**\n * @author Mike Ralphson <mike.ralphson@gmail.com>\n **/\n\nconst fs = require('fs');\nconst path = require('path');\nconst url = require('url');\n\nconst hljs = require('highlight.js');\nhljs.registerLanguage('uritemplate', function() {\n    return {\n      case_insensitive: true,\n      contains: [\n          {\n              scope: \"attr\", \n              match: /(?<=[{,])[^,}\\n\\r]+/,\n          }\n      ],\n    }\n  });\nhljs.registerLanguage('uri', function() {\n    return {\n      case_insensitive: true,\n      classNameAliases: {\n          pathsegment: \"attr\",\n          option: \"attr\",\n          value: \"literal\"\n      },\n      contains: [\n          {\n              scope: \"pathsegment\", \n              match: /(?<=[/])[^/?#\\n\\r]+/,\n          },\n          {\n              scope: \"option\", \n              match: /(?<=[?&#])[^=?&#\\n\\r]+/,\n          },\n          {\n              scope: \"value\",\n              match: /(?<=\\=)[^?&#\\n\\r]+/,\n          }\n      ],\n    }\n  });\nhljs.registerLanguage('multipart', function() {\n    return {\n      // This is a very limited approach that only\n      // detects boundaries and headers that start\n      // with \"Content-\"\n      contains: [\n          {\n              scope: \"meta\",\n              match: /^--.*$/,\n          },\n          {\n              scope: \"literal\",\n              begin: /^Content-/,\n              end: /$/,\n              contains: [\n                {\n                    scope: \"attr\",\n                    begin: \" \",\n                    end: /$/,\n                },\n              ]\n          },\n      ],\n    }\n  });\nhljs.registerLanguage('eventstream', function() {\n    return {\n      contains: [\n          {\n              scope: \"comment\",\n              begin: /^:/,\n              end: /$/,\n          },\n          {\n              scope: \"attr\",\n              match: /^[^:]+/\n          },\n      ],\n    }\n  });\nhljs.registerLanguage('jsonseq', function() {\n    return {\n      keywords: [\"true\", \"false\", \"null\"],\n      contains: [\n          {\n              scope: \"meta\",\n              match: /0[xX]1[eE]/,\n          },\n          {\n              scope: \"attr\",\n              begin: /\"(\\\\.|[^\\\\\"\\r\\n])*\"(?=\\s*:)/,\n              relevance: 1.01\n          },\n          {\n              scope: \"punctuation\",\n              match: /[{}[\\],:]/,\n              relevance: 0\n          },\n          {\n              scope: \"literals\",\n              beginKeywords: [\"true\", \"false\" , \"null\"].join(\" \"),\n          },\n          hljs.QUOTE_STRING_MODE,\n          hljs.C_NUMBER_MODE\n      ]\n    }\n  });\nhljs.registerLanguage('jsonl', function() {\n    return {\n      aliases: [\"ndjson\"],\n      keywords: [\"true\", \"false\", \"null\"],\n      contains: [\n          {\n              scope: 'attr',\n              begin: /\"(\\\\.|[^\\\\\"\\r\\n])*\"(?=\\s*:)/,\n              relevance: 1.01\n          },\n          {\n              scope: \"punctuation\",\n              match: /[{}[\\],:]/,\n              relevance: 0\n          },\n          {\n              scope: \"literals\",\n              beginKeywords: [\"true\", \"false\" , \"null\"].join(\" \"),\n          },\n          hljs.QUOTE_STRING_MODE,\n          hljs.C_NUMBER_MODE\n      ]\n    }\n  });\n\n\nconst cheerio = require('cheerio');\n\nlet argv = require('yargs')(process.argv.slice(2))\n    .string('maintainers')\n    .alias('m','maintainers')\n    .describe('maintainers','path to MAINTAINERS.md')\n    .demandCommand(1)\n    .parse();\nconst abstract = 'What is the OpenAPI Specification?';\nlet maintainers = [];\nlet emeritus = [];\n\nconst md = require('markdown-it')({\n  html: true,\n  linkify: true,\n  typographer: true,\n  highlight: function (str, lang) {\n    if (lang && hljs.getLanguage(lang)) {\n    return '<pre class=\"nohighlight\" tabindex=\"0\"><code>' +\n      hljs.highlight(str, { language: lang, ignoreIllegals: true }).value +\n      '</code></pre>';\n    }\n\n    if (lang) console.warn('highlight.js does not support language',lang);\n    return '<pre class=\"nohighlight\" tabindex=\"0\"><code>' + md.utils.escapeHtml(str) + '</code></pre>';\n  }\n});\n\nfunction preface(title,options) {\n    const otherVersions = options._[1].split(\"\\n\").map(v => path.basename(v,'.md')).filter(v => v !== options.subtitle);\n    const respec = {\n        specStatus: \"base\",\n        latestVersion: \"https://spec.openapis.org/oas/latest.html\",\n        thisVersion: `https://spec.openapis.org/oas/v${options.subtitle}.html`,\n        canonicalURI: `https://spec.openapis.org/oas/v${options.subtitle}.html`,\n        editors: maintainers,\n        formerEditors: emeritus,\n        publishDate: options.publishDate,\n        subtitle: 'Version '+options.subtitle,\n        edDraftURI: \"https://github.com/OAI/OpenAPI-Specification/\",\n        shortName: \"OAS\",\n        historyURI: null, // prevent ReSpec from fetching a W3C history based on the shortName\n        lint: false,\n        logos:[{\n            src: \"https://raw.githubusercontent.com/OAI/OpenAPI-Style-Guide/master/graphics/bitmap/OpenAPI_Logo_Pantone.png\",\n            alt: \"OpenAPI Initiative\",\n            height: 48,\n            url: \"https://openapis.org/\"}],\n        otherLinks: [\n            {\n                key: \"Other versions:\",\n                data: otherVersions.map(v => {\n                    return {\n                        href: `https://spec.openapis.org/oas/v${v}.html`\n                    }\n                })\n            },\n            {\n                key: \"Participate\",\n                data: [\n                    {\n                        value: \"GitHub OAI/OpenAPI-Specification\",\n                        href: \"https://github.com/OAI/OpenAPI-Specification/\",\n                    },\n                    {\n                        value: \"File a bug\",\n                        href: \"https://github.com/OAI/OpenAPI-Specification/issues\",\n                    },\n                    {\n                        value: \"Commit history\",\n                        href: `https://github.com/OAI/OpenAPI-Specification/commits/main/versions/${options.subtitle}.md`,\n                    },\n                    {\n                        value: \"Pull requests\",\n                        href: \"https://github.com/OAI/OpenAPI-Specification/pulls\",\n                    },\n                ],\n            },\n        ],\n        // localBiblio: {\n        //     // add local bibliography entries here, add them to https://www.specref.org/, and remove them here once published\n        // }\n    };\n\n    let preface = '<!DOCTYPE html><html lang=\"en\"><head>\\n'\n    preface += fs.readFileSync(path.resolve(__dirname,'./analytics/google.html'),'utf8');\n\n    // SEO\n    preface += `<meta charset=\"UTF-8\">\\n<title>${md.utils.escapeHtml(title)}</title>`;\n    preface += '<meta name=\"description\" content=\"The OpenAPI Specification (OAS) defines a standard, programming language-agnostic interface description for HTTP APIs.\">\\n';\n\n    // ReSpec\n    preface += '<meta name=\"color-scheme\" content=\"light dark\">';\n    preface += '<script src=\"../js/respec-w3c.js\" class=\"remove\"></script>';\n    preface += `<script class=\"remove\">var respecConfig = ${JSON.stringify(respec)};</script>\\n`;\n    preface += '</head>\\n<body>';\n    preface += '<style>';\n    preface += fs.readFileSync(path.resolve(__dirname,'main.css'),'utf8').split(/\\r?\\n/).join(' ');\n    preface += fs.readFileSync(path.resolve(__dirname,'gist.css'),'utf8').split(/\\r?\\n/).join(' ');\n    preface += '</style>';\n    preface += `<h1 id=\"title\">${title.split('|')[0]}</h1>`;\n    preface += `<p class=\"copyright\">Copyright © ${options.publishDate.getFullYear()} the Linux Foundation</p>`;\n    preface += `<section class=\"notoc\" id=\"abstract\"><h2>${abstract}</h2>`;\n    preface += 'The OpenAPI Specification (OAS) defines a standard, programming language-agnostic interface description for HTTP APIs, which allows both humans and computers to discover and understand the capabilities of a service without requiring access to source code, additional documentation, or inspection of network traffic. When properly defined via OpenAPI, a consumer can understand and interact with the remote service with a minimal amount of implementation logic. Similar to what interface descriptions have done for lower-level programming, the OpenAPI Specification removes guesswork in calling a service.';\n    preface += '</section>';\n    preface += '<section class=\"override\" id=\"sotd\" data-max-toc=\"0\">';\n    preface += '<h2>Status of This Document</h2>';\n    preface += 'The source-of-truth for this specification is the HTML file referenced above as <em>This version</em>.';\n    preface += '</section>';\n\n    return preface;\n}\n\nfunction doMaintainers() {\n    let m = fs.readFileSync(argv.maintainers,'utf8');\n    let h = md.render(m);\n    let $ = cheerio.load(h);\n    let u = $('ul').first();\n    $(u).children('li').each(function(e){\n        let t = $(this).text().split('@')[0];\n        maintainers.push({name:t});\n    });\n    if ($(\"ul\").length < 2) return;\n    u = $(\"ul\").last();\n    $(u).children('li').each(function(e){\n        let t = $(this).text().split('@')[0];\n        emeritus.push({name:t});\n    });\n}\n\nfunction getPublishDate(m) {\n    let result = new Date();\n    let h = md.render(m);\n    let $ = cheerio.load(h);\n    $('table').each(function(i,table){\n        const h = $(table).find('th');\n        const headers = [];\n        $(h).each(function(i,header){\n            headers.push($(header).text());\n        });\n        if (headers.length >= 2 && headers[0] === 'Version' && headers[1] === 'Date') {\n            let c = $(table).find('tr').find('td');\n            let v = $(c[0]).text();\n            let d = $(c[1]).text();\n            argv.subtitle = v;\n            if (d !== 'TBA') result = new Date(d);\n        }\n    });\n    return result;\n}\n\nif (argv.maintainers) {\n    doMaintainers();\n}\n\nlet s = fs.readFileSync(argv._[0],'utf8');\n\nargv.publishDate = getPublishDate(s);\n\nlet lines = s.split(/\\r?\\n/);\n\nlet prevHeading = 0;\nlet inTOC = false;\nlet inDefs = false;\nlet inCodeBlock = false;\nlet indents = [0];\n\n// process the markdown\nfor (let l in lines) {\n    let line = lines[l];\n\n    // remove TOC from older spec versions, respec will generate a new one\n    if (line.startsWith('## Table of Contents')) inTOC = true;\n    else if (line.startsWith('#')) inTOC = false;\n    if (inTOC) line = '';\n\n    // special formatting for Definitions section\n    if (line.startsWith('## Definitions')) {\n        inDefs = true;\n    }\n    else if (line.startsWith('## ')) inDefs = false;\n\n    // recognize code blocks\n    if (line.startsWith('```')) {\n        inCodeBlock = !inCodeBlock;\n    }\n\n    if (line.indexOf('<a name=\"parameterAllowEmptyValue\"/>')>=0) {\n        // fix syntax error in 2.0.md\n        line = line.replace('<a name=\"parameterAllowEmptyValue\"/>','<span id=\"parameterAllowEmptyValue\"></span>');\n    }\n\n    // replace deprecated <a name=\"...\"></a> with <span id=\"...\"></span> - needed for older specs\n    line = line.replace(/<a name=\"([^\"]+)\"><\\/a>/g,'<span id=\"$1\"></span>');\n\n    line = line.split('\\\\|').join('&#124;'); // was &brvbar\n\n    if (!inCodeBlock) {\n\n        // minor fixups to get RFC links to work properly\n        line = line.replace('RFC [','[RFC');\n        line = line.replace('[Authorization header as defined in ','Authorization header as defined in [');\n        line = line.replace('[JSON Pointer]','JSON Pointer [RFC6901]'); // only in 2.0.md\n        line = line.replace('[media type range](https://tools.ietf.org/html/rfc7231#appendix-D) ','media type range, see [RFC7231](https://tools.ietf.org/html/rfc7231#appendix-D), ');\n\n        line = line.replace(/\\[RFC ?([0-9]{1,5})\\]\\(/g,'[[RFC$1]](');\n\n        // harmonize RFC URLs\n        //TODO: harmonize to https://www.rfc-editor.org/rfc/rfc*\n        line = line.replaceAll('](http://','](https://');\n        line = line.replace('https://www.ietf.org/rfc/rfc2119.txt','https://tools.ietf.org/html/rfc2119'); // only in 2.0.md\n        line = line.replace(/https:\\/\\/www.rfc-editor.org\\/rfc\\/rfc([0-9]{1,5})(\\.html)?/g,'https://tools.ietf.org/html/rfc$1');\n        line = line.replaceAll('https://datatracker.ietf.org/doc/html/','https://tools.ietf.org/html/');\n\n        // handle url fragments in RFC links and construct section links as well as RFC links\n        line = line.replace(/\\]\\]\\(https:\\/\\/tools.ietf.org\\/html\\/rfc([0-9]{1,5})\\/?(\\#[^)]*)?\\)/g, function(match, rfcNumber, fragment) {\n            if (fragment) {\n                // Extract section title from the fragment\n                let sectionTitle = fragment.replace('#', '').replace(/-/g, ' ');\n                sectionTitle = sectionTitle.charAt(0).toUpperCase() + sectionTitle.slice(1); // Capitalize the first letter\n                //TODO: section links to https://www.rfc-editor.org/rfc/rfc* for newer RFCs (>= 8700)\n                return `]] [${sectionTitle}](https://datatracker.ietf.org/doc/html/rfc${rfcNumber}${fragment})`;\n            } else {\n                return ']]';\n            }\n        });\n\n        // non-RFC references\n        line = line.replace('[ABNF](https://tools.ietf.org/html/rfc5234)','[[ABNF]]');\n        line = line.replace('[CommonMark 0.27](https://spec.commonmark.org/0.27/)','[[CommonMark-0.27]]');\n        line = line.replace('[CommonMark syntax](https://spec.commonmark.org/)','[[CommonMark]] syntax');\n        line = line.replace('CommonMark markdown formatting','[[CommonMark]] markdown formatting');\n        line = line.replace('consult http://www.w3.org/TR/html401/interact/forms.html#h-17.13.4)','consult [[HTML401]] [Section 17.13.4](http://www.w3.org/TR/html401/interact/forms.html#h-17.13.4)');\n        line = line.replace('[IANA Status Code Registry](https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml)','[[IANA-HTTP-STATUS-CODES|IANA Status Code Registry]]');\n        line = line.replace('[IANA Authentication Scheme registry](https://www.iana.org/assignments/http-authschemes/http-authschemes.xhtml)','[[IANA-HTTP-AUTHSCHEMES]]');\n        line = line.replace('[JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03)','[[JSON-Reference|JSON Reference]]');\n        line = line.replace('[JSON Schema Specification Draft 4](https://json-schema.org/)','[[JSON-Schema-04|JSON Schema Specification Draft 4]]');\n        line = line.replace('[JSON Schema Core](https://tools.ietf.org/html/draft-zyp-json-schema-04)','[[JSON-Schema-04|JSON Schema Core]]');\n        line = line.replace('[JSON Schema Validation](https://tools.ietf.org/html/draft-fge-json-schema-validation-00)','[[JSON-Schema-Validation-04|JSON Schema Validation]]');\n        line = line.replace('[JSON Schema Specification Wright Draft 00](https://json-schema.org/)','[[JSON-Schema-05|JSON Schema Specification Wright Draft 00]]');\n        line = line.replace('[JSON Schema Core](https://tools.ietf.org/html/draft-wright-json-schema-00)','[[JSON-Schema-05|JSON Schema Core]]');\n        line = line.replace('[JSON Schema Validation](https://tools.ietf.org/html/draft-wright-json-schema-validation-00)','[[JSON-Schema-Validation-05|JSON Schema Validation]]');\n        line = line.replace('[JSON Schema Specification Draft 2020-12](https://tools.ietf.org/html/draft-bhutton-json-schema-00)','[[JSON-Schema-2020-12|JSON Schema Specification Draft 2020-12]]');\n        line = line.replace('[JSON Schema Core](https://tools.ietf.org/html/draft-bhutton-json-schema-00)','[[JSON-Schema-2020-12|JSON Schema Core]]');\n        line = line.replace('[JSON Schema Validation](https://tools.ietf.org/html/draft-bhutton-json-schema-validation-00)','[[JSON-Schema-Validation-2020-12|JSON Schema Validation]]');\n        line = line.replace('[SPDX](https://spdx.org/licenses/) license','[[SPDX-Licenses]]');\n        line = line.replace('[XML namespaces](https://www.w3.org/TR/xml-names11/)','[[xml-names11|XML namespaces]]');\n        line = line.replace('JSON standards. YAML,','[[RFC7159|JSON]] standards. [[YAML|YAML]],'); // 2.0.md only\n        line = line.replace('JSON or YAML format.','[[RFC7159|JSON]] or [[YAML|YAML]] format.');\n        line = line.replace(/YAML version \\[1\\.2\\]\\(https:\\/\\/(www\\.)?yaml\\.org\\/spec\\/1\\.2\\/spec\\.html\\)/,'[[YAML|YAML version 1.2]]');\n    }\n\n    // fix relative links (to examples)\n    if (!inCodeBlock && line.indexOf('](../examples/') >= 0) {\n        // links to examples go to learn site, links to yaml files go to wrapper html\n        line = line.replace(/\\(\\.\\.\\/examples\\/([^)]+)\\)/g,function(match,group1){\n            console.warn(\"example link\",group1);\n            group1 = group1.replace('.yaml','.html');\n            return `(https://learn.openapis.org/examples/${group1})`;\n          })\n    } else if (!inCodeBlock && line.indexOf('](../') >= 0) {\n        // links to other sibling files go to github\n        const regExp = /\\((\\.\\.[^)]+)\\)/g;\n        line = line.replace(regExp,function(match,group1){\n          console.warn('relative link',group1);\n          return '('+url.resolve('https://github.com/OAI/OpenAPI-Specification/tree/main/versions/foo',group1)+')';\n        });\n    }\n\n    // fix indentation of headings\n    // - make sure that each heading is at most one level deeper than the previous heading\n    // - reduce heading level by one if we're in respec mode except for h1\n    if (!inCodeBlock && line.startsWith('#')) {\n        let indent = 0;\n        while (line[indent] === '#') indent++;\n        let originalIndent = indent;\n\n        let prevIndent = indents[indents.length-1]; // peek\n        let delta = indent-prevIndent;\n\n        if (indent > 1) {\n            indent--;\n        }\n        let newIndent = indent;\n\n        let title = line.split('# ')[1];\n        if (inDefs) title = '<dfn>'+title+'</dfn>';\n        line = ('#'.repeat(newIndent)+' '+title);\n\n        if (delta>0) indents.push(originalIndent);\n        if (delta<0) {\n            let d = Math.abs(delta);\n            while (d>0) {\n                indents.pop();\n                d--;\n            }\n        }\n    }\n\n    // wrap section text in <section>...</section> tags for respec\n    if (!inCodeBlock && line.startsWith('#')) {\n        let heading = 0;\n        while (line[heading] === '#') heading++;\n        let delta = heading-prevHeading;\n        if (delta>1) console.warn(delta,line);\n        if (delta>0) delta = 1;\n        let prefix = '';\n        let newSection = '<section>';\n        const m = line.match(/# Version ([0-9.]+)$/);\n        if (m) {\n            // our conformance section is headlined with 'Version x.y.z'\n            // and respec needs a conformance section in a \"formal\" specification\n            newSection = '<section class=\"override\" id=\"conformance\">';\n            // adjust the heading to be at level 2 because respec insists on h2 here\n            // Note: older specs had this at h4, newer specs at h2, and all heading levels have been reduced by 1 in the preceding block\n            line = '#' + m[0];\n            delta = 1;\n            heading = 2;\n        }\n        if (line.includes('Appendix')) {\n            newSection = '<section class=\"appendix\">';\n        }\n\n        // heading level delta is either 0 or is +1/-1, or we're in respec mode\n        // respec insists on <section>...</section> breaks around headings\n\n        if (delta === 0) {\n            prefix = '</section>'+newSection;\n        }\n        else if (delta > 0) {\n            prefix = newSection.repeat(delta);\n        }\n        else {\n            prefix = '</section>'+('</section>').repeat(Math.abs(delta))+newSection;\n        }\n        prevHeading = heading;\n        line = prefix+md.render(line);\n    }\n\n    lines[l] = line;\n}\n\ns = preface(`OpenAPI Specification v${argv.subtitle} | Introduction, Definitions, & More`,argv)+'\\n\\n'+lines.join('\\n');\nlet out = md.render(s);\nout = out.replace(/\\[([RGB])\\]/g,'&#91;$1&#93;');\nout = out.replace('[[IANA-HTTP-AUTHSCHEMES]]','[[IANA-HTTP-AUTHSCHEMES|IANA Authentication Scheme registry]]');\nconsole.log(out);\n"
  },
  {
    "path": "scripts/md2html/style-finish.html",
    "content": "</style>\n"
  },
  {
    "path": "scripts/md2html/style-start.html",
    "content": "<style>\n/*.highlight:not(.idl) { background: hsl(24, 20%, 95%); }\ncode.highlight { padding: .1em; border-radius: .3em; } */\npre > code { background: hsl(24, 20%, 95%); display: block; padding: 1em; margin: .5em 0; overflow: auto; border-radius: 0; }\nh1,h2,h3 { color: #629b34; }a[href] { color: #45512c; }body:not(.toc-inline) #toc h2 { color: #45512c; }\n"
  },
  {
    "path": "scripts/md2html/syntax-github.css",
    "content": "/*\n\ngithub.com style (c) Vasily Polovnyov <vast@whiteants.net>\n\n*/\n\n.hljs {\n  display: block;\n  overflow-x: auto;\n  padding: 0.5em;\n  color: #333;\n  background: #f8f8f8;\n}\n\n.hljs-comment,\n.hljs-quote {\n  color: #998;\n  font-style: italic;\n}\n\n.hljs-keyword,\n.hljs-selector-tag,\n.hljs-subst {\n  color: #333;\n  font-weight: bold;\n}\n\n.hljs-number,\n.hljs-literal,\n.hljs-variable,\n.hljs-template-variable,\n.hljs-tag .hljs-attr {\n  color: #008080;\n}\n\n.hljs-string,\n.hljs-doctag {\n  color: #d14;\n}\n\n.hljs-title,\n.hljs-section,\n.hljs-selector-id {\n  color: #900;\n  font-weight: bold;\n}\n\n.hljs-subst {\n  font-weight: normal;\n}\n\n.hljs-type,\n.hljs-class .hljs-title {\n  color: #458;\n  font-weight: bold;\n}\n\n.hljs-tag,\n.hljs-name,\n.hljs-attribute {\n  color: #000080;\n  font-weight: normal;\n}\n\n.hljs-regexp,\n.hljs-link {\n  color: #009926;\n}\n\n.hljs-symbol,\n.hljs-bullet {\n  color: #990073;\n}\n\n.hljs-built_in,\n.hljs-builtin-name {\n  color: #0086b3;\n}\n\n.hljs-meta {\n  color: #999;\n  font-weight: bold;\n}\n\n.hljs-deletion {\n  background: #fdd;\n}\n\n.hljs-addition {\n  background: #dfd;\n}\n\n.hljs-emphasis {\n  font-style: italic;\n}\n\n.hljs-strong {\n  font-weight: bold;\n}\n"
  },
  {
    "path": "scripts/schema-publish.sh",
    "content": "#!/usr/bin/env bash\n\n# Author: @ralfhandl\n\n# Run this script from the root of the repo. It is designed to be run by a GitHub workflow.\n\nschemaDir=\"src/schemas/validation\"\nbranch=$(git branch --show-current)\n\n\nif [ -z \"$1\" ]; then\n  if [[ $branch =~ ^v([0-9]+\\.[0-9]+)-dev$ ]]; then\n    version=\"${BASH_REMATCH[1]}\"\n    deploydir=\"./deploy/oas/${version}\"\n  else\n    echo \"Unable to determine version from branch name; should be vX.Y-dev\"\n    exit 1\n  fi\nelif [ $1 = \"src\" ]; then\n  deploydir=\"./deploy-preview\"\nelse\n  echo \"Unrecognized argument\"\n  exit 1\nfi\n\n# create the date-stamped schemas\npublish_schema() {\n  local schema=\"$1\"\n  local date=\"$2\"\n  local sedCmd=\"$3\"\n\n  local base=$(basename $schema '.yaml')\n  local target=$deploydir/$base/$date\n\n  mkdir -p $deploydir/$base\n\n  # replace the WORK-IN-PROGRESS placeholders\n  sed ${sedCmd[@]} $schemaDir/$schema | npx yaml --json --indent 2 --single > $target\n\n  # find the jekyll lander markdown file\n  local jekyllLander=$(find \"$deploydir/$base\" -maxdepth 1 -name \"*.md\")\n\n  # rename or create the jekyll lander markdown file for this iteration\n  if [ ! -z \"$jekyllLander\" ]; then\n    if [ \"$jekyllLander\" = \"$target.md\" ]; then\n      echo \" * $base did not change since $date\"\n    else\n      mv $jekyllLander $target.md\n      echo \" * $base: $date added & jekyll lander moved from $(basename $jekyllLander)\"\n    fi\n  else\n    # find the most recent preceding version\n    local lastdir=\"\"; for fn in $(dirname $deploydir)/?.?; do test \"$fn\" \"<\" \"$deploydir\" && lastdir=\"$fn\"; done\n    local lastVersion=$(basename $lastdir)\n    # find the jekyll lander markdown file for the preceding version\n    local lastLander=$(find \"$lastdir/$base\" -maxdepth 1 -name \"*.md\" 2>/dev/null)\n\n    if [ ! -z \"$lastLander\" ]; then\n      # copy and adjust the lander file from the preceding version\n      sed \"s/$lastVersion/$version/g\" $lastLander > $target.md\n      echo \" * $base: $date added & jekyll lander copied from $(basename $lastLander) of $lastVersion\"\n    else\n      echo \" * $base: $date added\"\n    fi\n  fi\n}\n\necho === Building schemas into $deploydir\n\n# list of schemas to process, dependent schemas come first\nschemas=(meta.yaml dialect.yaml schema.yaml schema-base.yaml)\n\n# publish each schema using its or any of its dependencies newest commit date\nmaxDate=\"\"\nsedCmds=()\nfor schema in \"${schemas[@]}\"; do\n  if [ -f  \"$schemaDir/$schema\" ]; then\n    newestCommitDate=$(git log -1 --format=\"%cd\" --date=short \"$schemaDir/$schema\")\n\n    # the newest date across a schema and all its dependencies is its date stamp\n    if [ \"$newestCommitDate\" \\> \"$maxDate\" ]; then\n      maxDate=$newestCommitDate\n    fi\n\n    base=$(basename $schema '.yaml')\n    # add the replacement for this schema's placeholder to list of sed commands\n    sedCmds+=(\"s/${base}\\/WORK-IN-PROGRESS/${base}\\/${maxDate}/g\")\n\n    publish_schema \"$schema\" \"$maxDate\" $(printf '%s;' \"${sedCmds[@]}\")\n  fi\ndone\n\necho === Built\n"
  },
  {
    "path": "scripts/start-release.sh",
    "content": "#!/usr/bin/env bash\n\n# Author: @ralfhandl\n\n# Run this script from the root of the repo. It is designed to be run manually in a development branch.\n\nrepoUrl=\"https://github.com/OAI/OpenAPI-Specification\"\nremote=$(git remote -v | grep \"$repoUrl.git (fetch)\" | head -1 | cut --fields=1)\n\nbranch=$(git branch --show-current)\nif [[ ! $branch =~ ^v[0-9]+\\.[0-9]+-dev$ ]]; then\n  echo \"This script is intended to be run from a development branch, e.g. v3.2-dev\"\n  exit 1\nfi\n\nvVersion=$(basename \"$branch\" \"-dev\")\nminor=${vVersion:1}\n\n# Find last published spec version for this minor version\nlastSpec=$(git ls-tree $remote/main versions/ --name-only | grep -E \"/$minor\\.[0-9].md\" | tail -1)\n\nif [ -z \"$lastSpec\" ]; then\n  # Find last published spec version\n  lastSpec=$(git ls-tree $remote/main versions/ --name-only | grep -E \"/.+\\.[0-9].md\" | tail -1)\n  nextPatch=0\n  releaseType=\"Release\"\nelse\n  lastPatch=$(basename \"$lastSpec\" \".md\" | cut --delimiter=. --fields=3)\n  nextPatch=$((lastPatch + 1))\n  releaseType=\"Patch release\"\nfi\n\nnextVersion=\"$minor.$nextPatch\"\n\nif [ -z \"$lastSpec\" ]; then\n  echo \"Could not find any published specification version in $remote/main\"\n  exit 1\nfi\n\nlastVersion=$(basename \"$lastSpec\" \".md\")\necho === Initialize src/oas.md for $nextVersion from $lastVersion\n\n# Create PR branch from development branch\nprBranch=\"$branch-start-$nextVersion\"\nif git ls-remote --exit-code --heads $remote \"$prBranch\"; then\n  echo \"=== Failed: PR branch $prBranch already exists on the remote, please delete it and try again\"\n  exit 1  \nfi\nif ! git checkout -b \"$prBranch\"; then\n  echo \"=== Failed: PR branch $prBranch already exists locally, please delete it and try again\"\n  exit 1  \nfi\n\n# Create empty orphan branch and add src/oas.md with last spec's content and no history\norphan=\"v$minor-orphan\"\nif ! git switch --orphan \"$orphan\"; then\n  git switch \"$branch\"\n  git branch -d \"$prBranch\"\n  echo \"=== Failed: please delete branch $orphan and try again\"\n  exit 1\nfi\nmkdir src\ngit show \"main:$lastSpec\" > src/oas.md\ngit add src/oas.md\ngit commit -m \"copy from $lastVersion\"\n\n# Merge orphan branch into PR branch, favoring orphan's version of src/oas.md\ngit switch \"$prBranch\"\ngit merge \"$orphan\" -X theirs --allow-unrelated-histories -m \"reset src/oas.md history\"\ngit branch -D \"$orphan\"\n\n# Bump version headline, add line to history table\ntemp=$(mktemp)\n\nhistoryTableHeader=\"\\n| Version | Date | Notes |\\n| ---- | ---- | ---- |\\n\"\nsed -z -e \"s/\\n## Version $lastVersion\\n/\\n## Version $nextVersion\\n/\" \\\n    -z -e \"s/$historyTableHeader/$historyTableHeader| $nextVersion | TBD | $releaseType of the OpenAPI Specification $nextVersion |\\n/\" \\\n    src/oas.md > \"$temp\"\nmv -f \"$temp\" src/oas.md\n\ngit add src/oas.md\ngit commit -m \"bump version\"\n\necho === Initialized src/oas.md \n\n# when starting a new major or minor version\nif [ \"$nextPatch\" == \"0\" ]; then\n  lastMinor=$(echo \"$lastVersion\" | cut -d . -f 1,2)\n\n  echo === Adjust schemas for new version $minor\n  minorRegex=$(echo \"$minor\" | sed 's/\\./\\\\\\\\\\\\./')\n  lastMinorRegex=$(echo \"$lastMinor\" | sed 's/\\./\\\\\\\\\\\\./')\n\n  for file in src/schemas/validation/*.yaml; do\n    sed -e \"s/$lastMinor/$minor/g\" \\\n        -e \"s/\\^$lastMinorRegex\\\\\\./\\^$minorRegex\\\\\\./g\" \\\n        \"$file\" > \"$temp\"\n    mv -f \"$temp\" \"$file\"\n  done\n  \n  echo === Adjust tests for new version $minor\n\n  sed -e \"s/$lastMinor/$minor/g\" tests/schema/schema.test.mjs > \"$temp\"\n  mv -f \"$temp\" tests/schema/schema.test.mjs\n\n  for file in tests/schema/{pass,fail}/*.yaml; do\n    sed -e \"s/$lastMinor/$minor/g\" \"$file\" > \"$temp\"\n    mv -f \"$temp\" \"$file\"\n  done\n\n  git commit --all -m \"adjust schemas, test script, and test data\"\n\n  echo === Adjusted schemas and tests\nfi\n\n# Push PR branch to remote\ngit push -u $remote $prBranch\n\n# Clean up\ngit switch \"$branch\"\necho === Done\n"
  },
  {
    "path": "scripts/validate.mjs",
    "content": "#!/usr/bin/env node\n\nimport { readFile } from \"node:fs/promises\";\nimport YAML from \"yaml\";\nimport { setMetaSchemaOutputFormat, validate } from \"@hyperjump/json-schema/openapi-3-1\";\nimport { BASIC } from \"@hyperjump/json-schema/experimental\";\n\nimport contentTypeParser from \"content-type\";\nimport { addMediaTypePlugin } from \"@hyperjump/browser\";\nimport { buildSchemaDocument } from \"@hyperjump/json-schema/experimental\";\n\naddMediaTypePlugin(\"application/schema+yaml\", {\n    parse: async (response) => {\n      const contentType = contentTypeParser.parse(response.headers.get(\"content-type\") ?? \"\");\n      const contextDialectId = contentType.parameters.schema ?? contentType.parameters.profile;\n  \n      const foo = YAML.parse(await response.text());\n      return buildSchemaDocument(foo, response.url, contextDialectId);\n    },\n    fileMatcher: (path) => path.endsWith(\".yaml\")\n  });\n\nconst defaultOutputFormat = BASIC;\n\nif (process.argv.length < 3) {\n  console.log(`Usage: validate [--schema=schema] [--format=${defaultOutputFormat}] path-to-file.yaml`);\n  console.log(\"\\t--schema: (schema (default) | schema-base) The name of the schema file to use\");\n  console.log(`\\t--format: (Default: ${defaultOutputFormat}) The JSON Schema output format to use. Options: FLAG, BASIC, DETAILED, VERBOSE`);\n  process.exit(1);\n}\n\nconst args = process.argv.reduce((acc, arg) => {\n  if (!arg.startsWith(\"--\")) return acc;\n\n  const [argName, argValue] = arg.substring(2).split(\"=\", 2);\n  return { ...acc, [argName]: argValue };\n}, {});\n\nconst schemaType = args.schema || \"schema\";\nconst outputFormat = args.format || defaultOutputFormat;\n\n// Config\nsetMetaSchemaOutputFormat(outputFormat);\n\n// Compile / meta-validate\nconst validateOpenApi = await validate(`./schemas/v3.1/${schemaType}.yaml`);\n\n// Validate instance\nconst instanceYaml = await readFile(`${process.argv[process.argv.length - 1]}`, \"utf8\");\nconst instance = YAML.parse(instanceYaml);\nconst results = validateOpenApi(instance, outputFormat);\nconsole.log(JSON.stringify(results, null, \"  \"));\n"
  },
  {
    "path": "spec.markdownlint.yaml",
    "content": "# Heading style (ATX is leading # symbols)\nMD003:\n  style: atx\n\n# Unordered list symbol must be *\nMD004:\n  style: asterisk\n\n# Unordered list indentation size\nMD007:\n    indent: 2\n\n# Allow additional blank lines\nMD012: false\n\n# Maximum line length\nMD013:\n    line_length: 800\n    tables: false\n\n# Headings need blank lines before and after\nMD022: true\n\n# Duplicate headings are allowed\nMD024: false\n\n# Allow inline HTML\nMD033: false\n"
  },
  {
    "path": "style-guide.md",
    "content": "# Style Guide\n\nContributions to this repository should follow the style guide as described in this section.\n\n## Markdown\n\nMarkdown files in this project should follow the style enforced by the [markdownlint tool](https://www.npmjs.com/package/markdownlint),\nas configured by the `.markdownlint.yaml` file in the root of the project.\nThe `markdownlint` tool can also fix formatting, which can save time with tables in particular.\n\nThe following additional rules should be followed but currently are not enforced by tooling:\n\n1. The first mention of a normative reference or an OAS-defined Object in a (sub)*section is a link, additional mentions are not.\n2. OAS-defined Objects such as Schema Objects are written in this style, and are not monospaced.\n3. Use \"example\" instead of \"sample\" - this spec is not about statistics.\n4. Use \"OpenAPI Object\" instead of \"root\".\n5. Fixed fields are monospaced.\n6. Field values are monospaced in JSON notation: `true`, `false`, `null`, `\"header\"` (with double-quotes around string values).\n7. A combination of fixed field name with example value uses JS notation: `in: \"header\"`, combining rules 5 and 6.\n8. An exception to 5-7 is colloquial use, for example \"values of type `array` or `object`\" - \"type\" is not monospaced, so the monospaced values aren't enclosed in double quotes.\n9. Use [Oxford commas](https://en.wikipedia.org/wiki/Serial_comma), avoid [Shatner commas](https://www.latimes.com/archives/blogs/jacket-copy/story/2011-06-30/goodbye-oxford-comma-hello-shatner-comma).\n10. Use `<span id=\"thing\"></span>` for link anchors. The `<a name=\"thing\"></a>` format has been deprecated.\n11. Headings use [title case](https://en.wikipedia.org/wiki/Title_case) and are followed by a blank line.\n12. Do not use [RFC2119 key words (MUST, MAY, ...)](https://datatracker.ietf.org/doc/html/rfc2119) in \"Examples\" sections or when explaining examples, and state requirements only in sections that are clearly normative.\n13. Bullet lists and punctuation:\n    - If a bullet list item is a complete sentence or paragraph, start it with an uppercase letter and end it with a period.\n    - If a bullet list item is a word or short phrase, start it with an uppercase letter and do not end it with a punctuation character.\n    - If a bullet list item completes a stem sentence immediately preceding the bullet list, start it with a lowercase letter and end it with a period.\n    - Use a consistent bullet list item style for each bullet list.\n    - If in doubt which style to use for a new bullet list, look for similar lists in the same section or nearby sections and choose the same style.\n\nPlus some suggestions, rather than rules:\n\n* Use one sentence per line in paragraphs and bullet points, to make diffs and edits easier to compare and understand.\n  A blank line is needed to cause a paragraph break in Markdown.\n* In examples, use realistic values rather than foo/bar.\n\n## Use of \"keyword\", \"field\", \"property\", and \"attribute\"\n\n* JSON Schema keywords -> \"keyword\"\n* OpenAPI fixed fields -> \"field\"\n* property of a \"plain\" JSON object that is not an OpenAPI-defined Foo Object -> \"property\"\n* \"attribute\" is only used in the XML context and means \"XML attribute\"\n\n## Field Names and Values in YAML comments\n\nField names and keywords should be in backticks.\nValues like \"Dog\" should be double quoted.\n"
  },
  {
    "path": "tests/md2html/README.md",
    "content": "To view the HTML files in folder `fixtures` with respec formatting, you can\n~~~sh\nmkdir js\ncp ../../node_modules/respec/builds/respec-w3c.js js/\necho \"*\" > js/.gitignore\n~~~\nand open them in a local browser.\n"
  },
  {
    "path": "tests/md2html/fixtures/.gitattributes",
    "content": "*.html text eol=lf"
  },
  {
    "path": "tests/md2html/fixtures/basic-new.html",
    "content": "<!DOCTYPE html><html lang=\"en\"><head>\n<!-- Global site tag (gtag.js) - Google Analytics -->\n<script async src=\"https://www.googletagmanager.com/gtag/js?id=UA-831873-42\"></script>\n<script>\n window.dataLayer = window.dataLayer || [];\n function gtag(){dataLayer.push(arguments);}\n gtag('js', new Date());\n gtag('config', 'UA-831873-42');\n</script>\n<meta charset=\"UTF-8\">\n<title>OpenAPI Specification v30.0.1 | Introduction, Definitions, &amp; More</title><meta name=\"description\" content=\"The OpenAPI Specification (OAS) defines a standard, programming language-agnostic interface description for HTTP APIs.\">\n<meta name=\"color-scheme\" content=\"light dark\"><script src=\"../js/respec-w3c.js\" class=\"remove\"></script><script class=\"remove\">var respecConfig = {\"specStatus\":\"base\",\"latestVersion\":\"https://spec.openapis.org/oas/latest.html\",\"thisVersion\":\"https://spec.openapis.org/oas/v30.0.1.html\",\"canonicalURI\":\"https://spec.openapis.org/oas/v30.0.1.html\",\"editors\":[{\"name\":\"John Doe \"},{\"name\":\"Jane Doe \"}],\"formerEditors\":[{\"name\":\"Foo Bar \"}],\"publishDate\":\"3001-04-01T00:00:00.000Z\",\"subtitle\":\"Version 30.0.1\",\"edDraftURI\":\"https://github.com/OAI/OpenAPI-Specification/\",\"shortName\":\"OAS\",\"historyURI\":null,\"lint\":false,\"logos\":[{\"src\":\"https://raw.githubusercontent.com/OAI/OpenAPI-Style-Guide/master/graphics/bitmap/OpenAPI_Logo_Pantone.png\",\"alt\":\"OpenAPI Initiative\",\"height\":48,\"url\":\"https://openapis.org/\"}],\"otherLinks\":[{\"key\":\"Other versions:\",\"data\":[{\"href\":\"https://spec.openapis.org/oas/v31.0.0.html\"},{\"href\":\"https://spec.openapis.org/oas/v30.0.0.html\"}]},{\"key\":\"Participate\",\"data\":[{\"value\":\"GitHub OAI/OpenAPI-Specification\",\"href\":\"https://github.com/OAI/OpenAPI-Specification/\"},{\"value\":\"File a bug\",\"href\":\"https://github.com/OAI/OpenAPI-Specification/issues\"},{\"value\":\"Commit history\",\"href\":\"https://github.com/OAI/OpenAPI-Specification/commits/main/versions/30.0.1.md\"},{\"value\":\"Pull requests\",\"href\":\"https://github.com/OAI/OpenAPI-Specification/pulls\"}]}]};</script>\n</head>\n<body><style>#respec-ui {     visibility: hidden; }  #title {     color: #578000; }  #subtitle {     color: #578000; }  .dt-published {     color: #578000; }  .dt-published::before {     content: \"Published \"; }  h1, h2, h3, h4, h5, h6 {     color: #578000;     font-weight: normal;     font-style: normal; }  a[href] {     color: #45512c; }  body:not(.toc-inline) #toc h2 {     color: #45512c; }  table {     display: block;     width: 100%;     overflow: auto; }  table th {     font-weight: 600; }  table th, table td {     padding: 6px 13px;     border: 1px solid #dfe2e5; }  table tr {     background-color: #fff;     border-top: 1px solid #c6cbd1; }  table tr:nth-child(2n) {     background-color: #f6f8fa; }  pre {     background-color: #f6f8fa !important; }  code {     color: #c83500 }  th code {     color: inherit }  a.bibref {     text-decoration: underline; }  body.darkmode {     --toclink-underline: #6a9000;     --toclink-visited-underline: #fff; }  body.darkmode a, body.darkmode .tocxref, body.darkmode .u-url {     color: #6a9000; }  body.darkmode code {     color: #e66c33; }  body.darkmode:not(.toc-inline) #toc h2, body.darkmode h1, body.darkmode h2, body.darkmode h3, body.darkmode h4, body.darkmode h5, body.darkmode h6, body.darkmode #title, body.darkmode #subtitle, body.darkmode .toc-inline, body.darkmode .dt-published {     color: #7bb01c; }  body.darkmode pre, body.darkmode table tr:nth-child(2n), body.darkmode table tr {     background-color: #1e1e1e !important;     color: #dcdcdc; }  body.darkmode img {     background: transparent; }  body.darkmode .logo img {     display: none; }  body.darkmode .logo::before {     content: \"\";     display: inline-block;     height: 48px;     width: 175px;     background: url(\"https://raw.githubusercontent.com/OAI/OpenAPI-Style-Guide/refs/heads/main/graphics/bitmap/OpenAPI_Logo_Pantone.png\") no-repeat center / contain;     vertical-align: middle; }  /** This contains the content of the https://www.w3.org/StyleSheets/TR/2021/dark.css file */ body.darkmode {     --text: #ddd;     --bg: black;      /* Absolute URLs due to https://bugs.webkit.org/show_bug.cgi?id=230243 */     --unofficial-watermark: url(https://www.w3.org/StyleSheets/TR/2021/logos/UD-watermark-dark-unofficial);     --draft-watermark: url(https://www.w3.org/StyleSheets/TR/2021/logos/UD-watermark-dark-draft);      --logo-bg: #1a5e9a;     --logo-active-bg: #c00;     --logo-text: white;      --tocnav-normal-text: #999;     --tocnav-normal-bg: var(--bg);     --tocnav-hover-text: var(--tocnav-normal-text);     --tocnav-hover-bg: #080808;     --tocnav-active-text: #f44;     --tocnav-active-bg: var(--tocnav-normal-bg);      --tocsidebar-text: var(--text);     --tocsidebar-bg: #080808;     --tocsidebar-shadow: rgba(255,255,255,.1);     --tocsidebar-heading-text: hsla(203,20%,40%,.7);      --toclink-text: var(--text);     --toclink-underline: #6af;     --toclink-visited-text: var(--toclink-text);     --toclink-visited-underline: #054572;      --heading-text: #8af;      --hr-text: var(--text);      --algo-border: #456;      --del-text: #f44;     --del-bg: transparent;     --ins-text: #4a4;     --ins-bg: transparent;      --a-normal-text: #6af;     --a-normal-underline: #555;     --a-visited-text: var(--a-normal-text);     --a-visited-underline: var(--a-normal-underline);     --a-hover-bg: rgba(25%, 25%, 25%, .2);     --a-active-text: #f44;     --a-active-underline: var(--a-active-text);      --borderedblock-bg: rgba(255, 255, 255, .05);      --blockquote-border: silver;     --blockquote-bg: var(--borderedblock-bg);     --blockquote-text: currentcolor;      --issue-border: #e05252;     --issue-bg: var(--borderedblock-bg);     --issue-text: var(--text);     --issueheading-text: hsl(0deg, 70%, 70%);      --example-border: hsl(50deg, 90%, 60%);     --example-bg: var(--borderedblock-bg);     --example-text: var(--text);     --exampleheading-text: hsl(50deg, 70%, 70%);      --note-border: hsl(120deg, 100%, 35%);     --note-bg: var(--borderedblock-bg);     --note-text: var(--text);     --noteheading-text: hsl(120, 70%, 70%);     --notesummary-underline: silver;      --advisement-border: orange;     --advisement-bg: #222218;     --advisement-text: var(--text);     --advisementheading-text: #f84;      --amendment-border: #330099;     --amendment-bg: var(--borderedblock-bg);     --amendment-text: var(--text);     --amendmentheading-text: #a086ff;      --amendment-border: #330099;     --amendment-bg: #080010;     --amendment-text: var(--text);     --amendmentheading-text: #cc00ff;      --warning-border: red;     --warning-bg: hsla(40,100%,20%,0.95);     --warning-text: var(--text);      --def-border: #8ccbf2;     --def-bg: #080818;     --def-text: var(--text);     --defrow-border: #136;      --datacell-border: silver;      --indexinfo-text: #aaa;      --indextable-hover-text: var(--text);     --indextable-hover-bg: #181818;      --outdatedspec-bg: rgba(255, 255, 255, .5);     --outdatedspec-text: black;     --outdated-bg: maroon;     --outdated-text: white;     --outdated-shadow: red;      --editedrec-bg: darkorange; }/**  * GitHub Gist Theme  * Author : Louis Barranqueiro - https://github.com/LouisBarranqueiro  */  .hljs {   display: block;   background: white;   padding: 0.5em;   color: #333333;   overflow-x: auto; }  .hljs-comment, .hljs-meta {   color: #727070; }  .hljs-string, .hljs-variable, .hljs-template-variable, .hljs-strong, .hljs-emphasis, .hljs-quote {   color: #c74700; }  .hljs-number {   color: #005e5e; }  .hljs-keyword, .hljs-selector-tag, .hljs-type {   color: #a71d5d; }  .hljs-literal, .hljs-symbol, .hljs-bullet, .hljs-attribute {   color: #007aa2; }  .hljs-section, .hljs-name {   color: #4b7c46; }  .hljs-tag {   color: #333333; }  .hljs-title, .hljs-attr, .hljs-selector-id, .hljs-selector-class, .hljs-selector-attr, .hljs-selector-pseudo {   color: #795da3; }  .hljs-addition {   color: #55a532;   background-color: #eaffea; }  .hljs-deletion {   color: #bd2c00;   background-color: #ffecec; }  .hljs-link {   text-decoration: underline; } </style><h1 id=\"title\">OpenAPI Specification v30.0.1 </h1><p class=\"copyright\">Copyright © 3001 the Linux Foundation</p><section class=\"notoc\" id=\"abstract\"><h2>What is the OpenAPI Specification?</h2>The OpenAPI Specification (OAS) defines a standard, programming language-agnostic interface description for HTTP APIs, which allows both humans and computers to discover and understand the capabilities of a service without requiring access to source code, additional documentation, or inspection of network traffic. When properly defined via OpenAPI, a consumer can understand and interact with the remote service with a minimal amount of implementation logic. Similar to what interface descriptions have done for lower-level programming, the OpenAPI Specification removes guesswork in calling a service.</section><section class=\"override\" id=\"sotd\" data-max-toc=\"0\"><h2>Status of This Document</h2>The source-of-truth for this specification is the HTML file referenced above as <em>This version</em>.</section>\n<section><h1>Heading 1</h1>\n<p>Text for first chapter</p>\n<section class=\"override\" id=\"conformance\"><h2>Version 30.0.1</h2>\n<p>This is the conformance section</p>\n</section></section><section><h1>Heading 2</h1>\n<p>Text for <span id=\"first-anchor\"></span>first section</p>\n</section><section><h1><dfn>Definitions</dfn></h1>\n<section><h2><dfn>Foo</dfn></h2>\n<p>Definition of Foo.</p>\n</section></section><section><h1>Another Heading 2</h1>\n<p>Text for second section</p>\n<p><a href=\"https://learn.openapis.org/examples/foo.html\">Relative link to example</a></p>\n<p><a href=\"https://github.com/OAI/OpenAPI-Specification/tree/main/something/else\">Relative link to something else</a></p>\n<section><h2>Heading 3</h2>\n<p>Text for first subsection</p>\n<p>[[RFC3986]]</p>\n<p>[[RFC9110]] <a href=\"https://datatracker.ietf.org/doc/html/rfc9110#section-4\">Section 4</a></p>\n<pre class=\"nohighlight\" tabindex=\"0\"><code><span class=\"hljs-punctuation\">{</span>\n  <span class=\"hljs-attr\">&quot;foo&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-literal\"><span class=\"hljs-keyword\">true</span></span>\n<span class=\"hljs-punctuation\">}</span>\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code><span class=\"hljs-attr\">foo:</span> <span class=\"hljs-literal\">true</span>\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code>text/plain\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code>no language\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code>unknown language\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code>https://<span class=\"hljs-attr\">foo.com</span>/<span class=\"hljs-attr\">bar</span>?<span class=\"hljs-attr\">baz</span>=<span class=\"hljs-literal\">qux</span>&amp;<span class=\"hljs-attr\">fred</span>=<span class=\"hljs-literal\">waldo</span>#<span class=\"hljs-attr\">fragment</span>\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code>https://foo.com/bar{<span class=\"hljs-attr\">?baz*</span>,<span class=\"hljs-attr\">qux</span>}\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code><span class=\"hljs-meta\">--boundary-example</span>\n<span class=\"hljs-literal\">Content-Type:<span class=\"hljs-attr\"> application/openapi+yaml</span></span>\n<span class=\"hljs-literal\">Content-Location:<span class=\"hljs-attr\"> https://inaccessible-domain.com/api/openapi.yaml</span></span>\n\nopenapi: 3.2.0\ninfo:\n  title: Example API\n  version: 1.0\n  externalDocs:\n    url: docs.html\n\n<span class=\"hljs-meta\">--boundary-example</span>\n<span class=\"hljs-literal\">Content-Type:<span class=\"hljs-attr\"> text/html</span></span>\n<span class=\"hljs-literal\">Content-Location:<span class=\"hljs-attr\"> https://example.com/api/docs.html</span></span>\n\n&lt;html&gt;\n  &lt;head&gt;\n    &lt;title&gt;API Documentation&lt;/title&gt;\n  &lt;/head&gt;\n  &lt;body&gt;\n    &lt;p&gt;Awesome documentation goes here&lt;/p&gt;\n  &lt;/body&gt;\n&lt;/html&gt;\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code><span class=\"hljs-attr\">event</span>: addString\n<span class=\"hljs-attr\">data</span>: This data is formatted\n<span class=\"hljs-attr\">data</span>: across two lines\n<span class=\"hljs-attr\">retry</span>: 5\n<span class=\"hljs-attr\">\nevent</span>: addNumber\n<span class=\"hljs-attr\">data</span>: 1234.5678\n<span class=\"hljs-attr\">unknownField</span>: this is ignored\n<span class=\"hljs-attr\">\n</span><span class=\"hljs-comment\">: This is a comment</span>\n<span class=\"hljs-attr\">event</span>: addJSON\n<span class=\"hljs-attr\">data</span>: {&quot;foo&quot;: 42}\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code><span class=\"hljs-punctuation\">{</span><span class=\"hljs-attr\">&quot;event&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;addString&quot;</span><span class=\"hljs-punctuation\">,</span> <span class=\"hljs-attr\">&quot;data&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;This data is formatted\\nacross two lines&quot;</span><span class=\"hljs-punctuation\">,</span> <span class=\"hljs-attr\">&quot;retry&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-number\">5</span><span class=\"hljs-punctuation\">}</span>\n<span class=\"hljs-punctuation\">{</span><span class=\"hljs-attr\">&quot;event&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;addNumber&quot;</span><span class=\"hljs-punctuation\">,</span> <span class=\"hljs-attr\">&quot;data&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;1234.5678&quot;</span><span class=\"hljs-punctuation\">}</span>\n<span class=\"hljs-punctuation\">{</span><span class=\"hljs-attr\">&quot;event&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;addJSON&quot;</span><span class=\"hljs-punctuation\">,</span> <span class=\"hljs-attr\">&quot;data&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;{\\&quot;foo\\&quot;: 42}&quot;</span><span class=\"hljs-punctuation\">}</span>\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code><span class=\"hljs-punctuation\">{</span><span class=\"hljs-attr\">&quot;event&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;addString&quot;</span><span class=\"hljs-punctuation\">,</span> <span class=\"hljs-attr\">&quot;data&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;This data is formatted\\nacross two lines&quot;</span><span class=\"hljs-punctuation\">,</span> <span class=\"hljs-attr\">&quot;retry&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-number\">5</span><span class=\"hljs-punctuation\">}</span>\n<span class=\"hljs-punctuation\">{</span><span class=\"hljs-attr\">&quot;event&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;addNumber&quot;</span><span class=\"hljs-punctuation\">,</span> <span class=\"hljs-attr\">&quot;data&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;1234.5678&quot;</span><span class=\"hljs-punctuation\">}</span>\n<span class=\"hljs-punctuation\">{</span><span class=\"hljs-attr\">&quot;event&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;addJSON&quot;</span><span class=\"hljs-punctuation\">,</span> <span class=\"hljs-attr\">&quot;data&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;{\\&quot;foo\\&quot;: 42}&quot;</span><span class=\"hljs-punctuation\">}</span>\n</code></pre>\n<pre class=\"nohighlight\" tabindex=\"0\"><code><span class=\"hljs-meta\">0x1E</span><span class=\"hljs-punctuation\">{</span>\n  <span class=\"hljs-attr\">&quot;timestamp&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;1985-04-12T23:20:50.52Z&quot;</span><span class=\"hljs-punctuation\">,</span>\n  <span class=\"hljs-attr\">&quot;level&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-number\">1</span><span class=\"hljs-punctuation\">,</span>\n  <span class=\"hljs-attr\">&quot;message&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;Hi!&quot;</span>\n<span class=\"hljs-punctuation\">}</span>\n<span class=\"hljs-meta\">0x1E</span><span class=\"hljs-punctuation\">{</span>\n  <span class=\"hljs-attr\">&quot;timestamp&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;1985-04-12T23:20:51.37Z&quot;</span><span class=\"hljs-punctuation\">,</span>\n  <span class=\"hljs-attr\">&quot;level&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-number\">1</span><span class=\"hljs-punctuation\">,</span>\n  <span class=\"hljs-attr\">&quot;message&quot;</span><span class=\"hljs-punctuation\">:</span> <span class=\"hljs-string\">&quot;Bye!&quot;</span>\n<span class=\"hljs-punctuation\">}</span>\n</code></pre>\n</section></section><section class=\"appendix\"><h1>Appendix A: Revision History</h1>\n<table>\n<thead>\n<tr>\n<th>Version</th>\n<th>Date</th>\n</tr>\n</thead>\n<tbody>\n<tr>\n<td>30.0.1</td>\n<td>3001-04-01</td>\n</tr>\n</tbody>\n</table>\n\n"
  },
  {
    "path": "tests/md2html/fixtures/basic-new.maintainers",
    "content": "# Editors\n\n## Active\n* John Doe [@johndoe](https://github.com/johndoe)\n* Jane Doe [@janedow](https://github.com/janedoe)\n\n## Trainee\n* New Bee [@newbee](https://github.com/newbee)\n\n## Emeritus\n* Foo Bar [@foobar](https://github.com/foobar)\n"
  },
  {
    "path": "tests/md2html/fixtures/basic-new.md",
    "content": "# Heading 1\n\nText for first chapter\n\n## Version 30.0.1\n\nThis is the conformance section\n\n## Heading 2\n\nText for <a name=\"first-anchor\"></a>first section\n\n## Definitions\n\n### Foo\n\nDefinition of Foo.\n\n## Another Heading 2\n\nText for second section\n\n[Relative link to example](../examples/foo.yaml)\n\n[Relative link to something else](../something/else)\n\n### Heading 3\n\nText for first subsection\n\n[RFC3986](https://datatracker.ietf.org/doc/html/rfc3986)\n\n[RFC9110](https://www.rfc-editor.org/rfc/rfc9110.html#section-4)\n\n```json\n{\n  \"foo\": true\n}\n```\n\n```yaml\nfoo: true\n```\n\n```text\ntext/plain\n```\n\n```\nno language\n```\n\n```unknown\nunknown language\n```\n\n```uri\nhttps://foo.com/bar?baz=qux&fred=waldo#fragment\n```\n\n```uritemplate\nhttps://foo.com/bar{?baz*,qux}\n```\n\n```multipart\n--boundary-example\nContent-Type: application/openapi+yaml\nContent-Location: https://inaccessible-domain.com/api/openapi.yaml\n\nopenapi: 3.2.0\ninfo:\n  title: Example API\n  version: 1.0\n  externalDocs:\n    url: docs.html\n\n--boundary-example\nContent-Type: text/html\nContent-Location: https://example.com/api/docs.html\n\n<html>\n  <head>\n    <title>API Documentation</title>\n  </head>\n  <body>\n    <p>Awesome documentation goes here</p>\n  </body>\n</html>\n```\n\n```eventstream\nevent: addString\ndata: This data is formatted\ndata: across two lines\nretry: 5\n\nevent: addNumber\ndata: 1234.5678\nunknownField: this is ignored\n\n: This is a comment\nevent: addJSON\ndata: {\"foo\": 42}\n```\n\n```jsonl\n{\"event\": \"addString\", \"data\": \"This data is formatted\\nacross two lines\", \"retry\": 5}\n{\"event\": \"addNumber\", \"data\": \"1234.5678\"}\n{\"event\": \"addJSON\", \"data\": \"{\\\"foo\\\": 42}\"}\n```\n\n```ndjson\n{\"event\": \"addString\", \"data\": \"This data is formatted\\nacross two lines\", \"retry\": 5}\n{\"event\": \"addNumber\", \"data\": \"1234.5678\"}\n{\"event\": \"addJSON\", \"data\": \"{\\\"foo\\\": 42}\"}\n```\n\n```jsonseq\n0x1E{\n  \"timestamp\": \"1985-04-12T23:20:50.52Z\",\n  \"level\": 1,\n  \"message\": \"Hi!\"\n}\n0x1E{\n  \"timestamp\": \"1985-04-12T23:20:51.37Z\",\n  \"level\": 1,\n  \"message\": \"Bye!\"\n}\n```\n\n## Appendix A: Revision History\n\nVersion | Date\n--------|-----------\n30.0.1  | 3001-04-01\n"
  },
  {
    "path": "tests/md2html/fixtures/basic-old.html",
    "content": "<!DOCTYPE html><html lang=\"en\"><head>\n<!-- Global site tag (gtag.js) - Google Analytics -->\n<script async src=\"https://www.googletagmanager.com/gtag/js?id=UA-831873-42\"></script>\n<script>\n window.dataLayer = window.dataLayer || [];\n function gtag(){dataLayer.push(arguments);}\n gtag('js', new Date());\n gtag('config', 'UA-831873-42');\n</script>\n<meta charset=\"UTF-8\">\n<title>OpenAPI Specification v30.0.1 | Introduction, Definitions, &amp; More</title><meta name=\"description\" content=\"The OpenAPI Specification (OAS) defines a standard, programming language-agnostic interface description for HTTP APIs.\">\n<meta name=\"color-scheme\" content=\"light dark\"><script src=\"../js/respec-w3c.js\" class=\"remove\"></script><script class=\"remove\">var respecConfig = {\"specStatus\":\"base\",\"latestVersion\":\"https://spec.openapis.org/oas/latest.html\",\"thisVersion\":\"https://spec.openapis.org/oas/v30.0.1.html\",\"canonicalURI\":\"https://spec.openapis.org/oas/v30.0.1.html\",\"editors\":[{\"name\":\"Foo Bar \"}],\"formerEditors\":[],\"publishDate\":\"3001-04-01T00:00:00.000Z\",\"subtitle\":\"Version 30.0.1\",\"edDraftURI\":\"https://github.com/OAI/OpenAPI-Specification/\",\"shortName\":\"OAS\",\"historyURI\":null,\"lint\":false,\"logos\":[{\"src\":\"https://raw.githubusercontent.com/OAI/OpenAPI-Style-Guide/master/graphics/bitmap/OpenAPI_Logo_Pantone.png\",\"alt\":\"OpenAPI Initiative\",\"height\":48,\"url\":\"https://openapis.org/\"}],\"otherLinks\":[{\"key\":\"Other versions:\",\"data\":[{\"href\":\"https://spec.openapis.org/oas/v31.0.0.html\"},{\"href\":\"https://spec.openapis.org/oas/v30.0.0.html\"}]},{\"key\":\"Participate\",\"data\":[{\"value\":\"GitHub OAI/OpenAPI-Specification\",\"href\":\"https://github.com/OAI/OpenAPI-Specification/\"},{\"value\":\"File a bug\",\"href\":\"https://github.com/OAI/OpenAPI-Specification/issues\"},{\"value\":\"Commit history\",\"href\":\"https://github.com/OAI/OpenAPI-Specification/commits/main/versions/30.0.1.md\"},{\"value\":\"Pull requests\",\"href\":\"https://github.com/OAI/OpenAPI-Specification/pulls\"}]}]};</script>\n</head>\n<body><style>#respec-ui {     visibility: hidden; }  #title {     color: #578000; }  #subtitle {     color: #578000; }  .dt-published {     color: #578000; }  .dt-published::before {     content: \"Published \"; }  h1, h2, h3, h4, h5, h6 {     color: #578000;     font-weight: normal;     font-style: normal; }  a[href] {     color: #45512c; }  body:not(.toc-inline) #toc h2 {     color: #45512c; }  table {     display: block;     width: 100%;     overflow: auto; }  table th {     font-weight: 600; }  table th, table td {     padding: 6px 13px;     border: 1px solid #dfe2e5; }  table tr {     background-color: #fff;     border-top: 1px solid #c6cbd1; }  table tr:nth-child(2n) {     background-color: #f6f8fa; }  pre {     background-color: #f6f8fa !important; }  code {     color: #c83500 }  th code {     color: inherit }  a.bibref {     text-decoration: underline; }  body.darkmode {     --toclink-underline: #6a9000;     --toclink-visited-underline: #fff; }  body.darkmode a, body.darkmode .tocxref, body.darkmode .u-url {     color: #6a9000; }  body.darkmode code {     color: #e66c33; }  body.darkmode:not(.toc-inline) #toc h2, body.darkmode h1, body.darkmode h2, body.darkmode h3, body.darkmode h4, body.darkmode h5, body.darkmode h6, body.darkmode #title, body.darkmode #subtitle, body.darkmode .toc-inline, body.darkmode .dt-published {     color: #7bb01c; }  body.darkmode pre, body.darkmode table tr:nth-child(2n), body.darkmode table tr {     background-color: #1e1e1e !important;     color: #dcdcdc; }  body.darkmode img {     background: transparent; }  body.darkmode .logo img {     display: none; }  body.darkmode .logo::before {     content: \"\";     display: inline-block;     height: 48px;     width: 175px;     background: url(\"https://raw.githubusercontent.com/OAI/OpenAPI-Style-Guide/refs/heads/main/graphics/bitmap/OpenAPI_Logo_Pantone.png\") no-repeat center / contain;     vertical-align: middle; }  /** This contains the content of the https://www.w3.org/StyleSheets/TR/2021/dark.css file */ body.darkmode {     --text: #ddd;     --bg: black;      /* Absolute URLs due to https://bugs.webkit.org/show_bug.cgi?id=230243 */     --unofficial-watermark: url(https://www.w3.org/StyleSheets/TR/2021/logos/UD-watermark-dark-unofficial);     --draft-watermark: url(https://www.w3.org/StyleSheets/TR/2021/logos/UD-watermark-dark-draft);      --logo-bg: #1a5e9a;     --logo-active-bg: #c00;     --logo-text: white;      --tocnav-normal-text: #999;     --tocnav-normal-bg: var(--bg);     --tocnav-hover-text: var(--tocnav-normal-text);     --tocnav-hover-bg: #080808;     --tocnav-active-text: #f44;     --tocnav-active-bg: var(--tocnav-normal-bg);      --tocsidebar-text: var(--text);     --tocsidebar-bg: #080808;     --tocsidebar-shadow: rgba(255,255,255,.1);     --tocsidebar-heading-text: hsla(203,20%,40%,.7);      --toclink-text: var(--text);     --toclink-underline: #6af;     --toclink-visited-text: var(--toclink-text);     --toclink-visited-underline: #054572;      --heading-text: #8af;      --hr-text: var(--text);      --algo-border: #456;      --del-text: #f44;     --del-bg: transparent;     --ins-text: #4a4;     --ins-bg: transparent;      --a-normal-text: #6af;     --a-normal-underline: #555;     --a-visited-text: var(--a-normal-text);     --a-visited-underline: var(--a-normal-underline);     --a-hover-bg: rgba(25%, 25%, 25%, .2);     --a-active-text: #f44;     --a-active-underline: var(--a-active-text);      --borderedblock-bg: rgba(255, 255, 255, .05);      --blockquote-border: silver;     --blockquote-bg: var(--borderedblock-bg);     --blockquote-text: currentcolor;      --issue-border: #e05252;     --issue-bg: var(--borderedblock-bg);     --issue-text: var(--text);     --issueheading-text: hsl(0deg, 70%, 70%);      --example-border: hsl(50deg, 90%, 60%);     --example-bg: var(--borderedblock-bg);     --example-text: var(--text);     --exampleheading-text: hsl(50deg, 70%, 70%);      --note-border: hsl(120deg, 100%, 35%);     --note-bg: var(--borderedblock-bg);     --note-text: var(--text);     --noteheading-text: hsl(120, 70%, 70%);     --notesummary-underline: silver;      --advisement-border: orange;     --advisement-bg: #222218;     --advisement-text: var(--text);     --advisementheading-text: #f84;      --amendment-border: #330099;     --amendment-bg: var(--borderedblock-bg);     --amendment-text: var(--text);     --amendmentheading-text: #a086ff;      --amendment-border: #330099;     --amendment-bg: #080010;     --amendment-text: var(--text);     --amendmentheading-text: #cc00ff;      --warning-border: red;     --warning-bg: hsla(40,100%,20%,0.95);     --warning-text: var(--text);      --def-border: #8ccbf2;     --def-bg: #080818;     --def-text: var(--text);     --defrow-border: #136;      --datacell-border: silver;      --indexinfo-text: #aaa;      --indextable-hover-text: var(--text);     --indextable-hover-bg: #181818;      --outdatedspec-bg: rgba(255, 255, 255, .5);     --outdatedspec-text: black;     --outdated-bg: maroon;     --outdated-text: white;     --outdated-shadow: red;      --editedrec-bg: darkorange; }/**  * GitHub Gist Theme  * Author : Louis Barranqueiro - https://github.com/LouisBarranqueiro  */  .hljs {   display: block;   background: white;   padding: 0.5em;   color: #333333;   overflow-x: auto; }  .hljs-comment, .hljs-meta {   color: #727070; }  .hljs-string, .hljs-variable, .hljs-template-variable, .hljs-strong, .hljs-emphasis, .hljs-quote {   color: #c74700; }  .hljs-number {   color: #005e5e; }  .hljs-keyword, .hljs-selector-tag, .hljs-type {   color: #a71d5d; }  .hljs-literal, .hljs-symbol, .hljs-bullet, .hljs-attribute {   color: #007aa2; }  .hljs-section, .hljs-name {   color: #4b7c46; }  .hljs-tag {   color: #333333; }  .hljs-title, .hljs-attr, .hljs-selector-id, .hljs-selector-class, .hljs-selector-attr, .hljs-selector-pseudo {   color: #795da3; }  .hljs-addition {   color: #55a532;   background-color: #eaffea; }  .hljs-deletion {   color: #bd2c00;   background-color: #ffecec; }  .hljs-link {   text-decoration: underline; } </style><h1 id=\"title\">OpenAPI Specification v30.0.1 </h1><p class=\"copyright\">Copyright © 3001 the Linux Foundation</p><section class=\"notoc\" id=\"abstract\"><h2>What is the OpenAPI Specification?</h2>The OpenAPI Specification (OAS) defines a standard, programming language-agnostic interface description for HTTP APIs, which allows both humans and computers to discover and understand the capabilities of a service without requiring access to source code, additional documentation, or inspection of network traffic. When properly defined via OpenAPI, a consumer can understand and interact with the remote service with a minimal amount of implementation logic. Similar to what interface descriptions have done for lower-level programming, the OpenAPI Specification removes guesswork in calling a service.</section><section class=\"override\" id=\"sotd\" data-max-toc=\"0\"><h2>Status of This Document</h2>The source-of-truth for this specification is the HTML file referenced above as <em>This version</em>.</section>\n<section><h1>Heading 1</h1>\n<p>Text for first chapter</p>\n<section class=\"override\" id=\"conformance\"><h2>Version 30.0.1</h2>\n<p>This is the conformance section</p>\n</section></section><section><h1>Heading 2</h1>\n<p>Text for first section</p>\n<p><span id=\"parameterAllowEmptyValue\"></span>Broken anchor</p>\n<section><h2>Heading 3</h2>\n<p>Text for first subsection</p>\n<table>\n<thead>\n<tr>\n<th>Version</th>\n<th>Date</th>\n</tr>\n</thead>\n<tbody>\n<tr>\n<td>30.0.1</td>\n<td>3001-04-01</td>\n</tr>\n</tbody>\n</table>\n\n"
  },
  {
    "path": "tests/md2html/fixtures/basic-old.maintainers",
    "content": "## Active\n* Foo Bar [@foobar](https://github.com/foobar)\n"
  },
  {
    "path": "tests/md2html/fixtures/basic-old.md",
    "content": "# Heading 1\n\nText for first chapter\n\n#### Version 30.0.1\n\nThis is the conformance section\n\n## Table of Contents\n\nWill be removed\n\n## Heading 2\n\nText for first section\n\n<a name=\"parameterAllowEmptyValue\"/>Broken anchor\n\n### Heading 3\n\nText for first subsection\n\n\nVersion | Date\n--------|-----------\n30.0.1  | 3001-04-01\n"
  },
  {
    "path": "tests/md2html/md2html.test.mjs",
    "content": "import { readdirSync, readFileSync } from \"node:fs\";\nimport { execFile } from \"node:child_process\";\nimport { resolve } from \"node:path\";\nimport { describe, test, expect } from \"vitest\";\nimport assert from \"node:assert\";\n\nconst folder = \"./tests/md2html/fixtures/\";\ndescribe(\"md2html\", async () => {\n  readdirSync(folder, { withFileTypes: true })\n    .filter((entry) => entry.isFile() && /\\.md$/.test(entry.name))\n    .forEach((entry) => {\n      test(entry.name, async () => {\n        const expected = readFileSync(\n          folder + entry.name.replace(\".md\", \".html\"),\n          \"utf8\",\n        ); \n        const output = await md2html(\n          [\n            \"--maintainers\",\n            entry.name.replace(\".md\", \".maintainers\"),\n            entry.name,\n            \"path/31.0.0.md\\npath/30.0.1.md\\npath/30.0.0.md\",\n          ],\n          folder,\n        );\n        expect(output.stdout).to.equal(expected);\n      });\n    });\n});\n\nfunction md2html(args, cwd) {\n  return new Promise((res) => {\n    execFile(\n      \"node\",\n      [`${resolve(\"./scripts/md2html/md2html.js\")}`, ...args],\n      { cwd },\n      (error, stdout, stderr) => {\n        res({\n          code: error?.code || 0,\n          error,\n          stdout,\n          stderr,\n        });\n      },\n    );\n  });\n}\n"
  },
  {
    "path": "tests/schema/oas-schema.mjs",
    "content": "import { registerSchema } from \"@hyperjump/json-schema/draft-2020-12\";\nimport { defineVocabulary } from \"@hyperjump/json-schema/experimental\";\nimport { readFile } from \"node:fs/promises\";\nimport YAML from \"yaml\";\n\nconst parseYamlFromFile = async (filePath) => {\n  const schemaYaml = await readFile(filePath, \"utf8\");\n  return YAML.parse(schemaYaml, { prettyErrors: true });\n};\n\nexport default async () => {\n  try {\n    const dialect = await parseYamlFromFile(\"./src/schemas/validation/dialect.yaml\");\n    const meta = await parseYamlFromFile(\"./src/schemas/validation/meta.yaml\");\n    const oasBaseVocab = Object.keys(meta.$vocabulary)[0];\n\n    defineVocabulary(oasBaseVocab, {\n        \"discriminator\": \"https://spec.openapis.org/oas/3.0/keyword/discriminator\",\n        \"example\": \"https://spec.openapis.org/oas/3.0/keyword/example\",\n        \"externalDocs\": \"https://spec.openapis.org/oas/3.0/keyword/externalDocs\",\n        \"xml\": \"https://spec.openapis.org/oas/3.0/keyword/xml\"\n    });\n\n    registerSchema(meta);\n    registerSchema(dialect);\n  } catch (error) {}\n};\n"
  },
  {
    "path": "versions/1.2.md",
    "content": "# Swagger RESTful API Documentation Specification\n\n#### Version 1.2\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [RFC 2119](http://www.ietf.org/rfc/rfc2119.txt).\n\nThe Swagger specification is licensed under [The Apache License, Version 2.0](http://www.apache.org/licenses/LICENSE-2.0.html).\n\n## 1. Introduction\n\nSwagger™  is a project used to describe and document RESTful APIs.\n\nThe Swagger specification defines a set of files required to describe such an API. These files can then be used by the Swagger-UI project to display the API and Swagger-Codegen to generate clients in various languages. Additional utilities can also take advantage of the resulting files, such as testing tools.\n\n## 2. Revision History\n\nVersion | Date | Notes\n--- | --- | ---\n1.2 | 2014-03-14 | Initial release of the formal document.\n1.1 | 2012-08-22 | Release of Swagger 1.1\n1.0 | 2011-08-10 | First release of the Swagger Specification\n\n## 3. Definitions\n\n- <a name=\"definitionResource\"/>Resource: A `resource` in Swagger is an entity that has a set of exposed operations. The entity can represent an actual object (pets, users..) or a set of logical operations collated together. It is up to the specification user to decide whether sub-resources should be referred to as part of their main resource or as a resource of their own.\nFor example, assume the following URL set:\n    ```\n  - /users      - GET\n                  POST\n  - /users/{id} - GET\n                  PATCH\n                  DELETE\n    ```\nIn this case, there's either one \"/users\" resource that contains operations on the \"/users/{id}\" sub-resource, or two separate resources.\n\n- URL: A fully qualified URL.\n\n## 4. Specification\n\n### 4.1 Format\n\nThe files describing the RESTful API in accordance with the Swagger specification are represented as JSON objects and conform to the JSON standards.\n\nFor example, if a field is said to have an array value, the JSON array representation will be used:\n\n```js\n{\n   \"field\" : [...]\n}\n```\n\nPlease note that while the API is described using JSON, the input and/or output can be in XML, YAML, plain text, or whichever format you chose to use with your API.\n\nUnless noted otherwise, all field names in the specification are **case sensitive**.\n\n### 4.2 File Structure\n\nThe Swagger representation of the API is comprised of two file types:\n\n1. [**The Resource Listing**](#51-resource-listing) - This is the root document that contains general API information and lists the resources. Each resource has its own URL that defines the API operations on it.\n\n1. [**The API Declaration**](#52-api-declaration) - This document describes a resource, including its API calls and models. There is one file per resource.\n\n\n### 4.3 Data Types\n\nIn the Swagger specification, the data types are used in several locations - [Operations](#523-operation-object), [Operation Parameters](#524-parameter-object), [Models](#527-model-object), and within the data types themselves (arrays).\n\nThe fields used to describe a given data type are added flatly to the relevant object. For example, if an object Foo has the field `name`, and is also a data type, then it MUST also include the field `type` (or its variance, as explained ahead). In this example, Foo would look like:\n```js\n\"Foo\" : {\n   \"name\" : \"sample\",\n   \"type\" : \"string\",\n   ...\n}\n```\n\nThis section describes the general fields that are available to describe such data types. Some data types allow additional fields to extend further limitations on the data type *value* (see [4.3.3 Data Type Fields](#433-data-type-fields) for further details).\n\nSpecial care should be taken when referencing a model (or a complex type). There are currently two variations, and the proper variation should be documented everywhere the model may be used. This behavior will be unified in future versions of the spec.\n\nThe Swagger specification supports five data types:\n\n1. [`primitive`](#431-primitives) (input/output)\n1. containers (as arrays/sets) (input/output)\n1. [complex](#527-model-object) (as `models`) (input/output)\n1. [`void`](#432-void) (output)\n1. [`File`](#434-file) (input)\n\n#### 4.3.1 Primitives\n\nDifferent programming languages represent primitives differently. The Swagger specification supports by name only the primitive types supported by the [JSON-Schema Draft 4](http://json-schema.org/latest/json-schema-core.html#anchor8). However, in order to allow fine tuning a primitive definition, an additional [`format`](#dataTypeFormat) field MAY accompany the [`type`](#dataTypeType) primitive to give more information about the type used. If the [`format`](#dataTypeFormat) field is used, the respective client MUST conform to the elaborate type.\n\nCommon Name | [`type`](#dataTypeType) | [`format`](#dataTypeFormat) | Comments\n----------- | ------ | -------- | --------\ninteger | `integer` | `int32` | signed 32 bits\nlong | `integer` | `int64` | signed 64 bits\nfloat | `number` | `float` |\ndouble | `number` | `double` |\nstring | `string` | |\nbyte | `string` | `byte` |\nboolean | `boolean` | |\ndate | `string` | `date` |\ndateTime | `string` | `date-time` |\n\n#### 4.3.2 `void`\n\nThis value type is used to indicate that an [operation](#523-operation-object) returns no value. As such it MAY be used only for the return type of operations.\n\n#### 4.3.3 Data Type Fields\n\nAs explained above, when an object is said to include a data type, there are a set of fields it may include (some are required and some are optional).\n\nSpecial care should be taken when referencing a model (or a complex type). There currently two variations, and the proper variation should be documented everywhere it may be used. This behavior will be unified in future versions of the spec.\n\nThe table below shows the available fields to describe a data type. The `Validity` column may impose additional restrictions as to which data type is required in order to include this field. For example, [`enum`](#dataTypeEnum) may only be included if the [`type`](#dataTypeType) field is set to `string`.\n\nField Name | Type | Validity |Description\n---|:---:|---|---\n<a name=\"dataTypeType\"/>type | `string` | Any |**Required (if [`$ref`](#dataTypeRef) is not used).** The return type of the operation. The value MUST be one of the [Primitives](#431-primitives), `array` or a model's [`id`](#modelId).\n<a name=\"dataTypeRef\"/>$ref | `string` | Any | **Required (if [`type`](#dataTypeType) is not used).** The [Model](#527-model-object) to be used. The value MUST be a model's [`id`](#modelId).\n<a name=\"dataTypeFormat\"/>format | `string` | primitive | Fine-tuned primitive type definition. See [Primitives](#431-primitives) for further information. The value MUST be one that is defined under [Primitives](#431-primitives), corresponding to the right primitive [`type`](#dataTypeType).\n<a name=\"dataTypeDefaultValue\"/>defaultValue | *special* | primitive | The default value to be used for the field. The value type MUST conform with the primitive's [`type`](#dataTypeType) value.\n<a name=\"dataTypeEnum\"/>enum | [`string`] | `string` | A fixed list of possible values. If this field is used in conjunction with the [`defaultValue`](#dataTypeDefaultValue) field, then the default value MUST be one of the values defined in the `enum`.\n<a name=\"dataTypeMinimum\"/>minimum | `string` | `number`, `integer` | The minimum valid value for the type, inclusive. If this field is used in conjunction with the [`defaultValue`](#dataTypeDefaultValue) field, then the default value MUST be higher than or equal to this value. The value type is `string` and should represent the minimum numeric value. **Note**: This will change to a numeric value in the future.\n<a name=\"dataTypeMaximum\"/>maximum | `string` | `number`, `integer` | The maximum valid value for the type, inclusive. If this field is used in conjunction with the [`defaultValue`](#dataTypeDefaultValue) field, then the default value MUST be lower than or equal to this value. The value type is `string` and should represent the maximum numeric value. **Note**: This will change to a numeric value in the future.\n<a name=\"dataTypeItems\"/>items | [Items Object](#434-items-object) | `array` | **Required.** The type definition of the values in the container. A container MUST NOT be nested in another container.\n<a name=\"dataTypeUniqueItems\"/>uniqueItems | `boolean` | `array` | A flag to note whether the container allows duplicate values or not. If the value is set to `true`, then the `array` acts as a set.\n\n#### 4.3.4 Items Object\n\nThis object is used to describe the value types used inside an array. Of the [Data Type Fields](#433-data-type-fields), it can include either the [`type`](#dataTypeType) and [`format`](#dataTypeFormat) fields *OR* the [`$ref`](#dataTypeRef) field (when referencing a model). The rest of the listed Data Type fields are not applicable.\n\nIf the [`type`](#dataTypeType) field is included it MUST NOT have the value `array`. There's currently no support for containers within containers.\n\n##### 4.3.4.1 Object Examples\n\nFor a primitive type:\n```js\n{\n  \"type\": \"string\"\n}\n```\n\nFor a complex type (model):\n\n```js\n{\n  \"$ref\": \"Pet\"\n}\n```\n\n#### 4.3.5 `File`\n\nThe `File` (case sensitive) is a special type used to denote file upload. Note that declaring a model with the name `File` may lead to various conflicts with third party tools and SHOULD be avoided.\n\nWhen using `File`, the [`consumes`](#operationConsumes) field MUST be `\"multipart/form-data\"`, and the [`paramType`](#parameterParamType) MUST be `\"form\"`.\n\n## 5. Schema\n\n### 5.1 Resource Listing\n\nThe Resource Listing serves as the root document for the API description. It contains general information about the API and an inventory of the available resources.\n\nBy default, this document SHOULD be served at the `/api-docs` path.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"rlSwaggerVersion\"/>swaggerVersion | `string` | **Required.** Specifies the Swagger Specification version being used. It can be used by the Swagger UI and other clients to interpret the API listing. The value MUST be an existing Swagger specification version. <br>Currently, `\"1.0\"`, `\"1.1\"`, `\"1.2\"` are valid values. The field is a `string` type for possible non-numeric versions in the future (for example, \"1.2a\").\n<a name=\"rlApis\"/>apis | [ [Resource Object](#512-resource-object) ] | **Required.** Lists the resources to be described by this specification implementation. The array can have 0 or more elements.\n<a name=\"rlApiVersion\"/>apiVersion| `string` | Provides the version of the application API (not to be confused by the [specification version](#rlSwaggerVersion)).\n<a name=\"rlInfo\"/>info | [Info Object](#513-info-object) | Provides metadata about the API. The metadata can be used by the clients if needed, and can be presented in the Swagger-UI for convenience.\n<a name=\"rlAuthorizations\"/>authorizations | [Authorizations Object](#514-authorizations-object) | Provides information about the authorization schemes allowed on this API.\n\n#### 5.1.1 Object Example\n\n```js\n{\n  \"apiVersion\": \"1.0.0\",\n  \"swaggerVersion\": \"1.2\",\n  \"apis\": [\n    {\n      \"path\": \"/pet\",\n      \"description\": \"Operations about pets\"\n    },\n    {\n      \"path\": \"/user\",\n      \"description\": \"Operations about user\"\n    },\n    {\n      \"path\": \"/store\",\n      \"description\": \"Operations about store\"\n    }\n  ],\n  \"authorizations\": {\n    \"oauth2\": {\n      \"type\": \"oauth2\",\n      \"scopes\": [\n        {\n          \"scope\": \"email\",\n          \"description\": \"Access to your email address\"\n        },\n        {\n          \"scope\": \"pets\",\n          \"description\": \"Access to your pets\"\n        }\n      ],\n      \"grantTypes\": {\n        \"implicit\": {\n          \"loginEndpoint\": {\n            \"url\": \"http://petstore.swagger.wordnik.com/oauth/dialog\"\n          },\n          \"tokenName\": \"access_token\"\n        },\n        \"authorization_code\": {\n          \"tokenRequestEndpoint\": {\n            \"url\": \"http://petstore.swagger.wordnik.com/oauth/requestToken\",\n            \"clientIdName\": \"client_id\",\n            \"clientSecretName\": \"client_secret\"\n          },\n          \"tokenEndpoint\": {\n            \"url\": \"http://petstore.swagger.wordnik.com/oauth/token\",\n            \"tokenName\": \"access_code\"\n          }\n        }\n      }\n    }\n  },\n  \"info\": {\n    \"title\": \"Swagger Sample App\",\n    \"description\": \"This is a sample server Petstore server.  You can find out more about Swagger \\n    at <a href=\\\"http://swagger.wordnik.com\\\">http://swagger.wordnik.com</a> or on irc.freenode.net, #swagger.  For this sample,\\n    you can use the api key \\\"special-key\\\" to test the authorization filters\",\n    \"termsOfServiceUrl\": \"http://swagger.io/terms/\",\n    \"contact\": \"apiteam@wordnik.com\",\n    \"license\": \"Apache 2.0\",\n    \"licenseUrl\": \"http://www.apache.org/licenses/LICENSE-2.0.html\"\n  }\n}\n```\n\n#### 5.1.2 Resource Object\nThe Resource object describes a [resource](#definitionResource) API endpoint in the application.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"aePath\"/>path | `string` | **Required.** A relative path to the [API declaration](#52-api-declaration) from the path used to retrieve this Resource Listing. This `path` does not necessarily have to correspond to the URL which actually serves this resource in the API but rather where the resource listing itself is served. The value SHOULD be in a relative (URL) path format.\n<a name=\"aeDescription\"/>description | `string` | *Recommended.* A short description of the resource.\n\n##### 5.1.2.1 Object Example:\n\n```js\n{\n    \"path\": \"/pets\",\n    \"description\": \"Operations about pets.\"\n}\n```\n\n#### 5.1.3 Info Object\nThe object provides metadata about the API. The metadata can be used by the clients if needed, and can be presented in the Swagger-UI for convenience.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"infoTitle\"/>title | `string` | **Required.** The title of the application.\n<a name=\"infoDescription\"/>description | `string` | **Required.** A short description of the application.\n<a name=\"infoTermsOfServiceUrl\"/>termsOfServiceUrl | `string` | A URL to the Terms of Service of the API.\n<a name=\"infoContact\"/>contact | `string` | An email to be used for API-related correspondence.\n<a name=\"infoLicense\"/>license | `string` | The license name used for the API.\n<a name=\"infoLicenseUrl\"/>licenseUrl | `string` | A URL to the license used for the API.\n\n##### 5.1.3.1 Object Example:\n\n```js\n{\n  \"title\": \"Swagger Sample App\",\n  \"description\": \"This is a sample server Petstore server.\",\n  \"termsOfServiceUrl\": \"http://swagger.io/terms/\",\n  \"contact\": \"apiteam@wordnik.com\",\n  \"license\": \"Apache 2.0\",\n  \"licenseUrl\": \"http://www.apache.org/licenses/LICENSE-2.0.html\"\n}\n```\n\n#### 5.1.4 Authorizations Object\nThe object provides information about the authorization schemes provided on this API.\nCurrently, Swagger supports three authorization schemes - basic authentication, API key and OAuth2.\nThe Authorizations Object is used only to *declare* the available authorization schemes but not say which are required where.\nThe actual authorization restrictions are done at the [API declaration](#52-api-declaration) level.\n\nPlease note that the Authorizations Object is an object containing other object definitions and as such is structured as follows:\n```js\n{\n   \"Authorization1\" : {...},\n   \"Authorization2\" : {...},\n   ...,\n   \"AuthorizationN\" : {...}\n}\n```\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"authorizationsAuthorizationName\"/>{Authorization Name} | [Authorization Object](#515-authorization-object) | A new authorization definition. The name given to the {Authorization Name} is a friendly name that should be used when referring to the authorization scheme. In many cases, the {Authorization Name} used is the same as its type, but it can be anything.\n\n##### 5.1.4.1 Object Example:\n```js\n{\n  \"oauth2\": {\n    \"type\": \"oauth2\",\n    \"scopes\": [\n      {\n        \"scope\": \"email\",\n        \"description\": \"Access to your email address\"\n      },\n      {\n        \"scope\": \"pets\",\n        \"description\": \"Access to your pets\"\n      }\n    ],\n    \"grantTypes\": {\n      \"implicit\": {\n        \"loginEndpoint\": {\n          \"url\": \"http://petstore.swagger.wordnik.com/oauth/dialog\"\n        },\n        \"tokenName\": \"access_token\"\n      },\n      \"authorization_code\": {\n        \"tokenRequestEndpoint\": {\n          \"url\": \"http://petstore.swagger.wordnik.com/oauth/requestToken\",\n          \"clientIdName\": \"client_id\",\n          \"clientSecretName\": \"client_secret\"\n        },\n        \"tokenEndpoint\": {\n          \"url\": \"http://petstore.swagger.wordnik.com/oauth/token\",\n          \"tokenName\": \"access_code\"\n        }\n      }\n    }\n  }\n}\n```\n\n#### 5.1.5 Authorization Object\nThe object provides information about a specific authorization scheme. Currently, the authorization schemes supported are basic authentication, API key and OAuth2.\n\nWithin OAuth2, the Authorization Code Grant and Implicit Grant are supported.\n\nIn the table below, the `Validity` column imposes additional limitations to the requirement of the [`type`](#authorizationType) in order to be able to use that field.\n\nField Name | Type | Validity | Description\n---|:---:|---|---\n<a name=\"authorizationType\"/>type | `string` | Any | **Required.** The type of the authorization scheme. Values MUST be either `\"basicAuth\"`, `\"apiKey\"` or `\"oauth2\"`.\n<a name=\"authorizationPassAs\"/>passAs | `string` | `apiKey` | **Required.** Denotes how the API key must be passed. Valid values are `\"header\"` or `\"query\"`.\n<a name=\"authorizationKeyname\"/>keyname | `string` | `apiKey` | **Required.** The name of the `header` or `query` parameter to be used when passing the API key.\n<a name=\"authorizationScopes\"/>scopes | [[Scope Object](#516-scope-object)] | `oauth2` | A list of supported OAuth2 scopes.\n<a name=\"authorizationGrantTypes\"/>grantTypes | [Grant Types Object](#517-grant-types-object) | `oauth2` | **Required.** Detailed information about the grant types supported by the OAuth2 authorization scheme.\n\n##### 5.1.5.1 Object Example:\n```js\n  \"oauth2\": {\n    \"type\": \"oauth2\",\n    \"scopes\": [\n      {\n        \"scope\": \"email\",\n        \"description\": \"Access to your email address\"\n      },\n      {\n        \"scope\": \"pets\",\n        \"description\": \"Access to your pets\"\n      }\n    ],\n    \"grantTypes\": {\n      \"implicit\": {\n        \"loginEndpoint\": {\n          \"url\": \"http://petstore.swagger.wordnik.com/oauth/dialog\"\n        },\n        \"tokenName\": \"access_token\"\n      },\n      \"authorization_code\": {\n        \"tokenRequestEndpoint\": {\n          \"url\": \"http://petstore.swagger.wordnik.com/oauth/requestToken\",\n          \"clientIdName\": \"client_id\",\n          \"clientSecretName\": \"client_secret\"\n        },\n        \"tokenEndpoint\": {\n          \"url\": \"http://petstore.swagger.wordnik.com/oauth/token\",\n          \"tokenName\": \"access_code\"\n        }\n      }\n    }\n  }\n```\n\n#### 5.1.6 Scope Object\nDescribes an OAuth2 authorization scope.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"scopeScope\"/>scope | `string` | **Required.** The name of the scope.\n<a name=\"scope\"/>description | `string` | *Recommended.* A short description of the scope.\n\n##### 5.1.6.1 Object Example:\n```js\n{\n  \"scope\": \"email\",\n  \"description\": \"Access to your email address\"\n}\n```\n\n#### 5.1.7 Grant Types Object\nProvides details regarding the OAuth2 grant types that are supported by the API. Currently, the Authorization Code and Implicit grants are supported.\n\nAt least one of the grant types MUST be included (otherwise there's no need for the OAuth2 declaration).\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"grantTypesImplicit\"/>implicit | [Implicit Object](#518-implicit-object) | The Implicit Grant flow definition.\n<a name=\"grantTypesAuthorizationCode\"/>authorization_code | [Authorization Code Object](#519-authorization-code-object) | The Authorization Code Grant flow definition.\n\n##### 5.1.7.1 Object Example:\n```js\n{\n  \"implicit\": {\n    \"loginEndpoint\": {\n      \"url\": \"http://petstore.swagger.wordnik.com/oauth/dialog\"\n    },\n    \"tokenName\": \"access_token\"\n  },\n  \"authorization_code\": {\n    \"tokenRequestEndpoint\": {\n      \"url\": \"http://petstore.swagger.wordnik.com/oauth/requestToken\",\n      \"clientIdName\": \"client_id\",\n      \"clientSecretName\": \"client_secret\"\n    },\n    \"tokenEndpoint\": {\n      \"url\": \"http://petstore.swagger.wordnik.com/oauth/token\",\n      \"tokenName\": \"access_code\"\n    }\n  }\n}\n```\n\n#### 5.1.8 Implicit Object\nProvides details regarding the OAuth2's Implicit Grant flow type.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"implicitLoginEndpoint\"/>loginEndpoint | [Login Endpoint Object](#5110-login-endpoint-object) | **Required.** The login endpoint definition.\n<a name=\"implicitTokenName\"/>tokenName | `string` | An optional alternative name to standard \"access_token\" OAuth2 parameter.\n\n##### 5.1.8.1 Object Example:\n```js\n{\n  \"loginEndpoint\": {\n    \"url\": \"http://petstore.swagger.wordnik.com/oauth/dialog\"\n  },\n  \"tokenName\": \"access_token\"\n}\n```\n\n#### 5.1.9 Authorization Code Object\nProvides details regarding the OAuth2's Authorization Code Grant flow type.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"acTokenRequestEndpoint\"/>tokenRequestEndpoint | [Token Request Endpoint Object](#5111-token-request-endpoint-object) | **Required.** The token request endpoint definition.\n<a name=\"acTokenEndpoint\"/>tokenEndpoint | [Token Endpoint Object](#5112-token-endpoint-object) | **Required.** The token endpoint definition.\n\n##### 5.1.9.1 Object Example:\n```js\n{\n  \"tokenRequestEndpoint\": {\n    \"url\": \"http://petstore.swagger.wordnik.com/oauth/requestToken\",\n    \"clientIdName\": \"client_id\",\n    \"clientSecretName\": \"client_secret\"\n  },\n  \"tokenEndpoint\": {\n    \"url\": \"http://petstore.swagger.wordnik.com/oauth/token\",\n    \"tokenName\": \"access_code\"\n  }\n}\n```\n\n#### 5.1.10 Login Endpoint Object\nProvides details regarding the Implicit Grant's *authorization endpoint*.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"leUrl\"/>url | `string` | **Required.** The URL of the authorization endpoint for the implicit grant flow. The value SHOULD be in a URL format.\n\n##### 5.1.10.1 Object Example:\n```js\n{\n  \"url\": \"http://petstore.swagger.wordnik.com/oauth/dialog\"\n}\n```\n\n#### 5.1.11 Token Request Endpoint Object\nProvides details regarding the OAuth2's *Authorization Endpoint*.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"treUrl\"/>url | `string` | **Required.** The URL of the authorization endpoint for the authentication code grant flow. The value SHOULD be in a URL format.\n<a name=\"treCliendIdName\"/>clientIdName | `string` | An optional alternative name to standard \"client_id\" OAuth2 parameter.\n<a name=\"treCliendSecretName\"/>clientSecretName | `string` | An optional alternative name to the standard \"client_secret\" OAuth2 parameter.\n\n##### 5.1.11.1 Object Example:\n```js\n{\n  \"url\": \"http://petstore.swagger.wordnik.com/oauth/requestToken\",\n  \"clientIdName\": \"client_id\",\n  \"clientSecretName\": \"client_secret\"\n}\n```\n\n#### 5.1.12 Token Endpoint Object\nProvides details regarding the OAuth2's *Token Endpoint*.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"teUrl\"/>url | `string` | **Required.** The URL of the token endpoint for the authentication code grant flow. The value SHOULD be in a URL format.\n<a name=\"treTokenName\"/>tokenName | `string` | An optional alternative name to standard \"access_token\" OAuth2 parameter.\n\n##### 5.1.12.1 Object Example:\n```js\n{\n  \"url\": \"http://petstore.swagger.wordnik.com/oauth/token\",\n  \"tokenName\": \"access_code\"\n}\n```\n\n### 5.2 API Declaration\n\nThe API Declaration provides information about an API exposed on a resource. There should be one file per [Resource](#512-resource-object) described. The file MUST be served in the URL described by the [`path`](#aePath) field.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"adSwaggerVersion\"/>swaggerVersion | `string` | **Required.** Specifies the Swagger Specification version being used. It can be used by the Swagger UI and other clients to interpret the API listing. The value MUST be an existing Swagger specification version. <br>Currently, `\"1.0\"`, `\"1.1\"`, `\"1.2\"` are valid values.\n<a name=\"adApiVersion\"/>apiVersion | `string` | Provides the version of the application API (not to be confused by the [specification version](#adSwaggerVersion)).\n<a name=\"adBasePath\"/>basePath | `string` | **Required.** The root URL serving the API. This field is important because while it is common to have the Resource Listing and API Declarations on the server providing the APIs themselves, it is not a requirement. The API specifications can be served using static files and not generated by the API server itself, so the URL for serving the API cannot always be derived from the URL serving the API specification. The value SHOULD be in the format of a URL.\n<a name=\"adResourcePath\"/>resourcePath | `string` | The *relative* path to the resource, from the [`basePath`](#adBasePath), which this API Specification describes. The value MUST precede with a forward slash (`\"/\"`).\n<a name=\"adApis\"/>apis | [[API Object](#522-api-object)] | **Required.** A list of the APIs exposed on this resource. There MUST NOT be more than one API Object per [`path`](#apiPath) in the array.\n<a name=\"adModels\"/>models | [Models Object](#526-models-object) | A list of the models available to this resource. Note that these need to be exposed separately for each API Declaration.\n<a name=\"adProduces\"/>produces | [`string`] | A list of MIME types the APIs on this resource can produce. This is global to all APIs but can be overridden on specific API calls.\n<a name=\"adConsumes\"/>consumes | [`string`] | A list of MIME types the APIs on this resource can consume. This is global to all APIs but can be overridden on specific API calls.\n<a name=\"adAuthorizations\"/>authorizations | [Authorizations Object](#5210-authorizations-object) | A list of authorizations schemes *required* for the operations listed in this API declaration. Individual operations may override this setting. If there are multiple authorization schemes described here, it means they're **all** applied.\n\n#### 5.2.1 Object Example\n```js\n{\n  \"apiVersion\": \"1.0.0\",\n  \"swaggerVersion\": \"1.2\",\n  \"basePath\": \"http://petstore.swagger.wordnik.com/api\",\n  \"resourcePath\": \"/store\",\n  \"produces\": [\n    \"application/json\"\n  ],\n  \"authorizations\": {},\n  \"apis\": [\n    {\n      \"path\": \"/store/order/{orderId}\",\n      \"operations\": [\n        {\n          \"method\": \"GET\",\n          \"summary\": \"Find purchase order by ID\",\n          \"notes\": \"For valid response try integer IDs with value <= 5. Anything above 5 or nonintegers will generate API errors\",\n          \"type\": \"Order\",\n          \"nickname\": \"getOrderById\",\n          \"authorizations\": {},\n          \"parameters\": [\n            {\n              \"name\": \"orderId\",\n              \"description\": \"ID of pet that needs to be fetched\",\n              \"required\": true,\n              \"type\": \"string\",\n              \"paramType\": \"path\"\n            }\n          ],\n          \"responseMessages\": [\n            {\n              \"code\": 400,\n              \"message\": \"Invalid ID supplied\"\n            },\n            {\n              \"code\": 404,\n              \"message\": \"Order not found\"\n            }\n          ]\n        },\n        {\n          \"method\": \"DELETE\",\n          \"summary\": \"Delete purchase order by ID\",\n          \"notes\": \"For valid response try integer IDs with value < 1000.  Anything above 1000 or nonintegers will generate API errors\",\n          \"type\": \"void\",\n          \"nickname\": \"deleteOrder\",\n          \"authorizations\": {\n            \"oauth2\": [\n              {\n                \"scope\": \"test:anything\",\n                \"description\": \"anything\"\n              }\n            ]\n          },\n          \"parameters\": [\n            {\n              \"name\": \"orderId\",\n              \"description\": \"ID of the order that needs to be deleted\",\n              \"required\": true,\n              \"type\": \"string\",\n              \"paramType\": \"path\"\n            }\n          ],\n          \"responseMessages\": [\n            {\n              \"code\": 400,\n              \"message\": \"Invalid ID supplied\"\n            },\n            {\n              \"code\": 404,\n              \"message\": \"Order not found\"\n            }\n          ]\n        }\n      ]\n    },\n    {\n      \"path\": \"/store/order\",\n      \"operations\": [\n        {\n          \"method\": \"POST\",\n          \"summary\": \"Place an order for a pet\",\n          \"notes\": \"\",\n          \"type\": \"void\",\n          \"nickname\": \"placeOrder\",\n          \"authorizations\": {\n            \"oauth2\": [\n              {\n                \"scope\": \"test:anything\",\n                \"description\": \"anything\"\n              }\n            ]\n          },\n          \"parameters\": [\n            {\n              \"name\": \"body\",\n              \"description\": \"order placed for purchasing the pet\",\n              \"required\": true,\n              \"type\": \"Order\",\n              \"paramType\": \"body\"\n            }\n          ],\n          \"responseMessages\": [\n            {\n              \"code\": 400,\n              \"message\": \"Invalid order\"\n            }\n          ]\n        }\n      ]\n    }\n  ],\n  \"models\": {\n    \"Order\": {\n      \"id\": \"Order\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"petId\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"quantity\": {\n          \"type\": \"integer\",\n          \"format\": \"int32\"\n        },\n        \"status\": {\n          \"type\": \"string\",\n          \"description\": \"Order Status\",\n          \"enum\": [\n            \"placed\",\n            \"approved\",\n            \"delivered\"\n          ]\n        },\n        \"shipDate\": {\n          \"type\": \"string\",\n          \"format\": \"date-time\"\n        }\n      }\n    }\n  }\n}\n```\n\n#### 5.2.2 API Object\nThe API Object describes one or more operations on a single [`path`](#apiPath). In the [`apis`](#adApis) array, there MUST be only one [`API Object`](#522-api-object) per [`path`](#apiPath).\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"apiPath\"/>path | `string` | **Required.** The relative path to the operation, from the [`basePath`](#adBasePath), which this operation describes. The value SHOULD be in a relative (URL) path format.\n<a href=\"apiDescription\"/>description | `string` | *Recommended.* A short description of the resource.\n<a href=\"apiOperations\" />operations | [[Operation Object](#523-operation-object)] | **Required.** A list of the API operations available on this path. The array may include 0 or more operations. There MUST NOT be more than one Operation Object per [`method`](#operationMethod) in the array.\n\n##### 5.2.2.1 Object Example:\n\n```js\n      {\n      \"path\": \"/pet\",\n      \"operations\": [\n        {\n          \"method\": \"PUT\",\n          \"summary\": \"Update an existing pet\",\n          \"notes\": \"\",\n          \"type\": \"void\",\n          \"nickname\": \"updatePet\",\n          \"authorizations\": {},\n          \"parameters\": [\n            {\n              \"name\": \"body\",\n              \"description\": \"Pet object that needs to be updated in the store\",\n              \"required\": true,\n              \"type\": \"Pet\",\n              \"paramType\": \"body\"\n            }\n          ],\n          \"responseMessages\": [\n            {\n              \"code\": 400,\n              \"message\": \"Invalid ID supplied\"\n            },\n            {\n              \"code\": 404,\n              \"message\": \"Pet not found\"\n            },\n            {\n              \"code\": 405,\n              \"message\": \"Validation exception\"\n            }\n          ]\n        },\n        {\n          \"method\": \"POST\",\n          \"summary\": \"Add a new pet to the store\",\n          \"notes\": \"\",\n          \"type\": \"void\",\n          \"nickname\": \"addPet\",\n          \"consumes\": [\n            \"application/json\",\n            \"application/xml\"\n          ],\n          \"authorizations\": {\n            \"oauth2\": [\n              {\n                \"scope\": \"test:anything\",\n                \"description\": \"anything\"\n              }\n            ]\n          },\n          \"parameters\": [\n            {\n              \"name\": \"body\",\n              \"description\": \"Pet object that needs to be added to the store\",\n              \"required\": true,\n              \"type\": \"Pet\",\n              \"paramType\": \"body\"\n            }\n          ],\n          \"responseMessages\": [\n            {\n              \"code\": 405,\n              \"message\": \"Invalid input\"\n            }\n          ]\n        }\n      ]\n    }\n```\n\n#### 5.2.3 Operation Object\nThe Operation Object describes a single operation on a [`path`](#apiPath).\n\nIn the [`operations`](#apiOperations) array, there MUST be only one [`Operation Object`](#523-operation-object) per [`method`](#operationMethod).\n\nThis object includes the [Data Type Fields](#433-data-type-fields) in order to describe the return value of the operation. The [`type`](#dataTypeType) field MUST be used to link to other models.\n\nThis is the only object where the [`type`](#dataTypeType) MAY have the value of [`void`](#432-void) to indicate that the operation returns no value.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"operationMethod\"/>method | `string` | **Required.** The HTTP method required to invoke this operation. The value MUST be one of the following values: `\"GET\"`, `\"HEAD\"`, `\"POST\"`, `\"PUT\"`, `\"PATCH\"`, `\"DELETE\"`, `\"OPTIONS\"`. The values MUST be in uppercase.\n<a name=\"operationSummary\"/>summary | `string` | A short summary of what the operation does. For maximum readability in the swagger-ui, this field SHOULD be less than 120 characters.\n<a name=\"operationNotes\"/>notes | `string` | A verbose explanation of the operation behavior.\n<a name=\"operationNickname\"/>nickname |`string` | **Required.** A unique id for the operation that can be used by tools reading the output for further and easier manipulation. For example, Swagger-Codegen will use the nickname as the method name of the operation in the client it generates. The value MUST be alphanumeric and may include underscores. Whitespace characters are not allowed.\n<a name=\"operationAuthorizations\"/>authorizations | [Authorizations Object](#5210-authorizations-object) | A list of authorizations required to execute this operation. While not mandatory, if used, it overrides the value given at the API Declaration's [authorizations](#adAuthorizations). In order to completely remove API Declaration's authorizations completely, an empty object (`{}`) may be applied.\n<a name=\"operationParameters\"/>parameters | [[Parameter Object](#524-parameter-object)] | **Required.** The inputs to the operation. If no parameters are needed, an empty array MUST be included.\n<a name=\"operationResponseMessages\"/>responseMessages | [[Response Message Object](#525-response-message-object)] | Lists the possible response statuses that can return from the operation.\n<a name=\"operationProduces\"/>produces | [`string`] | A list of MIME types this operation can produce. This is overrides the global [`produces`](#adProduces) definition at the root of the API Declaration. Each `string` value SHOULD represent a MIME type.\n<a name=\"operationConsumes\"/>consumes | [`string`] | A list of MIME types this operation can consume. This is overrides the global [`consumes`](#adConsumes) definition at the root of the API Declaration. Each `string` value SHOULD represent a MIME type.\n<a name=\"operationDeprecated\"/>deprecated | `string` | Declares this operation to be deprecated. Usage of the declared operation should be refrained. Valid value MUST be either `\"true\"` or `\"false\"`. *Note:* This field will change to type `boolean` in the future.\n\n##### 5.2.3.1 Object Example\n\n````js\n        {\n          \"method\": \"GET\",\n          \"summary\": \"Find pet by ID\",\n          \"notes\": \"Returns a pet based on ID\",\n          \"type\": \"Pet\",\n          \"nickname\": \"getPetById\",\n          \"authorizations\": {},\n          \"parameters\": [\n            {\n              \"name\": \"petId\",\n              \"description\": \"ID of pet that needs to be fetched\",\n              \"required\": true,\n              \"type\": \"integer\",\n              \"format\": \"int64\",\n              \"paramType\": \"path\",\n              \"minimum\": \"1.0\",\n              \"maximum\": \"100000.0\"\n            }\n          ],\n          \"responseMessages\": [\n            {\n              \"code\": 400,\n              \"message\": \"Invalid ID supplied\"\n            },\n            {\n              \"code\": 404,\n              \"message\": \"Pet not found\"\n            }\n          ]\n        }\n````\n\n#### 5.2.4 Parameter Object\n\nThe Parameter Object describes a single parameter to be sent in an operation and maps to the [`parameters`](#operationParameters) field in the [Operation Object](#523-operation-object).\n\nThis object includes the [Data Type Fields](#433-data-type-fields) in order to describe the type of this parameter. The [`type`](#dataTypeType) field MUST be used to link to other models.\n\nIf [`type`](#dataTypeType) is [`File`](#434-file), the [`consumes`](#operationConsumes) field MUST be `\"multipart/form-data\"`, and the [`paramType`](#parameterParamType) MUST be `\"form\"`.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterParamType\"/>paramType | `string` | **Required.** The type of the parameter (that is, the location of the parameter in the request). The value MUST be one of these values: `\"path\"`, `\"query\"`, `\"body\"`, `\"header\"`, `\"form\"`. Note that the values MUST be lower case.\n<a name=\"parameterName\"/>name | `string` | **Required.** The unique name for the parameter. Each `name` MUST be unique, even if they are associated with different `paramType` values. Parameter names are *case sensitive*. <ul><li>If [`paramType`](#parameterParamType) is `\"path\"`, the `name` field MUST correspond to the associated path segment from the [`path`](#apiPath) field in the [API Object](#522-api-object). <li>If [`paramType`](#parameterParamType) is `\"query\"`, the `name` field corresponds to the query parameter name. <li>If [`paramType`](#parameterParamType) is `\"body\"`, the name is used only for Swagger-UI and Swagger-Codegen. In this case, the `name` MUST be `\"body\"`. <li>If [`paramType`](#parameterParamType) is `\"form\"`, the `name` field corresponds to the form parameter key. <li>If [`paramType`](#parameterParamType) is `\"header\"`, the `name` field corresponds to the header parameter key. </ul> See [here](#5241-name-examples) for some examples.\n<a name=\"parameterDescription\"/>description | `string` | *Recommended.* A brief description of this parameter.\n<a name=\"parameterRequired\"/>required | `boolean` | A flag to note whether this parameter is required. If this field is not included, it is equivalent to adding this field with the value `false`. If [`paramType`](#parameterParamType) is `\"path\"` then this field MUST be included and have the value `true`.\n<a name=\"parameterAllowMultiple\"/>allowMultiple | `boolean` | Another way to allow multiple values for a \"query\" parameter. If used, the query parameter may accept comma-separated values. The field may be used only if [`paramType`](#parameterParamType) is `\"query\"`, `\"header\"` or `\"path\"`.\n\n##### 5.2.4.1 Name Examples\n- If [`paramType`](#parameterParamType) is `\"path\"`, and assuming the `path` is `\"/pet/{id}\"`:\n\n    ```js\n\"name\": \"id\"\n    ```\n\n- If [`paramType`](#parameterParamType) is `\"query\"`, and assuming the URL call is `\"http://host/resource?limit=100\"` (that is, there's a query parameter called `\"limit\"`):\n\n    ```js\n\"name\": \"limit\"\n    ```\n\n- If [`paramType`](#parameterParamType) is `\"body\"`:\n\n    ```js\n\"name\": \"body\"\n    ```\n\n##### 5.2.4.2 Object Example\n\n```js\n{\n  \"name\": \"body\",\n  \"description\": \"Pet object that needs to be updated in the store\",\n  \"required\": true,\n  \"type\": \"Pet\",\n  \"paramType\": \"body\"\n}\n```\n\n#### 5.2.5 Response Message Object\n\nThe Response Message Object describes a single possible response message that can be returned from the operation call, and maps to the [`responseMessages`](#operationResponseMessages) field in the [Operation Object](#523-operation-object). Each Response Message allows you to give further details as to why the HTTP status code may be received.\n\nField Name | Type | Description |\n---|:---:|---\n<a name=\"rmCode\"/>code | `integer` | **Required.** The HTTP status code returned. The value SHOULD be one of the status codes as described in [RFC 2616 - Section 10](http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html).\n<a name=\"rmMessage\"/>message | `string` | **Required.** The explanation for the status code. It SHOULD be the reason an error is received if an error status code is used.\n<a name=\"rmResponseModel\"/>responseModel | `string` | The return type for the given response.\n\n##### 5.2.5.1 Object Example\n\n```js\n  {\n    \"code\": 404,\n    \"message\": \"no project found\",\n    \"responseModel\": \"ErrorModel\"\n  }\n```\n\n#### 5.2.6 Models Object\n\nThe Models Object holds a field per model definition, and this is different than the structure of the other objects in the spec. It follows a subset of the [JSON-Schema](http://json-schema.org/) specification.\n\nPlease note that the Models Object is an object containing other object definitions and as such is structured as follows:\n```js\n{\n   \"Model1\" : {...},\n   \"Model2\" : {...},\n   ...,\n   \"ModelN\" : {...}\n}\n```\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"modelsModelname\"/>{Model Name} | [Model Object](#527-model-object) | A new model definition. Note the actual name of the field is the name you're giving your model. For example, \"Category\", \"Pet\", \"User\".\n\n##### 5.2.6.1 Object Example\n\n```js\n{\n    \"Category\": {\n      \"id\": \"Category\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n}\n```\n\n#### 5.2.7 Model Object\n\nA Model Object holds the definition of a new model for this API Declaration.\n\nModels in Swagger allow for inheritance. The inheritance is controlled by two fields - [`subTypes`](#modelSubTypes) to give the name of the models extending this definition, and [`discriminator`](#modelDiscriminator) to support polymorphism.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"modelId\"/>id | `string` | **Required.** A unique identifier for the model. This MUST be the name given to [{Model Name}](#modelsModelname).\n<a name=\"modelDescription\"/>description | `string` | A brief description of this model.\n<a name=\"modelRequired\"/>required | [`string`] | A definition of which properties MUST exist when a model instance is produced. The values MUST be the [`{Property Name}`](#propertiesPropertyName) of one of the [`properties`](#528-properties-object).\n<a name=\"modelProperties\"/>properties | [Properties Object](#528-properties-object) | **Required.** A list of properties (fields) that are part of the model\n<a name=\"modelSubTypes\"/>subTypes | [`string`] | List of the [model `id`s](#modelId) that inherit from this model. Sub models inherit all the properties of the parent model. Since inheritance is transitive, if the parent of a model inherits from another model, its sub-model will include all properties. As such, if you have `Foo->Bar->Baz`, then Baz will inherit the properties of Bar and Foo. There MUST NOT be a cyclic definition of inheritance. For example, if `Foo -> ... -> Bar`, having `Bar -> ... -> Foo` is not allowed. There also MUST NOT be a case of multiple inheritance. For example, `Foo -> Baz <- Bar` is not allowed. A sub-model definition MUST NOT override the [`properties`](#modelProperties) of any of its ancestors. All sub-models MUST be defined in the same [API Declaration](#52-api-declaration).\n<a name=\"modelDiscriminator\"/>discriminator | `string` | MUST be included only if [`subTypes`](#modelSubTypes) is included. This field allows for polymorphism within the described inherited models. This field MAY be included at any base model but MUST NOT be included in a sub-model. The value of this field MUST be a name of one of the [`properties`](#modelProperties) in this model, and that field MUST be in the [`required`](#modelRequired) list. When used, the value of the *discriminator property* MUST be the name of the parent model or any of its sub-models (to any depth of inheritance).\n\n##### 5.2.7.1 Object Example\n\n```js\n{\n  \"id\": \"Order\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"petId\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"quantity\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\"\n    },\n    \"status\": {\n      \"type\": \"string\",\n      \"description\": \"OrderStatus\",\n      \"enum\": [\n        \"placed\",\n        \"approved\",\n        \"delivered\"\n      ]\n    },\n    \"shipDate\": {\n      \"type\": \"string\",\n      \"format\": \"date-time\"\n    }\n  }\n}\n```\n\n##### 5.2.7.2 Inheritance Example\n\nSay we have a general Animal model, and a sub-model for Cat.\n\n```js\n\"Animal\": {\n  \"id\": \"Animal\",\n  \"required\": [\n    \"id\",\n    \"type\"\n  ],\n  \"properties\": {\n    \"id\": {\n      \"type\": \"long\"\n    },\n    \"type\": {\n      \"type\": \"string\"\n    }\n  },\n  \"subTypes\": [\"Cat\"],\n  \"discriminator\": \"type\"\n},\n\"Cat\": {\n  \"id\": \"Cat\",\n  \"required\": [\n    \"likesMilk\"\n  ],\n  \"properties\": {\n    \"likesMilk\": {\n      \"type\": \"boolean\"\n    }\n  },\n}\n```\n\n#### 5.2.8 Properties Object\n\nThe Properties Object holds a field per property definition, and this is different than the structure of the other objects in the spec. It follows a subset of the [JSON-Schema](http://json-schema.org/) specification.\n\nPlease note that the Properties Object is an object containing other object definitions and as such is structured as follows:\n```js\n{\n   \"Property1\" : {...},\n   \"Property2\" : {...},\n   ...,\n   \"PropertyN\" : {...}\n}\n```\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"propertiesPropertyName\"/>{Property Name} | [Property Object](#529-property-object) | A new model property definition. Note the actual name of the field is the name you're giving your property. For example, \"id\", \"name\", \"age\".\n\n##### 5.2.8.1 Object Example\n```js\n      {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n```\n\n#### 5.2.9 Property Object\n\nA Property Object holds the definition of a new property for a model.\n\nThis object includes the [Data Type Fields](#433-data-type-fields) in order to describe the type of this property. The [`$ref`](#dataTypeRef) field MUST be used when linking to other models.\n\nProperties MUST NOT contain other properties. If there's a need for an internal object hierarchy, additional models MUST be created and linked to a flat structure.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"propertyDescription\"/>description | `string` | *Recommended.* A brief description of this property.\n\n##### 5.2.9.1 Object Examples\n\nA simple 64bit integer field called \"id\", with a description and min/max values:\n\n```js\n\"id\": {\n    \"type\": \"integer\",\n    \"format\": \"int64\",\n    \"description\": \"unique identifier for the pet\",\n    \"minimum\": \"0.0\",\n    \"maximum\": \"100.0\"\n}\n```\n\nA \"category\" field of a Category model.\n\n```js\n\"category\": {\n    \"$ref\": \"Category\"\n}\n```\n\nA \"tags\" field of type array containing Tag models.\n\n```js\n\"tags\": {\n    \"type\": \"array\",\n    \"items\": {\n        \"$ref\": \"Tag\"\n    }\n}\n```\n\n#### 5.2.10 Authorizations Object\nThe Authorizations Object provides information about the authorization schemes enforced on this API. If used in the API Declaration's [authorizations](#adAuthorizations), it applies to all operations listed. If used in the Operation's [authorizations](#operationAuthorizations), it applies to the operation itself and may override the API Declaration's authorizations.\nIf multiple authorization schemes are described, they are **all** required to perform the operations listed.\n\nPlease note that the Authorizations Object is an object containing arrays of object definitions and as such is structured as follows:\n```js\n{\n   \"Authorization1\" : [...],\n   \"Authorization2\" : [...],\n   ...,\n   \"AuthorizationN\" : [...]\n}\n```\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"adAuthorizationsAuthorizationName\"/>{Authorization Name} | * | The authorization scheme to be used. The name given to the {Authorization Name} MUST be a friendly name that was given to an authorization scheme in the Resource Listing's [authorizations](#rlAuthorizations). If the friendly name describes an OAuth2 security scheme, the value should be of type \\[[Scope Object](#5211-scope-object)\\] (but may be an empty array to denote 'no scopes'). For all other authorization scheme types, the value MUST be an empty array.\n\n##### 5.2.10 Object Example:\n```js\n{\n  \"oauth2\": [\n    {\n      \"scope\": \"write:pets\",\n      \"description\": \"modify pets in your account\"\n    },\n    {\n      \"scope\": \"read:pets\",\n      \"description\": \"read your pets\"\n    }\n  ]\n}\n```\n\n#### 5.2.11 Scope Object\nDescribes an OAuth2 authorization scope. The scope described here MUST be described in the respective friendly name definition of the security scheme in the Resource Listing's [authorizations](#rlAuthorizations).\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"scopeScope\"/>scope | `string` | **Required.** The name of the scope.\n<a name=\"scope\"/>description | `string` | *Recommended.* A short description of the scope.\n\n##### 5.2.11.1 Object Example:\n```js\n{\n  \"scope\": \"email\",\n  \"description\": \"Access to your email address\"\n}\n```\n"
  },
  {
    "path": "versions/2.0-editors.md",
    "content": "## Active\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Ron Ratovsky [@webron](https://github.com/webron)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "versions/2.0.md",
    "content": "# OpenAPI Specification\n## (fka Swagger RESTful API Documentation Specification)\n\n#### Version 2.0\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [RFC 2119](http://www.ietf.org/rfc/rfc2119.txt).\n\nThe Swagger specification is licensed under [The Apache License, Version 2.0](http://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introductions\n\nSwagger™  is a project used to describe and document RESTful APIs.\n\nThe Swagger specification defines a set of files required to describe such an API. These files can then be used by the Swagger-UI project to display the API and Swagger-Codegen to generate clients in various languages. Additional utilities can also take advantage of the resulting files, such as testing tools.\n\n## Revision History\n\nVersion | Date | Notes\n--- | --- | ---\n2.0 | 2014-09-08 | Release of Swagger 2.0\n1.2 | 2014-03-14 | Initial release of the formal document.\n1.1 | 2012-08-22 | Release of Swagger 1.1\n1.0 | 2011-08-10 | First release of the Swagger Specification\n\n## Definitions\n\n##### Path Templating\nPath templating refers to the usage of curly braces ({}) to mark a section of a URL path as replaceable using path parameters.\n\n##### Mime Types\nMime type definitions are spread across several resources. The mime type definitions should be in compliance with [RFC 6838](http://tools.ietf.org/html/rfc6838).\n\nSome examples of possible mime type definitions:\n```\n  text/plain; charset=utf-8\n  application/json\n  application/vnd.github+json\n  application/vnd.github.v3+json\n  application/vnd.github.v3.raw+json\n  application/vnd.github.v3.text+json\n  application/vnd.github.v3.html+json\n  application/vnd.github.v3.full+json\n  application/vnd.github.v3.diff\n  application/vnd.github.v3.patch\n```\n##### HTTP Status Codes\nThe HTTP Status Codes are used to indicate the status of the executed operation. The available status codes are described by [RFC 7231](http://tools.ietf.org/html/rfc7231#section-6) and in the [IANA Status Code Registry](http://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n## Specification\n\n### Format\n\nThe files describing the RESTful API in accordance with the Swagger specification are represented as JSON objects and conform to the JSON standards. YAML, being a superset of JSON, can be used as well to\nrepresent a Swagger specification file.\n\nFor example, if a field is said to have an array value, the JSON array representation will be used:\n\n```js\n{\n   \"field\" : [...]\n}\n```\n\nWhile the API is described using JSON it does not impose a JSON input/output to the API itself.\n\nAll field names in the specification are **case sensitive**.\n\nThe schema exposes two types of fields. Fixed fields, which have a declared name, and Patterned fields, which declare a regex pattern for the field name. Patterned fields can have multiple occurrences as long as each has a unique name.\n\n### File Structure\n\nThe Swagger representation of the API is made of a single file. However, parts of the definitions can be split into separate files, at the discretion of the user. This is applicable for `$ref` fields in the specification as follows from the [JSON Schema](http://json-schema.org) definitions.\n\nBy convention, the Swagger specification file is named `swagger.json`.\n\n### Data Types\n\nPrimitive data types in the Swagger Specification are based on the types supported by the [JSON-Schema Draft 4](https://tools.ietf.org/html/draft-zyp-json-schema-04#section-3.5). Models are described using the [Schema Object](#schema-object) which is a subset of JSON Schema Draft 4.\n\nAn additional primitive data type `\"file\"` is used by the [Parameter Object](#parameter-object) and the [Response Object](#response-object) to set the parameter type or the response as being a file.\n\n<a name=\"dataTypeFormat\"></a>Primitives have an optional modifier property `format`. Swagger uses several known formats to more finely define the data type being used. However, the `format` property is an open `string`-valued property, and can have any value to support documentation needs. Formats such as `\"email\"`, `\"uuid\"`, etc., can be used even though they are not defined by this specification. Types that are not accompanied by a `format` property follow their definition from the JSON Schema (except for `file` type which is defined above). The formats defined by the Swagger Specification are:\n\n\nCommon Name | [`type`](#dataTypeType) | [`format`](#dataTypeFormat) | Comments\n----------- | ------ | -------- | --------\ninteger | `integer` | `int32` | signed 32 bits\nlong | `integer` | `int64` | signed 64 bits\nfloat | `number` | `float` | |\ndouble | `number` | `double` | |\nstring | `string` | | |\nbyte | `string` | `byte` | base64 encoded characters\nbinary | `string` | `binary` | any sequence of octets\nboolean | `boolean` | | |\ndate | `string` | `date` | As defined by `full-date` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\ndateTime | `string` | `date-time` | As defined by `date-time` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\npassword | `string` | `password` | Used to hint UIs the input needs to be obscured.\n\n### Schema\n\n#### Swagger Object\n\nThis is the root document object for the API specification. It combines what previously was the Resource Listing and API Declaration (version 1.2 and earlier) together into one document.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"swaggerSwagger\"></a>swagger | `string` | **Required.** Specifies the Swagger Specification version being used. It can be used by the Swagger UI and other clients to interpret the API listing. The value MUST be `\"2.0\"`.\n<a name=\"swaggerInfo\"></a>info | [Info Object](#info-object) | **Required.** Provides metadata about the API. The metadata can be used by the clients if needed.\n<a name=\"swaggerHost\"></a>host | `string` | The host (name or ip) serving the API. This MUST be the host only and does not include the scheme nor sub-paths. It MAY include a port. If the `host` is not included, the host serving the documentation is to be used (including the port). The `host` does not support [path templating](#path-templating).\n<a name=\"swaggerBasePath\"></a>basePath | `string` | The base path on which the API is served, which is relative to the [`host`](#swaggerHost). If it is not included, the API is served directly under the `host`. The value MUST start with a leading slash (`/`). The `basePath` does not support [path templating](#path-templating).\n<a name=\"swaggerSchemes\"></a>schemes | [`string`] | The transfer protocol of the API. Values MUST be from the list: `\"http\"`, `\"https\"`, `\"ws\"`, `\"wss\"`. If the `schemes` is not included, the default scheme to be used is the one used to access the Swagger definition itself.\n<a name=\"swaggerConsumes\"></a>consumes | [`string`] | A list of MIME types the APIs can consume. This is global to all APIs but can be overridden on specific API calls. Value MUST be as described under [Mime Types](#mime-types).\n<a name=\"swaggerProduces\"></a>produces | [`string`] | A list of MIME types the APIs can produce. This is global to all APIs but can be overridden on specific API calls. Value MUST be as described under [Mime Types](#mime-types).\n<a name=\"swaggerPaths\"></a>paths | [Paths Object](#paths-object) | **Required.** The available paths and operations for the API.\n<a name=\"swaggerDefinitions\"></a>definitions | [Definitions Object](#definitions-object) | An object to hold data types produced and consumed by operations.\n<a name=\"swaggerParameters\"></a>parameters | [Parameters Definitions Object](#parameters-definitions-object) | An object to hold parameters that can be used across operations. This property *does not* define global parameters for all operations.\n<a name=\"swaggerResponses\"></a>responses | [Responses Definitions Object](#responses-definitions-object) | An object to hold responses that can be used across operations. This property *does not* define global responses for all operations.\n<a name=\"swaggerSecurityDefinitions\"></a>securityDefinitions | [Security Definitions Object](#security-definitions-object) | Security scheme definitions that can be used across the specification.\n<a name=\"swaggerSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security schemes are applied for the API as a whole. The list of values describes alternative security schemes that can be used (that is, there is a logical OR between the security requirements). Individual operations can override this definition.\n<a name=\"swaggerTags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the specification with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared may be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique.\n<a name=\"swaggerExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation.\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"swaggerExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n#### Info Object\n\nThe object provides metadata about the API. The metadata can be used by the clients if needed, and can be presented in the Swagger-UI for convenience.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"infoTitle\"></a>title | `string` | **Required.** The title of the application.\n<a name=\"infoDescription\"></a>description | `string` | A short description of the application. [GFM syntax](https://guides.github.com/features/mastering-markdown/#GitHub-flavored-markdown) can be used for rich text representation.\n<a name=\"infoTermsOfService\"></a>termsOfService | `string` | The Terms of Service for the API.\n<a name=\"infoContact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API.\n<a name=\"infoLicense\"></a>license | [License Object](#license-object) | The license information for the exposed API.\n<a name=\"infoVersion\"></a>version | `string` | **Required** Provides the version of the application API (not to be confused with the specification version).\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"infoExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Info Object Example:\n\n```js\n{\n  \"title\": \"Swagger Sample App\",\n  \"description\": \"This is a sample server Petstore server.\",\n  \"termsOfService\": \"http://swagger.io/terms/\",\n  \"contact\": {\n    \"name\": \"API Support\",\n    \"url\": \"http://www.swagger.io/support\",\n    \"email\": \"support@swagger.io\"\n  },\n  \"license\": {\n    \"name\": \"Apache 2.0\",\n    \"url\": \"http://www.apache.org/licenses/LICENSE-2.0.html\"\n  },\n  \"version\": \"1.0.1\"\n}\n```\n\n```yaml\ntitle: Swagger Sample App\ndescription: This is a sample server Petstore server.\ntermsOfService: http://swagger.io/terms/\ncontact:\n  name: API Support\n  url: http://www.swagger.io/support\n  email: support@swagger.io\nlicense:\n  name: Apache 2.0\n  url: http://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n#### Contact Object\n\nContact information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"contactName\"></a>name | `string` | The identifying name of the contact person/organization.\n<a name=\"contactUrl\"></a>url | `string` | The URL pointing to the contact information. MUST be in the format of a URL.\n<a name=\"contactEmail\"></a>email | `string` | The email address of the contact person/organization. MUST be in the format of an email address.\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"contactExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Contact Object Example:\n\n```js\n{\n  \"name\": \"API Support\",\n  \"url\": \"http://www.swagger.io/support\",\n  \"email\": \"support@swagger.io\"\n}\n```\n\n```yaml\nname: API Support\nurl: http://www.swagger.io/support\nemail: support@swagger.io\n```\n\n#### License Object\n\nLicense information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"licenseName\"></a>name | `string` | **Required.** The license name used for the API.\n<a name=\"licenseUrl\"></a>url | `string` | A URL to the license used for the API. MUST be in the format of a URL.\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"licenseExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### License Object Example:\n\n```js\n{\n  \"name\": \"Apache 2.0\",\n  \"url\": \"http://www.apache.org/licenses/LICENSE-2.0.html\"\n}\n```\n\n```yaml\nname: Apache 2.0\nurl: http://www.apache.org/licenses/LICENSE-2.0.html\n```\n\n#### Paths Object\n\nHolds the relative paths to the individual endpoints. The path is appended to the [`basePath`](#swaggerBasePath) in order to construct the full URL.\nThe Paths may be empty, due to [ACL constraints](#security-filtering).\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"pathsPath\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a slash. The path is appended to the [`basePath`](#swaggerBasePath) in order to construct the full URL. [Path templating](#path-templating) is allowed.\n<a name=\"pathsExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Paths Object Example\n\n```js\n{\n  \"/pets\": {\n    \"get\": {\n      \"description\": \"Returns all pets from the system that the user has access to\",\n      \"produces\": [\n        \"application/json\"\n      ],\n      \"responses\": {\n        \"200\": {\n          \"description\": \"A list of pets.\",\n          \"schema\": {\n            \"type\": \"array\",\n            \"items\": {\n              \"$ref\": \"#/definitions/pet\"\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    produces:\n    - application/json\n    responses:\n      '200':\n        description: A list of pets.\n        schema:\n          type: array\n          items:\n            $ref: '#/definitions/pet'\n```\n\n#### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item may be empty, due to [ACL constraints](#security-filtering). The path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"pathItemRef\"></a>$ref | `string` | Allows for an external definition of this path item. The referenced structure MUST be in the format of a [Path Item Object](#path-item-object). If there are conflicts between the referenced definition and this Path Item's definition, the behavior is *undefined*.\n<a name=\"pathItemGet\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path.\n<a name=\"pathItemPut\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path.\n<a name=\"pathItemPost\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path.\n<a name=\"pathItemDelete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path.\n<a name=\"pathItemOptions\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path.\n<a name=\"pathItemHead\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path.\n<a name=\"pathItemPatch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path.\n<a name=\"pathItemParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [Swagger Object's parameters](#swaggerParameters). There can be one \"body\" parameter at most.\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"pathItemExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Path Item Object Example\n\n```js\n{\n  \"get\": {\n    \"description\": \"Returns pets based on ID\",\n    \"summary\": \"Find pets by ID\",\n    \"operationId\": \"getPetsById\",\n    \"produces\": [\n      \"application/json\",\n      \"text/html\"\n    ],\n    \"responses\": {\n      \"200\": {\n        \"description\": \"pet response\",\n        \"schema\": {\n          \"type\": \"array\",\n          \"items\": {\n            \"$ref\": \"#/definitions/Pet\"\n          }\n        }\n      },\n      \"default\": {\n        \"description\": \"error payload\",\n        \"schema\": {\n          \"$ref\": \"#/definitions/ErrorModel\"\n        }\n      }\n    }\n  },\n  \"parameters\": [\n    {\n      \"name\": \"id\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet to use\",\n      \"required\": true,\n      \"type\": \"array\",\n      \"items\": {\n        \"type\": \"string\"\n      },\n      \"collectionFormat\": \"csv\"\n    }\n  ]\n}\n```\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  produces:\n  - application/json\n  - text/html\n  responses:\n    '200':\n      description: pet response\n      schema:\n        type: array\n        items:\n          $ref: '#/definitions/Pet'\n    default:\n      description: error payload\n      schema:\n        $ref: '#/definitions/ErrorModel'\nparameters:\n- name: id\n  in: path\n  description: ID of pet to use\n  required: true\n  type: array\n  items:\n    type: string\n  collectionFormat: csv\n```\n\n#### Operation Object\n\nDescribes a single API operation on a path.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"operationTags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier.\n<a name=\"operationSummary\"></a>summary | `string` | A short summary of what the operation does. For maximum readability in the swagger-ui, this field SHOULD be less than 120 characters.\n<a name=\"operationDescription\"></a>description | `string` | A verbose explanation of the operation behavior. [GFM syntax](https://guides.github.com/features/mastering-markdown/#GitHub-flavored-markdown) can be used for rich text representation.\n<a name=\"operationExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation.\n<a name=\"operationId\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is recommended to follow common programming naming conventions.\n<a name=\"operationConsumes\"></a>consumes | [`string`] | A list of MIME types the operation can consume. This overrides the [`consumes`](#swaggerConsumes) definition at the Swagger Object. An empty value MAY be used to clear the global definition. Value MUST be as described under [Mime Types](#mime-types).\n<a name=\"operationProduces\"></a>produces | [`string`] | A list of MIME types the operation can produce. This overrides the [`produces`](#swaggerProduces) definition at the Swagger Object. An empty value MAY be used to clear the global definition. Value MUST be as described under [Mime Types](#mime-types).\n<a name=\"operationParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined at the [Path Item](#pathItemParameters), the new definition will override it, but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [Swagger Object's parameters](#swaggerParameters). There can be one \"body\" parameter at most.\n<a name=\"operationResponses\"></a>responses | [Responses Object](#responses-object) | **Required.** The list of possible responses as they are returned from executing this operation.\n<a name=\"operationSchemes\"></a>schemes | [`string`] | The transfer protocol for the operation. Values MUST be from the list: `\"http\"`, `\"https\"`, `\"ws\"`, `\"wss\"`. The value overrides the Swagger Object [`schemes`](#swaggerSchemes) definition.\n<a name=\"operationDeprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Usage of the declared operation should be refrained. Default value is `false`.\n<a name=\"operationSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security schemes are applied for this operation. The list of values describes alternative security schemes that can be used (that is, there is a logical OR between the security requirements). This definition overrides any declared top-level [`security`](#swaggerSecurity). To remove a top-level security declaration, an empty array can be used.\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"operationExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Operation Object Example\n\n```js\n{\n  \"tags\": [\n    \"pet\"\n  ],\n  \"summary\": \"Updates a pet in the store with form data\",\n  \"description\": \"\",\n  \"operationId\": \"updatePetWithForm\",\n  \"consumes\": [\n    \"application/x-www-form-urlencoded\"\n  ],\n  \"produces\": [\n    \"application/json\",\n    \"application/xml\"\n  ],\n  \"parameters\": [\n    {\n      \"name\": \"petId\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet that needs to be updated\",\n      \"required\": true,\n      \"type\": \"string\"\n    },\n    {\n      \"name\": \"name\",\n      \"in\": \"formData\",\n      \"description\": \"Updated name of the pet\",\n      \"required\": false,\n      \"type\": \"string\"\n    },\n    {\n      \"name\": \"status\",\n      \"in\": \"formData\",\n      \"description\": \"Updated status of the pet\",\n      \"required\": false,\n      \"type\": \"string\"\n    }\n  ],\n  \"responses\": {\n    \"200\": {\n      \"description\": \"Pet updated.\"\n    },\n    \"405\": {\n      \"description\": \"Invalid input\"\n    }\n  },\n  \"security\": [\n    {\n      \"petstore_auth\": [\n        \"write:pets\",\n        \"read:pets\"\n      ]\n    }\n  ]\n}\n```\n\n```yaml\ntags:\n- pet\nsummary: Updates a pet in the store with form data\ndescription: \"\"\noperationId: updatePetWithForm\nconsumes:\n- application/x-www-form-urlencoded\nproduces:\n- application/json\n- application/xml\nparameters:\n- name: petId\n  in: path\n  description: ID of pet that needs to be updated\n  required: true\n  type: string\n- name: name\n  in: formData\n  description: Updated name of the pet\n  required: false\n  type: string\n- name: status\n  in: formData\n  description: Updated status of the pet\n  required: false\n  type: string\nresponses:\n  '200':\n    description: Pet updated.\n  '405':\n    description: Invalid input\nsecurity:\n- petstore_auth:\n  - write:pets\n  - read:pets\n```\n\n\n#### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"externalDocDescription\"></a>description | `string` | A short description of the target documentation. [GFM syntax](https://guides.github.com/features/mastering-markdown/#GitHub-flavored-markdown) can be used for rich text representation.\n<a name=\"externalDocUrl\"></a>url | `string` | **Required.** The URL for the target documentation. Value MUST be in the format of a URL.\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"externalDocExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### External Documentation Object Example\n\n```js\n{\n  \"description\": \"Find more info here\",\n  \"url\": \"https://swagger.io\"\n}\n```\n\n```yaml\ndescription: Find more info here\nurl: https://swagger.io\n```\n\n#### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn).\n\nThere are five possible parameter types.\n* Path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* Query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`.\n* Header - Custom headers that are expected as part of the request.\n* Body - The payload that's appended to the HTTP request. Since there can only be one payload, there can only be *one* body parameter. The name of the body parameter has no effect on the parameter itself and is used for documentation purposes only. Since Form parameters are also in the payload, body and form parameters cannot exist together for the same operation.\n* Form - Used to describe the payload of an HTTP request when either `application/x-www-form-urlencoded`, `multipart/form-data` or both are used as the content type of the request (in Swagger's definition, the [`consumes`](#operationConsumes) property of an operation). This is the only parameter type that can be used to send files, thus supporting the `file` type. Since form parameters are sent in the payload, they cannot be declared together with a body parameter for the same operation. Form parameters have a different format based on the content-type used (for further details, consult http://www.w3.org/TR/html401/interact/forms.html#h-17.13.4):\n  * `application/x-www-form-urlencoded` - Similar to the format of Query parameters but as a payload. For example, `foo=1&bar=swagger` - both `foo` and `bar` are form parameters. This is normally used for simple parameters that are being transferred.\n  * `multipart/form-data` - each parameter takes a section in the payload with an internal header. For example, for the header `Content-Disposition: form-data; name=\"submit-name\"` the name of the parameter is `submit-name`. This type of form parameters is more commonly used for file transfers.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterName\"></a>name | `string` | **Required.** The name of the parameter. Parameter names are *case sensitive*. <ul><li>If [`in`](#parameterIn) is `\"path\"`, the `name` field MUST correspond to the associated path segment from the [path](#pathsPath) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>For all other cases, the `name` corresponds to the parameter name used based on the [`in`](#parameterIn) property.</ul>\n<a name=\"parameterIn\"></a>in | `string` | **Required.** The location of the parameter. Possible values are \"query\", \"header\", \"path\", \"formData\" or \"body\".\n<a name=\"parameterDescription\"></a>description | `string` | A brief description of the parameter. This could contain examples of use.  [GFM syntax](https://guides.github.com/features/mastering-markdown/#GitHub-flavored-markdown) can be used for rich text representation.\n<a name=\"parameterRequired\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the parameter is [`in`](#parameterIn) \"path\", this property is **required** and its value MUST be `true`. Otherwise, the property MAY be included and its default value is `false`.\n\nIf [`in`](#parameterIn) is `\"body\"`:\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterSchema\"></a>schema | [Schema Object](#schema-object) | **Required.** The schema defining the type used for the body parameter.\n\nIf [`in`](#parameterIn) is any value other than `\"body\"`:\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterType\"></a>type | `string` | **Required.** The type of the parameter. Since the parameter is not located at the request body, it is limited to simple types (that is, not an object). The value MUST be one of `\"string\"`, `\"number\"`, `\"integer\"`, `\"boolean\"`, `\"array\"` or `\"file\"`. If `type` is `\"file\"`, the [`consumes`](#operationConsumes) MUST be either `\"multipart/form-data\"`, `\" application/x-www-form-urlencoded\"` or both and the parameter MUST be [`in`](#parameterIn) `\"formData\"`.\n<a name=\"parameterFormat\"></a>format | `string` | The extending format for the previously mentioned [`type`](#parameterType). See [Data Type Formats](#dataTypeFormat) for further details.\n<a name=\"parameterAllowEmptyValue\"/>allowEmptyValue | `boolean` | Sets the ability to pass empty-valued parameters. This is valid only for either `query` or `formData` parameters and allows you to send a parameter with a name only or  an empty value. Default value is `false`.\n<a name=\"parameterItems\"></a>items | [Items Object](#items-object) | **Required if [`type`](#parameterType) is \"array\".** Describes the type of items in the array.\n<a name=\"parameterCollectionFormat\"></a>collectionFormat | `string` | Determines the format of the array if type array is used. Possible values are: <ul><li>`csv` - comma separated values `foo,bar`. <li>`ssv` - space separated values `foo bar`. <li>`tsv` - tab separated values `foo\\tbar`. <li>`pipes` - pipe separated values <code>foo&#124;bar</code>. <li>`multi` - corresponds to multiple parameter instances instead of multiple values for a single instance `foo=bar&foo=baz`. This is valid only for parameters [`in`](#parameterIn) \"query\" or \"formData\". </ul> Default value is `csv`.\n<a name=\"parameterDefault\"></a>default | * | Declares the value of the parameter that the server will use if none is provided, for example a \"count\" to control the number of results per page might default to 100 if not supplied by the client in the request. (Note: \"default\" has no meaning for required parameters.)  See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-6.2. Unlike JSON Schema this value MUST conform to the defined [`type`](#parameterType) for this parameter.\n<a name=\"parameterMaximum\"></a>maximum | `number` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.2.\n<a name=\"parameterExclusiveMaximum\"></a>exclusiveMaximum | `boolean` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.2.\n<a name=\"parameterMinimum\"></a>minimum | `number` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.3.\n<a name=\"parameterExclusiveMinimum\"></a>exclusiveMinimum | `boolean` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.3.\n<a name=\"parameterMaxLength\"></a>maxLength | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.2.1.\n<a name=\"parameterMinLength\"></a>minLength | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.2.2.\n<a name=\"parameterPattern\"></a>pattern | `string` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.2.3.\n<a name=\"parameterMaxItems\"></a>maxItems | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.3.2.\n<a name=\"parameterMinItems\"></a>minItems | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.3.3.\n<a name=\"parameterUniqueItems\"></a>uniqueItems | `boolean` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.3.4.\n<a name=\"parameterEnum\"></a>enum | [*] | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.5.1.\n<a name=\"parameterMultipleOf\"></a>multipleOf | `number` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.1.\n\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"parameterExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n\n##### Parameter Object Examples\n\n###### Body Parameters\n\nA body parameter with a referenced schema definition (normally for a model definition):\n```js\n{\n  \"name\": \"user\",\n  \"in\": \"body\",\n  \"description\": \"user to add to the system\",\n  \"required\": true,\n  \"schema\": {\n    \"$ref\": \"#/definitions/User\"\n  }\n}\n```\n\n```yaml\nname: user\nin: body\ndescription: user to add to the system\nrequired: true\nschema:\n  $ref: '#/definitions/User'\n```\n\nA body parameter that is an array of string values:\n```js\n{\n  \"name\": \"user\",\n  \"in\": \"body\",\n  \"description\": \"user to add to the system\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  }\n}\n```\n\n```yaml\nname: user\nin: body\ndescription: user to add to the system\nrequired: true\nschema:\n  type: array\n  items:\n    type: string\n```\n\n###### Other Parameters\n\nA header parameter with an array of 64 bit integer numbers:\n\n```js\n{\n  \"name\": \"token\",\n  \"in\": \"header\",\n  \"description\": \"token to be passed as a header\",\n  \"required\": true,\n  \"type\": \"array\",\n  \"items\": {\n    \"type\": \"integer\",\n    \"format\": \"int64\"\n  },\n  \"collectionFormat\": \"csv\"\n}\n```\n\n```yaml\nname: token\nin: header\ndescription: token to be passed as a header\nrequired: true\ntype: array\nitems:\n  type: integer\n  format: int64\ncollectionFormat: csv\n```\n\nA path parameter of a string value:\n```js\n{\n  \"name\": \"username\",\n  \"in\": \"path\",\n  \"description\": \"username to fetch\",\n  \"required\": true,\n  \"type\": \"string\"\n}\n```\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\ntype: string\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter:\n```js\n{\n  \"name\": \"id\",\n  \"in\": \"query\",\n  \"description\": \"ID of the object to fetch\",\n  \"required\": false,\n  \"type\": \"array\",\n  \"items\": {\n    \"type\": \"string\"\n  },\n  \"collectionFormat\": \"multi\"\n}\n```\n\n```yaml\nname: id\nin: query\ndescription: ID of the object to fetch\nrequired: false\ntype: array\nitems:\n  type: string\ncollectionFormat: multi\n```\n\nA form data with file type for a file upload:\n```js\n{\n  \"name\": \"avatar\",\n  \"in\": \"formData\",\n  \"description\": \"The avatar of the user\",\n  \"required\": true,\n  \"type\": \"file\"\n}\n```\n\n```yaml\nname: avatar\nin: formData\ndescription: The avatar of the user\nrequired: true\ntype: file\n```\n\n#### Items Object\n\nA limited subset of JSON-Schema's items object. It is used by parameter definitions that are not located [`in`](#parameterIn) `\"body\"`.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"itemsType\"></a>type | `string` | **Required.** The internal type of the array. The value MUST be one of `\"string\"`, `\"number\"`, `\"integer\"`, `\"boolean\"`, or `\"array\"`. Files and models are not allowed.\n<a name=\"itemsFormat\"></a>format | `string` | The extending format for the previously mentioned [`type`](#parameterType). See [Data Type Formats](#dataTypeFormat) for further details.\n<a name=\"itemsItems\"></a>items | [Items Object](#items-object) | **Required if [`type`](#itemsType) is \"array\".** Describes the type of items in the array.\n<a name=\"itemsCollectionFormat\"></a>collectionFormat | `string` | Determines the format of the array if type array is used. Possible values are: <ul><li>`csv` - comma separated values `foo,bar`. <li>`ssv` - space separated values `foo bar`. <li>`tsv` - tab separated values `foo\\tbar`. <li>`pipes` - pipe separated values <code>foo&#124;bar</code>. </ul> Default value is `csv`.\n<a name=\"itemsDefault\"></a>default | * | Declares the value of the item that the server will use if none is provided. (Note: \"default\" has no meaning for required items.) See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-6.2. Unlike JSON Schema this value MUST conform to the defined [`type`](#itemsType) for the data type.\n<a name=\"itemsMaximum\"></a>maximum | `number` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.2.\n<a name=\"itemsMaximum\"></a>exclusiveMaximum | `boolean` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.2.\n<a name=\"itemsMinimum\"></a>minimum | `number` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.3.\n<a name=\"itemsExclusiveMinimum\"></a>exclusiveMinimum | `boolean` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.3.\n<a name=\"itemsMaxLength\"></a>maxLength | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.2.1.\n<a name=\"itemsMinLength\"></a>minLength | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.2.2.\n<a name=\"itemsPattern\"></a>pattern | `string` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.2.3.\n<a name=\"itemsMaxItems\"></a>maxItems | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.3.2.\n<a name=\"itemsMinItems\"></a>minItems | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.3.3.\n<a name=\"itemsUniqueItems\"></a>uniqueItems | `boolean` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.3.4.\n<a name=\"itemsEnum\"></a>enum | [*] | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.5.1.\n<a name=\"itemsMultipleOf\"></a>multipleOf | `number` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.1.\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"itemsExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Items Object Examples\n\nItems must be of type  string and have the minimum length of  2 characters:\n\n```js\n{\n    \"type\": \"string\",\n    \"minLength\": 2\n}\n```\n\n```yaml\ntype: string\nminLength: 2\n```\n\nAn array of arrays, the internal array being of type integer, numbers must be between 0 and 63 (inclusive):\n\n```js\n{\n    \"type\": \"array\",\n    \"items\": {\n        \"type\": \"integer\",\n        \"minimum\": 0,\n        \"maximum\": 63\n    }\n}\n```\n\n```yaml\ntype: array\nitems:\n  type: integer\n  minimum: 0\n  maximum: 63\n```\n\n#### Responses Object\n\nA container for the expected responses of an operation. The container maps a HTTP response code to the expected response. It is not expected from the documentation to necessarily cover all possible HTTP response codes, since they may not be known in advance. However, it is expected from the documentation to cover a successful operation response and any known errors.\n\nThe `default` can be used as the default response object for all HTTP codes that are not covered individually by the specification.\n\nThe `Responses Object` MUST contain at least one response code, and it SHOULD be the response for a successful operation call.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responsesDefault\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. It can be used to cover undeclared responses. [Reference Object](#reference-object) can be used to link to a response that is defined at the [Swagger Object's responses](#swaggerResponses) section.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"responsesCode\"></a>{[HTTP Status Code](#http-status-codes)} | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name (one property per HTTP status code). Describes the expected response for that HTTP status code.  [Reference Object](#reference-object) can be used to link to a response that is defined at the [Swagger Object's responses](#swaggerResponses) section.\n<a name=\"responsesExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n\n##### Responses Object Example\n\nA 200 response for successful operation and a default response for others (implying an error):\n\n```js\n{\n  \"200\": {\n    \"description\": \"a pet to be returned\",\n    \"schema\": {\n      \"$ref\": \"#/definitions/Pet\"\n    }\n  },\n  \"default\": {\n    \"description\": \"Unexpected error\",\n    \"schema\": {\n      \"$ref\": \"#/definitions/ErrorModel\"\n    }\n  }\n}\n```\n\n```yaml\n'200':\n  description: a pet to be returned\n  schema:\n    $ref: '#/definitions/Pet'\ndefault:\n  description: Unexpected error\n  schema:\n    $ref: '#/definitions/ErrorModel'\n```\n\n#### Response Object\nDescribes a single response from an API Operation.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responseDescription\"></a>description | `string` | **Required.** A short description of the response. [GFM syntax](https://guides.github.com/features/mastering-markdown/#GitHub-flavored-markdown) can be used for rich text representation.\n<a name=\"responseSchema\"></a>schema | [Schema Object](#schema-object) | A definition of the response structure. It can be a primitive, an array or an object. If this field does not exist, it means no content is returned as part of the response. As an extension to the [Schema Object](#schema-object), its root `type` value may also be `\"file\"`. This SHOULD be accompanied by a relevant `produces` mime-type.\n<a name=\"responseHeaders\"></a>headers | [Headers Object](#headers-object) | A list of headers that are sent with the response.\n<a name=\"responseExamples\"></a>examples | [Example Object](#example-object) | An example of the response message.\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"responseExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Response Object Examples\n\nResponse of an array of a complex type:\n\n```js\n{\n  \"description\": \"A complex object array response\",\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"$ref\": \"#/definitions/VeryComplexType\"\n    }\n  }\n}\n```\n\n```yaml\ndescription: A complex object array response\nschema:\n  type: array\n  items:\n    $ref: '#/definitions/VeryComplexType'\n```\n\nResponse with a string type:\n\n```js\n{\n  \"description\": \"A simple string response\",\n  \"schema\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\nschema:\n  type: string\n```\n\nResponse with headers:\n\n```js\n{\n  \"description\": \"A simple string response\",\n  \"schema\": {\n    \"type\": \"string\"\n  },\n  \"headers\": {\n    \"X-Rate-Limit-Limit\": {\n      \"description\": \"The number of allowed requests in the current period\",\n      \"type\": \"integer\"\n    },\n    \"X-Rate-Limit-Remaining\": {\n      \"description\": \"The number of remaining requests in the current period\",\n      \"type\": \"integer\"\n    },\n    \"X-Rate-Limit-Reset\": {\n      \"description\": \"The number of seconds left in the current period\",\n      \"type\": \"integer\"\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\nschema:\n  type: string\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    type: integer\n```\n\nResponse with no return value:\n\n```js\n{\n  \"description\": \"object created\"\n}\n```\n\n```yaml\ndescription: object created\n```\n\n#### Headers Object\nLists the headers that can be sent as part of a response.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"headersName\"></a>{name} | [Header Object](#header-object) | The name of the property corresponds to the name of the header. The value describes the type of the header.\n\n##### Headers Object Example\n\nRate-limit headers:\n\n```js\n{\n    \"X-Rate-Limit-Limit\": {\n        \"description\": \"The number of allowed requests in the current period\",\n        \"type\": \"integer\"\n    },\n    \"X-Rate-Limit-Remaining\": {\n        \"description\": \"The number of remaining requests in the current period\",\n        \"type\": \"integer\"\n    },\n    \"X-Rate-Limit-Reset\": {\n        \"description\": \"The number of seconds left in the current period\",\n        \"type\": \"integer\"\n    }\n}\n```\n\n```yaml\nX-Rate-Limit-Limit:\n  description: The number of allowed requests in the current period\n  type: integer\nX-Rate-Limit-Remaining:\n  description: The number of remaining requests in the current period\n  type: integer\nX-Rate-Limit-Reset:\n  description: The number of seconds left in the current period\n  type: integer\n```\n\n#### Example Object\n\nAllows sharing examples for operation responses.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"exampleMimeType\"></a>{[mime type](#mime-types)} | Any | The name of the property MUST be one of the Operation `produces` values (either implicit or inherited). The value SHOULD be an example of what such a response would look like.\n\n##### Example Object Example\n\nExample response for application/json mimetype of a Pet data type:\n\n```js\n{\n  \"application/json\": {\n    \"name\": \"Puma\",\n    \"type\": \"Dog\",\n    \"color\": \"Black\",\n    \"gender\": \"Female\",\n    \"breed\": \"Mixed\"\n  }\n}\n```\n\n```yaml\napplication/json:\n  name: Puma\n  type: Dog\n  color: Black\n  gender: Female\n  breed: Mixed\n```\n\n#### Header Object\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"headerDescription\"></a>description | `string` | A short description of the header.\n<a name=\"headerType\"></a>type | `string` | **Required.** The type of the object. The value MUST be one of `\"string\"`, `\"number\"`, `\"integer\"`, `\"boolean\"`, or `\"array\"`.\n<a name=\"headerFormat\"></a>format | `string` | The extending format for the previously mentioned [`type`](#stType). See [Data Type Formats](#dataTypeFormat) for further details.\n<a name=\"headerItems\"></a>items | [Items Object](#items-object) | **Required if [`type`](#stType) is \"array\".** Describes the type of items in the array.\n<a name=\"headerCollectionFormat\"></a>collectionFormat | `string` | Determines the format of the array if type array is used. Possible values are: <ul><li>`csv` - comma separated values `foo,bar`. <li>`ssv` - space separated values `foo bar`. <li>`tsv` - tab separated values `foo\\tbar`. <li>`pipes` - pipe separated values <code>foo&#124;bar</code>. </ul> Default value is `csv`.\n<a name=\"headerDefault\"></a>default | * | Declares the value of the header that the server will use if none is provided. (Note: \"default\" has no meaning for required headers.) See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-6.2. Unlike JSON Schema this value MUST conform to the defined [`type`](#headerDefault) for the header.\n<a name=\"headerMaximum\"></a>maximum | `number` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.2.\n<a name=\"headerMaximum\"></a>exclusiveMaximum | `boolean` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.2.\n<a name=\"headerMinimum\"></a>minimum | `number` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.3.\n<a name=\"headerExclusiveMinimum\"></a>exclusiveMinimum | `boolean` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.3.\n<a name=\"headerMaxLength\"></a>maxLength | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.2.1.\n<a name=\"headerMinLength\"></a>minLength | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.2.2.\n<a name=\"headerPattern\"></a>pattern | `string` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.2.3.\n<a name=\"headerMaxItems\"></a>maxItems | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.3.2.\n<a name=\"headerMinItems\"></a>minItems | `integer` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.3.3.\n<a name=\"headerUniqueItems\"></a>uniqueItems | `boolean` | https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.3.4.\n<a name=\"headerEnum\"></a>enum | [*] | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.5.1.\n<a name=\"headerMultipleOf\"></a>multipleOf | `number` | See https://tools.ietf.org/html/draft-fge-json-schema-validation-00#section-5.1.1.\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"headerExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Header Object Example\n\nA simple header with of an integer type:\n\n```js\n{\n  \"description\": \"The number of allowed requests in the current period\",\n  \"type\": \"integer\"\n}\n```\n\n```yaml\ndescription: The number of allowed requests in the current period\ntype: integer\n```\n\n#### Tag Object\n\nAllows adding meta data to a single tag that is used by the [Operation Object](#operation-object). It is not mandatory to have a Tag Object per tag used there.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"tagName\"></a>name | `string` | **Required.** The name of the tag.\n<a name=\"tagDescription\"></a>description | `string` | A short description for the tag. [GFM syntax](https://guides.github.com/features/mastering-markdown/#GitHub-flavored-markdown) can be used for rich text representation.\n<a name=\"tagExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"tagExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Tag Object Example\n\n```js\n{\n\t\"name\": \"pet\",\n\t\"description\": \"Pets operations\"\n}\n```\n\n```yaml\nname: pet\ndescription: Pets operations\n```\n\n#### Reference Object\n\nA simple object to allow referencing other definitions in the specification. It can be used to reference parameters and responses that are defined at the top level for reuse.\n\nThe Reference Object is a [JSON Reference](http://tools.ietf.org/html/draft-pbryan-zyp-json-ref-02) that uses a [JSON Pointer](http://tools.ietf.org/html/rfc6901) as its value. For this specification, only [canonical dereferencing](https://tools.ietf.org/html/draft-zyp-json-schema-04#section-7.2.3) is supported.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"referenceRef\"></a>$ref | `string` | **Required.** The reference string.\n\n##### Reference Object Example\n\n```js\n{\n\t\"$ref\": \"#/definitions/Pet\"\n}\n```\n\n```yaml\n$ref: '#/definitions/Pet'\n```\n\n##### Relative Schema File Example\n```js\n{\n  \"$ref\": \"Pet.json\"\n}\n```\n\n```yaml\n$ref: 'Pet.yaml'\n```\n\n##### Relative Files With Embedded Schema Example\n```js\n{\n  \"$ref\": \"definitions.json#/Pet\"\n}\n```\n\n```yaml\n$ref: 'definitions.yaml#/Pet'\n```\n\n#### Schema Object\n\nThe Schema Object allows the definition of input and output data types. These types can be objects, but also primitives and arrays. This object is based on the [JSON Schema Specification Draft 4](http://json-schema.org/) and uses a predefined subset of it. On top of this subset, there are extensions provided by this specification to allow for more complete documentation.\n\nFurther information about the properties can be found in [JSON Schema Core](https://tools.ietf.org/html/draft-zyp-json-schema-04) and [JSON Schema Validation](https://tools.ietf.org/html/draft-fge-json-schema-validation-00). Unless stated otherwise, the property definitions follow the JSON Schema specification as referenced here.\n\nThe following properties are taken directly from the JSON Schema definition and follow the same specifications:\n- $ref - As a [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03)\n- format (See [Data Type Formats](#dataTypeFormat) for further details)\n- title\n- description ([GFM syntax](https://guides.github.com/features/mastering-markdown/#GitHub-flavored-markdown) can be used for rich text representation)\n- default (Unlike JSON Schema, the value MUST conform to the defined type for the Schema Object)\n- multipleOf\n- maximum\n- exclusiveMaximum\n- minimum\n- exclusiveMinimum\n- maxLength\n- minLength\n- pattern\n- maxItems\n- minItems\n- uniqueItems\n- maxProperties\n- minProperties\n- required\n- enum\n- type\n\nThe following properties are taken from the JSON Schema definition but their definitions were adjusted to the Swagger Specification. Their definition is the same as the one from JSON Schema, only where the original definition references the JSON Schema definition, the [Schema Object](#schema-object) definition is used instead.\n- items\n- allOf\n- properties\n- additionalProperties\n\nOther than the JSON Schema subset fields, the following fields may be used for further schema documentation.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"schemaDiscriminator\"></a>discriminator | `string` | Adds support for polymorphism. The discriminator is the schema property name that is used to differentiate between other schema that inherit this schema. The property name used MUST be defined at this schema and it MUST be in the `required` property list. When used, the value MUST be the name of this schema or any schema that inherits it.\n<a name=\"schemaReadOnly\"></a>readOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"read only\". This means that it MAY be sent as part of a response but MUST NOT be sent as part of the request. Properties marked as `readOnly` being `true` SHOULD NOT be in the `required` list of the defined schema. Default value is `false`.\n<a name=\"schemaXml\"></a>xml | [XML Object](#xml-object) | This MAY be used only on properties schemas. It has no effect on root schemas. Adds Additional metadata to describe the XML representation format of this property.\n<a name=\"schemaExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema.\n<a name=\"schemaExample\"></a>example | Any | A free-form property to include an example of an instance for this schema.\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"schemaExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n###### Composition and Inheritance (Polymorphism)\n\nSwagger allows combining and extending model definitions using the `allOf` property of JSON Schema, in effect offering model composition. `allOf` takes in an array of object definitions that are validated *independently* but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models. To support polymorphism, Swagger adds the support of the `discriminator` field. When used, the `discriminator` will be the name of the property used to decide which schema definition is used to validate the structure of the model. As such, the `discriminator` field MUST be a required field. The value of the chosen property has to be the friendly name given to the model under the `definitions` property. As such, inline schema definitions, which do not have a given id, *cannot* be used in polymorphism.\n\n###### XML Modeling\n\nThe [xml](#schemaXml) property allows extra definitions when translating the JSON definition to XML. The [XML Object](#xml-object) contains additional information about the available options.\n\n##### Schema Object Examples\n\n###### Primitive Sample\n\nUnlike previous versions of Swagger, Schema definitions can be used to describe primitive and arrays as well.\n\n```js\n{\n    \"type\": \"string\",\n    \"format\": \"email\"\n}\n```\n\n```yaml\ntype: string\nformat: email\n```\n\n###### Simple Model\n\n```js\n{\n  \"type\": \"object\",\n  \"required\": [\n    \"name\"\n  ],\n  \"properties\": {\n    \"name\": {\n      \"type\": \"string\"\n    },\n    \"address\": {\n      \"$ref\": \"#/definitions/Address\"\n    },\n    \"age\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\",\n      \"minimum\": 0\n    }\n  }\n}\n```\n\n```yaml\ntype: object\nrequired:\n- name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/definitions/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n###### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```js\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```js\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"$ref\": \"#/definitions/ComplexModel\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/definitions/ComplexModel'\n```\n\n###### Model with Example\n\n```js\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"name\": {\n      \"type\": \"string\"\n    }\n  },\n  \"required\": [\n    \"name\"\n  ],\n  \"example\": {\n    \"name\": \"Puma\",\n    \"id\": 1\n  }\n}\n```\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n- name\nexample:\n  name: Puma\n  id: 1\n```\n\n###### Models with Composition\n\n```js\n{\n  \"definitions\": {\n    \"ErrorModel\": {\n      \"type\": \"object\",\n      \"required\": [\n        \"message\",\n        \"code\"\n      ],\n      \"properties\": {\n        \"message\": {\n          \"type\": \"string\"\n        },\n        \"code\": {\n          \"type\": \"integer\",\n          \"minimum\": 100,\n          \"maximum\": 600\n        }\n      }\n    },\n    \"ExtendedErrorModel\": {\n      \"allOf\": [\n        {\n          \"$ref\": \"#/definitions/ErrorModel\"\n        },\n        {\n          \"type\": \"object\",\n          \"required\": [\n            \"rootCause\"\n          ],\n          \"properties\": {\n            \"rootCause\": {\n              \"type\": \"string\"\n            }\n          }\n        }\n      ]\n    }\n  }\n}\n```\n\n```yaml\ndefinitions:\n  ErrorModel:\n    type: object\n    required:\n    - message\n    - code\n    properties:\n      message:\n        type: string\n      code:\n        type: integer\n        minimum: 100\n        maximum: 600\n  ExtendedErrorModel:\n    allOf:\n    - $ref: '#/definitions/ErrorModel'\n    - type: object\n      required:\n      - rootCause\n      properties:\n        rootCause:\n          type: string\n```\n\n###### Models with Polymorphism Support\n\n```js\n{\n  \"definitions\": {\n    \"Pet\": {\n      \"type\": \"object\",\n      \"discriminator\": \"petType\",\n      \"properties\": {\n        \"name\": {\n          \"type\": \"string\"\n        },\n        \"petType\": {\n          \"type\": \"string\"\n        }\n      },\n      \"required\": [\n        \"name\",\n        \"petType\"\n      ]\n    },\n    \"Cat\": {\n      \"description\": \"A representation of a cat\",\n      \"allOf\": [\n        {\n          \"$ref\": \"#/definitions/Pet\"\n        },\n        {\n          \"type\": \"object\",\n          \"properties\": {\n            \"huntingSkill\": {\n              \"type\": \"string\",\n              \"description\": \"The measured skill for hunting\",\n              \"default\": \"lazy\",\n              \"enum\": [\n                \"clueless\",\n                \"lazy\",\n                \"adventurous\",\n                \"aggressive\"\n              ]\n            }\n          },\n          \"required\": [\n            \"huntingSkill\"\n          ]\n        }\n      ]\n    },\n    \"Dog\": {\n      \"description\": \"A representation of a dog\",\n      \"allOf\": [\n        {\n          \"$ref\": \"#/definitions/Pet\"\n        },\n        {\n          \"type\": \"object\",\n          \"properties\": {\n            \"packSize\": {\n              \"type\": \"integer\",\n              \"format\": \"int32\",\n              \"description\": \"the size of the pack the dog is from\",\n              \"default\": 0,\n              \"minimum\": 0\n            }\n          },\n          \"required\": [\n            \"packSize\"\n          ]\n        }\n      ]\n    }\n  }\n}\n```\n\n```yaml\ndefinitions:\n  Pet:\n    type: object\n    discriminator: petType\n    properties:\n      name:\n        type: string\n      petType:\n        type: string\n    required:\n    - name\n    - petType\n  Cat:\n    description: A representation of a cat\n    allOf:\n    - $ref: '#/definitions/Pet'\n    - type: object\n      properties:\n        huntingSkill:\n          type: string\n          description: The measured skill for hunting\n          default: lazy\n          enum:\n          - clueless\n          - lazy\n          - adventurous\n          - aggressive\n      required:\n      - huntingSkill\n  Dog:\n    description: A representation of a dog\n    allOf:\n    - $ref: '#/definitions/Pet'\n    - type: object\n      properties:\n        packSize:\n          type: integer\n          format: int32\n          description: the size of the pack the dog is from\n          default: 0\n          minimum: 0\n      required:\n      - packSize\n```\n\n#### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\n\nWhen using arrays, XML element names are *not* inferred (for singular/plural forms) and the `name` property should be used to add that information. See examples for expected behavior.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"xmlName\"></a>name | `string` | Replaces the name of the element/attribute used for the described schema property. When defined within the Items Object (`items`), it will affect the name of the individual XML elements within the list. When defined alongside `type` being `array` (outside the `items`), it will affect the wrapping element and only if `wrapped` is `true`. If `wrapped` is `false`, it will be ignored.\n<a name=\"xmlNamespace\"></a>namespace | `string` | The URL of the namespace definition. Value SHOULD be in the form of a URL.\n<a name=\"xmlPrefix\"></a>prefix | `string` | The prefix to be used for the [name](#xmlName).\n<a name=\"xmlAttribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`.\n<a name=\"xmlWrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `array` (outside the `items`).\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"xmlExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### XML Object Examples\n\nThe examples of the XML object definitions are included inside a property definition of a [Schema Object](#schema-object) with a sample of the XML representation of it.\n\n###### No XML Element\n\nBasic string property:\n\n```js\n{\n    \"animals\": {\n        \"type\": \"string\"\n    }\n}\n```\n\n```yaml\nanimals:\n  type: string\n```\n\n```xml\n<animals>...</animals>\n```\n\nBasic string array property ([`wrapped`](#xmlWrapped) is `false` by default):\n\n```js\n{\n    \"animals\": {\n        \"type\": \"array\",\n        \"items\": {\n            \"type\": \"string\"\n        }\n    }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n```\n\n```xml\n<animals>...</animals>\n<animals>...</animals>\n<animals>...</animals>\n```\n\n###### XML Name Replacement\n\n```js\n{\n  \"animals\": {\n    \"type\": \"string\",\n    \"xml\": {\n      \"name\": \"animal\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n  xml:\n    name: animal\n```\n\n```xml\n<animal>...</animal>\n```\n\n\n###### XML Attribute, Prefix and Namespace\n\nIn this example, a full model definition is shown.\n\n```js\n{\n  \"Person\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\",\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"name\": {\n        \"type\": \"string\",\n        \"xml\": {\n          \"namespace\": \"http://swagger.io/schema/sample\",\n          \"prefix\": \"sample\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nPerson:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int32\n      xml:\n        attribute: true\n    name:\n      type: string\n      xml:\n        namespace: http://swagger.io/schema/sample\n        prefix: sample\n```\n\n```xml\n<Person id=\"123\">\n    <sample:name xmlns:sample=\"http://swagger.io/schema/sample\">example</sample:name>\n</Person>\n```\n\n###### XML Arrays\n\nChanging the element names:\n\n```js\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nThe external `name` property has no effect on the XML:\n\n```js\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nEven when the array is wrapped, if no name is explicitly defined, the same name will be used both internally and externally:\n\n```js\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animals>value</animals>\n  <animals>value</animals>\n</animals>\n```\n\nTo overcome the above example, the following definition can be used:\n\n```js\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animal>value</animal>\n  <animal>value</animal>\n</animals>\n```\n\nAffecting both internal and external names:\n\n```js\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <animal>value</animal>\n  <animal>value</animal>\n</aliens>\n```\n\nIf we change the external element but not the internal ones:\n\n```js\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <aliens>value</aliens>\n  <aliens>value</aliens>\n</aliens>\n```\n\n#### Definitions Object\n\nAn object to hold data types that can be consumed and produced by operations. These data types can be primitives, arrays or models.\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"definitionsName\"></a>{name} | [Schema Object](#schema-object) | A single definition, mapping a \"name\" to the schema it defines.\n\n##### Definitions Object Example\n\n```js\n{\n  \"Category\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int64\"\n      },\n      \"name\": {\n        \"type\": \"string\"\n      }\n    }\n  },\n  \"Tag\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int64\"\n      },\n      \"name\": {\n        \"type\": \"string\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nCategory:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int64\n    name:\n      type: string\nTag:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int64\n    name:\n      type: string\n```\n\n#### Parameters Definitions Object\n\nAn object to hold parameters to be reused across operations. Parameter definitions can be referenced to the ones defined here.\n\nThis does *not* define global operation parameters.\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"pdName\"></a>{name} | [Parameter Object](#parameter-object) | A single parameter definition, mapping a \"name\" to the parameter it defines.\n\n##### Parameters Definition Object Example\n\n```js\n{\n  \"skipParam\": {\n    \"name\": \"skip\",\n    \"in\": \"query\",\n    \"description\": \"number of items to skip\",\n    \"required\": true,\n    \"type\": \"integer\",\n    \"format\": \"int32\"\n  },\n  \"limitParam\": {\n    \"name\": \"limit\",\n    \"in\": \"query\",\n    \"description\": \"max records to return\",\n    \"required\": true,\n    \"type\": \"integer\",\n    \"format\": \"int32\"\n  }\n}\n```\n\n```yaml\nskipParam:\n  name: skip\n  in: query\n  description: number of items to skip\n  required: true\n  type: integer\n  format: int32\nlimitParam:\n  name: limit\n  in: query\n  description: max records to return\n  required: true\n  type: integer\n  format: int32\n```\n\n\n#### Responses Definitions Object\n\nAn object to hold responses to be reused across operations. Response definitions can be referenced to the ones defined here.\n\nThis does *not* define global operation responses.\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"rdName\"></a>{name} | [Response Object](#response-object) | A single response definition, mapping a \"name\" to the response it defines.\n\n##### Responses Definitions Object Example\n\n```js\n{\n  \"NotFound\": {\n    \"description\": \"Entity not found.\"\n  },\n  \"IllegalInput\": {\n  \t\"description\": \"Illegal input for operation.\"\n  },\n  \"GeneralError\": {\n  \t\"description\": \"General Error\",\n  \t\"schema\": {\n  \t\t\"$ref\": \"#/definitions/GeneralError\"\n  \t}\n  }\n}\n```\n\n```yaml\nNotFound:\n  description: Entity not found.\nIllegalInput:\n  description: Illegal input for operation.\nGeneralError:\n  description: General Error\n  schema:\n    $ref: '#/definitions/GeneralError'\n```\n\n#### Security Definitions Object\n\nA declaration of the security schemes available to be used in the specification. This does not enforce the security schemes on the operations and only serves to provide the relevant details for each scheme.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"sdName\"></a>{name} | [Security Scheme Object](#security-scheme-object) | A single security scheme definition, mapping a \"name\" to the scheme it defines.\n\n##### Security Definitions Object Example\n\n```js\n{\n  \"api_key\": {\n    \"type\": \"apiKey\",\n    \"name\": \"api_key\",\n    \"in\": \"header\"\n  },\n  \"petstore_auth\": {\n    \"type\": \"oauth2\",\n    \"authorizationUrl\": \"http://swagger.io/api/oauth/dialog\",\n    \"flow\": \"implicit\",\n    \"scopes\": {\n      \"write:pets\": \"modify pets in your account\",\n      \"read:pets\": \"read your pets\"\n    }\n  }\n}\n```\n\n```yaml\napi_key:\n  type: apiKey\n  name: api_key\n  in: header\npetstore_auth:\n  type: oauth2\n  authorizationUrl: http://swagger.io/api/oauth/dialog\n  flow: implicit\n  scopes:\n    write:pets: modify pets in your account\n    read:pets: read your pets\n```\n\n#### Security Scheme Object\n\nAllows the definition of a security scheme that can be used by the operations. Supported schemes are basic authentication, an API key (either as a header or as a query parameter) and OAuth2's common flows (implicit, password, application and access code).\n\n##### Fixed Fields\nField Name | Type | Validity | Description\n---|:---:|---|---\n<a name=\"securitySchemeType\"></a>type | `string` | Any | **Required.** The type of the security scheme. Valid values are `\"basic\"`, `\"apiKey\"` or `\"oauth2\"`.\n<a name=\"securitySchemeDescription\"></a>description | `string` | Any | A short description for security scheme.\n<a name=\"securitySchemeName\"></a>name | `string` | `apiKey` | **Required.** The name of the header or query parameter to be used.\n<a name=\"securitySchemeIn\"></a>in | `string` | `apiKey` | **Required** The location of the API key. Valid values are `\"query\"` or `\"header\"`.\n<a name=\"securitySchemeFlow\"></a>flow | `string` | `oauth2` | **Required.** The flow used by the OAuth2 security scheme. Valid values are `\"implicit\"`, `\"password\"`, `\"application\"` or `\"accessCode\"`.\n<a name=\"securitySchemeAuthorizationUrl\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"accessCode\"`) | **Required.** The authorization URL to be used for this flow. This SHOULD be in the form of a URL.\n<a name=\"securitySchemeTokenUrl\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"application\"`, `\"accessCode\"`) | **Required.** The token URL to be used for this flow. This SHOULD be in the form of a URL.\n<a name=\"securitySchemeScopes\"></a>scopes | [Scopes Object](#scopes-object) | `oauth2` | **Required.** The available scopes for the OAuth2 security scheme.\n\n##### Patterned Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"securitySchemeExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Security Scheme Object Example\n\n###### Basic Authentication Sample\n\n```js\n{\n  \"type\": \"basic\"\n}\n```\n\n```yaml\ntype: basic\n```\n\n###### API Key Sample\n\n```js\n{\n  \"type\": \"apiKey\",\n  \"name\": \"api_key\",\n  \"in\": \"header\"\n}\n```\n\n```yaml\ntype: apiKey\nname: api_key\nin: header\n```\n\n###### Implicit OAuth2 Sample\n\n```js\n{\n  \"type\": \"oauth2\",\n  \"authorizationUrl\": \"http://swagger.io/api/oauth/dialog\",\n  \"flow\": \"implicit\",\n  \"scopes\": {\n    \"write:pets\": \"modify pets in your account\",\n    \"read:pets\": \"read your pets\"\n  }\n}\n```\n\n```yaml\ntype: oauth2\nauthorizationUrl: http://swagger.io/api/oauth/dialog\nflow: implicit\nscopes:\n  write:pets: modify pets in your account\n  read:pets: read your pets\n```\n\n#### Scopes Object\n\nLists the available scopes for an OAuth2 security scheme.\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"scopesName\"></a>{name} | `string` | Maps between a name of a scope to a short description of it (as the value of the property).\n\n##### Patterned Objects\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"scopesExtensions\"></a>^x- | Any | Allows extensions to the Swagger Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. See [Vendor Extensions](#specification-extensions) for further details.\n\n##### Scopes Object Example\n\n```js\n{\n  \"write:pets\": \"modify pets in your account\",\n  \"read:pets\": \"read your pets\"\n}\n```\n\n```yaml\nwrite:pets: modify pets in your account\nread:pets: read your pets\n```\n\n#### Security Requirement Object\n\nLists the required security schemes to execute this operation. The object can have multiple security schemes declared in it which are all required (that is, there is a logical AND between the schemes).\n\nThe name used for each property MUST correspond to a security scheme declared in the [Security Definitions](#security-definitions-object).\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"securityRequirementsName\"></a>{name} | [`string`] | Each name must correspond to a security scheme which is declared in the [Security Definitions](#securityDefinitions). If the security scheme is of type `\"oauth2\"`, then the value is a list of scope names required for the execution. For other security scheme types, the array MUST be empty.\n\n##### Security Requirement Object Examples\n\n###### Non-OAuth2 Security Requirement\n\n```js\n{\n  \"api_key\": []\n}\n```\n\n```yaml\napi_key: []\n```\n\n###### OAuth2 Security Requirement\n\n```js\n{\n  \"petstore_auth\": [\n    \"write:pets\",\n    \"read:pets\"\n  ]\n}\n```\n\n```yaml\npetstore_auth:\n- write:pets\n- read:pets\n```\n\n### Specification Extensions\n\nWhile the Swagger Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are always prefixed by `\"x-\"` and can have any valid JSON format value.\n\nThe extensions may or may not be supported by the available tooling, but those may be extended as well to add requested support (if tools are internal or open-sourced).\n\n### Security Filtering\n\nSome objects in the Swagger specification may be declared and remain empty, or completely be removed, even though they are inherently the core of the API documentation.\n\nThe reasoning behind it is to allow an additional layer of access control over the documentation itself. While not part of the specification itself, certain libraries may choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples for this:\n\n1. The [Paths Object](#paths-object) may be empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They'd still have access to the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) may be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different than hiding the path itself from the [Paths Object](#paths-object) so the user will not be aware of its existence. This allows the documentation provider a finer control over what the viewer can see.\n"
  },
  {
    "path": "versions/3.0.0-editors.md",
    "content": "## Active\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Ron Ratovsky [@webron](https://github.com/webron)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n\n## Emeritus\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n"
  },
  {
    "path": "versions/3.0.0.md",
    "content": "# OpenAPI Specification\n\n#### Version 3.0.0\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"NOT RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [BCP 14](https://tools.ietf.org/html/bcp14) [RFC2119](https://tools.ietf.org/html/rfc2119) [RFC8174](https://tools.ietf.org/html/rfc8174) when, and only when, they appear in all capitals, as shown here.\n\nThis document is licensed under [The Apache License, Version 2.0](http://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introduction\n\nThe OpenAPI Specification (OAS) defines a standard, language-agnostic interface to RESTful APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined, a consumer can understand and interact with the remote service with a minimal amount of implementation logic.\n\nAn OpenAPI definition can then be used by documentation generation tools to display the API, code generation tools to generate servers and clients in various programming languages, testing tools, and many other use cases.\n\n## Table of Contents\n<!-- TOC depthFrom:1 depthTo:3 withLinks:1 updateOnSave:1 orderedList:0 -->\n\n- [Definitions](#definitions)\n\t- [OpenAPI Document](#openapi-document)\n\t- [Path Templating](#path-templating)\n\t- [Media Types](#media-types)\n\t- [HTTP Status Codes](#http-status-codes)\n- [Specification](#specification)\n\t- [Versions](#versions)\n\t- [Format](#format)\n\t- [Document Structure](#document-structure)\n\t- [Data Types](#data-types)\n\t- [Rich Text Formatting](#rich-text-formatting)\n\t- [Relative References In URLs](#relative-references-in-urls)\n\t- [Schema](#schema)\n\t\t- [OpenAPI Object](#openapi-object)\n\t\t- [Info Object](#info-object)\n\t\t- [Contact Object](#contact-object)\n\t\t- [License Object](#license-object)\n\t\t- [Server Object](#server-object)\n\t\t- [Server Variable Object](#server-variable-object)\n\t\t- [Components Object](#components-object)\n\t\t- [Paths Object](#paths-object)\n\t\t- [Path Item Object](#path-item-object)\n\t\t- [Operation Object](#operation-object)\n\t\t- [External Documentation Object](#external-documentation-object)\n\t\t- [Parameter Object](#parameter-object)\n\t\t- [Request Body Object](#request-body-object)\n\t\t- [Media Type Object](#media-type-object)\n\t\t- [Encoding Object](#encoding-object)\n\t\t- [Responses Object](#responses-object)\n\t\t- [Response Object](#response-object)\n\t\t- [Callback Object](#callback-object)\n\t\t- [Example Object](#example-object)\n\t\t- [Link Object](#link-object)\n\t\t- [Header Object](#header-object)\n\t\t- [Tag Object](#tag-object)\n\t\t- [Reference Object](#reference-object)\n\t\t- [Schema Object](#schema-object)\n\t\t- [Discriminator Object](#discriminator-object)\n\t\t- [XML Object](#xml-object)\n\t\t- [Security Scheme Object](#security-scheme-object)\n\t\t- [OAuth Flows Object](#oauth-flows-object)\n\t\t- [OAuth Flow Object](#oauth-flow-object)\n\t\t- [Security Requirement Object](#security-requirement-object)\n\t- [Specification Extensions](#specification-extensions)\n\t- [Security Filtering](#security-filtering)\n- [Appendix A: Revision History](#appendix-a-revision-history)\n\t\n\n<!-- /TOC -->\n\n## Definitions\n\n##### OpenAPI Document\nA document (or set of documents) that defines or describes an API. An OpenAPI definition uses and conforms to the OpenAPI Specification.\n\n##### Path Templating\nPath templating refers to the usage of curly braces ({}) to mark a section of a URL path as replaceable using path parameters.\n\n##### Media Types\nMedia type definitions are spread across several resources.\nThe media type definitions SHOULD be in compliance with [RFC6838](http://tools.ietf.org/html/rfc6838).\n\nSome examples of possible media type definitions:\n```\n  text/plain; charset=utf-8\n  application/json\n  application/vnd.github+json\n  application/vnd.github.v3+json\n  application/vnd.github.v3.raw+json\n  application/vnd.github.v3.text+json\n  application/vnd.github.v3.html+json\n  application/vnd.github.v3.full+json\n  application/vnd.github.v3.diff\n  application/vnd.github.v3.patch\n```\n##### HTTP Status Codes\nThe HTTP Status Codes are used to indicate the status of the executed operation.\nThe available status codes are defined by [RFC7231](http://tools.ietf.org/html/rfc7231#section-6) and registered status codes are listed in the [IANA Status Code Registry](http://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n## Specification\n\n### Versions\n\nThe OpenAPI Specification is versioned using [Semantic Versioning 2.0.0](http://semver.org/spec/v2.0.0.html) (semver) and follows the semver specification.\n\nThe `major`.`minor` portion of the semver (for example `3.0`) SHALL designate the OAS feature set. Typically, *`.patch`* versions address errors in this document, not the feature set. Tooling which supports OAS 3.0 SHOULD be compatible with all OAS 3.0.\\* versions. The patch version SHOULD NOT be considered by tooling, making no distinction between `3.0.0` and `3.0.1` for example.\n\nSubsequent minor version releases of the OpenAPI Specification (incrementing the `minor` version number) SHOULD NOT interfere with tooling developed to a lower minor version and same major version.  Thus a hypothetical `3.1.0` specification SHOULD be usable with tooling designed for `3.0.0`.\n\nAn OpenAPI document compatible with OAS 3.\\*.\\* contains a required [`openapi`](#oasVersion) field which designates the semantic version of the OAS that it uses. (OAS 2.0 documents contain a top-level version field named [`swagger`](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#swaggerObject) and value `\"2.0\"`.)\n\n### Format\n\nAn OpenAPI document that conforms to the OpenAPI Specification is itself a JSON object, which may be represented either in JSON or YAML format.\n\nFor example, if a field has an array value, the JSON array representation will be used:\n\n```json\n{\n   \"field\": [ 1, 2, 3 ]\n}\n```\nAll field names in the specification are **case sensitive**.\n\nThe schema exposes two types of fields: Fixed fields, which have a declared name, and Patterned fields, which declare a regex pattern for the field name.\n\nPatterned fields MUST have unique names within the containing object.\n\nIn order to preserve the ability to round-trip between YAML and JSON formats, YAML version [1.2](http://www.yaml.org/spec/1.2/spec.html) is RECOMMENDED along with some additional constraints:\n\n- Tags MUST be limited to those allowed by the [JSON Schema ruleset](http://www.yaml.org/spec/1.2/spec.html#id2803231).\n- Keys used in YAML maps MUST be limited to a scalar string, as defined by the [YAML Failsafe schema ruleset](http://yaml.org/spec/1.2/spec.html#id2802346).\n\n**Note:** While APIs may be defined by OpenAPI documents in either YAML or JSON format, the API request and response bodies and other content are not required to be JSON or YAML.\n\n### Document Structure\n\nAn OpenAPI document MAY be made up of a single document or be divided into multiple, connected parts at the discretion of the user. In the latter case, `$ref` fields MUST be used in the specification to reference those parts as follows from the [JSON Schema](http://json-schema.org) definitions.\n\nIt is RECOMMENDED that the root OpenAPI document be named: `openapi.json` or `openapi.yaml`.\n\n### Data Types\n\nPrimitive data types in the OAS are based on the types supported by the [JSON Schema Specification Wright Draft 00](https://tools.ietf.org/html/draft-wright-json-schema-00#section-4.2).\nNote that `integer` as a type is also supported and is defined as a JSON number without a fraction or exponent part.\n`null` is not supported as a type (see [`nullable`](#schemaNullable) for an alternative solution).\nModels are defined using the [Schema Object](#schema-object), which is an extended subset of JSON Schema Specification Wright Draft 00.\n\n<a name=\"dataTypeFormat\"></a>Primitives have an optional modifier property: `format`.\nOAS uses several known formats to define in fine detail the data type being used.\nHowever, to support documentation needs, the `format` property is an open `string`-valued property, and can have any value.\nFormats such as `\"email\"`, `\"uuid\"`, and so on, MAY be used even though undefined by this specification.\nTypes that are not accompanied by a `format` property follow the type definition in the JSON Schema. Tools that do not recognize a specific `format` MAY default back to the `type` alone, as if the `format` is not specified.\n\nThe formats defined by the OAS are:\n\nCommon Name | [`type`](#data-types) | [`format`](#dataTypeFormat) | Comments\n----------- | ------ | -------- | --------\ninteger | `integer` | `int32` | signed 32 bits\nlong | `integer` | `int64` | signed 64 bits\nfloat | `number` | `float` | |\ndouble | `number` | `double` | |\nstring | `string` | | |\nbyte | `string` | `byte` | base64 encoded characters\nbinary | `string` | `binary` | any sequence of octets\nboolean | `boolean` | | |\ndate | `string` | `date` | As defined by `full-date` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\ndateTime | `string` | `date-time` | As defined by `date-time` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\npassword | `string` | `password` | A hint to UIs to obscure input.\n\n### Rich Text Formatting\nThroughout the specification `description` fields are noted as supporting CommonMark markdown formatting.\nWhere OpenAPI tooling renders rich text it MUST support, at a minimum, markdown syntax as described by [CommonMark 0.27](http://spec.commonmark.org/0.27/). Tooling MAY choose to ignore some CommonMark features to address security concerns.\n\n### Relative References in URLs\n\nUnless specified otherwise, all properties that are URLs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\nRelative references are resolved using the URLs defined in the [`Server Object`](#server-object) as a Base URI.\n\nRelative references used in `$ref` are processed as per [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03), using the URL of the current document as the base URI. See also the [Reference Object](#reference-object).\n\n### Schema\n\nIn the following description, if a field is not explicitly **REQUIRED** or described with a MUST or SHALL, it can be considered OPTIONAL.\n\n#### OpenAPI Object\n\nThis is the root document object of the [OpenAPI document](#openapi-document).\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"oasVersion\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [semantic version number](http://semver.org/spec/v2.0.0.html) of the [OpenAPI Specification version](#versions) that the OpenAPI document uses. The `openapi` field SHOULD be used by tooling specifications and clients to interpret the OpenAPI document. This is *not* related to the API [`info.version`](#infoVersion) string.\n<a name=\"oasInfo\"></a>info | [Info Object](#info-object) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required.\n<a name=\"oasServers\"></a>servers | [[Server Object](#server-object)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` property is not provided, or is an empty array, the default value would be a [Server Object](#server-object) with a [url](#serverUrl) value of `/`.\n<a name=\"oasPaths\"></a>paths | [Paths Object](#paths-object) | **REQUIRED**. The available paths and operations for the API.\n<a name=\"oasComponents\"></a>components | [Components Object](#components-object) | An element to hold various schemas for the specification.\n<a name=\"oasSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. Individual operations can override this definition.\n<a name=\"oasTags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the specification with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique.\n<a name=\"oasExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Info Object\n\nThe object provides metadata about the API.\nThe metadata MAY be used by the clients if needed, and MAY be presented in editing or documentation generation tools for convenience.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"infoTitle\"></a>title | `string` | **REQUIRED**. The title of the application.\n<a name=\"infoDescription\"></a>description | `string` | A short description of the application. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"infoTermsOfService\"></a>termsOfService | `string` | A URL to the Terms of Service for the API. MUST be in the format of a URL.\n<a name=\"infoContact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API.\n<a name=\"infoLicense\"></a>license | [License Object](#license-object) | The license information for the exposed API.\n<a name=\"infoVersion\"></a>version | `string` | **REQUIRED**. The version of the OpenAPI document (which is distinct from the [OpenAPI Specification version](#oasVersion) or the API implementation version).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Info Object Example:\n\n```json\n{\n  \"title\": \"Sample Pet Store App\",\n  \"description\": \"This is a sample server for a pet store.\",\n  \"termsOfService\": \"http://example.com/terms/\",\n  \"contact\": {\n    \"name\": \"API Support\",\n    \"url\": \"http://www.example.com/support\",\n    \"email\": \"support@example.com\"\n  },\n  \"license\": {\n    \"name\": \"Apache 2.0\",\n    \"url\": \"http://www.apache.org/licenses/LICENSE-2.0.html\"\n  },\n  \"version\": \"1.0.1\"\n}\n```\n\n```yaml\ntitle: Sample Pet Store App\ndescription: This is a sample server for a pet store.\ntermsOfService: http://example.com/terms/\ncontact:\n  name: API Support\n  url: http://www.example.com/support\n  email: support@example.com\nlicense:\n  name: Apache 2.0\n  url: http://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n#### Contact Object\n\nContact information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"contactName\"></a>name | `string` | The identifying name of the contact person/organization.\n<a name=\"contactUrl\"></a>url | `string` | The URL pointing to the contact information. MUST be in the format of a URL.\n<a name=\"contactEmail\"></a>email | `string` | The email address of the contact person/organization. MUST be in the format of an email address.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Contact Object Example:\n\n```json\n{\n  \"name\": \"API Support\",\n  \"url\": \"http://www.example.com/support\",\n  \"email\": \"support@example.com\"\n}\n```\n\n```yaml\nname: API Support\nurl: http://www.example.com/support\nemail: support@example.com\n```\n\n#### License Object\n\nLicense information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"licenseName\"></a>name | `string` | **REQUIRED**. The license name used for the API.\n<a name=\"licenseUrl\"></a>url | `string` | A URL to the license used for the API. MUST be in the format of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### License Object Example:\n\n```json\n{\n  \"name\": \"Apache 2.0\",\n  \"url\": \"http://www.apache.org/licenses/LICENSE-2.0.html\"\n}\n```\n\n```yaml\nname: Apache 2.0\nurl: http://www.apache.org/licenses/LICENSE-2.0.html\n```\n\n#### Server Object\n\nAn object representing a Server.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverUrl\"></a>url | `string` | **REQUIRED**. A URL to the target host.  This URL supports Server Variables and MAY be relative, to indicate that the host location is relative to the location where the OpenAPI document is being served. Variable substitutions will be made when a variable is named in `{`brackets`}`.\n<a name=\"serverDescription\"></a>description | `string` | An optional string describing the host designated by the URL. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"serverVariables\"></a>variables | Map[`string`, [Server Variable Object](#server-variable-object)] | A map between a variable name and its value.  The value is used for substitution in the server's URL template.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Server Object Example\n\nA single server would be described as:\n\n```json\n{\n  \"url\": \"https://development.gigantic-server.com/v1\",\n  \"description\": \"Development server\"\n}\n```\n\n```yaml\nurl: https://development.gigantic-server.com/v1\ndescription: Development server\n```\n\nThe following shows how multiple servers can be described, for example, at the OpenAPI Object's [`servers`](#oasServers):\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://development.gigantic-server.com/v1\",\n      \"description\": \"Development server\"\n    },\n    {\n      \"url\": \"https://staging.gigantic-server.com/v1\",\n      \"description\": \"Staging server\"\n    },\n    {\n      \"url\": \"https://api.gigantic-server.com/v1\",\n      \"description\": \"Production server\"\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://development.gigantic-server.com/v1\n  description: Development server\n- url: https://staging.gigantic-server.com/v1\n  description: Staging server\n- url: https://api.gigantic-server.com/v1\n  description: Production server\n```\n\nThe following shows how variables can be used for a server configuration:\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://{username}.gigantic-server.com:{port}/{basePath}\",\n      \"description\": \"The production API server\",\n      \"variables\": {\n        \"username\": {\n          \"default\": \"demo\",\n          \"description\": \"this value is assigned by the service provider, in this example `gigantic-server.com`\"\n        },\n        \"port\": {\n          \"enum\": [\n            \"8443\",\n            \"443\"\n          ],\n          \"default\": \"8443\"\n        },\n        \"basePath\": {\n          \"default\": \"v2\"\n        }\n      }\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://{username}.gigantic-server.com:{port}/{basePath}\n  description: The production API server\n  variables:\n    username:\n      # note! no enum here means it is an open value\n      default: demo\n      description: this value is assigned by the service provider, in this example `gigantic-server.com`\n    port:\n      enum:\n        - '8443'\n        - '443'\n      default: '8443'\n    basePath:\n      # open meaning there is the opportunity to use special base paths as assigned by the provider, default is `v2`\n      default: v2\n```\n\n\n#### Server Variable Object\n\nAn object representing a Server Variable for server URL template substitution.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverVariableEnum\"></a>enum | [`string`] | An enumeration of string values to be used if the substitution options are from a limited set.\n<a name=\"serverVariableDefault\"></a>default | `string` |  **REQUIRED**. The default value to use for substitution, and to send, if an alternate value is _not_ supplied. Unlike the [Schema Object's](#schema-object) `default`, this value MUST be provided by the consumer.\n<a name=\"serverVariableDescription\"></a>description | `string` | An optional description for the server variable. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Components Object\n\nHolds a set of reusable objects for different aspects of the OAS.\nAll objects defined within the components object will have no effect on the API unless they are explicitly referenced from properties outside the components object.\n\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---|---\n<a name=\"componentsSchemas\"></a> schemas | Map[`string`, [Schema Object](#schema-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Schema Objects](#schema-object).\n<a name=\"componentsResponses\"></a> responses | Map[`string`, [Response Object](#response-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Response Objects](#response-object).\n<a name=\"componentsParameters\"></a> parameters | Map[`string`, [Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Parameter Objects](#parameter-object).\n<a name=\"componentsExamples\"></a> examples | Map[`string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Example Objects](#example-object).\n<a name=\"componentsRequestBodies\"></a> requestBodies | Map[`string`, [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Request Body Objects](#request-body-object).\n<a name=\"componentsHeaders\"></a> headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Header Objects](#header-object).\n<a name=\"componentsSecuritySchemes\"></a> securitySchemes| Map[`string`, [Security Scheme Object](#security-scheme-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Security Scheme Objects](#security-scheme-object).\n<a name=\"componentsLinks\"></a> links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Link Objects](#link-object).\n<a name=\"componentsCallbacks\"></a> callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Callback Objects](#callback-object).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nAll the fixed fields declared above are objects that MUST use keys that match the regular expression: `^[a-zA-Z0-9\\.\\-_]+$`.\n\nField Name Examples:\n\n```\nUser\nUser_1\nUser_Name\nuser-name\nmy.org.User\n```\n\n##### Components Object Example\n\n```json\n\"components\": {\n  \"schemas\": {\n    \"Category\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Tag\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  },\n  \"parameters\": {\n    \"skipParam\": {\n      \"name\": \"skip\",\n      \"in\": \"query\",\n      \"description\": \"number of items to skip\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    },\n    \"limitParam\": {\n      \"name\": \"limit\",\n      \"in\": \"query\",\n      \"description\": \"max records to return\",\n      \"required\": true,\n      \"schema\" : {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    }\n  },\n  \"responses\": {\n    \"NotFound\": {\n      \"description\": \"Entity not found.\"\n    },\n    \"IllegalInput\": {\n      \"description\": \"Illegal input for operation.\"\n    },\n    \"GeneralError\": {\n      \"description\": \"General Error\",\n      \"content\": {\n        \"application/json\": {\n          \"schema\": {\n            \"$ref\": \"#/components/schemas/GeneralError\"\n          }\n        }\n      }\n    }\n  },\n  \"securitySchemes\": {\n    \"api_key\": {\n      \"type\": \"apiKey\",\n      \"name\": \"api_key\",\n      \"in\": \"header\"\n    },\n    \"petstore_auth\": {\n      \"type\": \"oauth2\",\n      \"flows\": {\n        \"implicit\": {\n          \"authorizationUrl\": \"http://example.org/api/oauth/dialog\",\n          \"scopes\": {\n            \"write:pets\": \"modify pets in your account\",\n            \"read:pets\": \"read your pets\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Category:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n    Tag:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n  parameters:\n    skipParam:\n      name: skip\n      in: query\n      description: number of items to skip\n      required: true\n      schema:\n        type: integer\n        format: int32\n    limitParam:\n      name: limit\n      in: query\n      description: max records to return\n      required: true\n      schema:\n        type: integer\n        format: int32\n  responses:\n    NotFound:\n      description: Entity not found.\n    IllegalInput:\n      description: Illegal input for operation.\n    GeneralError:\n      description: General Error\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/GeneralError'\n  securitySchemes:\n    api_key:\n      type: apiKey\n      name: api_key\n      in: header\n    petstore_auth:\n      type: oauth2\n      flows:\n        implicit:\n          authorizationUrl: http://example.org/api/oauth/dialog\n          scopes:\n            write:pets: modify pets in your account\n            read:pets: read your pets\n```\n\n\n#### Paths Object\n\nHolds the relative paths to the individual endpoints and their operations.\nThe path is appended to the URL from the [`Server Object`](#server-object) in order to construct the full URL.  The Paths MAY be empty, due to [ACL constraints](#security-filtering).\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"pathsPath\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a slash. The path is **appended** (no relative URL resolution) to the expanded URL from the [`Server Object`](#server-object)'s `url` field in order to construct the full URL. [Path templating](#path-templating) is allowed. When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical. In case of ambiguous matching, it's up to the tooling to decide which one to use.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Templating Matching\n\nAssuming the following paths, the concrete definition, `/pets/mine`, will be matched first if used:\n\n```\n  /pets/{petId}\n  /pets/mine\n```\n\nThe following paths are considered identical and invalid:\n\n```\n  /pets/{petId}\n  /pets/{name}\n```\n\nThe following may lead to ambiguous resolution:\n\n```\n  /{entity}/me\n  /books/{id}\n```\n\n##### Paths Object Example\n\n```json\n{\n  \"/pets\": {\n    \"get\": {\n      \"description\": \"Returns all pets from the system that the user has access to\",\n      \"responses\": {\n        \"200\": {         \n          \"description\": \"A list of pets.\",\n          \"content\": {\n            \"application/json\": {\n              \"schema\": {\n                \"type\": \"array\",\n                \"items\": {\n                  \"$ref\": \"#/components/schemas/pet\"\n                }\n              }\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    responses:\n      '200':\n        description: A list of pets.\n        content:\n          application/json:\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/pet'\n```\n\n#### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item MAY be empty, due to [ACL constraints](#security-filtering).\nThe path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"pathItemRef\"></a>$ref | `string` | Allows for an external definition of this path item. The referenced structure MUST be in the format of a [Path Item Object](#path-item-object). If there are conflicts between the referenced definition and this Path Item's definition, the behavior is *undefined*.\n<a name=\"pathItemSummary\"></a>summary| `string` | An optional, string summary, intended to apply to all operations in this path.\n<a name=\"pathItemDescription\"></a>description | `string` | An optional, string description, intended to apply to all operations in this path. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"pathItemGet\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path.\n<a name=\"pathItemPut\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path.\n<a name=\"pathItemPost\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path.\n<a name=\"pathItemDelete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path.\n<a name=\"pathItemOptions\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path.\n<a name=\"pathItemHead\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path.\n<a name=\"pathItemPatch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path.\n<a name=\"pathItemTrace\"></a>trace | [Operation Object](#operation-object) | A definition of a TRACE operation on this path.\n<a name=\"pathItemServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service all operations in this path.\n<a name=\"pathItemParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Item Object Example\n\n```json\n{\n  \"get\": {\n    \"description\": \"Returns pets based on ID\",\n    \"summary\": \"Find pets by ID\",\n    \"operationId\": \"getPetsById\",\n    \"responses\": {\n      \"200\": {\n        \"description\": \"pet response\",\n        \"content\": {\n          \"*/*\": {\n            \"schema\": {\n              \"type\": \"array\",\n              \"items\": {\n                \"$ref\": \"#/components/schemas/Pet\"\n              }\n            }\n          }\n        }\n      },\n      \"default\": {\n        \"description\": \"error payload\",\n        \"content\": {\n          \"text/html\": {\n            \"schema\": {\n              \"$ref\": \"#/components/schemas/ErrorModel\"\n            }\n          }\n        }\n      }\n    }\n  },\n  \"parameters\": [\n    {\n      \"name\": \"id\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet to use\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      },\n      \"style\": \"simple\"\n    }\n  ]\n}\n```\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  responses:\n    '200':\n      description: pet response\n      content:\n        '*/*' :\n          schema:\n            type: array\n            items:\n              $ref: '#/components/schemas/Pet'\n    default:\n      description: error payload\n      content:\n        'text/html':\n          schema:\n            $ref: '#/components/schemas/ErrorModel'\nparameters:\n- name: id\n  in: path\n  description: ID of pet to use\n  required: true\n  schema:\n    type: array\n    style: simple\n    items:\n      type: string \n```\n\n#### Operation Object\n\nDescribes a single API operation on a path.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"operationTags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier.\n<a name=\"operationSummary\"></a>summary | `string` | A short summary of what the operation does.\n<a name=\"operationDescription\"></a>description | `string` | A verbose explanation of the operation behavior. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"operationExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation.\n<a name=\"operationId\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is RECOMMENDED to follow common programming naming conventions.\n<a name=\"operationParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined at the [Path Item](#pathItemParameters), the new definition will override it but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n<a name=\"operationRequestBody\"></a>requestBody | [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object) | The request body applicable for this operation.  The `requestBody` is only supported in HTTP methods where the HTTP 1.1 specification [RFC7231](https://tools.ietf.org/html/rfc7231#section-4.3.1) has explicitly defined semantics for request bodies.  In other cases where the HTTP spec is vague, `requestBody` SHALL be ignored by consumers.\n<a name=\"operationResponses\"></a>responses | [Responses Object](#responses-object) | **REQUIRED**. The list of possible responses as they are returned from executing this operation.\n<a name=\"operationCallbacks\"></a>callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | A map of possible out-of band callbacks related to the parent operation. The key is a unique identifier for the Callback Object. Each value in the map is a [Callback Object](#callback-object) that describes a request that may be initiated by the API provider and the expected responses. The key value used to identify the callback object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n<a name=\"operationDeprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Consumers SHOULD refrain from usage of the declared operation. Default value is `false`.\n<a name=\"operationSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used for this operation. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. This definition overrides any declared top-level [`security`](#oasSecurity). To remove a top-level security declaration, an empty array can be used.\n<a name=\"operationServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service this operation. If an alternative `server` object is specified at the Path Item Object or Root level, it will be overridden by this value.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Operation Object Example\n\n```json\n{\n  \"tags\": [\n    \"pet\"\n  ],\n  \"summary\": \"Updates a pet in the store with form data\",\n  \"operationId\": \"updatePetWithForm\",\n  \"parameters\": [\n    {\n      \"name\": \"petId\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet that needs to be updated\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  ],\n  \"requestBody\": {\n    \"content\": {\n      \"application/x-www-form-urlencoded\": {\n        \"schema\": {\n          \"type\": \"object\",\n           \"properties\": {\n              \"name\": {\n                \"description\": \"Updated name of the pet\",\n                \"type\": \"string\"\n              },\n              \"status\": {\n                \"description\": \"Updated status of the pet\",\n                \"type\": \"string\"\n             }\n           },\n        \"required\": [\"status\"]\n        }\n      }\n    }\n  },\n  \"responses\": {\n    \"200\": {\n      \"description\": \"Pet updated.\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    },\n    \"405\": {\n      \"description\": \"Invalid input\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    }\n  },\n  \"security\": [\n    {\n      \"petstore_auth\": [\n        \"write:pets\",\n        \"read:pets\"\n      ]\n    }\n  ]\n}\n```\n\n```yaml\ntags:\n- pet\nsummary: Updates a pet in the store with form data\noperationId: updatePetWithForm\nparameters:\n- name: petId\n  in: path\n  description: ID of pet that needs to be updated\n  required: true\n  schema:\n    type: string\nrequestBody:\n  content:\n    'application/x-www-form-urlencoded':\n      schema:\n       properties:\n          name:\n            description: Updated name of the pet\n            type: string\n          status:\n            description: Updated status of the pet\n            type: string\n       required:\n         - status\nresponses:\n  '200':\n    description: Pet updated.\n    content:\n      'application/json': {}\n      'application/xml': {}\n  '405':\n    description: Invalid input\n    content:\n      'application/json': {}\n      'application/xml': {}\nsecurity:\n- petstore_auth:\n  - write:pets\n  - read:pets\n```\n\n\n#### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"externalDocDescription\"></a>description | `string` | A short description of the target documentation. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"externalDocUrl\"></a>url | `string` | **REQUIRED**. The URL for the target documentation. Value MUST be in the format of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### External Documentation Object Example\n\n```json\n{\n  \"description\": \"Find more info here\",\n  \"url\": \"https://example.com\"\n}\n```\n\n```yaml\ndescription: Find more info here\nurl: https://example.com\n```\n\n#### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn).\n\n##### Parameter Locations\nThere are four possible parameter locations specified by the `in` field:\n* path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`.\n* header - Custom headers that are expected as part of the request. Note that [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive.\n* cookie - Used to pass a specific cookie value to the API.\n\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterName\"></a>name | `string` | **REQUIRED**. The name of the parameter. Parameter names are *case sensitive*. <ul><li>If [`in`](#parameterIn) is `\"path\"`, the `name` field MUST correspond to the associated path segment from the [path](#pathsPath) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>If [`in`](#parameterIn) is `\"header\"` and the `name` field is `\"Accept\"`, `\"Content-Type\"` or `\"Authorization\"`, the parameter definition SHALL be ignored.<li>For all other cases, the `name` corresponds to the parameter name used by the [`in`](#parameterIn) property.</ul>\n<a name=\"parameterIn\"></a>in | `string` | **REQUIRED**. The location of the parameter. Possible values are \"query\", \"header\", \"path\" or \"cookie\".\n<a name=\"parameterDescription\"></a>description | `string` | A brief description of the parameter. This could contain examples of use.  [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"parameterRequired\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the [parameter location](#parameterIn) is \"path\", this property is **REQUIRED** and its value MUST be `true`. Otherwise, the property MAY be included and its default value is `false`.\n<a name=\"parameterDeprecated\"></a> deprecated | `boolean` | Specifies that a parameter is deprecated and SHOULD be transitioned out of usage.\n<a name=\"parameterAllowEmptyValue\"></a> allowEmptyValue | `boolean` | Sets the ability to pass empty-valued parameters. This is valid only for `query` parameters and allows sending a parameter with an empty value. Default value is `false`. If [`style`](#parameterStyle) is used, and if behavior is `n/a` (cannot be serialized), the value of `allowEmptyValue` SHALL be ignored.\n\nThe rules for serialization of the parameter are specified in one of two ways.\nFor simpler scenarios, a [`schema`](#parameterSchema) and [`style`](#parameterStyle) can describe the structure and syntax of the parameter.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterStyle\"></a>style | `string` | Describes how the parameter value will be serialized depending on the type of the parameter value. Default values (based on value of `in`): for `query` - `form`; for `path` - `simple`; for `header` - `simple`; for `cookie` - `form`.\n<a name=\"parameterExplode\"></a>explode | `boolean` | When this is true, parameter values of type `array` or `object` generate separate parameters for each value of the array or key-value pair of the map.  For other types of parameters this property has no effect. When [`style`](#parameterStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`.\n<a name=\"parameterAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. This property only applies to parameters with an `in` value of `query`. The default value is `false`.\n<a name=\"parameterSchema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the type used for the parameter.\n<a name=\"parameterExample\"></a>example | Any | Example of the media type.  The example SHOULD match the specified schema and encoding properties if present.  The `example` object is mutually exclusive of the `examples` object.  Furthermore, if referencing a `schema` which contains an example, the `example` value SHALL _override_ the example provided by the schema. To represent examples of media types that cannot naturally be represented in JSON or YAML, a string value can contain the example with escaping where necessary.\n<a name=\"parameterExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type.  Each example SHOULD contain a value in the correct format as specified in the parameter encoding.  The `examples` object is mutually exclusive of the `example` object.  Furthermore, if referencing a `schema` which contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n\nFor more complex scenarios, the [`content`](#parameterContent) property can define the media type and schema of the parameter.\nA parameter MUST contain either a `schema` property, or a `content` property, but not both.\nWhen `example` or `examples` are provided in conjunction with the `schema` object, the example MUST follow the prescribed serialization strategy for the parameter.\n\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the parameter. The key is the media type and the value describes it.  The map MUST only contain one entry.\n\n##### Style Values\n\nIn order to support common ways of serializing simple parameters, a set of `style` values are defined.\n\n`style` | [`type`](#data-types) |  `in` | Comments\n----------- | ------ | -------- | --------\nmatrix |  `primitive`, `array`, `object` |  `path` | Path-style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.7)\nlabel | `primitive`, `array`, `object` |  `path` | Label style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.5)\nform |  `primitive`, `array`, `object` |  `query`, `cookie` | Form style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.8). This option replaces `collectionFormat` with a `csv` (when `explode` is false) or `multi` (when `explode` is true) value from OpenAPI 2.0.\nsimple | `array` | `path`, `header` | Simple style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.2).  This option replaces `collectionFormat` with a `csv` value from OpenAPI 2.0.\nspaceDelimited | `array` | `query` | Space separated array values. This option replaces `collectionFormat` equal to `ssv` from OpenAPI 2.0.\npipeDelimited | `array` | `query` | Pipe separated array values. This option replaces `collectionFormat` equal to `pipes` from OpenAPI 2.0.\ndeepObject | `object` | `query` | Provides a simple way of rendering nested objects using form parameters.\n\n\n##### Style Examples\n\nAssume a parameter named `color` has one of the following values:\n\n```\n   string -> \"blue\"\n   array -> [\"blue\",\"black\",\"brown\"]\n   object -> { \"R\": 100, \"G\": 200, \"B\": 150 }\n```\nThe following table shows examples of rendering differences for each value.\n\n[`style`](#dataTypeFormat) | `explode` | `empty` | `string` | `array` | `object`\n----------- | ------ | -------- | -------- | --------|-------\nmatrix | false | ;color | ;color=blue | ;color=blue,black,brown | ;color=R,100,G,200,B,150\nmatrix | true | ;color | ;color=blue | ;color=blue;color=black;color=brown | ;R=100;G=200;B=150\nlabel | false | .  | .blue |  .blue.black.brown | .R.100.G.200.B.150\nlabel | true | . | .blue |  .blue.black.brown | .R=100.G=200.B=150\nform | false | color= | color=blue | color=blue,black,brown | color=R,100,G,200,B,150\nform | true | color= | color=blue | color=blue&color=black&color=brown | R=100&G=200&B=150\nsimple | false | n/a | blue | blue,black,brown | R,100,G,200,B,150\nsimple | true | n/a | blue | blue,black,brown | R=100,G=200,B=150\nspaceDelimited | false | n/a | n/a | blue%20black%20brown | R%20100%20G%20200%20B%20150\npipeDelimited | false | n/a | n/a | blue\\|black\\|brown | R\\|100\\|G\\|200|G\\|150\ndeepObject | true | n/a | n/a | n/a | color[R]=100&color[G]=200&color[B]=150\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Parameter Object Examples\n\nA header parameter with an array of 64 bit integer numbers:\n\n```json\n{\n  \"name\": \"token\",\n  \"in\": \"header\",\n  \"description\": \"token to be passed as a header\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    }\n  },\n  \"style\": \"simple\"\n}\n```\n\n```yaml\nname: token\nin: header\ndescription: token to be passed as a header\nrequired: true\nschema:\n  type: array\n  items:\n    type: integer\n    format: int64\nstyle: simple\n```\n\nA path parameter of a string value:\n```json\n{\n  \"name\": \"username\",\n  \"in\": \"path\",\n  \"description\": \"username to fetch\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\nschema:\n  type: string\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter:\n```json\n{\n  \"name\": \"id\",\n  \"in\": \"query\",\n  \"description\": \"ID of the object to fetch\",\n  \"required\": false,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  },\n  \"style\": \"form\",\n  \"explode\": true\n}\n```\n\n```yaml\nname: id\nin: query\ndescription: ID of the object to fetch\nrequired: false\nschema:\n  type: array\n  items:\n    type: string\nstyle: form\nexplode: true\n```\n\nA free-form query parameter, allowing undefined parameters of a specific type:\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"freeForm\",\n  \"schema\": {\n    \"type\": \"object\",\n    \"additionalProperties\": {\n      \"type\": \"integer\"\n    },\n  },\n  \"style\": \"form\"\n}\n```\n\n```yaml\nin: query\nname: freeForm\nschema:\n  type: object\n  additionalProperties:\n    type: integer\nstyle: form\n```\n\nA complex parameter using `content` to define serialization:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"coordinates\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"lat\",\n          \"long\"\n        ],\n        \"properties\": {\n          \"lat\": {\n            \"type\": \"number\"\n          },\n          \"long\": {\n            \"type\": \"number\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nin: query\nname: coordinates\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n        - lat\n        - long\n      properties:\n        lat:\n          type: number\n        long:\n          type: number\n```\n\n#### Request Body Object\n\nDescribes a single request body.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"requestBodyDescription\"></a>description | `string` | A brief description of the request body. This could contain examples of use.  [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"requestBodyContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | **REQUIRED**. The content of the request body. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For requests that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"requestBodyRequired\"></a>required | `boolean` | Determines if the request body is required in the request. Defaults to `false`.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Request Body Examples\n\nA request body with a referenced model definition.\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User Example\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.json\"\n          }\n        }\n    },\n    \"application/xml\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User example in XML\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.xml\"\n          }\n        }\n    },\n    \"text/plain\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in Plain text\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.txt\"\n        }\n      }\n    },\n    \"*/*\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in other format\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.whatever\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\ncontent:\n  'application/json':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User Example\n        externalValue: 'http://foo.bar/examples/user-example.json'\n  'application/xml':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User Example in XML\n        externalValue: 'http://foo.bar/examples/user-example.xml'\n  'text/plain':\n    examples:\n      user:\n        summary: User example in text plain format\n        externalValue: 'http://foo.bar/examples/user-example.txt'\n  '*/*':\n    examples:\n      user:\n        summary: User example in other format\n        externalValue: 'http://foo.bar/examples/user-example.whatever'\n```\n\nA body parameter that is an array of string values:\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\nrequired: true\ncontent:\n  text/plain:\n    schema:\n      type: array\n      items:\n        type: string\n```\n\n\n#### Media Type Object\nEach Media Type Object provides schema and examples for the media type identified by its key.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"mediaTypeSchema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the type used for the request body.\n<a name=\"mediaTypeExample\"></a>example | Any | Example of the media type.  The example object SHOULD be in the correct format as specified by the media type.  The `example` object is mutually exclusive of the `examples` object.  Furthermore, if referencing a `schema` which contains an example, the `example` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type.  Each example object SHOULD  match the media type and specified schema if present.  The `examples` object is mutually exclusive of the `example` object.  Furthermore, if referencing a `schema` which contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeEncoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | A map between a property name and its encoding information. The key, being the property name, MUST exist in the schema as a property. The encoding object SHALL only apply to `requestBody` objects when the media type is `multipart` or `application/x-www-form-urlencoded`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Media Type Examples\n\n```js\n{\n  \"application/json\": {\n    \"schema\": {\n         \"$ref\": \"#/components/schemas/Pet\"\n    },\n    \"examples\": {\n      \"cat\" : {\n        \"summary\": \"An example of a cat\",\n        \"value\":\n          {\n            \"name\": \"Fluffy\",\n            \"petType\": \"Cat\",\n            \"color\": \"White\",\n            \"gender\": \"male\",\n            \"breed\": \"Persian\"\n          }\n      },\n      \"dog\": {\n        \"summary\": \"An example of a dog with a cat's name\",\n        \"value\" :  {\n          \"name\": \"Puma\",\n          \"petType\": \"Dog\",\n          \"color\": \"Black\",\n          \"gender\": \"Female\",\n          \"breed\": \"Mixed\"\n        },\n      \"frog\": {\n          \"$ref\": \"#/components/examples/frog-example\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    $ref: \"#/components/schemas/Pet\"\n  examples:\n    cat:\n      summary: An example of a cat\n      value:\n        name: Fluffy\n        petType: Cat\n        color: White\n        gender: male\n        breed: Persian\n    dog:\n      summary: An example of a dog with a cat's name\n      value:\n        name: Puma\n        petType: Dog\n        color: Black\n        gender: Female\n        breed: Mixed\n    frog:\n      $ref: \"#/components/examples/frog-example\"\n```\n\n##### Considerations for File Uploads\n\nIn contrast with the 2.0 specification, `file` input/output content in OpenAPI is described with the same semantics as any other schema type. Specifically:\n\n```yaml\n# content transferred with base64 encoding\nschema:\n  type: string\n  format: base64\n```\n\n```yaml\n# content transferred in binary (octet-stream):\nschema:\n  type: string\n  format: binary\n```\n\nThese examples apply to either input payloads of file uploads or response payloads.\n\nA `requestBody` for submitting a file in a `POST` operation may look like the following example:\n\n```yaml\nrequestBody:\n  content:\n    application/octet-stream:\n      # any media type is accepted, functionally equivalent to `*/*`\n      schema:\n        # a binary file of any type\n        type: string\n        format: binary\n```\n\nIn addition, specific media types MAY be specified:\n\n```yaml\n# multiple, specific media types may be specified:\nrequestBody:\n  content:\n      # a binary file of type png or jpeg\n    'image/jpeg':\n      schema:\n        type: string\n        format: binary\n    'image/png':\n      schema:\n        type: string\n        format: binary       \n```\n\nTo upload multiple files, a `multipart` media type MUST be used:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        properties:\n          # The property name 'file' will be used for all files.\n          file:\n            type: array\n            items:\n              type: string\n              format: binary\n\n```\n\n##### Support for x-www-form-urlencoded Request Bodies\n\nTo submit content using form url encoding via [RFC1866](https://tools.ietf.org/html/rfc1866), the following\ndefinition may be used:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # complex types are stringified to support RFC 1866\n            type: object\n            properties: {}\n```\n\nIn this example, the contents in the `requestBody` MUST be stringified per [RFC1866](https://tools.ietf.org/html/rfc1866/) when passed to the server.  In addition, the `address` field complex object will be stringified.\n\nWhen passing complex objects in the `application/x-www-form-urlencoded` content type, the default serialization strategy of such properties is described in the [`Encoding Object`](#encoding-object)'s [`style`](#encodingStyle) property as `form`.\n\n##### Special Considerations for `multipart` Content\n\nIt is common to use `multipart/form-data` as a `Content-Type` when transferring request bodies to operations.  In contrast to 2.0, a `schema` is REQUIRED to define the input parameters to the operation when using `multipart` content.  This supports complex structures as well as supporting mechanisms for multiple file uploads.\n\nWhen passing in `multipart` types, boundaries MAY be used to separate sections of the content being transferred — thus, the following default `Content-Type`s are defined for `multipart`:\n\n* If the property is a primitive, or an array of primitive values, the default Content-Type is `text/plain`\n* If the property is complex, or an array of complex values, the default Content-Type is `application/json`\n* If the property is a `type: string` with `format: binary` or `format: base64` (aka a file object), the default Content-Type is `application/octet-stream`\n\n\nExamples:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # default Content-Type for objects is `application/json`\n            type: object\n            properties: {}\n          profileImage:\n            # default Content-Type for string/binary is `application/octet-stream`\n            type: string\n            format: binary\n          children:\n            # default Content-Type for arrays is based on the `inner` type (text/plain here)\n            type: array\n            items:\n              type: string\n          addresses:\n            # default Content-Type for arrays is based on the `inner` type (object shown, so `application/json` in this example)\n            type: array\n            items:\n              type: '#/components/schemas/Address'\n```\n\nAn `encoding` attribute is introduced to give you control over the serialization of parts of `multipart` request bodies.  This attribute is _only_ applicable to `multipart` and `application/x-www-form-urlencoded` request bodies.\n\n#### Encoding Object\n\nA single encoding definition applied to a single schema property.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"encodingContentType\"></a>contentType | `string` | The Content-Type for encoding a specific property. Default value depends on the property type: for `string` with `format` being `binary` – `application/octet-stream`; for other primitive types – `text/plain`; for `object` - `application/json`; for `array` – the default is defined based on the inner type. The value can be a specific media type (e.g. `application/json`), a wildcard media type (e.g. `image/*`), or a comma-separated list of the two types.\n<a name=\"encodingHeaders\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | A map allowing additional information to be provided as headers, for example `Content-Disposition`.  `Content-Type` is described separately and SHALL be ignored in this section. This property SHALL be ignored if the request body media type is not a `multipart`.\n<a name=\"encodingStyle\"></a>style | `string` | Describes how a specific property value will be serialized depending on its type.  See [Parameter Object](#parameter-object) for details on the [`style`](#parameterStyle) property. The behavior follows the same values as `query` parameters, including default values. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n<a name=\"encodingExplode\"></a>explode | `boolean` | When this is true, property values of type `array` or `object` generate separate parameters for each value of the array, or key-value-pair of the map.  For other types of properties this property has no effect. When [`style`](#encodingStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n<a name=\"encodingAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. The default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Encoding Object Example\n\n```yaml\nrequestBody:\n  content:\n    multipart/mixed:\n      schema:\n        type: object\n        properties:\n          id:\n            # default is text/plain\n            type: string\n            format: uuid\n          address:\n            # default is application/json\n            type: object\n            properties: {}\n          historyMetadata:\n            # need to declare XML format!\n            description: metadata in XML format\n            type: object\n            properties: {}\n          profileImage:\n            # default is application/octet-stream, need to declare an image type only!\n            type: string\n            format: binary\n      encoding:\n        historyMetadata:\n          # require XML Content-Type in utf-8 encoding\n          contentType: application/xml; charset=utf-8\n        profileImage:\n          # only accept png/jpeg\n          contentType: image/png, image/jpeg\n          headers:\n            X-Rate-Limit-Limit:\n              description: The number of allowed requests in the current period\n              schema:\n                type: integer\n```\n\n#### Responses Object\n\nA container for the expected responses of an operation.\nThe container maps a HTTP response code to the expected response.\n\nThe documentation is not necessarily expected to cover all possible HTTP response codes because they may not be known in advance.\nHowever, documentation is expected to cover a successful operation response and any known errors.\n\nThe `default` MAY be used as a default response object for all HTTP codes\nthat are not covered individually by the specification.\n\nThe `Responses Object` MUST contain at least one response code, and it\nSHOULD be the response for a successful operation call.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responsesDefault\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. Use this field to cover undeclared responses. A [Reference Object](#reference-object) can link to a response that the [OpenAPI Object's components/responses](#componentsResponses) section defines.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"responsesCode\"></a>[HTTP Status Code](#http-status-codes) | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name, but only one property per code, to describe the expected response for that HTTP status code.  A [Reference Object](#reference-object) can link to a response that is defined in the [OpenAPI Object's components/responses](#componentsResponses) section. This field MUST be enclosed in quotation marks (for example, \"200\") for compatibility between JSON and YAML. To define a range of response codes, this field MAY contain the uppercase wildcard character `X`. For example, `2XX` represents all response codes between `[200-299]`. The following range definitions are allowed: `1XX`, `2XX`, `3XX`, `4XX`, and `5XX`. If a response range is defined using an explicit code, the explicit code definition takes precedence over the range definition for that code.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Responses Object Example\n\nA 200 response for a successful operation and a default response for others (implying an error):\n\n```json\n{\n  \"200\": {\n    \"description\": \"a pet to be returned\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/Pet\"\n        }\n      }\n    }\n  },\n  \"default\": {\n    \"description\": \"Unexpected error\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/ErrorModel\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n'200':\n  description: a pet to be returned\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/Pet'\ndefault:\n  description: Unexpected error\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/ErrorModel'\n```\n\n#### Response Object\nDescribes a single response from an API Operation, including design-time, static\n`links` to operations based on the response.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responseDescription\"></a>description | `string` | **REQUIRED**. A short description of the response. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"responseHeaders\"></a>headers | Map[`string`, [Header Object](#header-object)  \\| [Reference Object](#reference-object)] |  Maps a header name to its definition. [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive. If a response header is defined with the name `\"Content-Type\"`, it SHALL be ignored.\n<a name=\"responseContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing descriptions of potential response payloads. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For responses that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"responseLinks\"></a>links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | A map of operations links that can be followed from the response. The key of the map is a short name for the link, following the naming constraints of the names for [Component Objects](#components-object).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Response Object Examples\n\nResponse of an array of a complex type:\n\n```json\n{\n  \"description\": \"A complex object array response\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"$ref\": \"#/components/schemas/VeryComplexType\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A complex object array response\ncontent:\n  application/json:\n    schema:\n      type: array\n      items:\n        $ref: '#/components/schemas/VeryComplexType'\n```\n\nResponse with a string type:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  }\n\n}\n```\n\n```yaml\ndescription: A simple string response\nrepresentations:\n  text/plain:\n    schema:\n      type: string\n```\n\nPlain text response with headers:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  },\n  \"headers\": {\n    \"X-Rate-Limit-Limit\": {\n      \"description\": \"The number of allowed requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Remaining\": {\n      \"description\": \"The number of remaining requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Reset\": {\n      \"description\": \"The number of seconds left in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n    example: 'whoa!'\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    schema:\n      type: integer\n```\n\nResponse with no return value:\n\n```json\n{\n  \"description\": \"object created\"\n}\n```\n\n```yaml\ndescription: object created\n```\n\n#### Callback Object\n\nA map of possible out-of band callbacks related to the parent operation.\nEach value in the map is a [Path Item Object](#path-item-object) that describes a set of requests that may be initiated by the API provider and the expected responses.\nThe key value used to identify the callback object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"callbackExpression\"></a>{expression} | [Path Item Object](#path-item-object) | A Path Item Object used to define a callback request and expected responses.  A [complete example](../examples/v3.0/callback-example.yaml) is available.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Key Expression\n\nThe key that identifies the [Path Item Object](#path-item-object) is a [runtime expression](#runtime-expressions) that can be evaluated in the context of a runtime HTTP request/response to identify the URL to be used for the callback request.\nA simple example might be `$request.body#/url`.\nHowever, using a [runtime expression](#runtime-expressions) the complete HTTP message can be accessed.\nThis includes accessing any part of a body that a JSON Pointer [RFC6901](https://tools.ietf.org/html/rfc6901) can reference.\n\nFor example, given the following HTTP request:\n\n```http\nPOST /subscribe/myevent?queryUrl=http://clientdomain.com/stillrunning HTTP/1.1\nHost: example.org\nContent-Type: application/json\nContent-Length: 187\n\n{\n  \"failedUrl\" : \"http://clientdomain.com/failed\",\n  \"successUrls\" : [\n    \"http://clientdomain.com/fast\",\n    \"http://clientdomain.com/medium\",\n    \"http://clientdomain.com/slow\"\n  ]\n}\n\n201 Created\nLocation: http://example.org/subscription/1\n```\n\nThe following examples show how the various expressions evaluate, assuming the callback operation has a path parameter named `eventType` and a query parameter named `queryUrl`.\n\nExpression | Value\n---|:---\n$url | http://example.org/subscribe/myevent?queryUrl=http://clientdomain.com/stillrunning\n$method | POST\n$request.path.eventType | myevent\n$request.query.queryUrl | http://clientdomain.com/stillrunning\n$request.header.content-Type | application/json\n$request.body#/failedUrl | http://clientdomain.com/stillrunning\n$request.body#/successUrls/2 | http://clientdomain.com/medium\n$response.header.Location | http://example.org/subscription/1\n\n\n##### Callback Object Example\n\nThe following example shows a callback to the URL specified by the `id` and `email` property in the request body.\n\n```yaml\nmyWebhook:\n  'http://notificationServer.com?transactionId={$request.body#/id}&email={$request.body#/email}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          'application/json':\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: webhook successfully processed and no retries will be performed\n```\n\n\n#### Example Object\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"exampleSummary\"></a>summary | `string` | Short description for the example.\n<a name=\"exampleDescription\"></a>description | `string` | Long description for the example. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"exampleValue\"></a>value | Any | Embedded literal example. The `value` field and `externalValue` field are mutually exclusive. To represent examples of media types that cannot naturally represented in JSON or YAML, use a string value to contain the example, escaping where necessary.\n<a name=\"exampleExternalValue\"></a>externalValue | `string` | A URL that points to the literal example. This provides the capability to reference examples that cannot easily be included in JSON or YAML documents.  The `value` field and `externalValue` field are mutually exclusive.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nIn all cases, the example value is expected to be compatible with the type schema\nof its associated value.  Tooling implementations MAY choose to\nvalidate compatibility automatically, and reject the example value(s) if incompatible.\n\n##### Example Object Example\n\n```yaml\n# in a model\nschemas:\n  properties:\n    name:\n      type: string\n      examples:\n        name:\n          $ref: http://example.org/petapi-examples/openapi.json#/components/examples/name-example\n\n# in a request body:\n  requestBody:\n    content:\n      'application/json':\n        schema:\n          $ref: '#/components/schemas/Address'\n        examples:\n          foo:\n            summary: A foo example\n            value: {\"foo\": \"bar\"}\n          bar:\n            summary: A bar example\n            value: {\"bar\": \"baz\"}\n      'application/xml':\n        examples:\n          xmlExample:\n            summary: This is an example in XML\n            externalValue: 'http://example.org/examples/address-example.xml'\n      'text/plain':\n        examples:\n          textExample:\n            summary: This is a text example\n            externalValue: 'http://foo.bar/examples/address-example.txt'\n\n\n# in a parameter\n  parameters:\n    - name: 'zipCode'\n      in: 'query'\n      schema:\n        type: 'string'\n        format: 'zip-code'\n        examples:\n          zip-example:\n            $ref: '#/components/examples/zip-example'\n\n# in a response\n  responses:\n    '200':\n      description: your car appointment has been booked\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/SuccessResponse'\n          examples:\n            confirmation-success:\n              $ref: '#/components/examples/confirmation-success'\n```\n\n\n#### Link Object\n\nThe `Link object` represents a possible design-time link for a response.\nThe presence of a link does not guarantee the caller's ability to successfully invoke it, rather it provides a known relationship and traversal mechanism between responses and other operations.\n\nUnlike _dynamic_ links (i.e. links provided **in** the response payload), the OAS linking mechanism does not require link information in the runtime response.\n\nFor computing links, and providing instructions to execute them, a [runtime expression](#runtime-expressions) is used for accessing values in an operation and using them as parameters while invoking the linked operation. \n\n##### Fixed Fields\n\nField Name  |  Type  | Description\n---|:---:|---\n<a name=\"linkOperationRef\"></a>operationRef | `string` | A relative or absolute reference to an OAS operation. This field is mutually exclusive of the `operationId` field, and MUST point to an [Operation Object](#operation-object). Relative `operationRef` values MAY be used to locate an existing [Operation Object](#operation-object) in the OpenAPI definition.\n<a name=\"linkOperationId\"></a>operationId  | `string` | The name of an _existing_, resolvable OAS operation, as defined with a unique `operationId`.  This field is mutually exclusive of the `operationRef` field. \n<a name=\"linkParameters\"></a>parameters   | Map[`string`, Any \\| [{expression}](#runtime-expressions)] | A map representing parameters to pass to an operation as specified with `operationId` or identified via `operationRef`. The key is the parameter name to be used, whereas the value can be a constant or an expression to be evaluated and passed to the linked operation.  The parameter name can be qualified using the [parameter location](#parameterIn) `[{in}.]{name}` for operations that use the same parameter name in different locations (e.g. path.id).\n<a name=\"linkRequestBody\"></a>requestBody | Any \\| [{expression}](#runtime-expressions) | A literal value or [{expression}](#runtime-expressions) to use as a request body when calling the target operation.\n<a name=\"linkDescription\"></a>description  | `string` | A description of the link. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"linkServer\"></a>server       | [Server Object](#server-object) | A server object to be used by the target operation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nA linked operation MUST be identified using either an `operationRef` or `operationId`.\nIn the case of an `operationId`, it MUST be unique and resolved in the scope of the OAS document.\nBecause of the potential for name clashes, the `operationRef` syntax is preferred\nfor specifications with external references.\n\n##### Examples\n\nComputing a link from a request operation where the `$request.path.id` is used to pass a request parameter to the linked operation.\n\n```yaml\npaths:\n  /users/{id}:\n    parameters:\n    - name: id\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n    get:\n      responses:\n        '200':\n          description: the user being returned\n          content:\n            application/json:\n              schema:\n                type: object\n                properties:\n                  uuid: # the unique user id\n                    type: string\n                    format: uuid\n        links:\n          address:\n            # the target link operationId\n            operationId: getUserAddress\n            parameters:\n              # get the `id` field from the request path parameter named `id`\n              userId: $request.path.id\n  # the path item of the linked operation\n  /users/{userid}/address:\n    parameters:\n    - name: userid\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n      # linked operation\n      get:\n        operationId: getUserAddress\n        responses:\n          '200':\n            description: the user's address\n```\n\nWhen a runtime expression fails to evaluate, no parameter value is passed to the target operation.\n\nValues from the response body can be used to drive a linked operation.\n\n```yaml\nlinks:\n  address:\n    operationId: getUserAddressByUUID\n    parameters:\n      # get the `id` field from the request path parameter named `id`\n      userUuid: $response.body#/uuid\n```\n\nClients follow all links at their discretion.\nNeither permissions, nor the capability to make a successful call to that link, is guaranteed\nsolely by the existence of a relationship.\n\n\n##### OperationRef Examples\n\nAs references to `operationId` MAY NOT be possible (the `operationId` is an optional\nvalue), references MAY also be made through a relative `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: '#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nor an absolute `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: 'https://na2.gigantic-server.com/#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nNote that in the use of `operationRef`, the _escaped forward-slash_ is necessary when\nusing JSON references.\n\n\n##### Runtime Expressions\n\nRuntime expressions allow defining values based on information that will only be available within the HTTP message in an actual API call.\nThis mechanism is used by [Link Objects](#link-object) and [Callback Objects](#callback-object).\n\nThe runtime expression is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```\n      expression = ( \"$url\" | \"$method\" | \"$statusCode\" | \"$request.\" source | \"$response.\" source )\n      source = ( header-reference | query-reference | path-reference | body-reference ) \n      header-reference = \"header.\" token\n      query-reference = \"query.\" name \n      path-reference = \"path.\" name\n      body-reference = \"body\" [\"#\" fragment]\n      fragment = a JSON Pointer [RFC 6901](https://tools.ietf.org/html/rfc6901) \n      name = *( char )\n      char = as per RFC [7159](https://tools.ietf.org/html/rfc7159#section-7)\n      token = as per RFC [7230](https://tools.ietf.org/html/rfc7230#section-3.2.6)\n```\n\nThe `name` identifier is case-sensitive, whereas `token` is not.\n\nThe table below provides examples of runtime expressions and examples of their use in a value:\n\n##### Examples\n\nSource Location | example expression  | notes\n---|:---|:---|\nHTTP Method            | `$method`         | The allowable values for the `$method` will be those for the HTTP operation.\nRequested media type | `$request.header.accept`        | \nRequest parameter      | `$request.path.id`        | Request parameters MUST be declared in the `parameters` section of the parent operation or they cannot be evaluated. This includes request headers.\nRequest body property   | `$request.body#/user/uuid`   | In operations which accept payloads, references may be made to portions of the `requestBody` or the entire body.\nRequest URL            | `$url`            | \nResponse value         | `$response.body#/status`       |  In operations which return payloads, references may be made to portions of the response body or the entire body.\nResponse header        | `$response.header.Server` |  Single header values only are available\n\nRuntime expressions preserve the type of the referenced value.\nExpressions can be embedded into string values by surrounding the expression with `{}` curly braces.\n\n#### Header Object\n\nThe Header Object follows the structure of the [Parameter Object](#parameter-object) with the following changes:\n\n1. `name` MUST NOT be specified, it is given in the corresponding `headers` map.\n1. `in` MUST NOT be specified, it is implicitly in `header`.\n1. All traits that are affected by the location MUST be applicable to a location of `header` (for example, [`style`](#parameterStyle)).\n\n##### Header Object Example\n\nA simple header of type `integer`:\n\n```json\n{\n  \"description\": \"The number of allowed requests in the current period\",\n  \"schema\": {\n    \"type\": \"integer\"\n  }\n}\n```\n\n```yaml\ndescription: The number of allowed requests in the current period\nschema:\n  type: integer\n```\n\n#### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nIt is not mandatory to have a Tag Object per tag defined in the Operation Object instances.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"tagName\"></a>name | `string` | **REQUIRED**. The name of the tag.\n<a name=\"tagDescription\"></a>description | `string` | A short description for the tag. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"tagExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Tag Object Example\n\n```json\n{\n\t\"name\": \"pet\",\n\t\"description\": \"Pets operations\"\n}\n```\n\n```yaml\nname: pet\ndescription: Pets operations\n```\n\n#### Examples Object\n\nIn an `example`, a JSON Reference MAY be used, with the\nexplicit restriction that examples having a JSON format with object named\n`$ref` are not allowed. Therefore, that `example`, structurally, can be\neither a string primitive or an object, similar to `additionalProperties`.\n\nIn all cases, the payload is expected to be compatible with the type schema\nfor the associated value.  Tooling implementations MAY choose to\nvalidate compatibility automatically, and reject the example value(s) if they\nare incompatible.\n\n```yaml\n# in a model\nschemas:\n  properties:\n    name:\n      type: string\n      example:\n        $ref: http://foo.bar#/examples/name-example\n\n# in a request body, note the plural `examples`\n  requestBody:\n    content:\n      'application/json':\n        schema:\n          $ref: '#/components/schemas/Address'\n        examples:\n          foo:\n            value: {\"foo\": \"bar\"}\n          bar:\n            value: {\"bar\": \"baz\"}\n      'application/xml':\n        examples:\n          xml:\n            externalValue: 'http://foo.bar/examples/address-example.xml'\n      'text/plain':\n        examples:\n          text:\n            externalValue: 'http://foo.bar/examples/address-example.txt'\n       \n# in a parameter\n  parameters:\n    - name: 'zipCode'\n      in: 'query'\n      schema:\n        type: 'string'\n        format: 'zip-code'\n        example:\n          $ref: 'http://foo.bar#/examples/zip-example'\n\n# in a response, note the singular `example`:\n  responses:\n    '200':\n      description: your car appointment has been booked\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/SuccessResponse'\n          example:\n            $ref: http://foo.bar#/examples/address-example.json\n```\n\n#### Reference Object\n\nA simple object to allow referencing other components in the specification, internally and externally.\n\nThe Reference Object is defined by [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03) and follows the same structure, behavior and rules.\n\nFor this specification, reference resolution is accomplished as defined by the JSON Reference specification and not by the JSON Schema specification.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"referenceRef\"></a>$ref | `string` | **REQUIRED**. The reference string.\n\nThis object cannot be extended with additional properties and any properties added SHALL be ignored.\n\n##### Reference Object Example\n\n```json\n{\n\t\"$ref\": \"#/components/schemas/Pet\"\n}\n```\n\n```yaml\n$ref: '#/components/schemas/Pet'\n```\n\n##### Relative Schema Document Example\n```json\n{\n  \"$ref\": \"Pet.json\"\n}\n```\n\n```yaml\n$ref: Pet.yaml\n```\n\n##### Relative Documents With Embedded Schema Example\n```json\n{\n  \"$ref\": \"definitions.json#/Pet\"\n}\n```\n\n```yaml\n$ref: definitions.yaml#/Pet\n```\n\n#### Schema Object\n\nThe Schema Object allows the definition of input and output data types.\nThese types can be objects, but also primitives and arrays.\nThis object is an extended subset of the [JSON Schema Specification Wright Draft 00](http://json-schema.org/).\n\nFor more information about the properties, see [JSON Schema Core](https://tools.ietf.org/html/draft-wright-json-schema-00) and [JSON Schema Validation](https://tools.ietf.org/html/draft-wright-json-schema-validation-00).\nUnless stated otherwise, the property definitions follow the JSON Schema.\n\n##### Properties\n\nThe following properties are taken directly from the JSON Schema definition and follow the same specifications:\n\n- title\n- multipleOf\n- maximum\n- exclusiveMaximum\n- minimum\n- exclusiveMinimum\n- maxLength\n- minLength\n- pattern (This string SHOULD be a valid regular expression, according to the [ECMA 262 regular expression](https://www.ecma-international.org/ecma-262/5.1/#sec-7.8.5) dialect)\n- maxItems\n- minItems\n- uniqueItems\n- maxProperties\n- minProperties\n- required\n- enum\n\nThe following properties are taken from the JSON Schema definition but their definitions were adjusted to the OpenAPI Specification.\n- type - Value MUST be a string. Multiple types via an array are not supported.\n- allOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- oneOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- anyOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- not - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- items - Value MUST be an object and not an array. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema. `items` MUST be present if the `type` is `array`.\n- properties - Property definitions MUST be a [Schema Object](#schema-object) and not a standard JSON Schema (inline or referenced).\n- additionalProperties - Value can be boolean or object. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- description - [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n- format - See [Data Type Formats](#dataTypeFormat) for further details. While relying on JSON Schema's defined formats, the OAS offers a few additional predefined formats.\n- default - The default value represents what would be assumed by the consumer of the input as the value of the schema if one is not provided. Unlike JSON Schema, the value MUST conform to the defined type for the Schema Object defined at the same level. For example, if `type` is `string`, then `default` can be `\"foo\"` but cannot be `1`.\n\nAlternatively, any time a Schema Object can be used, a [Reference Object](#reference-object) can be used in its place. This allows referencing definitions instead of defining them inline.\n\nAdditional properties defined by the JSON Schema specification that are not mentioned here are strictly unsupported.\n\nOther than the JSON Schema subset fields, the following fields MAY be used for further schema documentation:\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"schemaNullable\"></a>nullable | `boolean` | Allows sending a `null` value for the defined schema. Default value is `false`.\n<a name=\"schemaDiscriminator\"></a>discriminator | [Discriminator Object](#discriminator-object) | Adds support for polymorphism. The discriminator is an object name that is used to differentiate between other schemas which may satisfy the payload description. See [Composition and Inheritance](#composition-and-inheritance-polymorphism) for more details.\n<a name=\"schemaReadOnly\"></a>readOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"read only\". This means that it MAY be sent as part of a response but SHOULD NOT be sent as part of the request. If the property is marked as `readOnly` being `true` and is in the `required` list, the `required` will take effect on the response only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`.\n<a name=\"schemaWriteOnly\"></a>writeOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"write only\". Therefore, it MAY be sent as part of a request but SHOULD NOT be sent as part of the response. If the property is marked as `writeOnly` being `true` and is in the `required` list, the `required` will take effect on the request only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`.\n<a name=\"schemaXml\"></a>xml | [XML Object](#xml-object) | This MAY be used only on properties schemas. It has no effect on root schemas. Adds additional metadata to describe the XML representation of this property.\n<a name=\"schemaExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema.\n<a name=\"schemaExample\"></a>example | Any | A free-form property to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary.\n<a name=\"schemaDeprecated\"></a> deprecated | `boolean` | Specifies that a schema is deprecated and SHOULD be transitioned out of usage. Default value is `false`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n###### Composition and Inheritance (Polymorphism)\n\nThe OpenAPI Specification allows combining and extending model definitions using the `allOf` property of JSON Schema, in effect offering model composition.\n`allOf` takes an array of object definitions that are validated *independently* but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models.\nTo support polymorphism, the OpenAPI Specification adds the `discriminator` field.\nWhen used, the `discriminator` will be the name of the property that decides which schema definition validates the structure of the model.\nAs such, the `discriminator` field MUST be a required field.\nThere are are two ways to define the value of a discriminator for an inheriting instance.\n- Use the schema name.\n- Override the schema name by overriding the property with a new value. If a new value exists, this takes precedence over the schema name.\nAs such, inline schema definitions, which do not have a given id, *cannot* be used in polymorphism.\n\n###### XML Modeling\n\nThe [xml](#schemaXml) property allows extra definitions when translating the JSON definition to XML.\nThe [XML Object](#xml-object) contains additional information about the available options.\n\n##### Schema Object Examples\n\n###### Primitive Sample\n\n```json\n{\n  \"type\": \"string\",\n  \"format\": \"email\"\n}\n```\n\n```yaml\ntype: string\nformat: email\n```\n\n###### Simple Model\n\n```json\n{\n  \"type\": \"object\",\n  \"required\": [\n    \"name\"\n  ],\n  \"properties\": {\n    \"name\": {\n      \"type\": \"string\"\n    },\n    \"address\": {\n      \"$ref\": \"#/components/schemas/Address\"\n    },\n    \"age\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\",\n      \"minimum\": 0\n    }\n  }\n}\n```\n\n```yaml\ntype: object\nrequired:\n- name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/components/schemas/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n###### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"$ref\": \"#/components/schemas/ComplexModel\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/components/schemas/ComplexModel'\n```\n\n###### Model with Example\n\n```json\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"name\": {\n      \"type\": \"string\"\n    }\n  },\n  \"required\": [\n    \"name\"\n  ],\n  \"example\": {\n    \"name\": \"Puma\",\n    \"id\": 1\n  }\n}\n```\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n- name\nexample:\n  name: Puma\n  id: 1\n```\n\n###### Models with Composition\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"ErrorModel\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"message\",\n          \"code\"\n        ],\n        \"properties\": {\n          \"message\": {\n            \"type\": \"string\"\n          },\n          \"code\": {\n            \"type\": \"integer\",\n            \"minimum\": 100,\n            \"maximum\": 600\n          }\n        }\n      },\n      \"ExtendedErrorModel\": {\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/ErrorModel\"\n          },\n          {\n            \"type\": \"object\",\n            \"required\": [\n              \"rootCause\"\n            ],\n            \"properties\": {\n              \"rootCause\": {\n                \"type\": \"string\"\n              }\n            }\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    ErrorModel:\n      type: object\n      required:\n      - message\n      - code\n      properties:\n        message:\n          type: string\n        code:\n          type: integer\n          minimum: 100\n          maximum: 600\n    ExtendedErrorModel:\n      allOf:\n      - $ref: '#/components/schemas/ErrorModel'\n      - type: object\n        required:\n        - rootCause\n        properties:\n          rootCause:\n            type: string\n```\n\n###### Models with Polymorphism Support\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"Pet\": {\n        \"type\": \"object\",\n        \"discriminator\": {\n          \"propertyName\": \"petType\"\n        },\n        \"properties\": {\n          \"name\": {\n            \"type\": \"string\"\n          },\n          \"petType\": {\n            \"type\": \"string\"\n          }\n        },\n        \"required\": [\n          \"name\",\n          \"petType\"\n        ]\n      },\n      \"Cat\": {\n        \"description\": \"A representation of a cat. Note that `Cat` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"huntingSkill\": {\n                \"type\": \"string\",\n                \"description\": \"The measured skill for hunting\",\n                \"default\": \"lazy\",\n                \"enum\": [\n                  \"clueless\",\n                  \"lazy\",\n                  \"adventurous\",\n                  \"aggressive\"\n                ]\n              }\n            },\n            \"required\": [\n              \"huntingSkill\"\n            ]\n          }\n        ]\n      },\n      \"Dog\": {\n        \"description\": \"A representation of a dog. Note that `Dog` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"packSize\": {\n                \"type\": \"integer\",\n                \"format\": \"int32\",\n                \"description\": \"the size of the pack the dog is from\",\n                \"default\": 0,\n                \"minimum\": 0\n              }\n            },\n            \"required\": [\n              \"packSize\"\n            ]\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n      properties:\n        name:\n          type: string\n        petType:\n          type: string\n      required:\n      - name\n      - petType\n    Cat:  ## \"Cat\" will be used as the discriminator value\n      description: A representation of a cat\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          huntingSkill:\n            type: string\n            description: The measured skill for hunting\n            enum:\n            - clueless\n            - lazy\n            - adventurous\n            - aggressive\n        required:\n        - huntingSkill\n    Dog:  ## \"Dog\" will be used as the discriminator value\n      description: A representation of a dog\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          packSize:\n            type: integer\n            format: int32\n            description: the size of the pack the dog is from\n            default: 0\n            minimum: 0\n        required:\n        - packSize\n```\n\n#### Discriminator Object\n\nWhen request bodies or response payloads may be one of a number of different schemas, a `discriminator` object can be used to aid in serialization, deserialization, and validation.  The discriminator is a specific object in a schema which is used to inform the consumer of the specification of an alternative schema based on the value associated with it.\n\nWhen using the discriminator, _inline_ schemas will not be considered.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"propertyName\"></a>propertyName | `string` | **REQUIRED**. The name of the property in the payload that will hold the discriminator value.\n<a name=\"discriminatorMapping\"></a> mapping | Map[`string`, `string`] | An object to hold mappings between payload values and schema names or references.\n\nThe discriminator attribute is legal only when using one of the composite keywords `oneOf`, `anyOf`, `allOf`.\n\nIn OAS 3.0, a response payload MAY be described to be exactly one of any number of types:\n\n```\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n```\n\nwhich means the payload _MUST_, by validation, match exactly one of the schemas described by `Cat`, `Dog`, or `Lizard`.  In this case, a discriminator MAY act as a \"hint\" to shortcut validation and selection of the matching schema which may be a costly operation, depending on the complexity of the schema. We can then describe exactly which field tells us which schema to use:\n\n\n```\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  discriminator:\n    propertyName: pet_type\n```\n\nThe expectation now is that a property with name `pet_type` _MUST_ be present in the response payload, and the value will correspond to the name of a schema defined in the OAS document.  Thus the response payload:\n\n```\n{\n  \"id\": 12345,\n  \"pet_type\": \"Cat\"\n}\n```\n\nWill indicate that the `Cat` schema be used in conjunction with this payload.\n\nIn scenarios where the value of the discriminator field does not match the schema name or implicit mapping is not possible, an optional `mapping` definition MAY be used:\n\n```\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  - $ref: 'https://gigantic-server.com/schemas/Monster/schema.json'\n  discriminator:\n    propertyName: pet_type\n    mapping:\n      dog: '#/components/schemas/Dog'\n      monster: 'https://gigantic-server.com/schemas/Monster/schema.json'\n```\n\nHere the discriminator _value_ of `dog` will map to the schema `#/components/schemas/Dog`, rather than the default (implicit) value of `Dog`.  If the discriminator _value_ does not match an implicit or explicit mapping, no schema can be determined and validation SHOULD fail. Mapping keys MUST be string values, but tooling MAY convert response values to strings for comparison.\n\nWhen used in conjunction with the `anyOf` construct, the use of the discriminator can avoid ambiguity where multiple schemas may satisfy a single payload.\n\nIn both the `oneOf` and `anyOf` use cases, all possible schemas MUST be listed explicitly.  To avoid redundancy, the discriminator MAY be added to a parent schema definition, and all schemas comprising the parent schema in an `allOf` construct may be used as an alternate schema.\n\nFor example:\n\n```\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n      - pet_type\n      properties:\n        pet_type:\n          type: string\n      discriminator:\n        propertyName: pet_type\n        mapping:\n          cachorro: Dog\n    Cat:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Cat`\n        properties:\n          name:\n            type: string\n    Dog:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Dog`\n        properties:\n          bark:\n            type: string\n    Lizard:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Lizard`\n        properties:\n          lovesRocks:\n            type: boolean\n```\n\na payload like this:\n\n```\n{\n  \"pet_type\": \"Cat\",\n  \"name\": \"misty\"\n}\n```\n\nwill indicate that the `Cat` schema be used.  Likewise this schema:\n\n```\n{\n  \"pet_type\": \"cachorro\",\n  \"bark\": \"soft\"\n}\n```\n\nwill map to `Dog` because of the definition in the `mappings` element.\n\n\n#### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\n\nWhen using arrays, XML element names are *not* inferred (for singular/plural forms) and the `name` property SHOULD be used to add that information.\nSee examples for expected behavior.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"xmlName\"></a>name | `string` | Replaces the name of the element/attribute used for the described schema property. When defined within `items`, it will affect the name of the individual XML elements within the list. When defined alongside `type` being `array` (outside the `items`), it will affect the wrapping element and only if `wrapped` is `true`. If `wrapped` is `false`, it will be ignored.\n<a name=\"xmlNamespace\"></a>namespace | `string` | The URI of the namespace definition. Value MUST be in the form of an absolute URI.\n<a name=\"xmlPrefix\"></a>prefix | `string` | The prefix to be used for the [name](#xmlName).\n<a name=\"xmlAttribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`.\n<a name=\"xmlWrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `array` (outside the `items`).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### XML Object Examples\n\nThe examples of the XML object definitions are included inside a property definition of a [Schema Object](#schema-object) with a sample of the XML representation of it.\n\n###### No XML Element\n\nBasic string property:\n\n```json\n{\n    \"animals\": {\n        \"type\": \"string\"\n    }\n}\n```\n\n```yaml\nanimals:\n  type: string\n```\n\n```xml\n<animals>...</animals>\n```\n\nBasic string array property ([`wrapped`](#xmlWrapped) is `false` by default):\n\n```json\n{\n    \"animals\": {\n        \"type\": \"array\",\n        \"items\": {\n            \"type\": \"string\"\n        }\n    }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n```\n\n```xml\n<animals>...</animals>\n<animals>...</animals>\n<animals>...</animals>\n```\n\n###### XML Name Replacement\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\",\n    \"xml\": {\n      \"name\": \"animal\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n  xml:\n    name: animal\n```\n\n```xml\n<animal>...</animal>\n```\n\n\n###### XML Attribute, Prefix and Namespace\n\nIn this example, a full model definition is shown.\n\n```json\n{\n  \"Person\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\",\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"name\": {\n        \"type\": \"string\",\n        \"xml\": {\n          \"namespace\": \"http://example.com/schema/sample\",\n          \"prefix\": \"sample\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nPerson:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int32\n      xml:\n        attribute: true\n    name:\n      type: string\n      xml:\n        namespace: http://example.com/schema/sample\n        prefix: sample\n```\n\n```xml\n<Person id=\"123\">\n    <sample:name xmlns:sample=\"http://example.com/schema/sample\">example</sample:name>\n</Person>\n```\n\n###### XML Arrays\n\nChanging the element names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nThe external `name` property has no effect on the XML:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nEven when the array is wrapped, if a name is not explicitly defined, the same name will be used both internally and externally:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animals>value</animals>\n  <animals>value</animals>\n</animals>\n```\n\nTo overcome the naming problem in the example above, the following definition can be used:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animal>value</animal>\n  <animal>value</animal>\n</animals>\n```\n\nAffecting both internal and external names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <animal>value</animal>\n  <animal>value</animal>\n</aliens>\n```\n\nIf we change the external element but not the internal ones:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <aliens>value</aliens>\n  <aliens>value</aliens>\n</aliens>\n```\n\n#### Security Scheme Object\n\nDefines a security scheme that can be used by the operations.\nSupported schemes are HTTP authentication, an API key (either as a header or as a query parameter), OAuth2's common flows (implicit, password, application and access code) as defined in [RFC6749](https://tools.ietf.org/html/rfc6749), and [OpenID Connect Discovery](https://tools.ietf.org/html/draft-ietf-oauth-discovery-06).\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"securitySchemeType\"></a>type | `string` | Any | **REQUIRED**. The type of the security scheme. Valid values are `\"apiKey\"`, `\"http\"`, `\"oauth2\"`, `\"openIdConnect\"`.\n<a name=\"securitySchemeDescription\"></a>description | `string` | Any | A short description for security scheme. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"securitySchemeName\"></a>name | `string` | `apiKey` | **REQUIRED**. The name of the header, query or cookie parameter to be used.\n<a name=\"securitySchemeIn\"></a>in | `string` | `apiKey` | **REQUIRED**. The location of the API key. Valid values are `\"query\"`, `\"header\"` or `\"cookie\"`.\n<a name=\"securitySchemeScheme\"></a>scheme | `string` | `http` | **REQUIRED**. The name of the HTTP Authorization scheme to be used in the [Authorization header as defined in RFC7235](https://tools.ietf.org/html/rfc7235#section-5.1).\n<a name=\"securitySchemeBearerFormat\"></a>bearerFormat | `string` | `http` (`\"bearer\"`) | A hint to the client to identify how the bearer token is formatted.  Bearer tokens are usually generated by an authorization server, so this information is primarily for documentation purposes.\n<a name=\"securitySchemeFlows\"></a>flows | [OAuth Flows Object](#oauth-flows-object) | `oauth2` | **REQUIRED**. An object containing configuration information for the flow types supported.\n<a name=\"securitySchemeOpenIdConnectUrl\"></a>openIdConnectUrl | `string` | `openIdConnect` | **REQUIRED**. OpenId Connect URL to discover OAuth2 configuration values. This MUST be in the form of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Security Scheme Object Example\n\n###### Basic Authentication Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"basic\"\n}\n```\n\n```yaml\ntype: http\nscheme: basic\n```\n\n###### API Key Sample\n\n```json\n{\n  \"type\": \"apiKey\",\n  \"name\": \"api_key\",\n  \"in\": \"header\"\n}\n```\n\n```yaml\ntype: apiKey\nname: api_key\nin: header\n```\n\n###### JWT Bearer Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"bearer\",\n  \"bearerFormat\": \"JWT\",\n}\n```\n\n```yaml\ntype: http\nscheme: bearer\nbearerFormat: JWT\n```\n\n###### Implicit OAuth2 Sample\n\n```json\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### OAuth Flows Object\n\nAllows configuration of the supported OAuth Flows.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"oauthFlowsImplicit\"></a>implicit| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Implicit flow\n<a name=\"oauthFlowsPassword\"></a>password| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Resource Owner Password flow\n<a name=\"oauthFlowsClientCredentials\"></a>clientCredentials| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Client Credentials flow.  Previously called `application` in OpenAPI 2.0.\n<a name=\"oauthFlowsAuthorizationCode\"></a>authorizationCode| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Authorization Code flow.  Previously called `accessCode` in OpenAPI 2.0.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### OAuth Flow Object\n\nConfiguration details for a supported OAuth Flow\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"oauthFlowAuthorizationUrl\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"authorizationCode\"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL.\n<a name=\"oauthFlowTokenUrl\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"clientCredentials\"`, `\"authorizationCode\"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL.\n<a name=\"oauthFlowRefreshUrl\"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL.\n<a name=\"oauthFlowScopes\"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### OAuth Flow Object Examples\n\n```JSON\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    },\n    \"authorizationCode\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"tokenUrl\": \"https://example.com/api/oauth/token\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```YAML\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n  authorizationCode:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    tokenUrl: https://example.com/api/oauth/token\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n\n#### Security Requirement Object\n\nLists the required security schemes to execute this operation.\nThe name used for each property MUST correspond to a security scheme declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object).\n\nSecurity Requirement Objects that contain multiple schemes require that all schemes MUST be satisfied for a request to be authorized.\nThis enables support for scenarios where multiple query parameters or HTTP headers are required to convey security information.\n\nWhen a list of Security Requirement Objects is defined on the [Open API object](#openapi-object) or [Operation Object](#operation-object), only one of Security Requirement Objects in the list needs to be satisfied to authorize the request. \n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"securityRequirementsName\"></a>{name} | [`string`] | Each name MUST correspond to a security scheme which is declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object). If the security scheme is of type `\"oauth2\"` or `\"openIdConnect\"`, then the value is a list of scope names required for the execution. For other security scheme types, the array MUST be empty.\n\n##### Security Requirement Object Examples\n\n###### Non-OAuth2 Security Requirement\n\n```json\n{\n  \"api_key\": []\n}\n```\n\n```yaml\napi_key: []\n```\n\n###### OAuth2 Security Requirement\n\n```json\n{\n  \"petstore_auth\": [\n    \"write:pets\",\n    \"read:pets\"\n  ]\n}\n```\n\n```yaml\npetstore_auth:\n- write:pets\n- read:pets\n```\n\n### Specification Extensions\n\nWhile the OpenAPI Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are implemented as patterned fields that are always prefixed by `\"x-\"`.\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"infoExtensions\"></a>^x- | Any | Allows extensions to the OpenAPI Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. Can have any valid JSON format value.\n\nThe extensions may or may not be supported by the available tooling, but those may be extended as well to add requested support (if tools are internal or open-sourced).\n\n### Security Filtering\n\nSome objects in the OpenAPI Specification MAY be declared and remain empty, or be completely removed, even though they are inherently the core of the API documentation.\n\nThe reasoning is to allow an additional layer of access control over the documentation.\nWhile not part of the specification itself, certain libraries MAY choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples of this:\n\n1. The [Paths Object](#paths-object) MAY be empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They'd still have access to the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) MAY be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different than hiding the path itself from the [Paths Object](#paths-object), so the user will not be aware of its existence. This allows the documentation provider to finely control what the viewer can see.\n\n## Appendix A: Revision History\n\nVersion   | Date       | Notes\n---       | ---        | ---\n3.0.0     | 2017-07-26 | Release of the OpenAPI Specification 3.0.0\n3.0.0-rc2 | 2017-06-16 | rc2 of the 3.0 specification\n3.0.0-rc1 | 2017-04-27 | rc1 of the 3.0 specification\n3.0.0-rc0 | 2017-02-28 | Implementer's Draft of the 3.0 specification\n2.0       | 2015-12-31 | Donation of Swagger 2.0 to the Open API Initiative\n2.0       | 2014-09-08 | Release of Swagger 2.0\n1.2       | 2014-03-14 | Initial release of the formal document.\n1.1       | 2012-08-22 | Release of Swagger 1.1\n1.0       | 2011-08-10 | First release of the Swagger Specification\n"
  },
  {
    "path": "versions/3.0.1-editors.md",
    "content": "## Active\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Ron Ratovsky [@webron](https://github.com/webron)\n\n## Emeritus\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "versions/3.0.1.md",
    "content": "# OpenAPI Specification\n\n#### Version 3.0.1\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"NOT RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [BCP 14](https://tools.ietf.org/html/bcp14) [RFC2119](https://tools.ietf.org/html/rfc2119) [RFC8174](https://tools.ietf.org/html/rfc8174) when, and only when, they appear in all capitals, as shown here.\n\nThis document is licensed under [The Apache License, Version 2.0](https://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introduction\n\nThe OpenAPI Specification (OAS) defines a standard, language-agnostic interface to RESTful APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined, a consumer can understand and interact with the remote service with a minimal amount of implementation logic.\n\nAn OpenAPI definition can then be used by documentation generation tools to display the API, code generation tools to generate servers and clients in various programming languages, testing tools, and many other use cases.\n\n## Table of Contents\n<!-- TOC depthFrom:1 depthTo:3 withLinks:1 updateOnSave:1 orderedList:0 -->\n\n- [Definitions](#definitions)\n\t- [OpenAPI Document](#openapi-document)\n\t- [Path Templating](#path-templating)\n\t- [Media Types](#media-types)\n\t- [HTTP Status Codes](#http-status-codes)\n- [Specification](#specification)\n\t- [Versions](#versions)\n\t- [Format](#format)\n\t- [Document Structure](#document-structure)\n\t- [Data Types](#data-types)\n\t- [Rich Text Formatting](#rich-text-formatting)\n\t- [Relative References In URLs](#relative-references-in-urls)\n\t- [Schema](#schema)\n\t\t- [OpenAPI Object](#openapi-object)\n\t\t- [Info Object](#info-object)\n\t\t- [Contact Object](#contact-object)\n\t\t- [License Object](#license-object)\n\t\t- [Server Object](#server-object)\n\t\t- [Server Variable Object](#server-variable-object)\n\t\t- [Components Object](#components-object)\n\t\t- [Paths Object](#paths-object)\n\t\t- [Path Item Object](#path-item-object)\n\t\t- [Operation Object](#operation-object)\n\t\t- [External Documentation Object](#external-documentation-object)\n\t\t- [Parameter Object](#parameter-object)\n\t\t- [Request Body Object](#request-body-object)\n\t\t- [Media Type Object](#media-type-object)\n\t\t- [Encoding Object](#encoding-object)\n\t\t- [Responses Object](#responses-object)\n\t\t- [Response Object](#response-object)\n\t\t- [Callback Object](#callback-object)\n\t\t- [Example Object](#example-object)\n\t\t- [Link Object](#link-object)\n\t\t- [Header Object](#header-object)\n\t\t- [Tag Object](#tag-object)\n\t\t- [Reference Object](#reference-object)\n\t\t- [Schema Object](#schema-object)\n\t\t- [Discriminator Object](#discriminator-object)\n\t\t- [XML Object](#xml-object)\n\t\t- [Security Scheme Object](#security-scheme-object)\n\t\t- [OAuth Flows Object](#oauth-flows-object)\n\t\t- [OAuth Flow Object](#oauth-flow-object)\n\t\t- [Security Requirement Object](#security-requirement-object)\n\t- [Specification Extensions](#specification-extensions)\n\t- [Security Filtering](#security-filtering)\n- [Appendix A: Revision History](#appendix-a-revision-history)\n\t\n\n<!-- /TOC -->\n\n## Definitions\n\n##### OpenAPI Document\nA document (or set of documents) that defines or describes an API. An OpenAPI definition uses and conforms to the OpenAPI Specification.\n\n##### Path Templating\nPath templating refers to the usage of curly braces ({}) to mark a section of a URL path as replaceable using path parameters.\n\n##### Media Types\nMedia type definitions are spread across several resources.\nThe media type definitions SHOULD be in compliance with [RFC6838](https://tools.ietf.org/html/rfc6838).\n\nSome examples of possible media type definitions:\n```\n  text/plain; charset=utf-8\n  application/json\n  application/vnd.github+json\n  application/vnd.github.v3+json\n  application/vnd.github.v3.raw+json\n  application/vnd.github.v3.text+json\n  application/vnd.github.v3.html+json\n  application/vnd.github.v3.full+json\n  application/vnd.github.v3.diff\n  application/vnd.github.v3.patch\n```\n##### HTTP Status Codes\nThe HTTP Status Codes are used to indicate the status of the executed operation.\nThe available status codes are defined by [RFC7231](https://tools.ietf.org/html/rfc7231#section-6) and registered status codes are listed in the [IANA Status Code Registry](https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n## Specification\n\n### Versions\n\nThe OpenAPI Specification is versioned using [Semantic Versioning 2.0.0](https://semver.org/spec/v2.0.0.html) (semver) and follows the semver specification.\n\nThe `major`.`minor` portion of the semver (for example `3.0`) SHALL designate the OAS feature set. Typically, *`.patch`* versions address errors in this document, not the feature set. Tooling which supports OAS 3.0 SHOULD be compatible with all OAS 3.0.\\* versions. The patch version SHOULD NOT be considered by tooling, making no distinction between `3.0.0` and `3.0.1` for example.\n\nSubsequent minor version releases of the OpenAPI Specification (incrementing the `minor` version number) SHOULD NOT interfere with tooling developed to a lower minor version and same major version.  Thus a hypothetical `3.1.0` specification SHOULD be usable with tooling designed for `3.0.0`.\n\nAn OpenAPI document compatible with OAS 3.\\*.\\* contains a required [`openapi`](#oasVersion) field which designates the semantic version of the OAS that it uses. (OAS 2.0 documents contain a top-level version field named [`swagger`](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#swaggerObject) and value `\"2.0\"`.)\n\n### Format\n\nAn OpenAPI document that conforms to the OpenAPI Specification is itself a JSON object, which may be represented either in JSON or YAML format.\n\nFor example, if a field has an array value, the JSON array representation will be used:\n\n```json\n{\n   \"field\": [ 1, 2, 3 ]\n}\n```\nAll field names in the specification are **case sensitive**.\n\nThe schema exposes two types of fields: Fixed fields, which have a declared name, and Patterned fields, which declare a regex pattern for the field name.\n\nPatterned fields MUST have unique names within the containing object.\n\nIn order to preserve the ability to round-trip between YAML and JSON formats, YAML version [1.2](http://www.yaml.org/spec/1.2/spec.html) is RECOMMENDED along with some additional constraints:\n\n- Tags MUST be limited to those allowed by the [JSON Schema ruleset](http://www.yaml.org/spec/1.2/spec.html#id2803231).\n- Keys used in YAML maps MUST be limited to a scalar string, as defined by the [YAML Failsafe schema ruleset](http://yaml.org/spec/1.2/spec.html#id2802346).\n\n**Note:** While APIs may be defined by OpenAPI documents in either YAML or JSON format, the API request and response bodies and other content are not required to be JSON or YAML.\n\n### Document Structure\n\nAn OpenAPI document MAY be made up of a single document or be divided into multiple, connected parts at the discretion of the user. In the latter case, `$ref` fields MUST be used in the specification to reference those parts as follows from the [JSON Schema](http://json-schema.org) definitions.\n\nIt is RECOMMENDED that the root OpenAPI document be named: `openapi.json` or `openapi.yaml`.\n\n### Data Types\n\nPrimitive data types in the OAS are based on the types supported by the [JSON Schema Specification Wright Draft 00](https://tools.ietf.org/html/draft-wright-json-schema-00#section-4.2).\nNote that `integer` as a type is also supported and is defined as a JSON number without a fraction or exponent part.\n`null` is not supported as a type (see [`nullable`](#schemaNullable) for an alternative solution).\nModels are defined using the [Schema Object](#schema-object), which is an extended subset of JSON Schema Specification Wright Draft 00.\n\n<a name=\"dataTypeFormat\"></a>Primitives have an optional modifier property: `format`.\nOAS uses several known formats to define in fine detail the data type being used.\nHowever, to support documentation needs, the `format` property is an open `string`-valued property, and can have any value.\nFormats such as `\"email\"`, `\"uuid\"`, and so on, MAY be used even though undefined by this specification.\nTypes that are not accompanied by a `format` property follow the type definition in the JSON Schema. Tools that do not recognize a specific `format` MAY default back to the `type` alone, as if the `format` is not specified.\n\nThe formats defined by the OAS are:\n\nCommon Name | [`type`](#data-types) | [`format`](#dataTypeFormat) | Comments\n----------- | ------ | -------- | --------\ninteger | `integer` | `int32` | signed 32 bits\nlong | `integer` | `int64` | signed 64 bits\nfloat | `number` | `float` | |\ndouble | `number` | `double` | |\nstring | `string` | | |\nbyte | `string` | `byte` | base64 encoded characters\nbinary | `string` | `binary` | any sequence of octets\nboolean | `boolean` | | |\ndate | `string` | `date` | As defined by `full-date` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\ndateTime | `string` | `date-time` | As defined by `date-time` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\npassword | `string` | `password` | A hint to UIs to obscure input.\n\n### Rich Text Formatting\nThroughout the specification `description` fields are noted as supporting CommonMark markdown formatting.\nWhere OpenAPI tooling renders rich text it MUST support, at a minimum, markdown syntax as described by [CommonMark 0.27](http://spec.commonmark.org/0.27/). Tooling MAY choose to ignore some CommonMark features to address security concerns.\n\n### Relative References in URLs\n\nUnless specified otherwise, all properties that are URLs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\nRelative references are resolved using the URLs defined in the [`Server Object`](#server-object) as a Base URI.\n\nRelative references used in `$ref` are processed as per [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03), using the URL of the current document as the base URI. See also the [Reference Object](#reference-object).\n\n### Schema\n\nIn the following description, if a field is not explicitly **REQUIRED** or described with a MUST or SHALL, it can be considered OPTIONAL.\n\n#### OpenAPI Object\n\nThis is the root document object of the [OpenAPI document](#openapi-document).\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"oasVersion\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [semantic version number](https://semver.org/spec/v2.0.0.html) of the [OpenAPI Specification version](#versions) that the OpenAPI document uses. The `openapi` field SHOULD be used by tooling specifications and clients to interpret the OpenAPI document. This is *not* related to the API [`info.version`](#infoVersion) string.\n<a name=\"oasInfo\"></a>info | [Info Object](#info-object) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required.\n<a name=\"oasServers\"></a>servers | [[Server Object](#server-object)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` property is not provided, or is an empty array, the default value would be a [Server Object](#server-object) with a [url](#serverUrl) value of `/`.\n<a name=\"oasPaths\"></a>paths | [Paths Object](#paths-object) | **REQUIRED**. The available paths and operations for the API.\n<a name=\"oasComponents\"></a>components | [Components Object](#components-object) | An element to hold various schemas for the specification.\n<a name=\"oasSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. Individual operations can override this definition.\n<a name=\"oasTags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the specification with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique.\n<a name=\"oasExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Info Object\n\nThe object provides metadata about the API.\nThe metadata MAY be used by the clients if needed, and MAY be presented in editing or documentation generation tools for convenience.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"infoTitle\"></a>title | `string` | **REQUIRED**. The title of the application.\n<a name=\"infoDescription\"></a>description | `string` | A short description of the application. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"infoTermsOfService\"></a>termsOfService | `string` | A URL to the Terms of Service for the API. MUST be in the format of a URL.\n<a name=\"infoContact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API.\n<a name=\"infoLicense\"></a>license | [License Object](#license-object) | The license information for the exposed API.\n<a name=\"infoVersion\"></a>version | `string` | **REQUIRED**. The version of the OpenAPI document (which is distinct from the [OpenAPI Specification version](#oasVersion) or the API implementation version).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Info Object Example:\n\n```json\n{\n  \"title\": \"Sample Pet Store App\",\n  \"description\": \"This is a sample server for a pet store.\",\n  \"termsOfService\": \"http://example.com/terms/\",\n  \"contact\": {\n    \"name\": \"API Support\",\n    \"url\": \"http://www.example.com/support\",\n    \"email\": \"support@example.com\"\n  },\n  \"license\": {\n    \"name\": \"Apache 2.0\",\n    \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n  },\n  \"version\": \"1.0.1\"\n}\n```\n\n```yaml\ntitle: Sample Pet Store App\ndescription: This is a sample server for a pet store.\ntermsOfService: http://example.com/terms/\ncontact:\n  name: API Support\n  url: http://www.example.com/support\n  email: support@example.com\nlicense:\n  name: Apache 2.0\n  url: https://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n#### Contact Object\n\nContact information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"contactName\"></a>name | `string` | The identifying name of the contact person/organization.\n<a name=\"contactUrl\"></a>url | `string` | The URL pointing to the contact information. MUST be in the format of a URL.\n<a name=\"contactEmail\"></a>email | `string` | The email address of the contact person/organization. MUST be in the format of an email address.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Contact Object Example:\n\n```json\n{\n  \"name\": \"API Support\",\n  \"url\": \"http://www.example.com/support\",\n  \"email\": \"support@example.com\"\n}\n```\n\n```yaml\nname: API Support\nurl: http://www.example.com/support\nemail: support@example.com\n```\n\n#### License Object\n\nLicense information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"licenseName\"></a>name | `string` | **REQUIRED**. The license name used for the API.\n<a name=\"licenseUrl\"></a>url | `string` | A URL to the license used for the API. MUST be in the format of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### License Object Example:\n\n```json\n{\n  \"name\": \"Apache 2.0\",\n  \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n}\n```\n\n```yaml\nname: Apache 2.0\nurl: https://www.apache.org/licenses/LICENSE-2.0.html\n```\n\n#### Server Object\n\nAn object representing a Server.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverUrl\"></a>url | `string` | **REQUIRED**. A URL to the target host.  This URL supports Server Variables and MAY be relative, to indicate that the host location is relative to the location where the OpenAPI document is being served. Variable substitutions will be made when a variable is named in `{`brackets`}`.\n<a name=\"serverDescription\"></a>description | `string` | An optional string describing the host designated by the URL. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"serverVariables\"></a>variables | Map[`string`, [Server Variable Object](#server-variable-object)] | A map between a variable name and its value.  The value is used for substitution in the server's URL template.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Server Object Example\n\nA single server would be described as:\n\n```json\n{\n  \"url\": \"https://development.gigantic-server.com/v1\",\n  \"description\": \"Development server\"\n}\n```\n\n```yaml\nurl: https://development.gigantic-server.com/v1\ndescription: Development server\n```\n\nThe following shows how multiple servers can be described, for example, at the OpenAPI Object's [`servers`](#oasServers):\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://development.gigantic-server.com/v1\",\n      \"description\": \"Development server\"\n    },\n    {\n      \"url\": \"https://staging.gigantic-server.com/v1\",\n      \"description\": \"Staging server\"\n    },\n    {\n      \"url\": \"https://api.gigantic-server.com/v1\",\n      \"description\": \"Production server\"\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://development.gigantic-server.com/v1\n  description: Development server\n- url: https://staging.gigantic-server.com/v1\n  description: Staging server\n- url: https://api.gigantic-server.com/v1\n  description: Production server\n```\n\nThe following shows how variables can be used for a server configuration:\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://{username}.gigantic-server.com:{port}/{basePath}\",\n      \"description\": \"The production API server\",\n      \"variables\": {\n        \"username\": {\n          \"default\": \"demo\",\n          \"description\": \"this value is assigned by the service provider, in this example `gigantic-server.com`\"\n        },\n        \"port\": {\n          \"enum\": [\n            \"8443\",\n            \"443\"\n          ],\n          \"default\": \"8443\"\n        },\n        \"basePath\": {\n          \"default\": \"v2\"\n        }\n      }\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://{username}.gigantic-server.com:{port}/{basePath}\n  description: The production API server\n  variables:\n    username:\n      # note! no enum here means it is an open value\n      default: demo\n      description: this value is assigned by the service provider, in this example `gigantic-server.com`\n    port:\n      enum:\n        - '8443'\n        - '443'\n      default: '8443'\n    basePath:\n      # open meaning there is the opportunity to use special base paths as assigned by the provider, default is `v2`\n      default: v2\n```\n\n\n#### Server Variable Object\n\nAn object representing a Server Variable for server URL template substitution.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverVariableEnum\"></a>enum | [`string`] | An enumeration of string values to be used if the substitution options are from a limited set.\n<a name=\"serverVariableDefault\"></a>default | `string` |  **REQUIRED**. The default value to use for substitution, and to send, if an alternate value is _not_ supplied. Unlike the [Schema Object's](#schema-object) `default`, this value MUST be provided by the consumer.\n<a name=\"serverVariableDescription\"></a>description | `string` | An optional description for the server variable. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Components Object\n\nHolds a set of reusable objects for different aspects of the OAS.\nAll objects defined within the components object will have no effect on the API unless they are explicitly referenced from properties outside the components object.\n\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---|---\n<a name=\"componentsSchemas\"></a> schemas | Map[`string`, [Schema Object](#schema-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Schema Objects](#schema-object).\n<a name=\"componentsResponses\"></a> responses | Map[`string`, [Response Object](#response-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Response Objects](#response-object).\n<a name=\"componentsParameters\"></a> parameters | Map[`string`, [Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Parameter Objects](#parameter-object).\n<a name=\"componentsExamples\"></a> examples | Map[`string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Example Objects](#example-object).\n<a name=\"componentsRequestBodies\"></a> requestBodies | Map[`string`, [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Request Body Objects](#request-body-object).\n<a name=\"componentsHeaders\"></a> headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Header Objects](#header-object).\n<a name=\"componentsSecuritySchemes\"></a> securitySchemes| Map[`string`, [Security Scheme Object](#security-scheme-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Security Scheme Objects](#security-scheme-object).\n<a name=\"componentsLinks\"></a> links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Link Objects](#link-object).\n<a name=\"componentsCallbacks\"></a> callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Callback Objects](#callback-object).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nAll the fixed fields declared above are objects that MUST use keys that match the regular expression: `^[a-zA-Z0-9\\.\\-_]+$`.\n\nField Name Examples:\n\n```\nUser\nUser_1\nUser_Name\nuser-name\nmy.org.User\n```\n\n##### Components Object Example\n\n```json\n\"components\": {\n  \"schemas\": {\n    \"Category\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Tag\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  },\n  \"parameters\": {\n    \"skipParam\": {\n      \"name\": \"skip\",\n      \"in\": \"query\",\n      \"description\": \"number of items to skip\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    },\n    \"limitParam\": {\n      \"name\": \"limit\",\n      \"in\": \"query\",\n      \"description\": \"max records to return\",\n      \"required\": true,\n      \"schema\" : {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    }\n  },\n  \"responses\": {\n    \"NotFound\": {\n      \"description\": \"Entity not found.\"\n    },\n    \"IllegalInput\": {\n      \"description\": \"Illegal input for operation.\"\n    },\n    \"GeneralError\": {\n      \"description\": \"General Error\",\n      \"content\": {\n        \"application/json\": {\n          \"schema\": {\n            \"$ref\": \"#/components/schemas/GeneralError\"\n          }\n        }\n      }\n    }\n  },\n  \"securitySchemes\": {\n    \"api_key\": {\n      \"type\": \"apiKey\",\n      \"name\": \"api_key\",\n      \"in\": \"header\"\n    },\n    \"petstore_auth\": {\n      \"type\": \"oauth2\",\n      \"flows\": {\n        \"implicit\": {\n          \"authorizationUrl\": \"http://example.org/api/oauth/dialog\",\n          \"scopes\": {\n            \"write:pets\": \"modify pets in your account\",\n            \"read:pets\": \"read your pets\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Category:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n    Tag:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n  parameters:\n    skipParam:\n      name: skip\n      in: query\n      description: number of items to skip\n      required: true\n      schema:\n        type: integer\n        format: int32\n    limitParam:\n      name: limit\n      in: query\n      description: max records to return\n      required: true\n      schema:\n        type: integer\n        format: int32\n  responses:\n    NotFound:\n      description: Entity not found.\n    IllegalInput:\n      description: Illegal input for operation.\n    GeneralError:\n      description: General Error\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/GeneralError'\n  securitySchemes:\n    api_key:\n      type: apiKey\n      name: api_key\n      in: header\n    petstore_auth:\n      type: oauth2\n      flows:\n        implicit:\n          authorizationUrl: http://example.org/api/oauth/dialog\n          scopes:\n            write:pets: modify pets in your account\n            read:pets: read your pets\n```\n\n\n#### Paths Object\n\nHolds the relative paths to the individual endpoints and their operations.\nThe path is appended to the URL from the [`Server Object`](#server-object) in order to construct the full URL.  The Paths MAY be empty, due to [ACL constraints](#security-filtering).\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"pathsPath\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a slash. The path is **appended** (no relative URL resolution) to the expanded URL from the [`Server Object`](#server-object)'s `url` field in order to construct the full URL. [Path templating](#path-templating) is allowed. When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical. In case of ambiguous matching, it's up to the tooling to decide which one to use.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Templating Matching\n\nAssuming the following paths, the concrete definition, `/pets/mine`, will be matched first if used:\n\n```\n  /pets/{petId}\n  /pets/mine\n```\n\nThe following paths are considered identical and invalid:\n\n```\n  /pets/{petId}\n  /pets/{name}\n```\n\nThe following may lead to ambiguous resolution:\n\n```\n  /{entity}/me\n  /books/{id}\n```\n\n##### Paths Object Example\n\n```json\n{\n  \"/pets\": {\n    \"get\": {\n      \"description\": \"Returns all pets from the system that the user has access to\",\n      \"responses\": {\n        \"200\": {         \n          \"description\": \"A list of pets.\",\n          \"content\": {\n            \"application/json\": {\n              \"schema\": {\n                \"type\": \"array\",\n                \"items\": {\n                  \"$ref\": \"#/components/schemas/pet\"\n                }\n              }\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    responses:\n      '200':\n        description: A list of pets.\n        content:\n          application/json:\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/pet'\n```\n\n#### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item MAY be empty, due to [ACL constraints](#security-filtering).\nThe path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"pathItemRef\"></a>$ref | `string` | Allows for an external definition of this path item. The referenced structure MUST be in the format of a [Path Item Object](#path-item-object). If there are conflicts between the referenced definition and this Path Item's definition, the behavior is *undefined*.\n<a name=\"pathItemSummary\"></a>summary| `string` | An optional, string summary, intended to apply to all operations in this path.\n<a name=\"pathItemDescription\"></a>description | `string` | An optional, string description, intended to apply to all operations in this path. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"pathItemGet\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path.\n<a name=\"pathItemPut\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path.\n<a name=\"pathItemPost\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path.\n<a name=\"pathItemDelete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path.\n<a name=\"pathItemOptions\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path.\n<a name=\"pathItemHead\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path.\n<a name=\"pathItemPatch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path.\n<a name=\"pathItemTrace\"></a>trace | [Operation Object](#operation-object) | A definition of a TRACE operation on this path.\n<a name=\"pathItemServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service all operations in this path.\n<a name=\"pathItemParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Item Object Example\n\n```json\n{\n  \"get\": {\n    \"description\": \"Returns pets based on ID\",\n    \"summary\": \"Find pets by ID\",\n    \"operationId\": \"getPetsById\",\n    \"responses\": {\n      \"200\": {\n        \"description\": \"pet response\",\n        \"content\": {\n          \"*/*\": {\n            \"schema\": {\n              \"type\": \"array\",\n              \"items\": {\n                \"$ref\": \"#/components/schemas/Pet\"\n              }\n            }\n          }\n        }\n      },\n      \"default\": {\n        \"description\": \"error payload\",\n        \"content\": {\n          \"text/html\": {\n            \"schema\": {\n              \"$ref\": \"#/components/schemas/ErrorModel\"\n            }\n          }\n        }\n      }\n    }\n  },\n  \"parameters\": [\n    {\n      \"name\": \"id\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet to use\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      },\n      \"style\": \"simple\"\n    }\n  ]\n}\n```\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  responses:\n    '200':\n      description: pet response\n      content:\n        '*/*' :\n          schema:\n            type: array\n            items:\n              $ref: '#/components/schemas/Pet'\n    default:\n      description: error payload\n      content:\n        'text/html':\n          schema:\n            $ref: '#/components/schemas/ErrorModel'\nparameters:\n- name: id\n  in: path\n  description: ID of pet to use\n  required: true\n  schema:\n    type: array\n    style: simple\n    items:\n      type: string \n```\n\n#### Operation Object\n\nDescribes a single API operation on a path.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"operationTags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier.\n<a name=\"operationSummary\"></a>summary | `string` | A short summary of what the operation does.\n<a name=\"operationDescription\"></a>description | `string` | A verbose explanation of the operation behavior. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"operationExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation.\n<a name=\"operationId\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is RECOMMENDED to follow common programming naming conventions.\n<a name=\"operationParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined at the [Path Item](#pathItemParameters), the new definition will override it but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n<a name=\"operationRequestBody\"></a>requestBody | [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object) | The request body applicable for this operation.  The `requestBody` is only supported in HTTP methods where the HTTP 1.1 specification [RFC7231](https://tools.ietf.org/html/rfc7231#section-4.3.1) has explicitly defined semantics for request bodies.  In other cases where the HTTP spec is vague, `requestBody` SHALL be ignored by consumers.\n<a name=\"operationResponses\"></a>responses | [Responses Object](#responses-object) | **REQUIRED**. The list of possible responses as they are returned from executing this operation.\n<a name=\"operationCallbacks\"></a>callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | A map of possible out-of band callbacks related to the parent operation. The key is a unique identifier for the Callback Object. Each value in the map is a [Callback Object](#callback-object) that describes a request that may be initiated by the API provider and the expected responses. The key value used to identify the callback object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n<a name=\"operationDeprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Consumers SHOULD refrain from usage of the declared operation. Default value is `false`.\n<a name=\"operationSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used for this operation. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. This definition overrides any declared top-level [`security`](#oasSecurity). To remove a top-level security declaration, an empty array can be used.\n<a name=\"operationServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service this operation. If an alternative `server` object is specified at the Path Item Object or Root level, it will be overridden by this value.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Operation Object Example\n\n```json\n{\n  \"tags\": [\n    \"pet\"\n  ],\n  \"summary\": \"Updates a pet in the store with form data\",\n  \"operationId\": \"updatePetWithForm\",\n  \"parameters\": [\n    {\n      \"name\": \"petId\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet that needs to be updated\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  ],\n  \"requestBody\": {\n    \"content\": {\n      \"application/x-www-form-urlencoded\": {\n        \"schema\": {\n          \"type\": \"object\",\n           \"properties\": {\n              \"name\": {\n                \"description\": \"Updated name of the pet\",\n                \"type\": \"string\"\n              },\n              \"status\": {\n                \"description\": \"Updated status of the pet\",\n                \"type\": \"string\"\n             }\n           },\n        \"required\": [\"status\"]\n        }\n      }\n    }\n  },\n  \"responses\": {\n    \"200\": {\n      \"description\": \"Pet updated.\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    },\n    \"405\": {\n      \"description\": \"Invalid input\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    }\n  },\n  \"security\": [\n    {\n      \"petstore_auth\": [\n        \"write:pets\",\n        \"read:pets\"\n      ]\n    }\n  ]\n}\n```\n\n```yaml\ntags:\n- pet\nsummary: Updates a pet in the store with form data\noperationId: updatePetWithForm\nparameters:\n- name: petId\n  in: path\n  description: ID of pet that needs to be updated\n  required: true\n  schema:\n    type: string\nrequestBody:\n  content:\n    'application/x-www-form-urlencoded':\n      schema:\n       properties:\n          name:\n            description: Updated name of the pet\n            type: string\n          status:\n            description: Updated status of the pet\n            type: string\n       required:\n         - status\nresponses:\n  '200':\n    description: Pet updated.\n    content:\n      'application/json': {}\n      'application/xml': {}\n  '405':\n    description: Invalid input\n    content:\n      'application/json': {}\n      'application/xml': {}\nsecurity:\n- petstore_auth:\n  - write:pets\n  - read:pets\n```\n\n\n#### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"externalDocDescription\"></a>description | `string` | A short description of the target documentation. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"externalDocUrl\"></a>url | `string` | **REQUIRED**. The URL for the target documentation. Value MUST be in the format of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### External Documentation Object Example\n\n```json\n{\n  \"description\": \"Find more info here\",\n  \"url\": \"https://example.com\"\n}\n```\n\n```yaml\ndescription: Find more info here\nurl: https://example.com\n```\n\n#### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn).\n\n##### Parameter Locations\nThere are four possible parameter locations specified by the `in` field:\n* path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`.\n* header - Custom headers that are expected as part of the request. Note that [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive.\n* cookie - Used to pass a specific cookie value to the API.\n\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterName\"></a>name | `string` | **REQUIRED**. The name of the parameter. Parameter names are *case sensitive*. <ul><li>If [`in`](#parameterIn) is `\"path\"`, the `name` field MUST correspond to the associated path segment from the [path](#pathsPath) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>If [`in`](#parameterIn) is `\"header\"` and the `name` field is `\"Accept\"`, `\"Content-Type\"` or `\"Authorization\"`, the parameter definition SHALL be ignored.<li>For all other cases, the `name` corresponds to the parameter name used by the [`in`](#parameterIn) property.</ul>\n<a name=\"parameterIn\"></a>in | `string` | **REQUIRED**. The location of the parameter. Possible values are \"query\", \"header\", \"path\" or \"cookie\".\n<a name=\"parameterDescription\"></a>description | `string` | A brief description of the parameter. This could contain examples of use.  [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"parameterRequired\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the [parameter location](#parameterIn) is \"path\", this property is **REQUIRED** and its value MUST be `true`. Otherwise, the property MAY be included and its default value is `false`.\n<a name=\"parameterDeprecated\"></a> deprecated | `boolean` | Specifies that a parameter is deprecated and SHOULD be transitioned out of usage.\n<a name=\"parameterAllowEmptyValue\"></a> allowEmptyValue | `boolean` | Sets the ability to pass empty-valued parameters. This is valid only for `query` parameters and allows sending a parameter with an empty value. Default value is `false`. If [`style`](#parameterStyle) is used, and if behavior is `n/a` (cannot be serialized), the value of `allowEmptyValue` SHALL be ignored.\n\nThe rules for serialization of the parameter are specified in one of two ways.\nFor simpler scenarios, a [`schema`](#parameterSchema) and [`style`](#parameterStyle) can describe the structure and syntax of the parameter.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterStyle\"></a>style | `string` | Describes how the parameter value will be serialized depending on the type of the parameter value. Default values (based on value of `in`): for `query` - `form`; for `path` - `simple`; for `header` - `simple`; for `cookie` - `form`.\n<a name=\"parameterExplode\"></a>explode | `boolean` | When this is true, parameter values of type `array` or `object` generate separate parameters for each value of the array or key-value pair of the map.  For other types of parameters this property has no effect. When [`style`](#parameterStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`.\n<a name=\"parameterAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. This property only applies to parameters with an `in` value of `query`. The default value is `false`.\n<a name=\"parameterSchema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the type used for the parameter.\n<a name=\"parameterExample\"></a>example | Any | Example of the media type.  The example SHOULD match the specified schema and encoding properties if present.  The `example` field is mutually exclusive of the `examples` field.  Furthermore, if referencing a `schema` which contains an example, the `example` value SHALL _override_ the example provided by the schema. To represent examples of media types that cannot naturally be represented in JSON or YAML, a string value can contain the example with escaping where necessary.\n<a name=\"parameterExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type.  Each example SHOULD contain a value in the correct format as specified in the parameter encoding.  The `examples` field is mutually exclusive of the `example` field.  Furthermore, if referencing a `schema` which contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n\nFor more complex scenarios, the [`content`](#parameterContent) property can define the media type and schema of the parameter.\nA parameter MUST contain either a `schema` property, or a `content` property, but not both.\nWhen `example` or `examples` are provided in conjunction with the `schema` object, the example MUST follow the prescribed serialization strategy for the parameter.\n\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the parameter. The key is the media type and the value describes it.  The map MUST only contain one entry.\n\n##### Style Values\n\nIn order to support common ways of serializing simple parameters, a set of `style` values are defined.\n\n`style` | [`type`](#data-types) |  `in` | Comments\n----------- | ------ | -------- | --------\nmatrix |  `primitive`, `array`, `object` |  `path` | Path-style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.7)\nlabel | `primitive`, `array`, `object` |  `path` | Label style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.5)\nform |  `primitive`, `array`, `object` |  `query`, `cookie` | Form style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.8). This option replaces `collectionFormat` with a `csv` (when `explode` is false) or `multi` (when `explode` is true) value from OpenAPI 2.0.\nsimple | `array` | `path`, `header` | Simple style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.2).  This option replaces `collectionFormat` with a `csv` value from OpenAPI 2.0.\nspaceDelimited | `array` | `query` | Space separated array values. This option replaces `collectionFormat` equal to `ssv` from OpenAPI 2.0.\npipeDelimited | `array` | `query` | Pipe separated array values. This option replaces `collectionFormat` equal to `pipes` from OpenAPI 2.0.\ndeepObject | `object` | `query` | Provides a simple way of rendering nested objects using form parameters.\n\n\n##### Style Examples\n\nAssume a parameter named `color` has one of the following values:\n\n```\n   string -> \"blue\"\n   array -> [\"blue\",\"black\",\"brown\"]\n   object -> { \"R\": 100, \"G\": 200, \"B\": 150 }\n```\nThe following table shows examples of rendering differences for each value.\n\n[`style`](#dataTypeFormat) | `explode` | `empty` | `string` | `array` | `object`\n----------- | ------ | -------- | -------- | --------|-------\nmatrix | false | ;color | ;color=blue | ;color=blue,black,brown | ;color=R,100,G,200,B,150\nmatrix | true | ;color | ;color=blue | ;color=blue;color=black;color=brown | ;R=100;G=200;B=150\nlabel | false | .  | .blue |  .blue.black.brown | .R.100.G.200.B.150\nlabel | true | . | .blue |  .blue.black.brown | .R=100.G=200.B=150\nform | false | color= | color=blue | color=blue,black,brown | color=R,100,G,200,B,150\nform | true | color= | color=blue | color=blue&color=black&color=brown | R=100&G=200&B=150\nsimple | false | n/a | blue | blue,black,brown | R,100,G,200,B,150\nsimple | true | n/a | blue | blue,black,brown | R=100,G=200,B=150\nspaceDelimited | false | n/a | n/a | blue%20black%20brown | R%20100%20G%20200%20B%20150\npipeDelimited | false | n/a | n/a | blue\\|black\\|brown | R\\|100\\|G\\|200|G\\|150\ndeepObject | true | n/a | n/a | n/a | color[R]=100&color[G]=200&color[B]=150\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Parameter Object Examples\n\nA header parameter with an array of 64 bit integer numbers:\n\n```json\n{\n  \"name\": \"token\",\n  \"in\": \"header\",\n  \"description\": \"token to be passed as a header\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    }\n  },\n  \"style\": \"simple\"\n}\n```\n\n```yaml\nname: token\nin: header\ndescription: token to be passed as a header\nrequired: true\nschema:\n  type: array\n  items:\n    type: integer\n    format: int64\nstyle: simple\n```\n\nA path parameter of a string value:\n```json\n{\n  \"name\": \"username\",\n  \"in\": \"path\",\n  \"description\": \"username to fetch\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\nschema:\n  type: string\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter:\n```json\n{\n  \"name\": \"id\",\n  \"in\": \"query\",\n  \"description\": \"ID of the object to fetch\",\n  \"required\": false,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  },\n  \"style\": \"form\",\n  \"explode\": true\n}\n```\n\n```yaml\nname: id\nin: query\ndescription: ID of the object to fetch\nrequired: false\nschema:\n  type: array\n  items:\n    type: string\nstyle: form\nexplode: true\n```\n\nA free-form query parameter, allowing undefined parameters of a specific type:\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"freeForm\",\n  \"schema\": {\n    \"type\": \"object\",\n    \"additionalProperties\": {\n      \"type\": \"integer\"\n    },\n  },\n  \"style\": \"form\"\n}\n```\n\n```yaml\nin: query\nname: freeForm\nschema:\n  type: object\n  additionalProperties:\n    type: integer\nstyle: form\n```\n\nA complex parameter using `content` to define serialization:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"coordinates\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"lat\",\n          \"long\"\n        ],\n        \"properties\": {\n          \"lat\": {\n            \"type\": \"number\"\n          },\n          \"long\": {\n            \"type\": \"number\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nin: query\nname: coordinates\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n        - lat\n        - long\n      properties:\n        lat:\n          type: number\n        long:\n          type: number\n```\n\n#### Request Body Object\n\nDescribes a single request body.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"requestBodyDescription\"></a>description | `string` | A brief description of the request body. This could contain examples of use.  [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"requestBodyContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | **REQUIRED**. The content of the request body. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For requests that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"requestBodyRequired\"></a>required | `boolean` | Determines if the request body is required in the request. Defaults to `false`.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Request Body Examples\n\nA request body with a referenced model definition.\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User Example\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.json\"\n          }\n        }\n    },\n    \"application/xml\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User example in XML\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.xml\"\n          }\n        }\n    },\n    \"text/plain\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in Plain text\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.txt\"\n        }\n      }\n    },\n    \"*/*\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in other format\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.whatever\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\ncontent:\n  'application/json':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User Example\n        externalValue: 'http://foo.bar/examples/user-example.json'\n  'application/xml':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User Example in XML\n        externalValue: 'http://foo.bar/examples/user-example.xml'\n  'text/plain':\n    examples:\n      user:\n        summary: User example in text plain format\n        externalValue: 'http://foo.bar/examples/user-example.txt'\n  '*/*':\n    examples:\n      user:\n        summary: User example in other format\n        externalValue: 'http://foo.bar/examples/user-example.whatever'\n```\n\nA body parameter that is an array of string values:\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\nrequired: true\ncontent:\n  text/plain:\n    schema:\n      type: array\n      items:\n        type: string\n```\n\n\n#### Media Type Object\nEach Media Type Object provides schema and examples for the media type identified by its key.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"mediaTypeSchema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the type used for the request body.\n<a name=\"mediaTypeExample\"></a>example | Any | Example of the media type.  The example object SHOULD be in the correct format as specified by the media type.  The `example` field is mutually exclusive of the `examples` field.  Furthermore, if referencing a `schema` which contains an example, the `example` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type.  Each example object SHOULD  match the media type and specified schema if present.  The `examples` field is mutually exclusive of the `example` field.  Furthermore, if referencing a `schema` which contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeEncoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | A map between a property name and its encoding information. The key, being the property name, MUST exist in the schema as a property. The encoding object SHALL only apply to `requestBody` objects when the media type is `multipart` or `application/x-www-form-urlencoded`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Media Type Examples\n\n```js\n{\n  \"application/json\": {\n    \"schema\": {\n         \"$ref\": \"#/components/schemas/Pet\"\n    },\n    \"examples\": {\n      \"cat\" : {\n        \"summary\": \"An example of a cat\",\n        \"value\":\n          {\n            \"name\": \"Fluffy\",\n            \"petType\": \"Cat\",\n            \"color\": \"White\",\n            \"gender\": \"male\",\n            \"breed\": \"Persian\"\n          }\n      },\n      \"dog\": {\n        \"summary\": \"An example of a dog with a cat's name\",\n        \"value\" :  {\n          \"name\": \"Puma\",\n          \"petType\": \"Dog\",\n          \"color\": \"Black\",\n          \"gender\": \"Female\",\n          \"breed\": \"Mixed\"\n        },\n      \"frog\": {\n          \"$ref\": \"#/components/examples/frog-example\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    $ref: \"#/components/schemas/Pet\"\n  examples:\n    cat:\n      summary: An example of a cat\n      value:\n        name: Fluffy\n        petType: Cat\n        color: White\n        gender: male\n        breed: Persian\n    dog:\n      summary: An example of a dog with a cat's name\n      value:\n        name: Puma\n        petType: Dog\n        color: Black\n        gender: Female\n        breed: Mixed\n    frog:\n      $ref: \"#/components/examples/frog-example\"\n```\n\n##### Considerations for File Uploads\n\nIn contrast with the 2.0 specification, `file` input/output content in OpenAPI is described with the same semantics as any other schema type. Specifically:\n\n```yaml\n# content transferred with base64 encoding\nschema:\n  type: string\n  format: base64\n```\n\n```yaml\n# content transferred in binary (octet-stream):\nschema:\n  type: string\n  format: binary\n```\n\nThese examples apply to either input payloads of file uploads or response payloads.\n\nA `requestBody` for submitting a file in a `POST` operation may look like the following example:\n\n```yaml\nrequestBody:\n  content:\n    application/octet-stream:\n      # any media type is accepted, functionally equivalent to `*/*`\n      schema:\n        # a binary file of any type\n        type: string\n        format: binary\n```\n\nIn addition, specific media types MAY be specified:\n\n```yaml\n# multiple, specific media types may be specified:\nrequestBody:\n  content:\n      # a binary file of type png or jpeg\n    'image/jpeg':\n      schema:\n        type: string\n        format: binary\n    'image/png':\n      schema:\n        type: string\n        format: binary       \n```\n\nTo upload multiple files, a `multipart` media type MUST be used:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        properties:\n          # The property name 'file' will be used for all files.\n          file:\n            type: array\n            items:\n              type: string\n              format: binary\n\n```\n\n##### Support for x-www-form-urlencoded Request Bodies\n\nTo submit content using form url encoding via [RFC1866](https://tools.ietf.org/html/rfc1866), the following\ndefinition may be used:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # complex types are stringified to support RFC 1866\n            type: object\n            properties: {}\n```\n\nIn this example, the contents in the `requestBody` MUST be stringified per [RFC1866](https://tools.ietf.org/html/rfc1866/) when passed to the server.  In addition, the `address` field complex object will be stringified.\n\nWhen passing complex objects in the `application/x-www-form-urlencoded` content type, the default serialization strategy of such properties is described in the [`Encoding Object`](#encoding-object)'s [`style`](#encodingStyle) property as `form`.\n\n##### Special Considerations for `multipart` Content\n\nIt is common to use `multipart/form-data` as a `Content-Type` when transferring request bodies to operations.  In contrast to 2.0, a `schema` is REQUIRED to define the input parameters to the operation when using `multipart` content.  This supports complex structures as well as supporting mechanisms for multiple file uploads.\n\nWhen passing in `multipart` types, boundaries MAY be used to separate sections of the content being transferred — thus, the following default `Content-Type`s are defined for `multipart`:\n\n* If the property is a primitive, or an array of primitive values, the default Content-Type is `text/plain`\n* If the property is complex, or an array of complex values, the default Content-Type is `application/json`\n* If the property is a `type: string` with `format: binary` or `format: base64` (aka a file object), the default Content-Type is `application/octet-stream`\n\n\nExamples:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # default Content-Type for objects is `application/json`\n            type: object\n            properties: {}\n          profileImage:\n            # default Content-Type for string/binary is `application/octet-stream`\n            type: string\n            format: binary\n          children:\n            # default Content-Type for arrays is based on the `inner` type (text/plain here)\n            type: array\n            items:\n              type: string\n          addresses:\n            # default Content-Type for arrays is based on the `inner` type (object shown, so `application/json` in this example)\n            type: array\n            items:\n              type: '#/components/schemas/Address'\n```\n\nAn `encoding` attribute is introduced to give you control over the serialization of parts of `multipart` request bodies.  This attribute is _only_ applicable to `multipart` and `application/x-www-form-urlencoded` request bodies.\n\n#### Encoding Object\n\nA single encoding definition applied to a single schema property.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"encodingContentType\"></a>contentType | `string` | The Content-Type for encoding a specific property. Default value depends on the property type: for `string` with `format` being `binary` – `application/octet-stream`; for other primitive types – `text/plain`; for `object` - `application/json`; for `array` – the default is defined based on the inner type. The value can be a specific media type (e.g. `application/json`), a wildcard media type (e.g. `image/*`), or a comma-separated list of the two types.\n<a name=\"encodingHeaders\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | A map allowing additional information to be provided as headers, for example `Content-Disposition`.  `Content-Type` is described separately and SHALL be ignored in this section. This property SHALL be ignored if the request body media type is not a `multipart`.\n<a name=\"encodingStyle\"></a>style | `string` | Describes how a specific property value will be serialized depending on its type.  See [Parameter Object](#parameter-object) for details on the [`style`](#parameterStyle) property. The behavior follows the same values as `query` parameters, including default values. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n<a name=\"encodingExplode\"></a>explode | `boolean` | When this is true, property values of type `array` or `object` generate separate parameters for each value of the array, or key-value-pair of the map.  For other types of properties this property has no effect. When [`style`](#encodingStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n<a name=\"encodingAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. The default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Encoding Object Example\n\n```yaml\nrequestBody:\n  content:\n    multipart/mixed:\n      schema:\n        type: object\n        properties:\n          id:\n            # default is text/plain\n            type: string\n            format: uuid\n          address:\n            # default is application/json\n            type: object\n            properties: {}\n          historyMetadata:\n            # need to declare XML format!\n            description: metadata in XML format\n            type: object\n            properties: {}\n          profileImage:\n            # default is application/octet-stream, need to declare an image type only!\n            type: string\n            format: binary\n      encoding:\n        historyMetadata:\n          # require XML Content-Type in utf-8 encoding\n          contentType: application/xml; charset=utf-8\n        profileImage:\n          # only accept png/jpeg\n          contentType: image/png, image/jpeg\n          headers:\n            X-Rate-Limit-Limit:\n              description: The number of allowed requests in the current period\n              schema:\n                type: integer\n```\n\n#### Responses Object\n\nA container for the expected responses of an operation.\nThe container maps a HTTP response code to the expected response.\n\nThe documentation is not necessarily expected to cover all possible HTTP response codes because they may not be known in advance.\nHowever, documentation is expected to cover a successful operation response and any known errors.\n\nThe `default` MAY be used as a default response object for all HTTP codes\nthat are not covered individually by the specification.\n\nThe `Responses Object` MUST contain at least one response code, and it\nSHOULD be the response for a successful operation call.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responsesDefault\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. Use this field to cover undeclared responses. A [Reference Object](#reference-object) can link to a response that the [OpenAPI Object's components/responses](#componentsResponses) section defines.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"responsesCode\"></a>[HTTP Status Code](#http-status-codes) | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name, but only one property per code, to describe the expected response for that HTTP status code.  A [Reference Object](#reference-object) can link to a response that is defined in the [OpenAPI Object's components/responses](#componentsResponses) section. This field MUST be enclosed in quotation marks (for example, \"200\") for compatibility between JSON and YAML. To define a range of response codes, this field MAY contain the uppercase wildcard character `X`. For example, `2XX` represents all response codes between `[200-299]`. The following range definitions are allowed: `1XX`, `2XX`, `3XX`, `4XX`, and `5XX`. If a response range is defined using an explicit code, the explicit code definition takes precedence over the range definition for that code.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Responses Object Example\n\nA 200 response for a successful operation and a default response for others (implying an error):\n\n```json\n{\n  \"200\": {\n    \"description\": \"a pet to be returned\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/Pet\"\n        }\n      }\n    }\n  },\n  \"default\": {\n    \"description\": \"Unexpected error\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/ErrorModel\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n'200':\n  description: a pet to be returned\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/Pet'\ndefault:\n  description: Unexpected error\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/ErrorModel'\n```\n\n#### Response Object\nDescribes a single response from an API Operation, including design-time, static\n`links` to operations based on the response.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responseDescription\"></a>description | `string` | **REQUIRED**. A short description of the response. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"responseHeaders\"></a>headers | Map[`string`, [Header Object](#header-object)  \\| [Reference Object](#reference-object)] |  Maps a header name to its definition. [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive. If a response header is defined with the name `\"Content-Type\"`, it SHALL be ignored.\n<a name=\"responseContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing descriptions of potential response payloads. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For responses that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"responseLinks\"></a>links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | A map of operations links that can be followed from the response. The key of the map is a short name for the link, following the naming constraints of the names for [Component Objects](#components-object).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Response Object Examples\n\nResponse of an array of a complex type:\n\n```json\n{\n  \"description\": \"A complex object array response\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"$ref\": \"#/components/schemas/VeryComplexType\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A complex object array response\ncontent:\n  application/json:\n    schema:\n      type: array\n      items:\n        $ref: '#/components/schemas/VeryComplexType'\n```\n\nResponse with a string type:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  }\n\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n```\n\nPlain text response with headers:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  },\n  \"headers\": {\n    \"X-Rate-Limit-Limit\": {\n      \"description\": \"The number of allowed requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Remaining\": {\n      \"description\": \"The number of remaining requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Reset\": {\n      \"description\": \"The number of seconds left in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n    example: 'whoa!'\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    schema:\n      type: integer\n```\n\nResponse with no return value:\n\n```json\n{\n  \"description\": \"object created\"\n}\n```\n\n```yaml\ndescription: object created\n```\n\n#### Callback Object\n\nA map of possible out-of band callbacks related to the parent operation.\nEach value in the map is a [Path Item Object](#path-item-object) that describes a set of requests that may be initiated by the API provider and the expected responses.\nThe key value used to identify the callback object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"callbackExpression\"></a>{expression} | [Path Item Object](#path-item-object) | A Path Item Object used to define a callback request and expected responses.  A [complete example](../examples/v3.0/callback-example.yaml) is available.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Key Expression\n\nThe key that identifies the [Path Item Object](#path-item-object) is a [runtime expression](#runtime-expressions) that can be evaluated in the context of a runtime HTTP request/response to identify the URL to be used for the callback request.\nA simple example might be `$request.body#/url`.\nHowever, using a [runtime expression](#runtime-expressions) the complete HTTP message can be accessed.\nThis includes accessing any part of a body that a JSON Pointer [RFC6901](https://tools.ietf.org/html/rfc6901) can reference.\n\nFor example, given the following HTTP request:\n\n```http\nPOST /subscribe/myevent?queryUrl=http://clientdomain.com/stillrunning HTTP/1.1\nHost: example.org\nContent-Type: application/json\nContent-Length: 187\n\n{\n  \"failedUrl\" : \"http://clientdomain.com/failed\",\n  \"successUrls\" : [\n    \"http://clientdomain.com/fast\",\n    \"http://clientdomain.com/medium\",\n    \"http://clientdomain.com/slow\"\n  ]\n}\n\n201 Created\nLocation: http://example.org/subscription/1\n```\n\nThe following examples show how the various expressions evaluate, assuming the callback operation has a path parameter named `eventType` and a query parameter named `queryUrl`.\n\nExpression | Value\n---|:---\n$url | http://example.org/subscribe/myevent?queryUrl=http://clientdomain.com/stillrunning\n$method | POST\n$request.path.eventType | myevent\n$request.query.queryUrl | http://clientdomain.com/stillrunning\n$request.header.content-Type | application/json\n$request.body#/failedUrl | http://clientdomain.com/stillrunning\n$request.body#/successUrls/2 | http://clientdomain.com/medium\n$response.header.Location | http://example.org/subscription/1\n\n\n##### Callback Object Example\n\nThe following example shows a callback to the URL specified by the `id` and `email` property in the request body.\n\n```yaml\nmyWebhook:\n  'http://notificationServer.com?transactionId={$request.body#/id}&email={$request.body#/email}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          'application/json':\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: webhook successfully processed and no retries will be performed\n```\n\n\n#### Example Object\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"exampleSummary\"></a>summary | `string` | Short description for the example.\n<a name=\"exampleDescription\"></a>description | `string` | Long description for the example. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"exampleValue\"></a>value | Any | Embedded literal example. The `value` field and `externalValue` field are mutually exclusive. To represent examples of media types that cannot naturally represented in JSON or YAML, use a string value to contain the example, escaping where necessary.\n<a name=\"exampleExternalValue\"></a>externalValue | `string` | A URL that points to the literal example. This provides the capability to reference examples that cannot easily be included in JSON or YAML documents.  The `value` field and `externalValue` field are mutually exclusive.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nIn all cases, the example value is expected to be compatible with the type schema\nof its associated value.  Tooling implementations MAY choose to\nvalidate compatibility automatically, and reject the example value(s) if incompatible.\n\n##### Example Object Example\n\n```yaml\n# in a model\nschemas:\n  properties:\n    name:\n      type: string\n      examples:\n        name:\n          $ref: http://example.org/petapi-examples/openapi.json#/components/examples/name-example\n\n# in a request body:\n  requestBody:\n    content:\n      'application/json':\n        schema:\n          $ref: '#/components/schemas/Address'\n        examples:\n          foo:\n            summary: A foo example\n            value: {\"foo\": \"bar\"}\n          bar:\n            summary: A bar example\n            value: {\"bar\": \"baz\"}\n      'application/xml':\n        examples:\n          xmlExample:\n            summary: This is an example in XML\n            externalValue: 'http://example.org/examples/address-example.xml'\n      'text/plain':\n        examples:\n          textExample:\n            summary: This is a text example\n            externalValue: 'http://foo.bar/examples/address-example.txt'\n\n\n# in a parameter\n  parameters:\n    - name: 'zipCode'\n      in: 'query'\n      schema:\n        type: 'string'\n        format: 'zip-code'\n        examples:\n          zip-example:\n            $ref: '#/components/examples/zip-example'\n\n# in a response\n  responses:\n    '200':\n      description: your car appointment has been booked\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/SuccessResponse'\n          examples:\n            confirmation-success:\n              $ref: '#/components/examples/confirmation-success'\n```\n\n\n#### Link Object\n\nThe `Link object` represents a possible design-time link for a response.\nThe presence of a link does not guarantee the caller's ability to successfully invoke it, rather it provides a known relationship and traversal mechanism between responses and other operations.\n\nUnlike _dynamic_ links (i.e. links provided **in** the response payload), the OAS linking mechanism does not require link information in the runtime response.\n\nFor computing links, and providing instructions to execute them, a [runtime expression](#runtime-expressions) is used for accessing values in an operation and using them as parameters while invoking the linked operation. \n\n##### Fixed Fields\n\nField Name  |  Type  | Description\n---|:---:|---\n<a name=\"linkOperationRef\"></a>operationRef | `string` | A relative or absolute reference to an OAS operation. This field is mutually exclusive of the `operationId` field, and MUST point to an [Operation Object](#operation-object). Relative `operationRef` values MAY be used to locate an existing [Operation Object](#operation-object) in the OpenAPI definition.\n<a name=\"linkOperationId\"></a>operationId  | `string` | The name of an _existing_, resolvable OAS operation, as defined with a unique `operationId`.  This field is mutually exclusive of the `operationRef` field. \n<a name=\"linkParameters\"></a>parameters   | Map[`string`, Any \\| [{expression}](#runtime-expressions)] | A map representing parameters to pass to an operation as specified with `operationId` or identified via `operationRef`. The key is the parameter name to be used, whereas the value can be a constant or an expression to be evaluated and passed to the linked operation.  The parameter name can be qualified using the [parameter location](#parameterIn) `[{in}.]{name}` for operations that use the same parameter name in different locations (e.g. path.id).\n<a name=\"linkRequestBody\"></a>requestBody | Any \\| [{expression}](#runtime-expressions) | A literal value or [{expression}](#runtime-expressions) to use as a request body when calling the target operation.\n<a name=\"linkDescription\"></a>description  | `string` | A description of the link. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"linkServer\"></a>server       | [Server Object](#server-object) | A server object to be used by the target operation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nA linked operation MUST be identified using either an `operationRef` or `operationId`.\nIn the case of an `operationId`, it MUST be unique and resolved in the scope of the OAS document.\nBecause of the potential for name clashes, the `operationRef` syntax is preferred\nfor specifications with external references.\n\n##### Examples\n\nComputing a link from a request operation where the `$request.path.id` is used to pass a request parameter to the linked operation.\n\n```yaml\npaths:\n  /users/{id}:\n    parameters:\n    - name: id\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n    get:\n      responses:\n        '200':\n          description: the user being returned\n          content:\n            application/json:\n              schema:\n                type: object\n                properties:\n                  uuid: # the unique user id\n                    type: string\n                    format: uuid\n          links:\n            address:\n              # the target link operationId\n              operationId: getUserAddress\n              parameters:\n                # get the `id` field from the request path parameter named `id`\n                userId: $request.path.id\n  # the path item of the linked operation\n  /users/{userid}/address:\n    parameters:\n    - name: userid\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n    # linked operation\n    get:\n      operationId: getUserAddress\n      responses:\n        '200':\n          description: the user's address\n```\n\nWhen a runtime expression fails to evaluate, no parameter value is passed to the target operation.\n\nValues from the response body can be used to drive a linked operation.\n\n```yaml\nlinks:\n  address:\n    operationId: getUserAddressByUUID\n    parameters:\n      # get the `uuid` field from the `uuid` field in the response body\n      userUuid: $response.body#/uuid\n```\n\nClients follow all links at their discretion.\nNeither permissions, nor the capability to make a successful call to that link, is guaranteed\nsolely by the existence of a relationship.\n\n\n##### OperationRef Examples\n\nAs references to `operationId` MAY NOT be possible (the `operationId` is an optional\nvalue), references MAY also be made through a relative `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: '#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nor an absolute `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: 'https://na2.gigantic-server.com/#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nNote that in the use of `operationRef`, the _escaped forward-slash_ is necessary when\nusing JSON references.\n\n\n##### Runtime Expressions\n\nRuntime expressions allow defining values based on information that will only be available within the HTTP message in an actual API call.\nThis mechanism is used by [Link Objects](#link-object) and [Callback Objects](#callback-object).\n\nThe runtime expression is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```\n      expression = ( \"$url\" | \"$method\" | \"$statusCode\" | \"$request.\" source | \"$response.\" source )\n      source = ( header-reference | query-reference | path-reference | body-reference ) \n      header-reference = \"header.\" token\n      query-reference = \"query.\" name \n      path-reference = \"path.\" name\n      body-reference = \"body\" [\"#\" fragment]\n      fragment = a JSON Pointer [RFC 6901](https://tools.ietf.org/html/rfc6901) \n      name = *( char )\n      char = as per RFC [7159](https://tools.ietf.org/html/rfc7159#section-7)\n      token = as per RFC [7230](https://tools.ietf.org/html/rfc7230#section-3.2.6)\n```\n\nThe `name` identifier is case-sensitive, whereas `token` is not.\n\nThe table below provides examples of runtime expressions and examples of their use in a value:\n\n##### Examples\n\nSource Location | example expression  | notes\n---|:---|:---|\nHTTP Method            | `$method`         | The allowable values for the `$method` will be those for the HTTP operation.\nRequested media type | `$request.header.accept`        | \nRequest parameter      | `$request.path.id`        | Request parameters MUST be declared in the `parameters` section of the parent operation or they cannot be evaluated. This includes request headers.\nRequest body property   | `$request.body#/user/uuid`   | In operations which accept payloads, references may be made to portions of the `requestBody` or the entire body.\nRequest URL            | `$url`            | \nResponse value         | `$response.body#/status`       |  In operations which return payloads, references may be made to portions of the response body or the entire body.\nResponse header        | `$response.header.Server` |  Single header values only are available\n\nRuntime expressions preserve the type of the referenced value.\nExpressions can be embedded into string values by surrounding the expression with `{}` curly braces.\n\n#### Header Object\n\nThe Header Object follows the structure of the [Parameter Object](#parameter-object) with the following changes:\n\n1. `name` MUST NOT be specified, it is given in the corresponding `headers` map.\n1. `in` MUST NOT be specified, it is implicitly in `header`.\n1. All traits that are affected by the location MUST be applicable to a location of `header` (for example, [`style`](#parameterStyle)).\n\n##### Header Object Example\n\nA simple header of type `integer`:\n\n```json\n{\n  \"description\": \"The number of allowed requests in the current period\",\n  \"schema\": {\n    \"type\": \"integer\"\n  }\n}\n```\n\n```yaml\ndescription: The number of allowed requests in the current period\nschema:\n  type: integer\n```\n\n#### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nIt is not mandatory to have a Tag Object per tag defined in the Operation Object instances.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"tagName\"></a>name | `string` | **REQUIRED**. The name of the tag.\n<a name=\"tagDescription\"></a>description | `string` | A short description for the tag. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"tagExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Tag Object Example\n\n```json\n{\n\t\"name\": \"pet\",\n\t\"description\": \"Pets operations\"\n}\n```\n\n```yaml\nname: pet\ndescription: Pets operations\n```\n\n\n#### Reference Object\n\nA simple object to allow referencing other components in the specification, internally and externally.\n\nThe Reference Object is defined by [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03) and follows the same structure, behavior and rules.\n\nFor this specification, reference resolution is accomplished as defined by the JSON Reference specification and not by the JSON Schema specification.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"referenceRef\"></a>$ref | `string` | **REQUIRED**. The reference string.\n\nThis object cannot be extended with additional properties and any properties added SHALL be ignored.\n\n##### Reference Object Example\n\n```json\n{\n\t\"$ref\": \"#/components/schemas/Pet\"\n}\n```\n\n```yaml\n$ref: '#/components/schemas/Pet'\n```\n\n##### Relative Schema Document Example\n```json\n{\n  \"$ref\": \"Pet.json\"\n}\n```\n\n```yaml\n$ref: Pet.yaml\n```\n\n##### Relative Documents With Embedded Schema Example\n```json\n{\n  \"$ref\": \"definitions.json#/Pet\"\n}\n```\n\n```yaml\n$ref: definitions.yaml#/Pet\n```\n\n#### Schema Object\n\nThe Schema Object allows the definition of input and output data types.\nThese types can be objects, but also primitives and arrays.\nThis object is an extended subset of the [JSON Schema Specification Wright Draft 00](http://json-schema.org/).\n\nFor more information about the properties, see [JSON Schema Core](https://tools.ietf.org/html/draft-wright-json-schema-00) and [JSON Schema Validation](https://tools.ietf.org/html/draft-wright-json-schema-validation-00).\nUnless stated otherwise, the property definitions follow the JSON Schema.\n\n##### Properties\n\nThe following properties are taken directly from the JSON Schema definition and follow the same specifications:\n\n- title\n- multipleOf\n- maximum\n- exclusiveMaximum\n- minimum\n- exclusiveMinimum\n- maxLength\n- minLength\n- pattern (This string SHOULD be a valid regular expression, according to the [ECMA 262 regular expression](https://www.ecma-international.org/ecma-262/5.1/#sec-7.8.5) dialect)\n- maxItems\n- minItems\n- uniqueItems\n- maxProperties\n- minProperties\n- required\n- enum\n\nThe following properties are taken from the JSON Schema definition but their definitions were adjusted to the OpenAPI Specification.\n- type - Value MUST be a string. Multiple types via an array are not supported.\n- allOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- oneOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- anyOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- not - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- items - Value MUST be an object and not an array. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema. `items` MUST be present if the `type` is `array`.\n- properties - Property definitions MUST be a [Schema Object](#schema-object) and not a standard JSON Schema (inline or referenced).\n- additionalProperties - Value can be boolean or object. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- description - [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n- format - See [Data Type Formats](#dataTypeFormat) for further details. While relying on JSON Schema's defined formats, the OAS offers a few additional predefined formats.\n- default - The default value represents what would be assumed by the consumer of the input as the value of the schema if one is not provided. Unlike JSON Schema, the value MUST conform to the defined type for the Schema Object defined at the same level. For example, if `type` is `string`, then `default` can be `\"foo\"` but cannot be `1`.\n\nAlternatively, any time a Schema Object can be used, a [Reference Object](#reference-object) can be used in its place. This allows referencing definitions instead of defining them inline.\n\nAdditional properties defined by the JSON Schema specification that are not mentioned here are strictly unsupported.\n\nOther than the JSON Schema subset fields, the following fields MAY be used for further schema documentation:\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"schemaNullable\"></a>nullable | `boolean` | Allows sending a `null` value for the defined schema. Default value is `false`.\n<a name=\"schemaDiscriminator\"></a>discriminator | [Discriminator Object](#discriminator-object) | Adds support for polymorphism. The discriminator is an object name that is used to differentiate between other schemas which may satisfy the payload description. See [Composition and Inheritance](#composition-and-inheritance-polymorphism) for more details.\n<a name=\"schemaReadOnly\"></a>readOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"read only\". This means that it MAY be sent as part of a response but SHOULD NOT be sent as part of the request. If the property is marked as `readOnly` being `true` and is in the `required` list, the `required` will take effect on the response only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`.\n<a name=\"schemaWriteOnly\"></a>writeOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"write only\". Therefore, it MAY be sent as part of a request but SHOULD NOT be sent as part of the response. If the property is marked as `writeOnly` being `true` and is in the `required` list, the `required` will take effect on the request only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`.\n<a name=\"schemaXml\"></a>xml | [XML Object](#xml-object) | This MAY be used only on properties schemas. It has no effect on root schemas. Adds additional metadata to describe the XML representation of this property.\n<a name=\"schemaExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema.\n<a name=\"schemaExample\"></a>example | Any | A free-form property to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary.\n<a name=\"schemaDeprecated\"></a> deprecated | `boolean` | Specifies that a schema is deprecated and SHOULD be transitioned out of usage. Default value is `false`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n###### Composition and Inheritance (Polymorphism)\n\nThe OpenAPI Specification allows combining and extending model definitions using the `allOf` property of JSON Schema, in effect offering model composition.\n`allOf` takes an array of object definitions that are validated *independently* but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models.\nTo support polymorphism, the OpenAPI Specification adds the `discriminator` field.\nWhen used, the `discriminator` will be the name of the property that decides which schema definition validates the structure of the model.\nAs such, the `discriminator` field MUST be a required field.\nThere are two ways to define the value of a discriminator for an inheriting instance.\n- Use the schema name.\n- Override the schema name by overriding the property with a new value. If a new value exists, this takes precedence over the schema name.\nAs such, inline schema definitions, which do not have a given id, *cannot* be used in polymorphism.\n\n###### XML Modeling\n\nThe [xml](#schemaXml) property allows extra definitions when translating the JSON definition to XML.\nThe [XML Object](#xml-object) contains additional information about the available options.\n\n##### Schema Object Examples\n\n###### Primitive Sample\n\n```json\n{\n  \"type\": \"string\",\n  \"format\": \"email\"\n}\n```\n\n```yaml\ntype: string\nformat: email\n```\n\n###### Simple Model\n\n```json\n{\n  \"type\": \"object\",\n  \"required\": [\n    \"name\"\n  ],\n  \"properties\": {\n    \"name\": {\n      \"type\": \"string\"\n    },\n    \"address\": {\n      \"$ref\": \"#/components/schemas/Address\"\n    },\n    \"age\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\",\n      \"minimum\": 0\n    }\n  }\n}\n```\n\n```yaml\ntype: object\nrequired:\n- name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/components/schemas/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n###### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"$ref\": \"#/components/schemas/ComplexModel\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/components/schemas/ComplexModel'\n```\n\n###### Model with Example\n\n```json\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"name\": {\n      \"type\": \"string\"\n    }\n  },\n  \"required\": [\n    \"name\"\n  ],\n  \"example\": {\n    \"name\": \"Puma\",\n    \"id\": 1\n  }\n}\n```\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n- name\nexample:\n  name: Puma\n  id: 1\n```\n\n###### Models with Composition\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"ErrorModel\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"message\",\n          \"code\"\n        ],\n        \"properties\": {\n          \"message\": {\n            \"type\": \"string\"\n          },\n          \"code\": {\n            \"type\": \"integer\",\n            \"minimum\": 100,\n            \"maximum\": 600\n          }\n        }\n      },\n      \"ExtendedErrorModel\": {\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/ErrorModel\"\n          },\n          {\n            \"type\": \"object\",\n            \"required\": [\n              \"rootCause\"\n            ],\n            \"properties\": {\n              \"rootCause\": {\n                \"type\": \"string\"\n              }\n            }\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    ErrorModel:\n      type: object\n      required:\n      - message\n      - code\n      properties:\n        message:\n          type: string\n        code:\n          type: integer\n          minimum: 100\n          maximum: 600\n    ExtendedErrorModel:\n      allOf:\n      - $ref: '#/components/schemas/ErrorModel'\n      - type: object\n        required:\n        - rootCause\n        properties:\n          rootCause:\n            type: string\n```\n\n###### Models with Polymorphism Support\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"Pet\": {\n        \"type\": \"object\",\n        \"discriminator\": {\n          \"propertyName\": \"petType\"\n        },\n        \"properties\": {\n          \"name\": {\n            \"type\": \"string\"\n          },\n          \"petType\": {\n            \"type\": \"string\"\n          }\n        },\n        \"required\": [\n          \"name\",\n          \"petType\"\n        ]\n      },\n      \"Cat\": {\n        \"description\": \"A representation of a cat. Note that `Cat` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"huntingSkill\": {\n                \"type\": \"string\",\n                \"description\": \"The measured skill for hunting\",\n                \"default\": \"lazy\",\n                \"enum\": [\n                  \"clueless\",\n                  \"lazy\",\n                  \"adventurous\",\n                  \"aggressive\"\n                ]\n              }\n            },\n            \"required\": [\n              \"huntingSkill\"\n            ]\n          }\n        ]\n      },\n      \"Dog\": {\n        \"description\": \"A representation of a dog. Note that `Dog` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"packSize\": {\n                \"type\": \"integer\",\n                \"format\": \"int32\",\n                \"description\": \"the size of the pack the dog is from\",\n                \"default\": 0,\n                \"minimum\": 0\n              }\n            },\n            \"required\": [\n              \"packSize\"\n            ]\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n      properties:\n        name:\n          type: string\n        petType:\n          type: string\n      required:\n      - name\n      - petType\n    Cat:  ## \"Cat\" will be used as the discriminator value\n      description: A representation of a cat\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          huntingSkill:\n            type: string\n            description: The measured skill for hunting\n            enum:\n            - clueless\n            - lazy\n            - adventurous\n            - aggressive\n        required:\n        - huntingSkill\n    Dog:  ## \"Dog\" will be used as the discriminator value\n      description: A representation of a dog\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          packSize:\n            type: integer\n            format: int32\n            description: the size of the pack the dog is from\n            default: 0\n            minimum: 0\n        required:\n        - packSize\n```\n\n#### Discriminator Object\n\nWhen request bodies or response payloads may be one of a number of different schemas, a `discriminator` object can be used to aid in serialization, deserialization, and validation.  The discriminator is a specific object in a schema which is used to inform the consumer of the specification of an alternative schema based on the value associated with it.\n\nWhen using the discriminator, _inline_ schemas will not be considered.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"propertyName\"></a>propertyName | `string` | **REQUIRED**. The name of the property in the payload that will hold the discriminator value.\n<a name=\"discriminatorMapping\"></a> mapping | Map[`string`, `string`] | An object to hold mappings between payload values and schema names or references.\n\nThe discriminator attribute is legal only when using one of the composite keywords `oneOf`, `anyOf`, `allOf`.\n\nIn OAS 3.0, a response payload MAY be described to be exactly one of any number of types:\n\n```\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n```\n\nwhich means the payload _MUST_, by validation, match exactly one of the schemas described by `Cat`, `Dog`, or `Lizard`.  In this case, a discriminator MAY act as a \"hint\" to shortcut validation and selection of the matching schema which may be a costly operation, depending on the complexity of the schema. We can then describe exactly which field tells us which schema to use:\n\n\n```\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  discriminator:\n    propertyName: pet_type\n```\n\nThe expectation now is that a property with name `pet_type` _MUST_ be present in the response payload, and the value will correspond to the name of a schema defined in the OAS document.  Thus the response payload:\n\n```\n{\n  \"id\": 12345,\n  \"pet_type\": \"Cat\"\n}\n```\n\nWill indicate that the `Cat` schema be used in conjunction with this payload.\n\nIn scenarios where the value of the discriminator field does not match the schema name or implicit mapping is not possible, an optional `mapping` definition MAY be used:\n\n```\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  - $ref: 'https://gigantic-server.com/schemas/Monster/schema.json'\n  discriminator:\n    propertyName: pet_type\n    mapping:\n      dog: '#/components/schemas/Dog'\n      monster: 'https://gigantic-server.com/schemas/Monster/schema.json'\n```\n\nHere the discriminator _value_ of `dog` will map to the schema `#/components/schemas/Dog`, rather than the default (implicit) value of `Dog`.  If the discriminator _value_ does not match an implicit or explicit mapping, no schema can be determined and validation SHOULD fail. Mapping keys MUST be string values, but tooling MAY convert response values to strings for comparison.\n\nWhen used in conjunction with the `anyOf` construct, the use of the discriminator can avoid ambiguity where multiple schemas may satisfy a single payload.\n\nIn both the `oneOf` and `anyOf` use cases, all possible schemas MUST be listed explicitly.  To avoid redundancy, the discriminator MAY be added to a parent schema definition, and all schemas comprising the parent schema in an `allOf` construct may be used as an alternate schema.\n\nFor example:\n\n```\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n      - pet_type\n      properties:\n        pet_type:\n          type: string\n      discriminator:\n        propertyName: pet_type\n        mapping:\n          cachorro: Dog\n    Cat:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Cat`\n        properties:\n          name:\n            type: string\n    Dog:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Dog`\n        properties:\n          bark:\n            type: string\n    Lizard:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Lizard`\n        properties:\n          lovesRocks:\n            type: boolean\n```\n\na payload like this:\n\n```\n{\n  \"pet_type\": \"Cat\",\n  \"name\": \"misty\"\n}\n```\n\nwill indicate that the `Cat` schema be used.  Likewise this schema:\n\n```\n{\n  \"pet_type\": \"cachorro\",\n  \"bark\": \"soft\"\n}\n```\n\nwill map to `Dog` because of the definition in the `mappings` element.\n\n\n#### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\n\nWhen using arrays, XML element names are *not* inferred (for singular/plural forms) and the `name` property SHOULD be used to add that information.\nSee examples for expected behavior.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"xmlName\"></a>name | `string` | Replaces the name of the element/attribute used for the described schema property. When defined within `items`, it will affect the name of the individual XML elements within the list. When defined alongside `type` being `array` (outside the `items`), it will affect the wrapping element and only if `wrapped` is `true`. If `wrapped` is `false`, it will be ignored.\n<a name=\"xmlNamespace\"></a>namespace | `string` | The URI of the namespace definition. Value MUST be in the form of an absolute URI.\n<a name=\"xmlPrefix\"></a>prefix | `string` | The prefix to be used for the [name](#xmlName).\n<a name=\"xmlAttribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`.\n<a name=\"xmlWrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `array` (outside the `items`).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### XML Object Examples\n\nThe examples of the XML object definitions are included inside a property definition of a [Schema Object](#schema-object) with a sample of the XML representation of it.\n\n###### No XML Element\n\nBasic string property:\n\n```json\n{\n    \"animals\": {\n        \"type\": \"string\"\n    }\n}\n```\n\n```yaml\nanimals:\n  type: string\n```\n\n```xml\n<animals>...</animals>\n```\n\nBasic string array property ([`wrapped`](#xmlWrapped) is `false` by default):\n\n```json\n{\n    \"animals\": {\n        \"type\": \"array\",\n        \"items\": {\n            \"type\": \"string\"\n        }\n    }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n```\n\n```xml\n<animals>...</animals>\n<animals>...</animals>\n<animals>...</animals>\n```\n\n###### XML Name Replacement\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\",\n    \"xml\": {\n      \"name\": \"animal\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n  xml:\n    name: animal\n```\n\n```xml\n<animal>...</animal>\n```\n\n\n###### XML Attribute, Prefix and Namespace\n\nIn this example, a full model definition is shown.\n\n```json\n{\n  \"Person\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\",\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"name\": {\n        \"type\": \"string\",\n        \"xml\": {\n          \"namespace\": \"http://example.com/schema/sample\",\n          \"prefix\": \"sample\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nPerson:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int32\n      xml:\n        attribute: true\n    name:\n      type: string\n      xml:\n        namespace: http://example.com/schema/sample\n        prefix: sample\n```\n\n```xml\n<Person id=\"123\">\n    <sample:name xmlns:sample=\"http://example.com/schema/sample\">example</sample:name>\n</Person>\n```\n\n###### XML Arrays\n\nChanging the element names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nThe external `name` property has no effect on the XML:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nEven when the array is wrapped, if a name is not explicitly defined, the same name will be used both internally and externally:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animals>value</animals>\n  <animals>value</animals>\n</animals>\n```\n\nTo overcome the naming problem in the example above, the following definition can be used:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animal>value</animal>\n  <animal>value</animal>\n</animals>\n```\n\nAffecting both internal and external names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <animal>value</animal>\n  <animal>value</animal>\n</aliens>\n```\n\nIf we change the external element but not the internal ones:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <aliens>value</aliens>\n  <aliens>value</aliens>\n</aliens>\n```\n\n#### Security Scheme Object\n\nDefines a security scheme that can be used by the operations.\nSupported schemes are HTTP authentication, an API key (either as a header or as a query parameter), OAuth2's common flows (implicit, password, application and access code) as defined in [RFC6749](https://tools.ietf.org/html/rfc6749), and [OpenID Connect Discovery](https://tools.ietf.org/html/draft-ietf-oauth-discovery-06).\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"securitySchemeType\"></a>type | `string` | Any | **REQUIRED**. The type of the security scheme. Valid values are `\"apiKey\"`, `\"http\"`, `\"oauth2\"`, `\"openIdConnect\"`.\n<a name=\"securitySchemeDescription\"></a>description | `string` | Any | A short description for security scheme. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"securitySchemeName\"></a>name | `string` | `apiKey` | **REQUIRED**. The name of the header, query or cookie parameter to be used.\n<a name=\"securitySchemeIn\"></a>in | `string` | `apiKey` | **REQUIRED**. The location of the API key. Valid values are `\"query\"`, `\"header\"` or `\"cookie\"`.\n<a name=\"securitySchemeScheme\"></a>scheme | `string` | `http` | **REQUIRED**. The name of the HTTP Authorization scheme to be used in the [Authorization header as defined in RFC7235](https://tools.ietf.org/html/rfc7235#section-5.1).\n<a name=\"securitySchemeBearerFormat\"></a>bearerFormat | `string` | `http` (`\"bearer\"`) | A hint to the client to identify how the bearer token is formatted.  Bearer tokens are usually generated by an authorization server, so this information is primarily for documentation purposes.\n<a name=\"securitySchemeFlows\"></a>flows | [OAuth Flows Object](#oauth-flows-object) | `oauth2` | **REQUIRED**. An object containing configuration information for the flow types supported.\n<a name=\"securitySchemeOpenIdConnectUrl\"></a>openIdConnectUrl | `string` | `openIdConnect` | **REQUIRED**. OpenId Connect URL to discover OAuth2 configuration values. This MUST be in the form of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Security Scheme Object Example\n\n###### Basic Authentication Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"basic\"\n}\n```\n\n```yaml\ntype: http\nscheme: basic\n```\n\n###### API Key Sample\n\n```json\n{\n  \"type\": \"apiKey\",\n  \"name\": \"api_key\",\n  \"in\": \"header\"\n}\n```\n\n```yaml\ntype: apiKey\nname: api_key\nin: header\n```\n\n###### JWT Bearer Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"bearer\",\n  \"bearerFormat\": \"JWT\",\n}\n```\n\n```yaml\ntype: http\nscheme: bearer\nbearerFormat: JWT\n```\n\n###### Implicit OAuth2 Sample\n\n```json\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### OAuth Flows Object\n\nAllows configuration of the supported OAuth Flows.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"oauthFlowsImplicit\"></a>implicit| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Implicit flow\n<a name=\"oauthFlowsPassword\"></a>password| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Resource Owner Password flow\n<a name=\"oauthFlowsClientCredentials\"></a>clientCredentials| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Client Credentials flow.  Previously called `application` in OpenAPI 2.0.\n<a name=\"oauthFlowsAuthorizationCode\"></a>authorizationCode| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Authorization Code flow.  Previously called `accessCode` in OpenAPI 2.0.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### OAuth Flow Object\n\nConfiguration details for a supported OAuth Flow\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"oauthFlowAuthorizationUrl\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"authorizationCode\"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL.\n<a name=\"oauthFlowTokenUrl\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"clientCredentials\"`, `\"authorizationCode\"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL.\n<a name=\"oauthFlowRefreshUrl\"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL.\n<a name=\"oauthFlowScopes\"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### OAuth Flow Object Examples\n\n```JSON\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    },\n    \"authorizationCode\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"tokenUrl\": \"https://example.com/api/oauth/token\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```YAML\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n  authorizationCode:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    tokenUrl: https://example.com/api/oauth/token\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n\n#### Security Requirement Object\n\nLists the required security schemes to execute this operation.\nThe name used for each property MUST correspond to a security scheme declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object).\n\nSecurity Requirement Objects that contain multiple schemes require that all schemes MUST be satisfied for a request to be authorized.\nThis enables support for scenarios where multiple query parameters or HTTP headers are required to convey security information.\n\nWhen a list of Security Requirement Objects is defined on the [Open API object](#openapi-object) or [Operation Object](#operation-object), only one of Security Requirement Objects in the list needs to be satisfied to authorize the request. \n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"securityRequirementsName\"></a>{name} | [`string`] | Each name MUST correspond to a security scheme which is declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object). If the security scheme is of type `\"oauth2\"` or `\"openIdConnect\"`, then the value is a list of scope names required for the execution. For other security scheme types, the array MUST be empty.\n\n##### Security Requirement Object Examples\n\n###### Non-OAuth2 Security Requirement\n\n```json\n{\n  \"api_key\": []\n}\n```\n\n```yaml\napi_key: []\n```\n\n###### OAuth2 Security Requirement\n\n```json\n{\n  \"petstore_auth\": [\n    \"write:pets\",\n    \"read:pets\"\n  ]\n}\n```\n\n```yaml\npetstore_auth:\n- write:pets\n- read:pets\n```\n\n### Specification Extensions\n\nWhile the OpenAPI Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are implemented as patterned fields that are always prefixed by `\"x-\"`.\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"infoExtensions\"></a>^x- | Any | Allows extensions to the OpenAPI Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. Can have any valid JSON format value.\n\nThe extensions may or may not be supported by the available tooling, but those may be extended as well to add requested support (if tools are internal or open-sourced).\n\n### Security Filtering\n\nSome objects in the OpenAPI Specification MAY be declared and remain empty, or be completely removed, even though they are inherently the core of the API documentation.\n\nThe reasoning is to allow an additional layer of access control over the documentation.\nWhile not part of the specification itself, certain libraries MAY choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples of this:\n\n1. The [Paths Object](#paths-object) MAY be empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They'd still have access to the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) MAY be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different than hiding the path itself from the [Paths Object](#paths-object), so the user will not be aware of its existence. This allows the documentation provider to finely control what the viewer can see.\n\n## Appendix A: Revision History\n\nVersion   | Date       | Notes\n---       | ---        | ---\n3.0.1     | 2017-12-06 | Patch release of the OpenAPI Specification 3.0.1\n3.0.0     | 2017-07-26 | Release of the OpenAPI Specification 3.0.0\n3.0.0-rc2 | 2017-06-16 | rc2 of the 3.0 specification\n3.0.0-rc1 | 2017-04-27 | rc1 of the 3.0 specification\n3.0.0-rc0 | 2017-02-28 | Implementer's Draft of the 3.0 specification\n2.0       | 2015-12-31 | Donation of Swagger 2.0 to the Open API Initiative\n2.0       | 2014-09-08 | Release of Swagger 2.0\n1.2       | 2014-03-14 | Initial release of the formal document.\n1.1       | 2012-08-22 | Release of Swagger 1.1\n1.0       | 2011-08-10 | First release of the Swagger Specification\n"
  },
  {
    "path": "versions/3.0.2-editors.md",
    "content": "## Active\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Mike Ralphson [@MikeRalphson](https://github.com/MikeRalphson)\n* Ron Ratovsky [@webron](https://github.com/webron)\n* Uri Sarid [@usarid](https://github.com/usarid)\n\n## Emeritus\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "versions/3.0.2.md",
    "content": "# OpenAPI Specification\n\n#### Version 3.0.2\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"NOT RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [BCP 14](https://tools.ietf.org/html/bcp14) [RFC2119](https://tools.ietf.org/html/rfc2119) [RFC8174](https://tools.ietf.org/html/rfc8174) when, and only when, they appear in all capitals, as shown here.\n\nThis document is licensed under [The Apache License, Version 2.0](https://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introduction\n\nThe OpenAPI Specification (OAS) defines a standard, language-agnostic interface to RESTful APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined, a consumer can understand and interact with the remote service with a minimal amount of implementation logic.\n\nAn OpenAPI definition can then be used by documentation generation tools to display the API, code generation tools to generate servers and clients in various programming languages, testing tools, and many other use cases.\n\n## Table of Contents\n<!-- TOC depthFrom:1 depthTo:3 withLinks:1 updateOnSave:1 orderedList:0 -->\n\n- [Definitions](#definitions)\n\t- [OpenAPI Document](#openapi-document)\n\t- [Path Templating](#path-templating)\n\t- [Media Types](#media-types)\n\t- [HTTP Status Codes](#http-status-codes)\n- [Specification](#specification)\n\t- [Versions](#versions)\n\t- [Format](#format)\n\t- [Document Structure](#document-structure)\n\t- [Data Types](#data-types)\n\t- [Rich Text Formatting](#rich-text-formatting)\n\t- [Relative References In URLs](#relative-references-in-urls)\n\t- [Schema](#schema)\n\t\t- [OpenAPI Object](#openapi-object)\n\t\t- [Info Object](#info-object)\n\t\t- [Contact Object](#contact-object)\n\t\t- [License Object](#license-object)\n\t\t- [Server Object](#server-object)\n\t\t- [Server Variable Object](#server-variable-object)\n\t\t- [Components Object](#components-object)\n\t\t- [Paths Object](#paths-object)\n\t\t- [Path Item Object](#path-item-object)\n\t\t- [Operation Object](#operation-object)\n\t\t- [External Documentation Object](#external-documentation-object)\n\t\t- [Parameter Object](#parameter-object)\n\t\t- [Request Body Object](#request-body-object)\n\t\t- [Media Type Object](#media-type-object)\n\t\t- [Encoding Object](#encoding-object)\n\t\t- [Responses Object](#responses-object)\n\t\t- [Response Object](#response-object)\n\t\t- [Callback Object](#callback-object)\n\t\t- [Example Object](#example-object)\n\t\t- [Link Object](#link-object)\n\t\t- [Header Object](#header-object)\n\t\t- [Tag Object](#tag-object)\n\t\t- [Reference Object](#reference-object)\n\t\t- [Schema Object](#schema-object)\n\t\t- [Discriminator Object](#discriminator-object)\n\t\t- [XML Object](#xml-object)\n\t\t- [Security Scheme Object](#security-scheme-object)\n\t\t- [OAuth Flows Object](#oauth-flows-object)\n\t\t- [OAuth Flow Object](#oauth-flow-object)\n\t\t- [Security Requirement Object](#security-requirement-object)\n\t- [Specification Extensions](#specification-extensions)\n\t- [Security Filtering](#security-filtering)\n- [Appendix A: Revision History](#appendix-a-revision-history)\n\t\n\n<!-- /TOC -->\n\n## Definitions\n\n##### OpenAPI Document\nA document (or set of documents) that defines or describes an API. An OpenAPI definition uses and conforms to the OpenAPI Specification.\n\n##### Path Templating\nPath templating refers to the usage of curly braces ({}) to mark a section of a URL path as replaceable using path parameters.\n\n##### Media Types\nMedia type definitions are spread across several resources.\nThe media type definitions SHOULD be in compliance with [RFC6838](https://tools.ietf.org/html/rfc6838).\n\nSome examples of possible media type definitions:\n```\n  text/plain; charset=utf-8\n  application/json\n  application/vnd.github+json\n  application/vnd.github.v3+json\n  application/vnd.github.v3.raw+json\n  application/vnd.github.v3.text+json\n  application/vnd.github.v3.html+json\n  application/vnd.github.v3.full+json\n  application/vnd.github.v3.diff\n  application/vnd.github.v3.patch\n```\n##### HTTP Status Codes\nThe HTTP Status Codes are used to indicate the status of the executed operation.\nThe available status codes are defined by [RFC7231](https://tools.ietf.org/html/rfc7231#section-6) and registered status codes are listed in the [IANA Status Code Registry](https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n## Specification\n\n### Versions\n\nThe OpenAPI Specification is versioned using [Semantic Versioning 2.0.0](https://semver.org/spec/v2.0.0.html) (semver) and follows the semver specification.\n\nThe `major`.`minor` portion of the semver (for example `3.0`) SHALL designate the OAS feature set. Typically, *`.patch`* versions address errors in this document, not the feature set. Tooling which supports OAS 3.0 SHOULD be compatible with all OAS 3.0.\\* versions. The patch version SHOULD NOT be considered by tooling, making no distinction between `3.0.0` and `3.0.1` for example.\n\nSubsequent minor version releases of the OpenAPI Specification (incrementing the `minor` version number) SHOULD NOT interfere with tooling developed to a lower minor version and same major version.  Thus a hypothetical `3.1.0` specification SHOULD be usable with tooling designed for `3.0.0`.\n\nAn OpenAPI document compatible with OAS 3.\\*.\\* contains a required [`openapi`](#oasVersion) field which designates the semantic version of the OAS that it uses. (OAS 2.0 documents contain a top-level version field named [`swagger`](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#swaggerObject) and value `\"2.0\"`.)\n\n### Format\n\nAn OpenAPI document that conforms to the OpenAPI Specification is itself a JSON object, which may be represented either in JSON or YAML format.\n\nFor example, if a field has an array value, the JSON array representation will be used:\n\n```json\n{\n   \"field\": [ 1, 2, 3 ]\n}\n```\nAll field names in the specification are **case sensitive**.\nThis includes all fields that are used as keys in a map, except where explicitly noted that keys are **case insensitive**.\n\nThe schema exposes two types of fields: Fixed fields, which have a declared name, and Patterned fields, which declare a regex pattern for the field name.\n\nPatterned fields MUST have unique names within the containing object.\n\nIn order to preserve the ability to round-trip between YAML and JSON formats, YAML version [1.2](http://www.yaml.org/spec/1.2/spec.html) is RECOMMENDED along with some additional constraints:\n\n- Tags MUST be limited to those allowed by the [JSON Schema ruleset](http://www.yaml.org/spec/1.2/spec.html#id2803231).\n- Keys used in YAML maps MUST be limited to a scalar string, as defined by the [YAML Failsafe schema ruleset](http://yaml.org/spec/1.2/spec.html#id2802346).\n\n**Note:** While APIs may be defined by OpenAPI documents in either YAML or JSON format, the API request and response bodies and other content are not required to be JSON or YAML.\n\n### Document Structure\n\nAn OpenAPI document MAY be made up of a single document or be divided into multiple, connected parts at the discretion of the user. In the latter case, `$ref` fields MUST be used in the specification to reference those parts as follows from the [JSON Schema](http://json-schema.org) definitions.\n\nIt is RECOMMENDED that the root OpenAPI document be named: `openapi.json` or `openapi.yaml`.\n\n### Data Types\n\nPrimitive data types in the OAS are based on the types supported by the [JSON Schema Specification Wright Draft 00](https://tools.ietf.org/html/draft-wright-json-schema-00#section-4.2).\nNote that `integer` as a type is also supported and is defined as a JSON number without a fraction or exponent part.\n`null` is not supported as a type (see [`nullable`](#schemaNullable) for an alternative solution).\nModels are defined using the [Schema Object](#schema-object), which is an extended subset of JSON Schema Specification Wright Draft 00.\n\n<a name=\"dataTypeFormat\"></a>Primitives have an optional modifier property: `format`.\nOAS uses several known formats to define in fine detail the data type being used.\nHowever, to support documentation needs, the `format` property is an open `string`-valued property, and can have any value.\nFormats such as `\"email\"`, `\"uuid\"`, and so on, MAY be used even though undefined by this specification.\nTypes that are not accompanied by a `format` property follow the type definition in the JSON Schema. Tools that do not recognize a specific `format` MAY default back to the `type` alone, as if the `format` is not specified.\n\nThe formats defined by the OAS are:\n\n[`type`](#data-types) | [`format`](#dataTypeFormat) | Comments\n------ | -------- | --------\n`integer` | `int32` | signed 32 bits\n`integer` | `int64` | signed 64 bits (a.k.a long)\n`number` | `float` | |\n`number` | `double` | |\n`string` | | |\n`string` | `byte` | base64 encoded characters\n`string` | `binary` | any sequence of octets\n`boolean` | | |\n`string` | `date` | As defined by `full-date` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\n`string` | `date-time` | As defined by `date-time` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\n`string` | `password` | A hint to UIs to obscure input.\n\n\n### Rich Text Formatting\nThroughout the specification `description` fields are noted as supporting CommonMark markdown formatting.\nWhere OpenAPI tooling renders rich text it MUST support, at a minimum, markdown syntax as described by [CommonMark 0.27](http://spec.commonmark.org/0.27/). Tooling MAY choose to ignore some CommonMark features to address security concerns.\n\n### Relative References in URLs\n\nUnless specified otherwise, all properties that are URLs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\nRelative references are resolved using the URLs defined in the [`Server Object`](#server-object) as a Base URI.\n\nRelative references used in `$ref` are processed as per [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03), using the URL of the current document as the base URI. See also the [Reference Object](#reference-object).\n\n### Schema\n\nIn the following description, if a field is not explicitly **REQUIRED** or described with a MUST or SHALL, it can be considered OPTIONAL.\n\n#### OpenAPI Object\n\nThis is the root document object of the [OpenAPI document](#openapi-document).\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"oasVersion\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [semantic version number](https://semver.org/spec/v2.0.0.html) of the [OpenAPI Specification version](#versions) that the OpenAPI document uses. The `openapi` field SHOULD be used by tooling specifications and clients to interpret the OpenAPI document. This is *not* related to the API [`info.version`](#infoVersion) string.\n<a name=\"oasInfo\"></a>info | [Info Object](#info-object) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required.\n<a name=\"oasServers\"></a>servers | [[Server Object](#server-object)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` property is not provided, or is an empty array, the default value would be a [Server Object](#server-object) with a [url](#serverUrl) value of `/`.\n<a name=\"oasPaths\"></a>paths | [Paths Object](#paths-object) | **REQUIRED**. The available paths and operations for the API.\n<a name=\"oasComponents\"></a>components | [Components Object](#components-object) | An element to hold various schemas for the specification.\n<a name=\"oasSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. Individual operations can override this definition.\n<a name=\"oasTags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the specification with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique.\n<a name=\"oasExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Info Object\n\nThe object provides metadata about the API.\nThe metadata MAY be used by the clients if needed, and MAY be presented in editing or documentation generation tools for convenience.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"infoTitle\"></a>title | `string` | **REQUIRED**. The title of the application.\n<a name=\"infoDescription\"></a>description | `string` | A short description of the application. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"infoTermsOfService\"></a>termsOfService | `string` | A URL to the Terms of Service for the API. MUST be in the format of a URL.\n<a name=\"infoContact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API.\n<a name=\"infoLicense\"></a>license | [License Object](#license-object) | The license information for the exposed API.\n<a name=\"infoVersion\"></a>version | `string` | **REQUIRED**. The version of the OpenAPI document (which is distinct from the [OpenAPI Specification version](#oasVersion) or the API implementation version).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Info Object Example\n\n```json\n{\n  \"title\": \"Sample Pet Store App\",\n  \"description\": \"This is a sample server for a pet store.\",\n  \"termsOfService\": \"http://example.com/terms/\",\n  \"contact\": {\n    \"name\": \"API Support\",\n    \"url\": \"http://www.example.com/support\",\n    \"email\": \"support@example.com\"\n  },\n  \"license\": {\n    \"name\": \"Apache 2.0\",\n    \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n  },\n  \"version\": \"1.0.1\"\n}\n```\n\n```yaml\ntitle: Sample Pet Store App\ndescription: This is a sample server for a pet store.\ntermsOfService: http://example.com/terms/\ncontact:\n  name: API Support\n  url: http://www.example.com/support\n  email: support@example.com\nlicense:\n  name: Apache 2.0\n  url: https://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n#### Contact Object\n\nContact information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"contactName\"></a>name | `string` | The identifying name of the contact person/organization.\n<a name=\"contactUrl\"></a>url | `string` | The URL pointing to the contact information. MUST be in the format of a URL.\n<a name=\"contactEmail\"></a>email | `string` | The email address of the contact person/organization. MUST be in the format of an email address.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Contact Object Example\n\n```json\n{\n  \"name\": \"API Support\",\n  \"url\": \"http://www.example.com/support\",\n  \"email\": \"support@example.com\"\n}\n```\n\n```yaml\nname: API Support\nurl: http://www.example.com/support\nemail: support@example.com\n```\n\n#### License Object\n\nLicense information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"licenseName\"></a>name | `string` | **REQUIRED**. The license name used for the API.\n<a name=\"licenseUrl\"></a>url | `string` | A URL to the license used for the API. MUST be in the format of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### License Object Example\n\n```json\n{\n  \"name\": \"Apache 2.0\",\n  \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n}\n```\n\n```yaml\nname: Apache 2.0\nurl: https://www.apache.org/licenses/LICENSE-2.0.html\n```\n\n#### Server Object\n\nAn object representing a Server.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverUrl\"></a>url | `string` | **REQUIRED**. A URL to the target host.  This URL supports Server Variables and MAY be relative, to indicate that the host location is relative to the location where the OpenAPI document is being served. Variable substitutions will be made when a variable is named in `{`brackets`}`.\n<a name=\"serverDescription\"></a>description | `string` | An optional string describing the host designated by the URL. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"serverVariables\"></a>variables | Map[`string`, [Server Variable Object](#server-variable-object)] | A map between a variable name and its value.  The value is used for substitution in the server's URL template.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Server Object Example\n\nA single server would be described as:\n\n```json\n{\n  \"url\": \"https://development.gigantic-server.com/v1\",\n  \"description\": \"Development server\"\n}\n```\n\n```yaml\nurl: https://development.gigantic-server.com/v1\ndescription: Development server\n```\n\nThe following shows how multiple servers can be described, for example, at the OpenAPI Object's [`servers`](#oasServers):\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://development.gigantic-server.com/v1\",\n      \"description\": \"Development server\"\n    },\n    {\n      \"url\": \"https://staging.gigantic-server.com/v1\",\n      \"description\": \"Staging server\"\n    },\n    {\n      \"url\": \"https://api.gigantic-server.com/v1\",\n      \"description\": \"Production server\"\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://development.gigantic-server.com/v1\n  description: Development server\n- url: https://staging.gigantic-server.com/v1\n  description: Staging server\n- url: https://api.gigantic-server.com/v1\n  description: Production server\n```\n\nThe following shows how variables can be used for a server configuration:\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://{username}.gigantic-server.com:{port}/{basePath}\",\n      \"description\": \"The production API server\",\n      \"variables\": {\n        \"username\": {\n          \"default\": \"demo\",\n          \"description\": \"this value is assigned by the service provider, in this example `gigantic-server.com`\"\n        },\n        \"port\": {\n          \"enum\": [\n            \"8443\",\n            \"443\"\n          ],\n          \"default\": \"8443\"\n        },\n        \"basePath\": {\n          \"default\": \"v2\"\n        }\n      }\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://{username}.gigantic-server.com:{port}/{basePath}\n  description: The production API server\n  variables:\n    username:\n      # note! no enum here means it is an open value\n      default: demo\n      description: this value is assigned by the service provider, in this example `gigantic-server.com`\n    port:\n      enum:\n        - '8443'\n        - '443'\n      default: '8443'\n    basePath:\n      # open meaning there is the opportunity to use special base paths as assigned by the provider, default is `v2`\n      default: v2\n```\n\n\n#### Server Variable Object\n\nAn object representing a Server Variable for server URL template substitution.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverVariableEnum\"></a>enum | [`string`] | An enumeration of string values to be used if the substitution options are from a limited set.\n<a name=\"serverVariableDefault\"></a>default | `string` |  **REQUIRED**. The default value to use for substitution, which SHALL be sent if an alternate value is _not_ supplied. Note this behavior is different than the [Schema Object's](#schema-object) treatment of default values, because in those cases parameter values are optional.\n<a name=\"serverVariableDescription\"></a>description | `string` | An optional description for the server variable. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Components Object\n\nHolds a set of reusable objects for different aspects of the OAS.\nAll objects defined within the components object will have no effect on the API unless they are explicitly referenced from properties outside the components object.\n\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---|---\n<a name=\"componentsSchemas\"></a> schemas | Map[`string`, [Schema Object](#schema-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Schema Objects](#schema-object).\n<a name=\"componentsResponses\"></a> responses | Map[`string`, [Response Object](#response-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Response Objects](#response-object).\n<a name=\"componentsParameters\"></a> parameters | Map[`string`, [Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Parameter Objects](#parameter-object).\n<a name=\"componentsExamples\"></a> examples | Map[`string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Example Objects](#example-object).\n<a name=\"componentsRequestBodies\"></a> requestBodies | Map[`string`, [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Request Body Objects](#request-body-object).\n<a name=\"componentsHeaders\"></a> headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Header Objects](#header-object).\n<a name=\"componentsSecuritySchemes\"></a> securitySchemes| Map[`string`, [Security Scheme Object](#security-scheme-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Security Scheme Objects](#security-scheme-object).\n<a name=\"componentsLinks\"></a> links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Link Objects](#link-object).\n<a name=\"componentsCallbacks\"></a> callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Callback Objects](#callback-object).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nAll the fixed fields declared above are objects that MUST use keys that match the regular expression: `^[a-zA-Z0-9\\.\\-_]+$`.\n\nField Name Examples:\n\n```\nUser\nUser_1\nUser_Name\nuser-name\nmy.org.User\n```\n\n##### Components Object Example\n\n```json\n\"components\": {\n  \"schemas\": {\n    \"GeneralError\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"code\": {\n          \"type\": \"integer\",\n          \"format\": \"int32\"\n        },\n        \"message\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Category\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Tag\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  },\n  \"parameters\": {\n    \"skipParam\": {\n      \"name\": \"skip\",\n      \"in\": \"query\",\n      \"description\": \"number of items to skip\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    },\n    \"limitParam\": {\n      \"name\": \"limit\",\n      \"in\": \"query\",\n      \"description\": \"max records to return\",\n      \"required\": true,\n      \"schema\" : {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    }\n  },\n  \"responses\": {\n    \"NotFound\": {\n      \"description\": \"Entity not found.\"\n    },\n    \"IllegalInput\": {\n      \"description\": \"Illegal input for operation.\"\n    },\n    \"GeneralError\": {\n      \"description\": \"General Error\",\n      \"content\": {\n        \"application/json\": {\n          \"schema\": {\n            \"$ref\": \"#/components/schemas/GeneralError\"\n          }\n        }\n      }\n    }\n  },\n  \"securitySchemes\": {\n    \"api_key\": {\n      \"type\": \"apiKey\",\n      \"name\": \"api_key\",\n      \"in\": \"header\"\n    },\n    \"petstore_auth\": {\n      \"type\": \"oauth2\",\n      \"flows\": {\n        \"implicit\": {\n          \"authorizationUrl\": \"http://example.org/api/oauth/dialog\",\n          \"scopes\": {\n            \"write:pets\": \"modify pets in your account\",\n            \"read:pets\": \"read your pets\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    GeneralError:\n      type: object\n      properties:\n        code:\n          type: integer\n          format: int32\n        message:\n          type: string\n    Category:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n    Tag:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n  parameters:\n    skipParam:\n      name: skip\n      in: query\n      description: number of items to skip\n      required: true\n      schema:\n        type: integer\n        format: int32\n    limitParam:\n      name: limit\n      in: query\n      description: max records to return\n      required: true\n      schema:\n        type: integer\n        format: int32\n  responses:\n    NotFound:\n      description: Entity not found.\n    IllegalInput:\n      description: Illegal input for operation.\n    GeneralError:\n      description: General Error\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/GeneralError'\n  securitySchemes:\n    api_key:\n      type: apiKey\n      name: api_key\n      in: header\n    petstore_auth:\n      type: oauth2\n      flows:\n        implicit:\n          authorizationUrl: http://example.org/api/oauth/dialog\n          scopes:\n            write:pets: modify pets in your account\n            read:pets: read your pets\n```\n\n\n#### Paths Object\n\nHolds the relative paths to the individual endpoints and their operations.\nThe path is appended to the URL from the [`Server Object`](#server-object) in order to construct the full URL.  The Paths MAY be empty, due to [ACL constraints](#security-filtering).\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"pathsPath\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a slash. The path is **appended** (no relative URL resolution) to the expanded URL from the [`Server Object`](#server-object)'s `url` field in order to construct the full URL. [Path templating](#path-templating) is allowed. When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical. In case of ambiguous matching, it's up to the tooling to decide which one to use.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Templating Matching\n\nAssuming the following paths, the concrete definition, `/pets/mine`, will be matched first if used:\n\n```\n  /pets/{petId}\n  /pets/mine\n```\n\nThe following paths are considered identical and invalid:\n\n```\n  /pets/{petId}\n  /pets/{name}\n```\n\nThe following may lead to ambiguous resolution:\n\n```\n  /{entity}/me\n  /books/{id}\n```\n\n##### Paths Object Example\n\n```json\n{\n  \"/pets\": {\n    \"get\": {\n      \"description\": \"Returns all pets from the system that the user has access to\",\n      \"responses\": {\n        \"200\": {         \n          \"description\": \"A list of pets.\",\n          \"content\": {\n            \"application/json\": {\n              \"schema\": {\n                \"type\": \"array\",\n                \"items\": {\n                  \"$ref\": \"#/components/schemas/pet\"\n                }\n              }\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    responses:\n      '200':\n        description: A list of pets.\n        content:\n          application/json:\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/pet'\n```\n\n#### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item MAY be empty, due to [ACL constraints](#security-filtering).\nThe path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"pathItemRef\"></a>$ref | `string` | Allows for an external definition of this path item. The referenced structure MUST be in the format of a [Path Item Object](#path-item-object). If there are conflicts between the referenced definition and this Path Item's definition, the behavior is *undefined*.\n<a name=\"pathItemSummary\"></a>summary| `string` | An optional, string summary, intended to apply to all operations in this path.\n<a name=\"pathItemDescription\"></a>description | `string` | An optional, string description, intended to apply to all operations in this path. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"pathItemGet\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path.\n<a name=\"pathItemPut\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path.\n<a name=\"pathItemPost\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path.\n<a name=\"pathItemDelete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path.\n<a name=\"pathItemOptions\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path.\n<a name=\"pathItemHead\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path.\n<a name=\"pathItemPatch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path.\n<a name=\"pathItemTrace\"></a>trace | [Operation Object](#operation-object) | A definition of a TRACE operation on this path.\n<a name=\"pathItemServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service all operations in this path.\n<a name=\"pathItemParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Item Object Example\n\n```json\n{\n  \"get\": {\n    \"description\": \"Returns pets based on ID\",\n    \"summary\": \"Find pets by ID\",\n    \"operationId\": \"getPetsById\",\n    \"responses\": {\n      \"200\": {\n        \"description\": \"pet response\",\n        \"content\": {\n          \"*/*\": {\n            \"schema\": {\n              \"type\": \"array\",\n              \"items\": {\n                \"$ref\": \"#/components/schemas/Pet\"\n              }\n            }\n          }\n        }\n      },\n      \"default\": {\n        \"description\": \"error payload\",\n        \"content\": {\n          \"text/html\": {\n            \"schema\": {\n              \"$ref\": \"#/components/schemas/ErrorModel\"\n            }\n          }\n        }\n      }\n    }\n  },\n  \"parameters\": [\n    {\n      \"name\": \"id\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet to use\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      },\n      \"style\": \"simple\"\n    }\n  ]\n}\n```\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  responses:\n    '200':\n      description: pet response\n      content:\n        '*/*' :\n          schema:\n            type: array\n            items:\n              $ref: '#/components/schemas/Pet'\n    default:\n      description: error payload\n      content:\n        'text/html':\n          schema:\n            $ref: '#/components/schemas/ErrorModel'\nparameters:\n- name: id\n  in: path\n  description: ID of pet to use\n  required: true\n  schema:\n    type: array\n    style: simple\n    items:\n      type: string \n```\n\n#### Operation Object\n\nDescribes a single API operation on a path.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"operationTags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier.\n<a name=\"operationSummary\"></a>summary | `string` | A short summary of what the operation does.\n<a name=\"operationDescription\"></a>description | `string` | A verbose explanation of the operation behavior. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"operationExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation.\n<a name=\"operationId\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. The operationId value is **case-sensitive**. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is RECOMMENDED to follow common programming naming conventions.\n<a name=\"operationParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined at the [Path Item](#pathItemParameters), the new definition will override it but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n<a name=\"operationRequestBody\"></a>requestBody | [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object) | The request body applicable for this operation.  The `requestBody` is only supported in HTTP methods where the HTTP 1.1 specification [RFC7231](https://tools.ietf.org/html/rfc7231#section-4.3.1) has explicitly defined semantics for request bodies.  In other cases where the HTTP spec is vague, `requestBody` SHALL be ignored by consumers.\n<a name=\"operationResponses\"></a>responses | [Responses Object](#responses-object) | **REQUIRED**. The list of possible responses as they are returned from executing this operation.\n<a name=\"operationCallbacks\"></a>callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | A map of possible out-of band callbacks related to the parent operation. The key is a unique identifier for the Callback Object. Each value in the map is a [Callback Object](#callback-object) that describes a request that may be initiated by the API provider and the expected responses. The key value used to identify the callback object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n<a name=\"operationDeprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Consumers SHOULD refrain from usage of the declared operation. Default value is `false`.\n<a name=\"operationSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used for this operation. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. This definition overrides any declared top-level [`security`](#oasSecurity). To remove a top-level security declaration, an empty array can be used.\n<a name=\"operationServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service this operation. If an alternative `server` object is specified at the Path Item Object or Root level, it will be overridden by this value.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Operation Object Example\n\n```json\n{\n  \"tags\": [\n    \"pet\"\n  ],\n  \"summary\": \"Updates a pet in the store with form data\",\n  \"operationId\": \"updatePetWithForm\",\n  \"parameters\": [\n    {\n      \"name\": \"petId\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet that needs to be updated\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  ],\n  \"requestBody\": {\n    \"content\": {\n      \"application/x-www-form-urlencoded\": {\n        \"schema\": {\n          \"type\": \"object\",\n           \"properties\": {\n              \"name\": {\n                \"description\": \"Updated name of the pet\",\n                \"type\": \"string\"\n              },\n              \"status\": {\n                \"description\": \"Updated status of the pet\",\n                \"type\": \"string\"\n             }\n           },\n        \"required\": [\"status\"]\n        }\n      }\n    }\n  },\n  \"responses\": {\n    \"200\": {\n      \"description\": \"Pet updated.\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    },\n    \"405\": {\n      \"description\": \"Method Not Allowed\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    }\n  },\n  \"security\": [\n    {\n      \"petstore_auth\": [\n        \"write:pets\",\n        \"read:pets\"\n      ]\n    }\n  ]\n}\n```\n\n```yaml\ntags:\n- pet\nsummary: Updates a pet in the store with form data\noperationId: updatePetWithForm\nparameters:\n- name: petId\n  in: path\n  description: ID of pet that needs to be updated\n  required: true\n  schema:\n    type: string\nrequestBody:\n  content:\n    'application/x-www-form-urlencoded':\n      schema:\n       properties:\n          name:\n            description: Updated name of the pet\n            type: string\n          status:\n            description: Updated status of the pet\n            type: string\n       required:\n         - status\nresponses:\n  '200':\n    description: Pet updated.\n    content:\n      'application/json': {}\n      'application/xml': {}\n  '405':\n    description: Method Not Allowed\n    content:\n      'application/json': {}\n      'application/xml': {}\nsecurity:\n- petstore_auth:\n  - write:pets\n  - read:pets\n```\n\n\n#### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"externalDocDescription\"></a>description | `string` | A short description of the target documentation. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"externalDocUrl\"></a>url | `string` | **REQUIRED**. The URL for the target documentation. Value MUST be in the format of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### External Documentation Object Example\n\n```json\n{\n  \"description\": \"Find more info here\",\n  \"url\": \"https://example.com\"\n}\n```\n\n```yaml\ndescription: Find more info here\nurl: https://example.com\n```\n\n#### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn).\n\n##### Parameter Locations\nThere are four possible parameter locations specified by the `in` field:\n* path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`.\n* header - Custom headers that are expected as part of the request. Note that [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive.\n* cookie - Used to pass a specific cookie value to the API.\n\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterName\"></a>name | `string` | **REQUIRED**. The name of the parameter. Parameter names are *case sensitive*. <ul><li>If [`in`](#parameterIn) is `\"path\"`, the `name` field MUST correspond to the associated path segment from the [path](#pathsPath) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>If [`in`](#parameterIn) is `\"header\"` and the `name` field is `\"Accept\"`, `\"Content-Type\"` or `\"Authorization\"`, the parameter definition SHALL be ignored.<li>For all other cases, the `name` corresponds to the parameter name used by the [`in`](#parameterIn) property.</ul>\n<a name=\"parameterIn\"></a>in | `string` | **REQUIRED**. The location of the parameter. Possible values are \"query\", \"header\", \"path\" or \"cookie\".\n<a name=\"parameterDescription\"></a>description | `string` | A brief description of the parameter. This could contain examples of use.  [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"parameterRequired\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the [parameter location](#parameterIn) is \"path\", this property is **REQUIRED** and its value MUST be `true`. Otherwise, the property MAY be included and its default value is `false`.\n<a name=\"parameterDeprecated\"></a> deprecated | `boolean` | Specifies that a parameter is deprecated and SHOULD be transitioned out of usage. Default value is `false`.\n<a name=\"parameterAllowEmptyValue\"></a> allowEmptyValue | `boolean` | Sets the ability to pass empty-valued parameters. This is valid only for `query` parameters and allows sending a parameter with an empty value. Default value is `false`. If [`style`](#parameterStyle) is used, and if behavior is `n/a` (cannot be serialized), the value of `allowEmptyValue` SHALL be ignored. Use of this property is NOT RECOMMENDED, as it is likely to be removed in a later revision.\n\nThe rules for serialization of the parameter are specified in one of two ways.\nFor simpler scenarios, a [`schema`](#parameterSchema) and [`style`](#parameterStyle) can describe the structure and syntax of the parameter.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterStyle\"></a>style | `string` | Describes how the parameter value will be serialized depending on the type of the parameter value. Default values (based on value of `in`): for `query` - `form`; for `path` - `simple`; for `header` - `simple`; for `cookie` - `form`.\n<a name=\"parameterExplode\"></a>explode | `boolean` | When this is true, parameter values of type `array` or `object` generate separate parameters for each value of the array or key-value pair of the map.  For other types of parameters this property has no effect. When [`style`](#parameterStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`.\n<a name=\"parameterAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. This property only applies to parameters with an `in` value of `query`. The default value is `false`.\n<a name=\"parameterSchema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the type used for the parameter.\n<a name=\"parameterExample\"></a>example | Any | Example of the media type.  The example SHOULD match the specified schema and encoding properties if present.  The `example` field is mutually exclusive of the `examples` field.  Furthermore, if referencing a `schema` which contains an example, the `example` value SHALL _override_ the example provided by the schema. To represent examples of media types that cannot naturally be represented in JSON or YAML, a string value can contain the example with escaping where necessary.\n<a name=\"parameterExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type.  Each example SHOULD contain a value in the correct format as specified in the parameter encoding.  The `examples` field is mutually exclusive of the `example` field.  Furthermore, if referencing a `schema` which contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n\nFor more complex scenarios, the [`content`](#parameterContent) property can define the media type and schema of the parameter.\nA parameter MUST contain either a `schema` property, or a `content` property, but not both.\nWhen `example` or `examples` are provided in conjunction with the `schema` object, the example MUST follow the prescribed serialization strategy for the parameter.\n\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the parameter. The key is the media type and the value describes it.  The map MUST only contain one entry.\n\n##### Style Values\n\nIn order to support common ways of serializing simple parameters, a set of `style` values are defined.\n\n`style` | [`type`](#data-types) |  `in` | Comments\n----------- | ------ | -------- | --------\nmatrix |  `primitive`, `array`, `object` |  `path` | Path-style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.7)\nlabel | `primitive`, `array`, `object` |  `path` | Label style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.5)\nform |  `primitive`, `array`, `object` |  `query`, `cookie` | Form style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.8). This option replaces `collectionFormat` with a `csv` (when `explode` is false) or `multi` (when `explode` is true) value from OpenAPI 2.0.\nsimple | `array` | `path`, `header` | Simple style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.2).  This option replaces `collectionFormat` with a `csv` value from OpenAPI 2.0.\nspaceDelimited | `array` | `query` | Space separated array values. This option replaces `collectionFormat` equal to `ssv` from OpenAPI 2.0.\npipeDelimited | `array` | `query` | Pipe separated array values. This option replaces `collectionFormat` equal to `pipes` from OpenAPI 2.0.\ndeepObject | `object` | `query` | Provides a simple way of rendering nested objects using form parameters.\n\n\n##### Style Examples\n\nAssume a parameter named `color` has one of the following values:\n\n```\n   string -> \"blue\"\n   array -> [\"blue\",\"black\",\"brown\"]\n   object -> { \"R\": 100, \"G\": 200, \"B\": 150 }\n```\nThe following table shows examples of rendering differences for each value.\n\n[`style`](#dataTypeFormat) | `explode` | `empty` | `string` | `array` | `object`\n----------- | ------ | -------- | -------- | --------|-------\nmatrix | false | ;color | ;color=blue | ;color=blue,black,brown | ;color=R,100,G,200,B,150\nmatrix | true | ;color | ;color=blue | ;color=blue;color=black;color=brown | ;R=100;G=200;B=150\nlabel | false | .  | .blue |  .blue.black.brown | .R.100.G.200.B.150\nlabel | true | . | .blue |  .blue.black.brown | .R=100.G=200.B=150\nform | false | color= | color=blue | color=blue,black,brown | color=R,100,G,200,B,150\nform | true | color= | color=blue | color=blue&color=black&color=brown | R=100&G=200&B=150\nsimple | false | n/a | blue | blue,black,brown | R,100,G,200,B,150\nsimple | true | n/a | blue | blue,black,brown | R=100,G=200,B=150\nspaceDelimited | false | n/a | n/a | blue%20black%20brown | R%20100%20G%20200%20B%20150\npipeDelimited | false | n/a | n/a | blue\\|black\\|brown | R\\|100\\|G\\|200|G\\|150\ndeepObject | true | n/a | n/a | n/a | color[R]=100&color[G]=200&color[B]=150\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Parameter Object Examples\n\nA header parameter with an array of 64 bit integer numbers:\n\n```json\n{\n  \"name\": \"token\",\n  \"in\": \"header\",\n  \"description\": \"token to be passed as a header\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    }\n  },\n  \"style\": \"simple\"\n}\n```\n\n```yaml\nname: token\nin: header\ndescription: token to be passed as a header\nrequired: true\nschema:\n  type: array\n  items:\n    type: integer\n    format: int64\nstyle: simple\n```\n\nA path parameter of a string value:\n```json\n{\n  \"name\": \"username\",\n  \"in\": \"path\",\n  \"description\": \"username to fetch\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\nschema:\n  type: string\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter:\n```json\n{\n  \"name\": \"id\",\n  \"in\": \"query\",\n  \"description\": \"ID of the object to fetch\",\n  \"required\": false,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  },\n  \"style\": \"form\",\n  \"explode\": true\n}\n```\n\n```yaml\nname: id\nin: query\ndescription: ID of the object to fetch\nrequired: false\nschema:\n  type: array\n  items:\n    type: string\nstyle: form\nexplode: true\n```\n\nA free-form query parameter, allowing undefined parameters of a specific type:\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"freeForm\",\n  \"schema\": {\n    \"type\": \"object\",\n    \"additionalProperties\": {\n      \"type\": \"integer\"\n    },\n  },\n  \"style\": \"form\"\n}\n```\n\n```yaml\nin: query\nname: freeForm\nschema:\n  type: object\n  additionalProperties:\n    type: integer\nstyle: form\n```\n\nA complex parameter using `content` to define serialization:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"coordinates\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"lat\",\n          \"long\"\n        ],\n        \"properties\": {\n          \"lat\": {\n            \"type\": \"number\"\n          },\n          \"long\": {\n            \"type\": \"number\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nin: query\nname: coordinates\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n        - lat\n        - long\n      properties:\n        lat:\n          type: number\n        long:\n          type: number\n```\n\n#### Request Body Object\n\nDescribes a single request body.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"requestBodyDescription\"></a>description | `string` | A brief description of the request body. This could contain examples of use.  [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"requestBodyContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | **REQUIRED**. The content of the request body. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For requests that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"requestBodyRequired\"></a>required | `boolean` | Determines if the request body is required in the request. Defaults to `false`.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Request Body Examples\n\nA request body with a referenced model definition.\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User Example\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.json\"\n          }\n        }\n    },\n    \"application/xml\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User example in XML\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.xml\"\n          }\n        }\n    },\n    \"text/plain\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in Plain text\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.txt\"\n        }\n      }\n    },\n    \"*/*\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in other format\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.whatever\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\ncontent:\n  'application/json':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User Example\n        externalValue: 'http://foo.bar/examples/user-example.json'\n  'application/xml':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User Example in XML\n        externalValue: 'http://foo.bar/examples/user-example.xml'\n  'text/plain':\n    examples:\n      user:\n        summary: User example in text plain format\n        externalValue: 'http://foo.bar/examples/user-example.txt'\n  '*/*':\n    examples:\n      user:\n        summary: User example in other format\n        externalValue: 'http://foo.bar/examples/user-example.whatever'\n```\n\nA body parameter that is an array of string values:\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\nrequired: true\ncontent:\n  text/plain:\n    schema:\n      type: array\n      items:\n        type: string\n```\n\n\n#### Media Type Object\nEach Media Type Object provides schema and examples for the media type identified by its key.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"mediaTypeSchema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the content of the request, response, or parameter.\n<a name=\"mediaTypeExample\"></a>example | Any | Example of the media type.  The example object SHOULD be in the correct format as specified by the media type.  The `example` field is mutually exclusive of the `examples` field.  Furthermore, if referencing a `schema` which contains an example, the `example` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type.  Each example object SHOULD  match the media type and specified schema if present.  The `examples` field is mutually exclusive of the `example` field.  Furthermore, if referencing a `schema` which contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeEncoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | A map between a property name and its encoding information. The key, being the property name, MUST exist in the schema as a property. The encoding object SHALL only apply to `requestBody` objects when the media type is `multipart` or `application/x-www-form-urlencoded`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Media Type Examples\n\n```json\n{\n  \"application/json\": {\n    \"schema\": {\n         \"$ref\": \"#/components/schemas/Pet\"\n    },\n    \"examples\": {\n      \"cat\" : {\n        \"summary\": \"An example of a cat\",\n        \"value\":\n          {\n            \"name\": \"Fluffy\",\n            \"petType\": \"Cat\",\n            \"color\": \"White\",\n            \"gender\": \"male\",\n            \"breed\": \"Persian\"\n          }\n      },\n      \"dog\": {\n        \"summary\": \"An example of a dog with a cat's name\",\n        \"value\" :  {\n          \"name\": \"Puma\",\n          \"petType\": \"Dog\",\n          \"color\": \"Black\",\n          \"gender\": \"Female\",\n          \"breed\": \"Mixed\"\n        },\n      \"frog\": {\n          \"$ref\": \"#/components/examples/frog-example\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    $ref: \"#/components/schemas/Pet\"\n  examples:\n    cat:\n      summary: An example of a cat\n      value:\n        name: Fluffy\n        petType: Cat\n        color: White\n        gender: male\n        breed: Persian\n    dog:\n      summary: An example of a dog with a cat's name\n      value:\n        name: Puma\n        petType: Dog\n        color: Black\n        gender: Female\n        breed: Mixed\n    frog:\n      $ref: \"#/components/examples/frog-example\"\n```\n\n##### Considerations for File Uploads\n\nIn contrast with the 2.0 specification, `file` input/output content in OpenAPI is described with the same semantics as any other schema type. Specifically:\n\n```yaml\n# content transferred with base64 encoding\nschema:\n  type: string\n  format: base64\n```\n\n```yaml\n# content transferred in binary (octet-stream):\nschema:\n  type: string\n  format: binary\n```\n\nThese examples apply to either input payloads of file uploads or response payloads.\n\nA `requestBody` for submitting a file in a `POST` operation may look like the following example:\n\n```yaml\nrequestBody:\n  content:\n    application/octet-stream:\n      # any media type is accepted, functionally equivalent to `*/*`\n      schema:\n        # a binary file of any type\n        type: string\n        format: binary\n```\n\nIn addition, specific media types MAY be specified:\n\n```yaml\n# multiple, specific media types may be specified:\nrequestBody:\n  content:\n      # a binary file of type png or jpeg\n    'image/jpeg':\n      schema:\n        type: string\n        format: binary\n    'image/png':\n      schema:\n        type: string\n        format: binary       \n```\n\nTo upload multiple files, a `multipart` media type MUST be used:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        properties:\n          # The property name 'file' will be used for all files.\n          file:\n            type: array\n            items:\n              type: string\n              format: binary\n\n```\n\n##### Support for x-www-form-urlencoded Request Bodies\n\nTo submit content using form url encoding via [RFC1866](https://tools.ietf.org/html/rfc1866), the following\ndefinition may be used:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # complex types are stringified to support RFC 1866\n            type: object\n            properties: {}\n```\n\nIn this example, the contents in the `requestBody` MUST be stringified per [RFC1866](https://tools.ietf.org/html/rfc1866/) when passed to the server.  In addition, the `address` field complex object will be stringified.\n\nWhen passing complex objects in the `application/x-www-form-urlencoded` content type, the default serialization strategy of such properties is described in the [`Encoding Object`](#encoding-object)'s [`style`](#encodingStyle) property as `form`.\n\n##### Special Considerations for `multipart` Content\n\nIt is common to use `multipart/form-data` as a `Content-Type` when transferring request bodies to operations.  In contrast to 2.0, a `schema` is REQUIRED to define the input parameters to the operation when using `multipart` content.  This supports complex structures as well as supporting mechanisms for multiple file uploads.\n\nWhen passing in `multipart` types, boundaries MAY be used to separate sections of the content being transferred — thus, the following default `Content-Type`s are defined for `multipart`:\n\n* If the property is a primitive, or an array of primitive values, the default Content-Type is `text/plain`\n* If the property is complex, or an array of complex values, the default Content-Type is `application/json`\n* If the property is a `type: string` with `format: binary` or `format: base64` (aka a file object), the default Content-Type is `application/octet-stream`\n\n\nExamples:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # default Content-Type for objects is `application/json`\n            type: object\n            properties: {}\n          profileImage:\n            # default Content-Type for string/binary is `application/octet-stream`\n            type: string\n            format: binary\n          children:\n            # default Content-Type for arrays is based on the `inner` type (text/plain here)\n            type: array\n            items:\n              type: string\n          addresses:\n            # default Content-Type for arrays is based on the `inner` type (object shown, so `application/json` in this example)\n            type: array\n            items:\n              type: '#/components/schemas/Address'\n```\n\nAn `encoding` attribute is introduced to give you control over the serialization of parts of `multipart` request bodies.  This attribute is _only_ applicable to `multipart` and `application/x-www-form-urlencoded` request bodies.\n\n#### Encoding Object\n\nA single encoding definition applied to a single schema property.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"encodingContentType\"></a>contentType | `string` | The Content-Type for encoding a specific property. Default value depends on the property type: for `string` with `format` being `binary` – `application/octet-stream`; for other primitive types – `text/plain`; for `object` - `application/json`; for `array` – the default is defined based on the inner type. The value can be a specific media type (e.g. `application/json`), a wildcard media type (e.g. `image/*`), or a comma-separated list of the two types.\n<a name=\"encodingHeaders\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | A map allowing additional information to be provided as headers, for example `Content-Disposition`.  `Content-Type` is described separately and SHALL be ignored in this section. This property SHALL be ignored if the request body media type is not a `multipart`.\n<a name=\"encodingStyle\"></a>style | `string` | Describes how a specific property value will be serialized depending on its type.  See [Parameter Object](#parameter-object) for details on the [`style`](#parameterStyle) property. The behavior follows the same values as `query` parameters, including default values. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n<a name=\"encodingExplode\"></a>explode | `boolean` | When this is true, property values of type `array` or `object` generate separate parameters for each value of the array, or key-value-pair of the map.  For other types of properties this property has no effect. When [`style`](#encodingStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n<a name=\"encodingAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. The default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Encoding Object Example\n\n```yaml\nrequestBody:\n  content:\n    multipart/mixed:\n      schema:\n        type: object\n        properties:\n          id:\n            # default is text/plain\n            type: string\n            format: uuid\n          address:\n            # default is application/json\n            type: object\n            properties: {}\n          historyMetadata:\n            # need to declare XML format!\n            description: metadata in XML format\n            type: object\n            properties: {}\n          profileImage:\n            # default is application/octet-stream, need to declare an image type only!\n            type: string\n            format: binary\n      encoding:\n        historyMetadata:\n          # require XML Content-Type in utf-8 encoding\n          contentType: application/xml; charset=utf-8\n        profileImage:\n          # only accept png/jpeg\n          contentType: image/png, image/jpeg\n          headers:\n            X-Rate-Limit-Limit:\n              description: The number of allowed requests in the current period\n              schema:\n                type: integer\n```\n\n#### Responses Object\n\nA container for the expected responses of an operation.\nThe container maps a HTTP response code to the expected response.\n\nThe documentation is not necessarily expected to cover all possible HTTP response codes because they may not be known in advance.\nHowever, documentation is expected to cover a successful operation response and any known errors.\n\nThe `default` MAY be used as a default response object for all HTTP codes\nthat are not covered individually by the specification.\n\nThe `Responses Object` MUST contain at least one response code, and it\nSHOULD be the response for a successful operation call.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responsesDefault\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. Use this field to cover undeclared responses. A [Reference Object](#reference-object) can link to a response that the [OpenAPI Object's components/responses](#componentsResponses) section defines.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"responsesCode\"></a>[HTTP Status Code](#http-status-codes) | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name, but only one property per code, to describe the expected response for that HTTP status code.  A [Reference Object](#reference-object) can link to a response that is defined in the [OpenAPI Object's components/responses](#componentsResponses) section. This field MUST be enclosed in quotation marks (for example, \"200\") for compatibility between JSON and YAML. To define a range of response codes, this field MAY contain the uppercase wildcard character `X`. For example, `2XX` represents all response codes between `[200-299]`. Only the following range definitions are allowed: `1XX`, `2XX`, `3XX`, `4XX`, and `5XX`. If a response is defined using an explicit code, the explicit code definition takes precedence over the range definition for that code.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Responses Object Example\n\nA 200 response for a successful operation and a default response for others (implying an error):\n\n```json\n{\n  \"200\": {\n    \"description\": \"a pet to be returned\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/Pet\"\n        }\n      }\n    }\n  },\n  \"default\": {\n    \"description\": \"Unexpected error\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/ErrorModel\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n'200':\n  description: a pet to be returned\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/Pet'\ndefault:\n  description: Unexpected error\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/ErrorModel'\n```\n\n#### Response Object\nDescribes a single response from an API Operation, including design-time, static\n`links` to operations based on the response.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responseDescription\"></a>description | `string` | **REQUIRED**. A short description of the response. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"responseHeaders\"></a>headers | Map[`string`, [Header Object](#header-object)  \\| [Reference Object](#reference-object)] |  Maps a header name to its definition. [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive. If a response header is defined with the name `\"Content-Type\"`, it SHALL be ignored.\n<a name=\"responseContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing descriptions of potential response payloads. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For responses that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"responseLinks\"></a>links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | A map of operations links that can be followed from the response. The key of the map is a short name for the link, following the naming constraints of the names for [Component Objects](#components-object).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Response Object Examples\n\nResponse of an array of a complex type:\n\n```json\n{\n  \"description\": \"A complex object array response\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"$ref\": \"#/components/schemas/VeryComplexType\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A complex object array response\ncontent:\n  application/json:\n    schema:\n      type: array\n      items:\n        $ref: '#/components/schemas/VeryComplexType'\n```\n\nResponse with a string type:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  }\n\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n```\n\nPlain text response with headers:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  },\n  \"headers\": {\n    \"X-Rate-Limit-Limit\": {\n      \"description\": \"The number of allowed requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Remaining\": {\n      \"description\": \"The number of remaining requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Reset\": {\n      \"description\": \"The number of seconds left in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n    example: 'whoa!'\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    schema:\n      type: integer\n```\n\nResponse with no return value:\n\n```json\n{\n  \"description\": \"object created\"\n}\n```\n\n```yaml\ndescription: object created\n```\n\n#### Callback Object\n\nA map of possible out-of band callbacks related to the parent operation.\nEach value in the map is a [Path Item Object](#path-item-object) that describes a set of requests that may be initiated by the API provider and the expected responses.\nThe key value used to identify the callback object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"callbackExpression\"></a>{expression} | [Path Item Object](#path-item-object) | A Path Item Object used to define a callback request and expected responses.  A [complete example](../examples/v3.0/callback-example.yaml) is available.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Key Expression\n\nThe key that identifies the [Path Item Object](#path-item-object) is a [runtime expression](#runtime-expressions) that can be evaluated in the context of a runtime HTTP request/response to identify the URL to be used for the callback request.\nA simple example might be `$request.body#/url`.\nHowever, using a [runtime expression](#runtime-expressions) the complete HTTP message can be accessed.\nThis includes accessing any part of a body that a JSON Pointer [RFC6901](https://tools.ietf.org/html/rfc6901) can reference.\n\nFor example, given the following HTTP request:\n\n```http\nPOST /subscribe/myevent?queryUrl=http://clientdomain.com/stillrunning HTTP/1.1\nHost: example.org\nContent-Type: application/json\nContent-Length: 187\n\n{\n  \"failedUrl\" : \"http://clientdomain.com/failed\",\n  \"successUrls\" : [\n    \"http://clientdomain.com/fast\",\n    \"http://clientdomain.com/medium\",\n    \"http://clientdomain.com/slow\"\n  ]\n}\n\n201 Created\nLocation: http://example.org/subscription/1\n```\n\nThe following examples show how the various expressions evaluate, assuming the callback operation has a path parameter named `eventType` and a query parameter named `queryUrl`.\n\nExpression | Value\n---|:---\n$url | http://example.org/subscribe/myevent?queryUrl=http://clientdomain.com/stillrunning\n$method | POST\n$request.path.eventType | myevent\n$request.query.queryUrl | http://clientdomain.com/stillrunning\n$request.header.content-Type | application/json\n$request.body#/failedUrl | http://clientdomain.com/failed\n$request.body#/successUrls/2 | http://clientdomain.com/medium\n$response.header.Location | http://example.org/subscription/1\n\n\n##### Callback Object Example\n\nThe following example shows a callback to the URL specified by the `id` and `email` property in the request body.\n\n```yaml\nmyWebhook:\n  'http://notificationServer.com?transactionId={$request.body#/id}&email={$request.body#/email}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          'application/json':\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: webhook successfully processed and no retries will be performed\n```\n\n\n#### Example Object\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"exampleSummary\"></a>summary | `string` | Short description for the example.\n<a name=\"exampleDescription\"></a>description | `string` | Long description for the example. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"exampleValue\"></a>value | Any | Embedded literal example. The `value` field and `externalValue` field are mutually exclusive. To represent examples of media types that cannot naturally represented in JSON or YAML, use a string value to contain the example, escaping where necessary.\n<a name=\"exampleExternalValue\"></a>externalValue | `string` | A URL that points to the literal example. This provides the capability to reference examples that cannot easily be included in JSON or YAML documents.  The `value` field and `externalValue` field are mutually exclusive.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nIn all cases, the example value is expected to be compatible with the type schema\nof its associated value.  Tooling implementations MAY choose to\nvalidate compatibility automatically, and reject the example value(s) if incompatible.\n\n##### Example Object Examples\n\nIn a model:\n\n```yaml\nschemas:\n  properties:\n    name:\n      type: string\n      examples:\n        name:\n          $ref: http://example.org/petapi-examples/openapi.json#/components/examples/name-example\n```\n\nIn a request body:\n\n```yaml\nrequestBody:\n  content:\n    'application/json':\n      schema:\n        $ref: '#/components/schemas/Address'\n      examples:\n        foo:\n          summary: A foo example\n          value: {\"foo\": \"bar\"}\n        bar:\n          summary: A bar example\n          value: {\"bar\": \"baz\"}\n    'application/xml':\n      examples:\n        xmlExample:\n          summary: This is an example in XML\n          externalValue: 'http://example.org/examples/address-example.xml'\n    'text/plain':\n      examples:\n        textExample:\n          summary: This is a text example\n          externalValue: 'http://foo.bar/examples/address-example.txt'\n```\n\nIn a parameter:\n\n```yaml\nparameters:\n  - name: 'zipCode'\n    in: 'query'\n    schema:\n      type: 'string'\n      format: 'zip-code'\n      examples:\n        zip-example:\n          $ref: '#/components/examples/zip-example'\n```\n\nIn a response:\n\n```yaml\nresponses:\n  '200':\n    description: your car appointment has been booked\n    content:\n      application/json:\n        schema:\n          $ref: '#/components/schemas/SuccessResponse'\n        examples:\n          confirmation-success:\n            $ref: '#/components/examples/confirmation-success'\n```\n\n\n#### Link Object\n\nThe `Link object` represents a possible design-time link for a response.\nThe presence of a link does not guarantee the caller's ability to successfully invoke it, rather it provides a known relationship and traversal mechanism between responses and other operations.\n\nUnlike _dynamic_ links (i.e. links provided **in** the response payload), the OAS linking mechanism does not require link information in the runtime response.\n\nFor computing links, and providing instructions to execute them, a [runtime expression](#runtime-expressions) is used for accessing values in an operation and using them as parameters while invoking the linked operation. \n\n##### Fixed Fields\n\nField Name  |  Type  | Description\n---|:---:|---\n<a name=\"linkOperationRef\"></a>operationRef | `string` | A relative or absolute reference to an OAS operation. This field is mutually exclusive of the `operationId` field, and MUST point to an [Operation Object](#operation-object). Relative `operationRef` values MAY be used to locate an existing [Operation Object](#operation-object) in the OpenAPI definition.\n<a name=\"linkOperationId\"></a>operationId  | `string` | The name of an _existing_, resolvable OAS operation, as defined with a unique `operationId`.  This field is mutually exclusive of the `operationRef` field. \n<a name=\"linkParameters\"></a>parameters   | Map[`string`, Any \\| [{expression}](#runtime-expressions)] | A map representing parameters to pass to an operation as specified with `operationId` or identified via `operationRef`. The key is the parameter name to be used, whereas the value can be a constant or an expression to be evaluated and passed to the linked operation.  The parameter name can be qualified using the [parameter location](#parameterIn) `[{in}.]{name}` for operations that use the same parameter name in different locations (e.g. path.id).\n<a name=\"linkRequestBody\"></a>requestBody | Any \\| [{expression}](#runtime-expressions) | A literal value or [{expression}](#runtime-expressions) to use as a request body when calling the target operation.\n<a name=\"linkDescription\"></a>description  | `string` | A description of the link. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"linkServer\"></a>server       | [Server Object](#server-object) | A server object to be used by the target operation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nA linked operation MUST be identified using either an `operationRef` or `operationId`.\nIn the case of an `operationId`, it MUST be unique and resolved in the scope of the OAS document.\nBecause of the potential for name clashes, the `operationRef` syntax is preferred\nfor specifications with external references.\n\n##### Examples\n\nComputing a link from a request operation where the `$request.path.id` is used to pass a request parameter to the linked operation.\n\n```yaml\npaths:\n  /users/{id}:\n    parameters:\n    - name: id\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n    get:\n      responses:\n        '200':\n          description: the user being returned\n          content:\n            application/json:\n              schema:\n                type: object\n                properties:\n                  uuid: # the unique user id\n                    type: string\n                    format: uuid\n          links:\n            address:\n              # the target link operationId\n              operationId: getUserAddress\n              parameters:\n                # get the `id` field from the request path parameter named `id`\n                userId: $request.path.id\n  # the path item of the linked operation\n  /users/{userid}/address:\n    parameters:\n    - name: userid\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n    # linked operation\n    get:\n      operationId: getUserAddress\n      responses:\n        '200':\n          description: the user's address\n```\n\nWhen a runtime expression fails to evaluate, no parameter value is passed to the target operation.\n\nValues from the response body can be used to drive a linked operation.\n\n```yaml\nlinks:\n  address:\n    operationId: getUserAddressByUUID\n    parameters:\n      # get the `uuid` field from the `uuid` field in the response body\n      userUuid: $response.body#/uuid\n```\n\nClients follow all links at their discretion.\nNeither permissions, nor the capability to make a successful call to that link, is guaranteed\nsolely by the existence of a relationship.\n\n\n##### OperationRef Examples\n\nAs references to `operationId` MAY NOT be possible (the `operationId` is an optional\nvalue), references MAY also be made through a relative `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: '#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nor an absolute `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: 'https://na2.gigantic-server.com/#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nNote that in the use of `operationRef`, the _escaped forward-slash_ is necessary when\nusing JSON references.\n\n\n##### Runtime Expressions\n\nRuntime expressions allow defining values based on information that will only be available within the HTTP message in an actual API call.\nThis mechanism is used by [Link Objects](#link-object) and [Callback Objects](#callback-object).\n\nThe runtime expression is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```\n      expression = ( \"$url\" | \"$method\" | \"$statusCode\" | \"$request.\" source | \"$response.\" source )\n      source = ( header-reference | query-reference | path-reference | body-reference ) \n      header-reference = \"header.\" token\n      query-reference = \"query.\" name \n      path-reference = \"path.\" name\n      body-reference = \"body\" [\"#\" fragment]\n      fragment = a JSON Pointer [RFC 6901](https://tools.ietf.org/html/rfc6901) \n      name = *( char )\n      char = as per RFC [7159](https://tools.ietf.org/html/rfc7159#section-7)\n      token = as per RFC [7230](https://tools.ietf.org/html/rfc7230#section-3.2.6)\n```\n\nThe `name` identifier is case-sensitive, whereas `token` is not.\n\nThe table below provides examples of runtime expressions and examples of their use in a value:\n\n##### Examples\n\nSource Location | example expression  | notes\n---|:---|:---|\nHTTP Method            | `$method`         | The allowable values for the `$method` will be those for the HTTP operation.\nRequested media type | `$request.header.accept`        | \nRequest parameter      | `$request.path.id`        | Request parameters MUST be declared in the `parameters` section of the parent operation or they cannot be evaluated. This includes request headers.\nRequest body property   | `$request.body#/user/uuid`   | In operations which accept payloads, references may be made to portions of the `requestBody` or the entire body.\nRequest URL            | `$url`            | \nResponse value         | `$response.body#/status`       |  In operations which return payloads, references may be made to portions of the response body or the entire body.\nResponse header        | `$response.header.Server` |  Single header values only are available\n\nRuntime expressions preserve the type of the referenced value.\nExpressions can be embedded into string values by surrounding the expression with `{}` curly braces.\n\n#### Header Object\n\nThe Header Object follows the structure of the [Parameter Object](#parameter-object) with the following changes:\n\n1. `name` MUST NOT be specified, it is given in the corresponding `headers` map.\n1. `in` MUST NOT be specified, it is implicitly in `header`.\n1. All traits that are affected by the location MUST be applicable to a location of `header` (for example, [`style`](#parameterStyle)).\n\n##### Header Object Example\n\nA simple header of type `integer`:\n\n```json\n{\n  \"description\": \"The number of allowed requests in the current period\",\n  \"schema\": {\n    \"type\": \"integer\"\n  }\n}\n```\n\n```yaml\ndescription: The number of allowed requests in the current period\nschema:\n  type: integer\n```\n\n#### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nIt is not mandatory to have a Tag Object per tag defined in the Operation Object instances.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"tagName\"></a>name | `string` | **REQUIRED**. The name of the tag.\n<a name=\"tagDescription\"></a>description | `string` | A short description for the tag. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"tagExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Tag Object Example\n\n```json\n{\n\t\"name\": \"pet\",\n\t\"description\": \"Pets operations\"\n}\n```\n\n```yaml\nname: pet\ndescription: Pets operations\n```\n\n\n#### Reference Object\n\nA simple object to allow referencing other components in the specification, internally and externally.\n\nThe Reference Object is defined by [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03) and follows the same structure, behavior and rules.\n\nFor this specification, reference resolution is accomplished as defined by the JSON Reference specification and not by the JSON Schema specification.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"referenceRef\"></a>$ref | `string` | **REQUIRED**. The reference string.\n\nThis object cannot be extended with additional properties and any properties added SHALL be ignored.\n\n##### Reference Object Example\n\n```json\n{\n\t\"$ref\": \"#/components/schemas/Pet\"\n}\n```\n\n```yaml\n$ref: '#/components/schemas/Pet'\n```\n\n##### Relative Schema Document Example\n```json\n{\n  \"$ref\": \"Pet.json\"\n}\n```\n\n```yaml\n$ref: Pet.yaml\n```\n\n##### Relative Documents With Embedded Schema Example\n```json\n{\n  \"$ref\": \"definitions.json#/Pet\"\n}\n```\n\n```yaml\n$ref: definitions.yaml#/Pet\n```\n\n#### Schema Object\n\nThe Schema Object allows the definition of input and output data types.\nThese types can be objects, but also primitives and arrays.\nThis object is an extended subset of the [JSON Schema Specification Wright Draft 00](http://json-schema.org/).\n\nFor more information about the properties, see [JSON Schema Core](https://tools.ietf.org/html/draft-wright-json-schema-00) and [JSON Schema Validation](https://tools.ietf.org/html/draft-wright-json-schema-validation-00).\nUnless stated otherwise, the property definitions follow the JSON Schema.\n\n##### Properties\n\nThe following properties are taken directly from the JSON Schema definition and follow the same specifications:\n\n- title\n- multipleOf\n- maximum\n- exclusiveMaximum\n- minimum\n- exclusiveMinimum\n- maxLength\n- minLength\n- pattern (This string SHOULD be a valid regular expression, according to the [ECMA 262 regular expression](https://www.ecma-international.org/ecma-262/5.1/#sec-7.8.5) dialect)\n- maxItems\n- minItems\n- uniqueItems\n- maxProperties\n- minProperties\n- required\n- enum\n\nThe following properties are taken from the JSON Schema definition but their definitions were adjusted to the OpenAPI Specification.\n- type - Value MUST be a string. Multiple types via an array are not supported.\n- allOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- oneOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- anyOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- not - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- items - Value MUST be an object and not an array. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema. `items` MUST be present if the `type` is `array`.\n- properties - Property definitions MUST be a [Schema Object](#schema-object) and not a standard JSON Schema (inline or referenced).\n- additionalProperties - Value can be boolean or object. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema. Consistent with JSON Schema, `additionalProperties` defaults to `true`.\n- description - [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n- format - See [Data Type Formats](#dataTypeFormat) for further details. While relying on JSON Schema's defined formats, the OAS offers a few additional predefined formats.\n- default - The default value represents what would be assumed by the consumer of the input as the value of the schema if one is not provided. Unlike JSON Schema, the value MUST conform to the defined type for the Schema Object defined at the same level. For example, if `type` is `string`, then `default` can be `\"foo\"` but cannot be `1`.\n\nAlternatively, any time a Schema Object can be used, a [Reference Object](#reference-object) can be used in its place. This allows referencing definitions instead of defining them inline.\n\nAdditional properties defined by the JSON Schema specification that are not mentioned here are strictly unsupported.\n\nOther than the JSON Schema subset fields, the following fields MAY be used for further schema documentation:\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"schemaNullable\"></a>nullable | `boolean` | Allows sending a `null` value for the defined schema. Default value is `false`.\n<a name=\"schemaDiscriminator\"></a>discriminator | [Discriminator Object](#discriminator-object) | Adds support for polymorphism. The discriminator is an object name that is used to differentiate between other schemas which may satisfy the payload description. See [Composition and Inheritance](#composition-and-inheritance-polymorphism) for more details.\n<a name=\"schemaReadOnly\"></a>readOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"read only\". This means that it MAY be sent as part of a response but SHOULD NOT be sent as part of the request. If the property is marked as `readOnly` being `true` and is in the `required` list, the `required` will take effect on the response only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`.\n<a name=\"schemaWriteOnly\"></a>writeOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"write only\". Therefore, it MAY be sent as part of a request but SHOULD NOT be sent as part of the response. If the property is marked as `writeOnly` being `true` and is in the `required` list, the `required` will take effect on the request only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`.\n<a name=\"schemaXml\"></a>xml | [XML Object](#xml-object) | This MAY be used only on properties schemas. It has no effect on root schemas. Adds additional metadata to describe the XML representation of this property.\n<a name=\"schemaExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema.\n<a name=\"schemaExample\"></a>example | Any | A free-form property to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary.\n<a name=\"schemaDeprecated\"></a> deprecated | `boolean` | Specifies that a schema is deprecated and SHOULD be transitioned out of usage. Default value is `false`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n###### Composition and Inheritance (Polymorphism)\n\nThe OpenAPI Specification allows combining and extending model definitions using the `allOf` property of JSON Schema, in effect offering model composition.\n`allOf` takes an array of object definitions that are validated *independently* but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models.\nTo support polymorphism, the OpenAPI Specification adds the `discriminator` field.\nWhen used, the `discriminator` will be the name of the property that decides which schema definition validates the structure of the model.\nAs such, the `discriminator` field MUST be a required field.\nThere are two ways to define the value of a discriminator for an inheriting instance.\n- Use the schema name.\n- Override the schema name by overriding the property with a new value. If a new value exists, this takes precedence over the schema name.\nAs such, inline schema definitions, which do not have a given id, *cannot* be used in polymorphism.\n\n###### XML Modeling\n\nThe [xml](#schemaXml) property allows extra definitions when translating the JSON definition to XML.\nThe [XML Object](#xml-object) contains additional information about the available options.\n\n##### Schema Object Examples\n\n###### Primitive Sample\n\n```json\n{\n  \"type\": \"string\",\n  \"format\": \"email\"\n}\n```\n\n```yaml\ntype: string\nformat: email\n```\n\n###### Simple Model\n\n```json\n{\n  \"type\": \"object\",\n  \"required\": [\n    \"name\"\n  ],\n  \"properties\": {\n    \"name\": {\n      \"type\": \"string\"\n    },\n    \"address\": {\n      \"$ref\": \"#/components/schemas/Address\"\n    },\n    \"age\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\",\n      \"minimum\": 0\n    }\n  }\n}\n```\n\n```yaml\ntype: object\nrequired:\n- name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/components/schemas/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n###### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"$ref\": \"#/components/schemas/ComplexModel\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/components/schemas/ComplexModel'\n```\n\n###### Model with Example\n\n```json\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"name\": {\n      \"type\": \"string\"\n    }\n  },\n  \"required\": [\n    \"name\"\n  ],\n  \"example\": {\n    \"name\": \"Puma\",\n    \"id\": 1\n  }\n}\n```\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n- name\nexample:\n  name: Puma\n  id: 1\n```\n\n###### Models with Composition\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"ErrorModel\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"message\",\n          \"code\"\n        ],\n        \"properties\": {\n          \"message\": {\n            \"type\": \"string\"\n          },\n          \"code\": {\n            \"type\": \"integer\",\n            \"minimum\": 100,\n            \"maximum\": 600\n          }\n        }\n      },\n      \"ExtendedErrorModel\": {\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/ErrorModel\"\n          },\n          {\n            \"type\": \"object\",\n            \"required\": [\n              \"rootCause\"\n            ],\n            \"properties\": {\n              \"rootCause\": {\n                \"type\": \"string\"\n              }\n            }\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    ErrorModel:\n      type: object\n      required:\n      - message\n      - code\n      properties:\n        message:\n          type: string\n        code:\n          type: integer\n          minimum: 100\n          maximum: 600\n    ExtendedErrorModel:\n      allOf:\n      - $ref: '#/components/schemas/ErrorModel'\n      - type: object\n        required:\n        - rootCause\n        properties:\n          rootCause:\n            type: string\n```\n\n###### Models with Polymorphism Support\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"Pet\": {\n        \"type\": \"object\",\n        \"discriminator\": {\n          \"propertyName\": \"petType\"\n        },\n        \"properties\": {\n          \"name\": {\n            \"type\": \"string\"\n          },\n          \"petType\": {\n            \"type\": \"string\"\n          }\n        },\n        \"required\": [\n          \"name\",\n          \"petType\"\n        ]\n      },\n      \"Cat\": {\n        \"description\": \"A representation of a cat. Note that `Cat` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"huntingSkill\": {\n                \"type\": \"string\",\n                \"description\": \"The measured skill for hunting\",\n                \"default\": \"lazy\",\n                \"enum\": [\n                  \"clueless\",\n                  \"lazy\",\n                  \"adventurous\",\n                  \"aggressive\"\n                ]\n              }\n            },\n            \"required\": [\n              \"huntingSkill\"\n            ]\n          }\n        ]\n      },\n      \"Dog\": {\n        \"description\": \"A representation of a dog. Note that `Dog` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"packSize\": {\n                \"type\": \"integer\",\n                \"format\": \"int32\",\n                \"description\": \"the size of the pack the dog is from\",\n                \"default\": 0,\n                \"minimum\": 0\n              }\n            },\n            \"required\": [\n              \"packSize\"\n            ]\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n      properties:\n        name:\n          type: string\n        petType:\n          type: string\n      required:\n      - name\n      - petType\n    Cat:  ## \"Cat\" will be used as the discriminator value\n      description: A representation of a cat\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          huntingSkill:\n            type: string\n            description: The measured skill for hunting\n            enum:\n            - clueless\n            - lazy\n            - adventurous\n            - aggressive\n        required:\n        - huntingSkill\n    Dog:  ## \"Dog\" will be used as the discriminator value\n      description: A representation of a dog\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          packSize:\n            type: integer\n            format: int32\n            description: the size of the pack the dog is from\n            default: 0\n            minimum: 0\n        required:\n        - packSize\n```\n\n#### Discriminator Object\n\nWhen request bodies or response payloads may be one of a number of different schemas, a `discriminator` object can be used to aid in serialization, deserialization, and validation.  The discriminator is a specific object in a schema which is used to inform the consumer of the specification of an alternative schema based on the value associated with it.\n\nWhen using the discriminator, _inline_ schemas will not be considered.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"propertyName\"></a>propertyName | `string` | **REQUIRED**. The name of the property in the payload that will hold the discriminator value.\n<a name=\"discriminatorMapping\"></a> mapping | Map[`string`, `string`] | An object to hold mappings between payload values and schema names or references.\n\nThe discriminator object is legal only when using one of the composite keywords `oneOf`, `anyOf`, `allOf`.\n\nIn OAS 3.0, a response payload MAY be described to be exactly one of any number of types:\n\n```yaml\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n```\n\nwhich means the payload _MUST_, by validation, match exactly one of the schemas described by `Cat`, `Dog`, or `Lizard`.  In this case, a discriminator MAY act as a \"hint\" to shortcut validation and selection of the matching schema which may be a costly operation, depending on the complexity of the schema. We can then describe exactly which field tells us which schema to use:\n\n\n```yaml\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  discriminator:\n    propertyName: petType\n```\n\nThe expectation now is that a property with name `petType` _MUST_ be present in the response payload, and the value will correspond to the name of a schema defined in the OAS document.  Thus the response payload:\n\n```json\n{\n  \"id\": 12345,\n  \"petType\": \"Cat\"\n}\n```\n\nWill indicate that the `Cat` schema be used in conjunction with this payload.\n\nIn scenarios where the value of the discriminator field does not match the schema name or implicit mapping is not possible, an optional `mapping` definition MAY be used:\n\n```yaml\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  - $ref: 'https://gigantic-server.com/schemas/Monster/schema.json'\n  discriminator:\n    propertyName: petType\n    mapping:\n      dog: '#/components/schemas/Dog'\n      monster: 'https://gigantic-server.com/schemas/Monster/schema.json'\n```\n\nHere the discriminator _value_ of `dog` will map to the schema `#/components/schemas/Dog`, rather than the default (implicit) value of `Dog`.  If the discriminator _value_ does not match an implicit or explicit mapping, no schema can be determined and validation SHOULD fail. Mapping keys MUST be string values, but tooling MAY convert response values to strings for comparison.\n\nWhen used in conjunction with the `anyOf` construct, the use of the discriminator can avoid ambiguity where multiple schemas may satisfy a single payload.\n\nIn both the `oneOf` and `anyOf` use cases, all possible schemas MUST be listed explicitly.  To avoid redundancy, the discriminator MAY be added to a parent schema definition, and all schemas comprising the parent schema in an `allOf` construct may be used as an alternate schema.\n\nFor example:\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n      - petType\n      properties:\n        petType:\n          type: string\n      discriminator:\n        propertyName: petType\n        mapping:\n          dog: Dog\n    Cat:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Cat`\n        properties:\n          name:\n            type: string\n    Dog:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Dog`\n        properties:\n          bark:\n            type: string\n    Lizard:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Lizard`\n        properties:\n          lovesRocks:\n            type: boolean\n```\n\na payload like this:\n\n```json\n{\n  \"petType\": \"Cat\",\n  \"name\": \"misty\"\n}\n```\n\nwill indicate that the `Cat` schema be used.  Likewise this schema:\n\n```json\n{\n  \"petType\": \"dog\",\n  \"bark\": \"soft\"\n}\n```\n\nwill map to `Dog` because of the definition in the `mappings` element.\n\n\n#### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\n\nWhen using arrays, XML element names are *not* inferred (for singular/plural forms) and the `name` property SHOULD be used to add that information.\nSee examples for expected behavior.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"xmlName\"></a>name | `string` | Replaces the name of the element/attribute used for the described schema property. When defined within `items`, it will affect the name of the individual XML elements within the list. When defined alongside `type` being `array` (outside the `items`), it will affect the wrapping element and only if `wrapped` is `true`. If `wrapped` is `false`, it will be ignored.\n<a name=\"xmlNamespace\"></a>namespace | `string` | The URI of the namespace definition. Value MUST be in the form of an absolute URI.\n<a name=\"xmlPrefix\"></a>prefix | `string` | The prefix to be used for the [name](#xmlName).\n<a name=\"xmlAttribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`.\n<a name=\"xmlWrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `array` (outside the `items`).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### XML Object Examples\n\nThe examples of the XML object definitions are included inside a property definition of a [Schema Object](#schema-object) with a sample of the XML representation of it.\n\n###### No XML Element\n\nBasic string property:\n\n```json\n{\n    \"animals\": {\n        \"type\": \"string\"\n    }\n}\n```\n\n```yaml\nanimals:\n  type: string\n```\n\n```xml\n<animals>...</animals>\n```\n\nBasic string array property ([`wrapped`](#xmlWrapped) is `false` by default):\n\n```json\n{\n    \"animals\": {\n        \"type\": \"array\",\n        \"items\": {\n            \"type\": \"string\"\n        }\n    }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n```\n\n```xml\n<animals>...</animals>\n<animals>...</animals>\n<animals>...</animals>\n```\n\n###### XML Name Replacement\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\",\n    \"xml\": {\n      \"name\": \"animal\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n  xml:\n    name: animal\n```\n\n```xml\n<animal>...</animal>\n```\n\n\n###### XML Attribute, Prefix and Namespace\n\nIn this example, a full model definition is shown.\n\n```json\n{\n  \"Person\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\",\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"name\": {\n        \"type\": \"string\",\n        \"xml\": {\n          \"namespace\": \"http://example.com/schema/sample\",\n          \"prefix\": \"sample\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nPerson:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int32\n      xml:\n        attribute: true\n    name:\n      type: string\n      xml:\n        namespace: http://example.com/schema/sample\n        prefix: sample\n```\n\n```xml\n<Person id=\"123\">\n    <sample:name xmlns:sample=\"http://example.com/schema/sample\">example</sample:name>\n</Person>\n```\n\n###### XML Arrays\n\nChanging the element names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nThe external `name` property has no effect on the XML:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nEven when the array is wrapped, if a name is not explicitly defined, the same name will be used both internally and externally:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animals>value</animals>\n  <animals>value</animals>\n</animals>\n```\n\nTo overcome the naming problem in the example above, the following definition can be used:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animal>value</animal>\n  <animal>value</animal>\n</animals>\n```\n\nAffecting both internal and external names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <animal>value</animal>\n  <animal>value</animal>\n</aliens>\n```\n\nIf we change the external element but not the internal ones:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <aliens>value</aliens>\n  <aliens>value</aliens>\n</aliens>\n```\n\n#### Security Scheme Object\n\nDefines a security scheme that can be used by the operations.\nSupported schemes are HTTP authentication, an API key (either as a header, a cookie parameter or as a query parameter), OAuth2's common flows (implicit, password, application and access code) as defined in [RFC6749](https://tools.ietf.org/html/rfc6749), and [OpenID Connect Discovery](https://tools.ietf.org/html/draft-ietf-oauth-discovery-06).\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"securitySchemeType\"></a>type | `string` | Any | **REQUIRED**. The type of the security scheme. Valid values are `\"apiKey\"`, `\"http\"`, `\"oauth2\"`, `\"openIdConnect\"`.\n<a name=\"securitySchemeDescription\"></a>description | `string` | Any | A short description for security scheme. [CommonMark syntax](http://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"securitySchemeName\"></a>name | `string` | `apiKey` | **REQUIRED**. The name of the header, query or cookie parameter to be used.\n<a name=\"securitySchemeIn\"></a>in | `string` | `apiKey` | **REQUIRED**. The location of the API key. Valid values are `\"query\"`, `\"header\"` or `\"cookie\"`.\n<a name=\"securitySchemeScheme\"></a>scheme | `string` | `http` | **REQUIRED**. The name of the HTTP Authorization scheme to be used in the [Authorization header as defined in RFC7235](https://tools.ietf.org/html/rfc7235#section-5.1).\n<a name=\"securitySchemeBearerFormat\"></a>bearerFormat | `string` | `http` (`\"bearer\"`) | A hint to the client to identify how the bearer token is formatted.  Bearer tokens are usually generated by an authorization server, so this information is primarily for documentation purposes.\n<a name=\"securitySchemeFlows\"></a>flows | [OAuth Flows Object](#oauth-flows-object) | `oauth2` | **REQUIRED**. An object containing configuration information for the flow types supported.\n<a name=\"securitySchemeOpenIdConnectUrl\"></a>openIdConnectUrl | `string` | `openIdConnect` | **REQUIRED**. OpenId Connect URL to discover OAuth2 configuration values. This MUST be in the form of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Security Scheme Object Example\n\n###### Basic Authentication Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"basic\"\n}\n```\n\n```yaml\ntype: http\nscheme: basic\n```\n\n###### API Key Sample\n\n```json\n{\n  \"type\": \"apiKey\",\n  \"name\": \"api_key\",\n  \"in\": \"header\"\n}\n```\n\n```yaml\ntype: apiKey\nname: api_key\nin: header\n```\n\n###### JWT Bearer Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"bearer\",\n  \"bearerFormat\": \"JWT\",\n}\n```\n\n```yaml\ntype: http\nscheme: bearer\nbearerFormat: JWT\n```\n\n###### Implicit OAuth2 Sample\n\n```json\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### OAuth Flows Object\n\nAllows configuration of the supported OAuth Flows.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"oauthFlowsImplicit\"></a>implicit| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Implicit flow\n<a name=\"oauthFlowsPassword\"></a>password| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Resource Owner Password flow\n<a name=\"oauthFlowsClientCredentials\"></a>clientCredentials| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Client Credentials flow.  Previously called `application` in OpenAPI 2.0.\n<a name=\"oauthFlowsAuthorizationCode\"></a>authorizationCode| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Authorization Code flow.  Previously called `accessCode` in OpenAPI 2.0.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### OAuth Flow Object\n\nConfiguration details for a supported OAuth Flow\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"oauthFlowAuthorizationUrl\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"authorizationCode\"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL.\n<a name=\"oauthFlowTokenUrl\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"clientCredentials\"`, `\"authorizationCode\"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL.\n<a name=\"oauthFlowRefreshUrl\"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL.\n<a name=\"oauthFlowScopes\"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### OAuth Flow Object Examples\n\n```JSON\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    },\n    \"authorizationCode\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"tokenUrl\": \"https://example.com/api/oauth/token\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n  authorizationCode:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    tokenUrl: https://example.com/api/oauth/token\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n\n#### Security Requirement Object\n\nLists the required security schemes to execute this operation.\nThe name used for each property MUST correspond to a security scheme declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object).\n\nSecurity Requirement Objects that contain multiple schemes require that all schemes MUST be satisfied for a request to be authorized.\nThis enables support for scenarios where multiple query parameters or HTTP headers are required to convey security information.\n\nWhen a list of Security Requirement Objects is defined on the [OpenAPI Object](#openapi-object) or [Operation Object](#operation-object), only one of the Security Requirement Objects in the list needs to be satisfied to authorize the request.\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"securityRequirementsName\"></a>{name} | [`string`] | Each name MUST correspond to a security scheme which is declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object). If the security scheme is of type `\"oauth2\"` or `\"openIdConnect\"`, then the value is a list of scope names required for the execution. For other security scheme types, the array MUST be empty.\n\n##### Security Requirement Object Examples\n\n###### Non-OAuth2 Security Requirement\n\n```json\n{\n  \"api_key\": []\n}\n```\n\n```yaml\napi_key: []\n```\n\n###### OAuth2 Security Requirement\n\n```json\n{\n  \"petstore_auth\": [\n    \"write:pets\",\n    \"read:pets\"\n  ]\n}\n```\n\n```yaml\npetstore_auth:\n- write:pets\n- read:pets\n```\n\n### Specification Extensions\n\nWhile the OpenAPI Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are implemented as patterned fields that are always prefixed by `\"x-\"`.\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"infoExtensions\"></a>^x- | Any | Allows extensions to the OpenAPI Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. Can have any valid JSON format value.\n\nThe extensions may or may not be supported by the available tooling, but those may be extended as well to add requested support (if tools are internal or open-sourced).\n\n### Security Filtering\n\nSome objects in the OpenAPI Specification MAY be declared and remain empty, or be completely removed, even though they are inherently the core of the API documentation.\n\nThe reasoning is to allow an additional layer of access control over the documentation.\nWhile not part of the specification itself, certain libraries MAY choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples of this:\n\n1. The [Paths Object](#paths-object) MAY be empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They'd still have access to the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) MAY be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different than hiding the path itself from the [Paths Object](#paths-object), so the user will not be aware of its existence. This allows the documentation provider to finely control what the viewer can see.\n\n## Appendix A: Revision History\n\nVersion   | Date       | Notes\n---       | ---        | ---\n3.0.2     | 2018-10-08 | Patch release of the OpenAPI Specification 3.0.2\n3.0.1     | 2017-12-06 | Patch release of the OpenAPI Specification 3.0.1\n3.0.0     | 2017-07-26 | Release of the OpenAPI Specification 3.0.0\n3.0.0-rc2 | 2017-06-16 | rc2 of the 3.0 specification\n3.0.0-rc1 | 2017-04-27 | rc1 of the 3.0 specification\n3.0.0-rc0 | 2017-02-28 | Implementer's Draft of the 3.0 specification\n2.0       | 2015-12-31 | Donation of Swagger 2.0 to the Open API Initiative\n2.0       | 2014-09-08 | Release of Swagger 2.0\n1.2       | 2014-03-14 | Initial release of the formal document.\n1.1       | 2012-08-22 | Release of Swagger 1.1\n1.0       | 2011-08-10 | First release of the Swagger Specification\n"
  },
  {
    "path": "versions/3.0.3-editors.md",
    "content": "## Active\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Mike Ralphson [@MikeRalphson](https://github.com/MikeRalphson)\n* Ron Ratovsky [@webron](https://github.com/webron)\n* Uri Sarid [@usarid](https://github.com/usarid)\n\n## Emeritus\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "versions/3.0.3.md",
    "content": "# OpenAPI Specification\n\n#### Version 3.0.3\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"NOT RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [BCP 14](https://tools.ietf.org/html/bcp14) [RFC2119](https://tools.ietf.org/html/rfc2119) [RFC8174](https://tools.ietf.org/html/rfc8174) when, and only when, they appear in all capitals, as shown here.\n\nThis document is licensed under [The Apache License, Version 2.0](https://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introduction\n\nThe OpenAPI Specification (OAS) defines a standard, language-agnostic interface to RESTful APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined, a consumer can understand and interact with the remote service with a minimal amount of implementation logic.\n\nAn OpenAPI definition can then be used by documentation generation tools to display the API, code generation tools to generate servers and clients in various programming languages, testing tools, and many other use cases.\n\n## Table of Contents\n<!-- TOC depthFrom:1 depthTo:3 withLinks:1 updateOnSave:1 orderedList:0 -->\n\n- [Definitions](#definitions)\n\t- [OpenAPI Document](#openapi-document)\n\t- [Path Templating](#path-templating)\n\t- [Media Types](#media-types)\n\t- [HTTP Status Codes](#http-status-codes)\n- [Specification](#specification)\n\t- [Versions](#versions)\n\t- [Format](#format)\n\t- [Document Structure](#document-structure)\n\t- [Data Types](#data-types)\n\t- [Rich Text Formatting](#rich-text-formatting)\n\t- [Relative References In URLs](#relative-references-in-urls)\n\t- [Schema](#schema)\n\t\t- [OpenAPI Object](#openapi-object)\n\t\t- [Info Object](#info-object)\n\t\t- [Contact Object](#contact-object)\n\t\t- [License Object](#license-object)\n\t\t- [Server Object](#server-object)\n\t\t- [Server Variable Object](#server-variable-object)\n\t\t- [Components Object](#components-object)\n\t\t- [Paths Object](#paths-object)\n\t\t- [Path Item Object](#path-item-object)\n\t\t- [Operation Object](#operation-object)\n\t\t- [External Documentation Object](#external-documentation-object)\n\t\t- [Parameter Object](#parameter-object)\n\t\t- [Request Body Object](#request-body-object)\n\t\t- [Media Type Object](#media-type-object)\n\t\t- [Encoding Object](#encoding-object)\n\t\t- [Responses Object](#responses-object)\n\t\t- [Response Object](#response-object)\n\t\t- [Callback Object](#callback-object)\n\t\t- [Example Object](#example-object)\n\t\t- [Link Object](#link-object)\n\t\t- [Header Object](#header-object)\n\t\t- [Tag Object](#tag-object)\n\t\t- [Reference Object](#reference-object)\n\t\t- [Schema Object](#schema-object)\n\t\t- [Discriminator Object](#discriminator-object)\n\t\t- [XML Object](#xml-object)\n\t\t- [Security Scheme Object](#security-scheme-object)\n\t\t- [OAuth Flows Object](#oauth-flows-object)\n\t\t- [OAuth Flow Object](#oauth-flow-object)\n\t\t- [Security Requirement Object](#security-requirement-object)\n\t- [Specification Extensions](#specification-extensions)\n\t- [Security Filtering](#security-filtering)\n- [Appendix A: Revision History](#appendix-a-revision-history)\n\t\n\n<!-- /TOC -->\n\n## Definitions\n\n##### OpenAPI Document\nA document (or set of documents) that defines or describes an API. An OpenAPI definition uses and conforms to the OpenAPI Specification.\n\n##### Path Templating\nPath templating refers to the usage of template expressions, delimited by curly braces ({}), to mark a section of a URL path as replaceable using path parameters.\n\nEach template expression in the path MUST correspond to a path parameter that is included in the [Path Item](#path-item-object) itself and/or in each of the Path Item's [Operations](#operation-object).\n\n##### Media Types\nMedia type definitions are spread across several resources.\nThe media type definitions SHOULD be in compliance with [RFC6838](https://tools.ietf.org/html/rfc6838).\n\nSome examples of possible media type definitions:\n```\n  text/plain; charset=utf-8\n  application/json\n  application/vnd.github+json\n  application/vnd.github.v3+json\n  application/vnd.github.v3.raw+json\n  application/vnd.github.v3.text+json\n  application/vnd.github.v3.html+json\n  application/vnd.github.v3.full+json\n  application/vnd.github.v3.diff\n  application/vnd.github.v3.patch\n```\n##### HTTP Status Codes\nThe HTTP Status Codes are used to indicate the status of the executed operation.\nThe available status codes are defined by [RFC7231](https://tools.ietf.org/html/rfc7231#section-6) and registered status codes are listed in the [IANA Status Code Registry](https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n## Specification\n\n### Versions\n\nThe OpenAPI Specification is versioned using [Semantic Versioning 2.0.0](https://semver.org/spec/v2.0.0.html) (semver) and follows the semver specification.\n\nThe `major`.`minor` portion of the semver (for example `3.0`) SHALL designate the OAS feature set. Typically, *`.patch`* versions address errors in this document, not the feature set. Tooling which supports OAS 3.0 SHOULD be compatible with all OAS 3.0.\\* versions. The patch version SHOULD NOT be considered by tooling, making no distinction between `3.0.0` and `3.0.1` for example.\n\nEach new minor version of the OpenAPI Specification SHALL allow any OpenAPI document that is valid against any previous minor version of the Specification, within the same major version, to be updated to the new Specification version with equivalent semantics. Such an update MUST only require changing the `openapi` property to the new minor version.\n\nFor example, a valid OpenAPI 3.0.2 document, upon changing its `openapi` property to `3.1.0`, SHALL be a valid OpenAPI 3.1.0 document, semantically equivalent to the original OpenAPI 3.0.2 document. New minor versions of the OpenAPI Specification MUST be written to ensure this form of backward compatibility.\n\nAn OpenAPI document compatible with OAS 3.\\*.\\* contains a required [`openapi`](#oasVersion) field which designates the semantic version of the OAS that it uses. (OAS 2.0 documents contain a top-level version field named [`swagger`](https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#swaggerObject) and value `\"2.0\"`.)\n\n### Format\n\nAn OpenAPI document that conforms to the OpenAPI Specification is itself a JSON object, which may be represented either in JSON or YAML format.\n\nFor example, if a field has an array value, the JSON array representation will be used:\n\n```json\n{\n   \"field\": [ 1, 2, 3 ]\n}\n```\nAll field names in the specification are **case sensitive**.\nThis includes all fields that are used as keys in a map, except where explicitly noted that keys are **case insensitive**.\n\nThe schema exposes two types of fields: Fixed fields, which have a declared name, and Patterned fields, which declare a regex pattern for the field name.\n\nPatterned fields MUST have unique names within the containing object.\n\nIn order to preserve the ability to round-trip between YAML and JSON formats, YAML version [1.2](https://yaml.org/spec/1.2/spec.html) is RECOMMENDED along with some additional constraints:\n\n- Tags MUST be limited to those allowed by the [JSON Schema ruleset](https://yaml.org/spec/1.2/spec.html#id2803231).\n- Keys used in YAML maps MUST be limited to a scalar string, as defined by the [YAML Failsafe schema ruleset](https://yaml.org/spec/1.2/spec.html#id2802346).\n\n**Note:** While APIs may be defined by OpenAPI documents in either YAML or JSON format, the API request and response bodies and other content are not required to be JSON or YAML.\n\n### Document Structure\n\nAn OpenAPI document MAY be made up of a single document or be divided into multiple, connected parts at the discretion of the user. In the latter case, `$ref` fields MUST be used in the specification to reference those parts as follows from the [JSON Schema](https://json-schema.org) definitions.\n\nIt is RECOMMENDED that the root OpenAPI document be named: `openapi.json` or `openapi.yaml`.\n\n### Data Types\n\nPrimitive data types in the OAS are based on the types supported by the [JSON Schema Specification Wright Draft 00](https://tools.ietf.org/html/draft-wright-json-schema-00#section-4.2).\nNote that `integer` as a type is also supported and is defined as a JSON number without a fraction or exponent part.\n`null` is not supported as a type (see [`nullable`](#schemaNullable) for an alternative solution).\nModels are defined using the [Schema Object](#schema-object), which is an extended subset of JSON Schema Specification Wright Draft 00.\n\n<a name=\"dataTypeFormat\"></a>Primitives have an optional modifier property: `format`.\nOAS uses several known formats to define in fine detail the data type being used.\nHowever, to support documentation needs, the `format` property is an open `string`-valued property, and can have any value.\nFormats such as `\"email\"`, `\"uuid\"`, and so on, MAY be used even though undefined by this specification.\nTypes that are not accompanied by a `format` property follow the type definition in the JSON Schema. Tools that do not recognize a specific `format` MAY default back to the `type` alone, as if the `format` is not specified.\n\nThe formats defined by the OAS are:\n\n[`type`](#data-types) | [`format`](#dataTypeFormat) | Comments\n------ | -------- | --------\n`integer` | `int32` | signed 32 bits\n`integer` | `int64` | signed 64 bits (a.k.a long)\n`number` | `float` | |\n`number` | `double` | |\n`string` | | |\n`string` | `byte` | base64 encoded characters\n`string` | `binary` | any sequence of octets\n`boolean` | | |\n`string` | `date` | As defined by `full-date` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\n`string` | `date-time` | As defined by `date-time` - [RFC3339](https://datatracker.ietf.org/doc/html/rfc3339#section-5.6)\n`string` | `password` | A hint to UIs to obscure input.\n\n\n### Rich Text Formatting\nThroughout the specification `description` fields are noted as supporting CommonMark markdown formatting.\nWhere OpenAPI tooling renders rich text it MUST support, at a minimum, markdown syntax as described by [CommonMark 0.27](https://spec.commonmark.org/0.27/). Tooling MAY choose to ignore some CommonMark features to address security concerns.\n\n### Relative References in URLs\n\nUnless specified otherwise, all properties that are URLs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\nRelative references are resolved using the URLs defined in the [`Server Object`](#server-object) as a Base URI.\n\nRelative references used in `$ref` are processed as per [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03), using the URL of the current document as the base URI. See also the [Reference Object](#reference-object).\n\n### Schema\n\nIn the following description, if a field is not explicitly **REQUIRED** or described with a MUST or SHALL, it can be considered OPTIONAL.\n\n#### OpenAPI Object\n\nThis is the root document object of the [OpenAPI document](#openapi-document).\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"oasVersion\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [semantic version number](https://semver.org/spec/v2.0.0.html) of the [OpenAPI Specification version](#versions) that the OpenAPI document uses. The `openapi` field SHOULD be used by tooling specifications and clients to interpret the OpenAPI document. This is *not* related to the API [`info.version`](#infoVersion) string.\n<a name=\"oasInfo\"></a>info | [Info Object](#info-object) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required.\n<a name=\"oasServers\"></a>servers | [[Server Object](#server-object)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` property is not provided, or is an empty array, the default value would be a [Server Object](#server-object) with a [url](#serverUrl) value of `/`.\n<a name=\"oasPaths\"></a>paths | [Paths Object](#paths-object) | **REQUIRED**. The available paths and operations for the API.\n<a name=\"oasComponents\"></a>components | [Components Object](#components-object) | An element to hold various schemas for the specification.\n<a name=\"oasSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. Individual operations can override this definition. To make security optional, an empty security requirement (`{}`) can be included in the array.\n<a name=\"oasTags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the specification with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique.\n<a name=\"oasExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Info Object\n\nThe object provides metadata about the API.\nThe metadata MAY be used by the clients if needed, and MAY be presented in editing or documentation generation tools for convenience.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"infoTitle\"></a>title | `string` | **REQUIRED**. The title of the API.\n<a name=\"infoDescription\"></a>description | `string` | A short description of the API. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"infoTermsOfService\"></a>termsOfService | `string` | A URL to the Terms of Service for the API. MUST be in the format of a URL.\n<a name=\"infoContact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API.\n<a name=\"infoLicense\"></a>license | [License Object](#license-object) | The license information for the exposed API.\n<a name=\"infoVersion\"></a>version | `string` | **REQUIRED**. The version of the OpenAPI document (which is distinct from the [OpenAPI Specification version](#oasVersion) or the API implementation version).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Info Object Example\n\n```json\n{\n  \"title\": \"Sample Pet Store App\",\n  \"description\": \"This is a sample server for a pet store.\",\n  \"termsOfService\": \"http://example.com/terms/\",\n  \"contact\": {\n    \"name\": \"API Support\",\n    \"url\": \"http://www.example.com/support\",\n    \"email\": \"support@example.com\"\n  },\n  \"license\": {\n    \"name\": \"Apache 2.0\",\n    \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n  },\n  \"version\": \"1.0.1\"\n}\n```\n\n```yaml\ntitle: Sample Pet Store App\ndescription: This is a sample server for a pet store.\ntermsOfService: http://example.com/terms/\ncontact:\n  name: API Support\n  url: http://www.example.com/support\n  email: support@example.com\nlicense:\n  name: Apache 2.0\n  url: https://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n#### Contact Object\n\nContact information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"contactName\"></a>name | `string` | The identifying name of the contact person/organization.\n<a name=\"contactUrl\"></a>url | `string` | The URL pointing to the contact information. MUST be in the format of a URL.\n<a name=\"contactEmail\"></a>email | `string` | The email address of the contact person/organization. MUST be in the format of an email address.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Contact Object Example\n\n```json\n{\n  \"name\": \"API Support\",\n  \"url\": \"http://www.example.com/support\",\n  \"email\": \"support@example.com\"\n}\n```\n\n```yaml\nname: API Support\nurl: http://www.example.com/support\nemail: support@example.com\n```\n\n#### License Object\n\nLicense information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"licenseName\"></a>name | `string` | **REQUIRED**. The license name used for the API.\n<a name=\"licenseUrl\"></a>url | `string` | A URL to the license used for the API. MUST be in the format of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### License Object Example\n\n```json\n{\n  \"name\": \"Apache 2.0\",\n  \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n}\n```\n\n```yaml\nname: Apache 2.0\nurl: https://www.apache.org/licenses/LICENSE-2.0.html\n```\n\n#### Server Object\n\nAn object representing a Server.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverUrl\"></a>url | `string` | **REQUIRED**. A URL to the target host.  This URL supports Server Variables and MAY be relative, to indicate that the host location is relative to the location where the OpenAPI document is being served. Variable substitutions will be made when a variable is named in `{`brackets`}`.\n<a name=\"serverDescription\"></a>description | `string` | An optional string describing the host designated by the URL. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"serverVariables\"></a>variables | Map[`string`, [Server Variable Object](#server-variable-object)] | A map between a variable name and its value.  The value is used for substitution in the server's URL template.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Server Object Example\n\nA single server would be described as:\n\n```json\n{\n  \"url\": \"https://development.gigantic-server.com/v1\",\n  \"description\": \"Development server\"\n}\n```\n\n```yaml\nurl: https://development.gigantic-server.com/v1\ndescription: Development server\n```\n\nThe following shows how multiple servers can be described, for example, at the OpenAPI Object's [`servers`](#oasServers):\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://development.gigantic-server.com/v1\",\n      \"description\": \"Development server\"\n    },\n    {\n      \"url\": \"https://staging.gigantic-server.com/v1\",\n      \"description\": \"Staging server\"\n    },\n    {\n      \"url\": \"https://api.gigantic-server.com/v1\",\n      \"description\": \"Production server\"\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://development.gigantic-server.com/v1\n  description: Development server\n- url: https://staging.gigantic-server.com/v1\n  description: Staging server\n- url: https://api.gigantic-server.com/v1\n  description: Production server\n```\n\nThe following shows how variables can be used for a server configuration:\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://{username}.gigantic-server.com:{port}/{basePath}\",\n      \"description\": \"The production API server\",\n      \"variables\": {\n        \"username\": {\n          \"default\": \"demo\",\n          \"description\": \"this value is assigned by the service provider, in this example `gigantic-server.com`\"\n        },\n        \"port\": {\n          \"enum\": [\n            \"8443\",\n            \"443\"\n          ],\n          \"default\": \"8443\"\n        },\n        \"basePath\": {\n          \"default\": \"v2\"\n        }\n      }\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://{username}.gigantic-server.com:{port}/{basePath}\n  description: The production API server\n  variables:\n    username:\n      # note! no enum here means it is an open value\n      default: demo\n      description: this value is assigned by the service provider, in this example `gigantic-server.com`\n    port:\n      enum:\n        - '8443'\n        - '443'\n      default: '8443'\n    basePath:\n      # open meaning there is the opportunity to use special base paths as assigned by the provider, default is `v2`\n      default: v2\n```\n\n\n#### Server Variable Object\n\nAn object representing a Server Variable for server URL template substitution.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverVariableEnum\"></a>enum | [`string`] | An enumeration of string values to be used if the substitution options are from a limited set. The array SHOULD NOT be empty.\n<a name=\"serverVariableDefault\"></a>default | `string` |  **REQUIRED**. The default value to use for substitution, which SHALL be sent if an alternate value is _not_ supplied. Note this behavior is different than the [Schema Object's](#schema-object) treatment of default values, because in those cases parameter values are optional. If the [`enum`](#serverVariableEnum) is defined, the value SHOULD exist in the enum's values.\n<a name=\"serverVariableDescription\"></a>description | `string` | An optional description for the server variable. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Components Object\n\nHolds a set of reusable objects for different aspects of the OAS.\nAll objects defined within the components object will have no effect on the API unless they are explicitly referenced from properties outside the components object.\n\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---|---\n<a name=\"componentsSchemas\"></a> schemas | Map[`string`, [Schema Object](#schema-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Schema Objects](#schema-object).\n<a name=\"componentsResponses\"></a> responses | Map[`string`, [Response Object](#response-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Response Objects](#response-object).\n<a name=\"componentsParameters\"></a> parameters | Map[`string`, [Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Parameter Objects](#parameter-object).\n<a name=\"componentsExamples\"></a> examples | Map[`string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Example Objects](#example-object).\n<a name=\"componentsRequestBodies\"></a> requestBodies | Map[`string`, [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Request Body Objects](#request-body-object).\n<a name=\"componentsHeaders\"></a> headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Header Objects](#header-object).\n<a name=\"componentsSecuritySchemes\"></a> securitySchemes| Map[`string`, [Security Scheme Object](#security-scheme-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Security Scheme Objects](#security-scheme-object).\n<a name=\"componentsLinks\"></a> links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Link Objects](#link-object).\n<a name=\"componentsCallbacks\"></a> callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Callback Objects](#callback-object).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nAll the fixed fields declared above are objects that MUST use keys that match the regular expression: `^[a-zA-Z0-9\\.\\-_]+$`.\n\nField Name Examples:\n\n```\nUser\nUser_1\nUser_Name\nuser-name\nmy.org.User\n```\n\n##### Components Object Example\n\n```json\n\"components\": {\n  \"schemas\": {\n    \"GeneralError\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"code\": {\n          \"type\": \"integer\",\n          \"format\": \"int32\"\n        },\n        \"message\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Category\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Tag\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  },\n  \"parameters\": {\n    \"skipParam\": {\n      \"name\": \"skip\",\n      \"in\": \"query\",\n      \"description\": \"number of items to skip\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    },\n    \"limitParam\": {\n      \"name\": \"limit\",\n      \"in\": \"query\",\n      \"description\": \"max records to return\",\n      \"required\": true,\n      \"schema\" : {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    }\n  },\n  \"responses\": {\n    \"NotFound\": {\n      \"description\": \"Entity not found.\"\n    },\n    \"IllegalInput\": {\n      \"description\": \"Illegal input for operation.\"\n    },\n    \"GeneralError\": {\n      \"description\": \"General Error\",\n      \"content\": {\n        \"application/json\": {\n          \"schema\": {\n            \"$ref\": \"#/components/schemas/GeneralError\"\n          }\n        }\n      }\n    }\n  },\n  \"securitySchemes\": {\n    \"api_key\": {\n      \"type\": \"apiKey\",\n      \"name\": \"api_key\",\n      \"in\": \"header\"\n    },\n    \"petstore_auth\": {\n      \"type\": \"oauth2\",\n      \"flows\": {\n        \"implicit\": {\n          \"authorizationUrl\": \"http://example.org/api/oauth/dialog\",\n          \"scopes\": {\n            \"write:pets\": \"modify pets in your account\",\n            \"read:pets\": \"read your pets\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    GeneralError:\n      type: object\n      properties:\n        code:\n          type: integer\n          format: int32\n        message:\n          type: string\n    Category:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n    Tag:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n  parameters:\n    skipParam:\n      name: skip\n      in: query\n      description: number of items to skip\n      required: true\n      schema:\n        type: integer\n        format: int32\n    limitParam:\n      name: limit\n      in: query\n      description: max records to return\n      required: true\n      schema:\n        type: integer\n        format: int32\n  responses:\n    NotFound:\n      description: Entity not found.\n    IllegalInput:\n      description: Illegal input for operation.\n    GeneralError:\n      description: General Error\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/GeneralError'\n  securitySchemes:\n    api_key:\n      type: apiKey\n      name: api_key\n      in: header\n    petstore_auth:\n      type: oauth2\n      flows:\n        implicit:\n          authorizationUrl: http://example.org/api/oauth/dialog\n          scopes:\n            write:pets: modify pets in your account\n            read:pets: read your pets\n```\n\n\n#### Paths Object\n\nHolds the relative paths to the individual endpoints and their operations.\nThe path is appended to the URL from the [`Server Object`](#server-object) in order to construct the full URL.  The Paths MAY be empty, due to [ACL constraints](#security-filtering).\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"pathsPath\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a forward slash (`/`). The path is **appended** (no relative URL resolution) to the expanded URL from the [`Server Object`](#server-object)'s `url` field in order to construct the full URL. [Path templating](#path-templating) is allowed. When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical. In case of ambiguous matching, it's up to the tooling to decide which one to use.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Templating Matching\n\nAssuming the following paths, the concrete definition, `/pets/mine`, will be matched first if used:\n\n```\n  /pets/{petId}\n  /pets/mine\n```\n\nThe following paths are considered identical and invalid:\n\n```\n  /pets/{petId}\n  /pets/{name}\n```\n\nThe following may lead to ambiguous resolution:\n\n```\n  /{entity}/me\n  /books/{id}\n```\n\n##### Paths Object Example\n\n```json\n{\n  \"/pets\": {\n    \"get\": {\n      \"description\": \"Returns all pets from the system that the user has access to\",\n      \"responses\": {\n        \"200\": {         \n          \"description\": \"A list of pets.\",\n          \"content\": {\n            \"application/json\": {\n              \"schema\": {\n                \"type\": \"array\",\n                \"items\": {\n                  \"$ref\": \"#/components/schemas/pet\"\n                }\n              }\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    responses:\n      '200':\n        description: A list of pets.\n        content:\n          application/json:\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/pet'\n```\n\n#### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item MAY be empty, due to [ACL constraints](#security-filtering).\nThe path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"pathItemRef\"></a>$ref | `string` | Allows for an external definition of this path item. The referenced structure MUST be in the format of a [Path Item Object](#path-item-object).  In case a Path Item Object field appears both in the defined object and the referenced object, the behavior is undefined.\n<a name=\"pathItemSummary\"></a>summary| `string` | An optional, string summary, intended to apply to all operations in this path.\n<a name=\"pathItemDescription\"></a>description | `string` | An optional, string description, intended to apply to all operations in this path. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"pathItemGet\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path.\n<a name=\"pathItemPut\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path.\n<a name=\"pathItemPost\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path.\n<a name=\"pathItemDelete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path.\n<a name=\"pathItemOptions\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path.\n<a name=\"pathItemHead\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path.\n<a name=\"pathItemPatch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path.\n<a name=\"pathItemTrace\"></a>trace | [Operation Object](#operation-object) | A definition of a TRACE operation on this path.\n<a name=\"pathItemServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service all operations in this path.\n<a name=\"pathItemParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Item Object Example\n\n```json\n{\n  \"get\": {\n    \"description\": \"Returns pets based on ID\",\n    \"summary\": \"Find pets by ID\",\n    \"operationId\": \"getPetsById\",\n    \"responses\": {\n      \"200\": {\n        \"description\": \"pet response\",\n        \"content\": {\n          \"*/*\": {\n            \"schema\": {\n              \"type\": \"array\",\n              \"items\": {\n                \"$ref\": \"#/components/schemas/Pet\"\n              }\n            }\n          }\n        }\n      },\n      \"default\": {\n        \"description\": \"error payload\",\n        \"content\": {\n          \"text/html\": {\n            \"schema\": {\n              \"$ref\": \"#/components/schemas/ErrorModel\"\n            }\n          }\n        }\n      }\n    }\n  },\n  \"parameters\": [\n    {\n      \"name\": \"id\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet to use\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      },\n      \"style\": \"simple\"\n    }\n  ]\n}\n```\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  responses:\n    '200':\n      description: pet response\n      content:\n        '*/*' :\n          schema:\n            type: array\n            items:\n              $ref: '#/components/schemas/Pet'\n    default:\n      description: error payload\n      content:\n        'text/html':\n          schema:\n            $ref: '#/components/schemas/ErrorModel'\nparameters:\n- name: id\n  in: path\n  description: ID of pet to use\n  required: true\n  schema:\n    type: array\n    items:\n      type: string \n  style: simple\n```\n\n#### Operation Object\n\nDescribes a single API operation on a path.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"operationTags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier.\n<a name=\"operationSummary\"></a>summary | `string` | A short summary of what the operation does.\n<a name=\"operationDescription\"></a>description | `string` | A verbose explanation of the operation behavior. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"operationExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation.\n<a name=\"operationId\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. The operationId value is **case-sensitive**. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is RECOMMENDED to follow common programming naming conventions.\n<a name=\"operationParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined at the [Path Item](#pathItemParameters), the new definition will override it but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n<a name=\"operationRequestBody\"></a>requestBody | [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object) | The request body applicable for this operation.  The `requestBody` is only supported in HTTP methods where the HTTP 1.1 specification [RFC7231](https://tools.ietf.org/html/rfc7231#section-4.3.1) has explicitly defined semantics for request bodies.  In other cases where the HTTP spec is vague, `requestBody` SHALL be ignored by consumers.\n<a name=\"operationResponses\"></a>responses | [Responses Object](#responses-object) | **REQUIRED**. The list of possible responses as they are returned from executing this operation.\n<a name=\"operationCallbacks\"></a>callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | A map of possible out-of band callbacks related to the parent operation. The key is a unique identifier for the Callback Object. Each value in the map is a [Callback Object](#callback-object) that describes a request that may be initiated by the API provider and the expected responses.\n<a name=\"operationDeprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Consumers SHOULD refrain from usage of the declared operation. Default value is `false`.\n<a name=\"operationSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used for this operation. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. To make security optional, an empty security requirement (`{}`) can be included in the array. This definition overrides any declared top-level [`security`](#oasSecurity). To remove a top-level security declaration, an empty array can be used.\n<a name=\"operationServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service this operation. If an alternative `server` object is specified at the Path Item Object or Root level, it will be overridden by this value.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Operation Object Example\n\n```json\n{\n  \"tags\": [\n    \"pet\"\n  ],\n  \"summary\": \"Updates a pet in the store with form data\",\n  \"operationId\": \"updatePetWithForm\",\n  \"parameters\": [\n    {\n      \"name\": \"petId\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet that needs to be updated\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  ],\n  \"requestBody\": {\n    \"content\": {\n      \"application/x-www-form-urlencoded\": {\n        \"schema\": {\n          \"type\": \"object\",\n          \"properties\": {\n            \"name\": {\n              \"description\": \"Updated name of the pet\",\n              \"type\": \"string\"\n            },\n            \"status\": {\n              \"description\": \"Updated status of the pet\",\n              \"type\": \"string\"\n            }\n          },\n          \"required\": [\"status\"]\n        }\n      }\n    }\n  },\n  \"responses\": {\n    \"200\": {\n      \"description\": \"Pet updated.\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    },\n    \"405\": {\n      \"description\": \"Method Not Allowed\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    }\n  },\n  \"security\": [\n    {\n      \"petstore_auth\": [\n        \"write:pets\",\n        \"read:pets\"\n      ]\n    }\n  ]\n}\n```\n\n```yaml\ntags:\n- pet\nsummary: Updates a pet in the store with form data\noperationId: updatePetWithForm\nparameters:\n- name: petId\n  in: path\n  description: ID of pet that needs to be updated\n  required: true\n  schema:\n    type: string\nrequestBody:\n  content:\n    'application/x-www-form-urlencoded':\n      schema:\n       properties:\n          name:\n            description: Updated name of the pet\n            type: string\n          status:\n            description: Updated status of the pet\n            type: string\n       required:\n         - status\nresponses:\n  '200':\n    description: Pet updated.\n    content:\n      'application/json': {}\n      'application/xml': {}\n  '405':\n    description: Method Not Allowed\n    content:\n      'application/json': {}\n      'application/xml': {}\nsecurity:\n- petstore_auth:\n  - write:pets\n  - read:pets\n```\n\n\n#### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"externalDocDescription\"></a>description | `string` | A short description of the target documentation. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"externalDocUrl\"></a>url | `string` | **REQUIRED**. The URL for the target documentation. Value MUST be in the format of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### External Documentation Object Example\n\n```json\n{\n  \"description\": \"Find more info here\",\n  \"url\": \"https://example.com\"\n}\n```\n\n```yaml\ndescription: Find more info here\nurl: https://example.com\n```\n\n#### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn).\n\n##### Parameter Locations\nThere are four possible parameter locations specified by the `in` field:\n* path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`.\n* header - Custom headers that are expected as part of the request. Note that [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive.\n* cookie - Used to pass a specific cookie value to the API.\n\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterName\"></a>name | `string` | **REQUIRED**. The name of the parameter. Parameter names are *case sensitive*. <ul><li>If [`in`](#parameterIn) is `\"path\"`, the `name` field MUST correspond to a template expression occurring within the [path](#pathsPath) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>If [`in`](#parameterIn) is `\"header\"` and the `name` field is `\"Accept\"`, `\"Content-Type\"` or `\"Authorization\"`, the parameter definition SHALL be ignored.<li>For all other cases, the `name` corresponds to the parameter name used by the [`in`](#parameterIn) property.</ul>\n<a name=\"parameterIn\"></a>in | `string` | **REQUIRED**. The location of the parameter. Possible values are `\"query\"`, `\"header\"`, `\"path\"` or `\"cookie\"`.\n<a name=\"parameterDescription\"></a>description | `string` | A brief description of the parameter. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"parameterRequired\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the [parameter location](#parameterIn) is `\"path\"`, this property is **REQUIRED** and its value MUST be `true`. Otherwise, the property MAY be included and its default value is `false`.\n<a name=\"parameterDeprecated\"></a> deprecated | `boolean` | Specifies that a parameter is deprecated and SHOULD be transitioned out of usage. Default value is `false`.\n<a name=\"parameterAllowEmptyValue\"></a> allowEmptyValue | `boolean` | Sets the ability to pass empty-valued parameters. This is valid only for `query` parameters and allows sending a parameter with an empty value. Default value is `false`. If [`style`](#parameterStyle) is used, and if behavior is `n/a` (cannot be serialized), the value of `allowEmptyValue` SHALL be ignored. Use of this property is NOT RECOMMENDED, as it is likely to be removed in a later revision.\n\nThe rules for serialization of the parameter are specified in one of two ways.\nFor simpler scenarios, a [`schema`](#parameterSchema) and [`style`](#parameterStyle) can describe the structure and syntax of the parameter.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterStyle\"></a>style | `string` | Describes how the parameter value will be serialized depending on the type of the parameter value. Default values (based on value of `in`): for `query` - `form`; for `path` - `simple`; for `header` - `simple`; for `cookie` - `form`.\n<a name=\"parameterExplode\"></a>explode | `boolean` | When this is true, parameter values of type `array` or `object` generate separate parameters for each value of the array or key-value pair of the map. For other types of parameters this property has no effect. When [`style`](#parameterStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`.\n<a name=\"parameterAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. This property only applies to parameters with an `in` value of `query`. The default value is `false`.\n<a name=\"parameterSchema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the type used for the parameter.\n<a name=\"parameterExample\"></a>example | Any | Example of the parameter's potential value. The example SHOULD match the specified schema and encoding properties if present. The `example` field is mutually exclusive of the `examples` field. Furthermore, if referencing a `schema` that contains an example, the `example` value SHALL _override_ the example provided by the schema. To represent examples of media types that cannot naturally be represented in JSON or YAML, a string value can contain the example with escaping where necessary.\n<a name=\"parameterExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the parameter's potential value. Each example SHOULD contain a value in the correct format as specified in the parameter encoding. The `examples` field is mutually exclusive of the `example` field. Furthermore, if referencing a `schema` that contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n\nFor more complex scenarios, the [`content`](#parameterContent) property can define the media type and schema of the parameter.\nA parameter MUST contain either a `schema` property, or a `content` property, but not both.\nWhen `example` or `examples` are provided in conjunction with the `schema` object, the example MUST follow the prescribed serialization strategy for the parameter.\n\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the parameter. The key is the media type and the value describes it. The map MUST only contain one entry.\n\n##### Style Values\n\nIn order to support common ways of serializing simple parameters, a set of `style` values are defined.\n\n`style` | [`type`](#data-types) |  `in` | Comments\n----------- | ------ | -------- | --------\nmatrix |  `primitive`, `array`, `object` |  `path` | Path-style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.7)\nlabel | `primitive`, `array`, `object` |  `path` | Label style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.5)\nform |  `primitive`, `array`, `object` |  `query`, `cookie` | Form style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.8). This option replaces `collectionFormat` with a `csv` (when `explode` is false) or `multi` (when `explode` is true) value from OpenAPI 2.0.\nsimple | `array` | `path`, `header` | Simple style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.2).  This option replaces `collectionFormat` with a `csv` value from OpenAPI 2.0.\nspaceDelimited | `array` | `query` | Space separated array values. This option replaces `collectionFormat` equal to `ssv` from OpenAPI 2.0.\npipeDelimited | `array` | `query` | Pipe separated array values. This option replaces `collectionFormat` equal to `pipes` from OpenAPI 2.0.\ndeepObject | `object` | `query` | Provides a simple way of rendering nested objects using form parameters.\n\n\n##### Style Examples\n\nAssume a parameter named `color` has one of the following values:\n\n```\n   string -> \"blue\"\n   array -> [\"blue\",\"black\",\"brown\"]\n   object -> { \"R\": 100, \"G\": 200, \"B\": 150 }\n```\nThe following table shows examples of rendering differences for each value.\n\n[`style`](#dataTypeFormat) | `explode` | `empty` | `string` | `array` | `object`\n----------- | ------ | -------- | -------- | -------- | -------\nmatrix | false | ;color | ;color=blue | ;color=blue,black,brown | ;color=R,100,G,200,B,150\nmatrix | true | ;color | ;color=blue | ;color=blue;color=black;color=brown | ;R=100;G=200;B=150\nlabel | false | .  | .blue |  .blue.black.brown | .R.100.G.200.B.150\nlabel | true | . | .blue |  .blue.black.brown | .R=100.G=200.B=150\nform | false | color= | color=blue | color=blue,black,brown | color=R,100,G,200,B,150\nform | true | color= | color=blue | color=blue&color=black&color=brown | R=100&G=200&B=150\nsimple | false | n/a | blue | blue,black,brown | R,100,G,200,B,150\nsimple | true | n/a | blue | blue,black,brown | R=100,G=200,B=150\nspaceDelimited | false | n/a | n/a | blue%20black%20brown | R%20100%20G%20200%20B%20150\npipeDelimited | false | n/a | n/a | blue\\|black\\|brown | R\\|100\\|G\\|200\\|B\\|150\ndeepObject | true | n/a | n/a | n/a | color[R]=100&color[G]=200&color[B]=150\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Parameter Object Examples\n\nA header parameter with an array of 64 bit integer numbers:\n\n```json\n{\n  \"name\": \"token\",\n  \"in\": \"header\",\n  \"description\": \"token to be passed as a header\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    }\n  },\n  \"style\": \"simple\"\n}\n```\n\n```yaml\nname: token\nin: header\ndescription: token to be passed as a header\nrequired: true\nschema:\n  type: array\n  items:\n    type: integer\n    format: int64\nstyle: simple\n```\n\nA path parameter of a string value:\n```json\n{\n  \"name\": \"username\",\n  \"in\": \"path\",\n  \"description\": \"username to fetch\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\nschema:\n  type: string\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter:\n```json\n{\n  \"name\": \"id\",\n  \"in\": \"query\",\n  \"description\": \"ID of the object to fetch\",\n  \"required\": false,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  },\n  \"style\": \"form\",\n  \"explode\": true\n}\n```\n\n```yaml\nname: id\nin: query\ndescription: ID of the object to fetch\nrequired: false\nschema:\n  type: array\n  items:\n    type: string\nstyle: form\nexplode: true\n```\n\nA free-form query parameter, allowing undefined parameters of a specific type:\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"freeForm\",\n  \"schema\": {\n    \"type\": \"object\",\n    \"additionalProperties\": {\n      \"type\": \"integer\"\n    },\n  },\n  \"style\": \"form\"\n}\n```\n\n```yaml\nin: query\nname: freeForm\nschema:\n  type: object\n  additionalProperties:\n    type: integer\nstyle: form\n```\n\nA complex parameter using `content` to define serialization:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"coordinates\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"lat\",\n          \"long\"\n        ],\n        \"properties\": {\n          \"lat\": {\n            \"type\": \"number\"\n          },\n          \"long\": {\n            \"type\": \"number\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nin: query\nname: coordinates\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n        - lat\n        - long\n      properties:\n        lat:\n          type: number\n        long:\n          type: number\n```\n\n#### Request Body Object\n\nDescribes a single request body.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"requestBodyDescription\"></a>description | `string` | A brief description of the request body. This could contain examples of use.  [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"requestBodyContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | **REQUIRED**. The content of the request body. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For requests that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"requestBodyRequired\"></a>required | `boolean` | Determines if the request body is required in the request. Defaults to `false`.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Request Body Examples\n\nA request body with a referenced model definition.\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User Example\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.json\"\n          }\n        }\n    },\n    \"application/xml\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User example in XML\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.xml\"\n          }\n        }\n    },\n    \"text/plain\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in Plain text\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.txt\"\n        }\n      }\n    },\n    \"*/*\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in other format\",\n            \"externalValue\": \"http://foo.bar/examples/user-example.whatever\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\ncontent:\n  'application/json':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User Example\n        externalValue: 'http://foo.bar/examples/user-example.json'\n  'application/xml':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User Example in XML\n        externalValue: 'http://foo.bar/examples/user-example.xml'\n  'text/plain':\n    examples:\n      user:\n        summary: User example in text plain format\n        externalValue: 'http://foo.bar/examples/user-example.txt'\n  '*/*':\n    examples:\n      user:\n        summary: User example in other format\n        externalValue: 'http://foo.bar/examples/user-example.whatever'\n```\n\nA body parameter that is an array of string values:\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\nrequired: true\ncontent:\n  text/plain:\n    schema:\n      type: array\n      items:\n        type: string\n```\n\n\n#### Media Type Object\nEach Media Type Object provides schema and examples for the media type identified by its key.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"mediaTypeSchema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the content of the request, response, or parameter.\n<a name=\"mediaTypeExample\"></a>example | Any | Example of the media type.  The example object SHOULD be in the correct format as specified by the media type.  The `example` field is mutually exclusive of the `examples` field.  Furthermore, if referencing a `schema` which contains an example, the `example` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type.  Each example object SHOULD  match the media type and specified schema if present.  The `examples` field is mutually exclusive of the `example` field.  Furthermore, if referencing a `schema` which contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeEncoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | A map between a property name and its encoding information. The key, being the property name, MUST exist in the schema as a property. The encoding object SHALL only apply to `requestBody` objects when the media type is `multipart` or `application/x-www-form-urlencoded`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Media Type Examples\n\n```json\n{\n  \"application/json\": {\n    \"schema\": {\n         \"$ref\": \"#/components/schemas/Pet\"\n    },\n    \"examples\": {\n      \"cat\" : {\n        \"summary\": \"An example of a cat\",\n        \"value\":\n          {\n            \"name\": \"Fluffy\",\n            \"petType\": \"Cat\",\n            \"color\": \"White\",\n            \"gender\": \"male\",\n            \"breed\": \"Persian\"\n          }\n      },\n      \"dog\": {\n        \"summary\": \"An example of a dog with a cat's name\",\n        \"value\" :  {\n          \"name\": \"Puma\",\n          \"petType\": \"Dog\",\n          \"color\": \"Black\",\n          \"gender\": \"Female\",\n          \"breed\": \"Mixed\"\n        },\n      \"frog\": {\n          \"$ref\": \"#/components/examples/frog-example\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    $ref: \"#/components/schemas/Pet\"\n  examples:\n    cat:\n      summary: An example of a cat\n      value:\n        name: Fluffy\n        petType: Cat\n        color: White\n        gender: male\n        breed: Persian\n    dog:\n      summary: An example of a dog with a cat's name\n      value:\n        name: Puma\n        petType: Dog\n        color: Black\n        gender: Female\n        breed: Mixed\n    frog:\n      $ref: \"#/components/examples/frog-example\"\n```\n\n##### Considerations for File Uploads\n\nIn contrast with the 2.0 specification, `file` input/output content in OpenAPI is described with the same semantics as any other schema type. Specifically:\n\n```yaml\n# content transferred with base64 encoding\nschema:\n  type: string\n  format: base64\n```\n\n```yaml\n# content transferred in binary (octet-stream):\nschema:\n  type: string\n  format: binary\n```\n\nThese examples apply to either input payloads of file uploads or response payloads.\n\nA `requestBody` for submitting a file in a `POST` operation may look like the following example:\n\n```yaml\nrequestBody:\n  content:\n    application/octet-stream:\n      schema:\n        # a binary file of any type\n        type: string\n        format: binary\n```\n\nIn addition, specific media types MAY be specified:\n\n```yaml\n# multiple, specific media types may be specified:\nrequestBody:\n  content:\n      # a binary file of type png or jpeg\n    'image/jpeg':\n      schema:\n        type: string\n        format: binary\n    'image/png':\n      schema:\n        type: string\n        format: binary       \n```\n\nTo upload multiple files, a `multipart` media type MUST be used:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        properties:\n          # The property name 'file' will be used for all files.\n          file:\n            type: array\n            items:\n              type: string\n              format: binary\n\n```\n\n##### Support for x-www-form-urlencoded Request Bodies\n\nTo submit content using form url encoding via [RFC1866](https://tools.ietf.org/html/rfc1866), the following\ndefinition may be used:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # complex types are stringified to support RFC 1866\n            type: object\n            properties: {}\n```\n\nIn this example, the contents in the `requestBody` MUST be stringified per [RFC1866](https://tools.ietf.org/html/rfc1866/) when passed to the server.  In addition, the `address` field complex object will be stringified.\n\nWhen passing complex objects in the `application/x-www-form-urlencoded` content type, the default serialization strategy of such properties is described in the [`Encoding Object`](#encoding-object)'s [`style`](#encodingStyle) property as `form`.\n\n##### Special Considerations for `multipart` Content\n\nIt is common to use `multipart/form-data` as a `Content-Type` when transferring request bodies to operations.  In contrast to 2.0, a `schema` is REQUIRED to define the input parameters to the operation when using `multipart` content.  This supports complex structures as well as supporting mechanisms for multiple file uploads.\n\nWhen passing in `multipart` types, boundaries MAY be used to separate sections of the content being transferred — thus, the following default `Content-Type`s are defined for `multipart`:\n\n* If the property is a primitive, or an array of primitive values, the default Content-Type is `text/plain`\n* If the property is complex, or an array of complex values, the default Content-Type is `application/json`\n* If the property is a `type: string` with `format: binary` or `format: base64` (aka a file object), the default Content-Type is `application/octet-stream`\n\n\nExamples:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # default Content-Type for objects is `application/json`\n            type: object\n            properties: {}\n          profileImage:\n            # default Content-Type for string/binary is `application/octet-stream`\n            type: string\n            format: binary\n          children:\n            # default Content-Type for arrays is based on the `inner` type (text/plain here)\n            type: array\n            items:\n              type: string\n          addresses:\n            # default Content-Type for arrays is based on the `inner` type (object shown, so `application/json` in this example)\n            type: array\n            items:\n              type: '#/components/schemas/Address'\n```\n\nAn `encoding` attribute is introduced to give you control over the serialization of parts of `multipart` request bodies.  This attribute is _only_ applicable to `multipart` and `application/x-www-form-urlencoded` request bodies.\n\n#### Encoding Object\n\nA single encoding definition applied to a single schema property.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"encodingContentType\"></a>contentType | `string` | The Content-Type for encoding a specific property. Default value depends on the property type: for `string` with `format` being `binary` – `application/octet-stream`; for other primitive types – `text/plain`; for `object` - `application/json`; for `array` – the default is defined based on the inner type. The value can be a specific media type (e.g. `application/json`), a wildcard media type (e.g. `image/*`), or a comma-separated list of the two types.\n<a name=\"encodingHeaders\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | A map allowing additional information to be provided as headers, for example `Content-Disposition`.  `Content-Type` is described separately and SHALL be ignored in this section. This property SHALL be ignored if the request body media type is not a `multipart`.\n<a name=\"encodingStyle\"></a>style | `string` | Describes how a specific property value will be serialized depending on its type.  See [Parameter Object](#parameter-object) for details on the [`style`](#parameterStyle) property. The behavior follows the same values as `query` parameters, including default values. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n<a name=\"encodingExplode\"></a>explode | `boolean` | When this is true, property values of type `array` or `object` generate separate parameters for each value of the array, or key-value-pair of the map.  For other types of properties this property has no effect. When [`style`](#encodingStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n<a name=\"encodingAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. The default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Encoding Object Example\n\n```yaml\nrequestBody:\n  content:\n    multipart/mixed:\n      schema:\n        type: object\n        properties:\n          id:\n            # default is text/plain\n            type: string\n            format: uuid\n          address:\n            # default is application/json\n            type: object\n            properties: {}\n          historyMetadata:\n            # need to declare XML format!\n            description: metadata in XML format\n            type: object\n            properties: {}\n          profileImage:\n            # default is application/octet-stream, need to declare an image type only!\n            type: string\n            format: binary\n      encoding:\n        historyMetadata:\n          # require XML Content-Type in utf-8 encoding\n          contentType: application/xml; charset=utf-8\n        profileImage:\n          # only accept png/jpeg\n          contentType: image/png, image/jpeg\n          headers:\n            X-Rate-Limit-Limit:\n              description: The number of allowed requests in the current period\n              schema:\n                type: integer\n```\n\n#### Responses Object\n\nA container for the expected responses of an operation.\nThe container maps a HTTP response code to the expected response.\n\nThe documentation is not necessarily expected to cover all possible HTTP response codes because they may not be known in advance.\nHowever, documentation is expected to cover a successful operation response and any known errors.\n\nThe `default` MAY be used as a default response object for all HTTP codes\nthat are not covered individually by the specification.\n\nThe `Responses Object` MUST contain at least one response code, and it\nSHOULD be the response for a successful operation call.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responsesDefault\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. Use this field to cover undeclared responses. A [Reference Object](#reference-object) can link to a response that the [OpenAPI Object's components/responses](#componentsResponses) section defines.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"responsesCode\"></a>[HTTP Status Code](#http-status-codes) | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name, but only one property per code, to describe the expected response for that HTTP status code.  A [Reference Object](#reference-object) can link to a response that is defined in the [OpenAPI Object's components/responses](#componentsResponses) section. This field MUST be enclosed in quotation marks (for example, \"200\") for compatibility between JSON and YAML. To define a range of response codes, this field MAY contain the uppercase wildcard character `X`. For example, `2XX` represents all response codes between `[200-299]`. Only the following range definitions are allowed: `1XX`, `2XX`, `3XX`, `4XX`, and `5XX`. If a response is defined using an explicit code, the explicit code definition takes precedence over the range definition for that code.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Responses Object Example\n\nA 200 response for a successful operation and a default response for others (implying an error):\n\n```json\n{\n  \"200\": {\n    \"description\": \"a pet to be returned\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/Pet\"\n        }\n      }\n    }\n  },\n  \"default\": {\n    \"description\": \"Unexpected error\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/ErrorModel\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n'200':\n  description: a pet to be returned\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/Pet'\ndefault:\n  description: Unexpected error\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/ErrorModel'\n```\n\n#### Response Object\nDescribes a single response from an API Operation, including design-time, static\n`links` to operations based on the response.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responseDescription\"></a>description | `string` | **REQUIRED**. A short description of the response. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"responseHeaders\"></a>headers | Map[`string`, [Header Object](#header-object)  \\| [Reference Object](#reference-object)] |  Maps a header name to its definition. [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive. If a response header is defined with the name `\"Content-Type\"`, it SHALL be ignored.\n<a name=\"responseContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing descriptions of potential response payloads. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For responses that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"responseLinks\"></a>links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | A map of operations links that can be followed from the response. The key of the map is a short name for the link, following the naming constraints of the names for [Component Objects](#components-object).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Response Object Examples\n\nResponse of an array of a complex type:\n\n```json\n{\n  \"description\": \"A complex object array response\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"$ref\": \"#/components/schemas/VeryComplexType\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A complex object array response\ncontent:\n  application/json:\n    schema:\n      type: array\n      items:\n        $ref: '#/components/schemas/VeryComplexType'\n```\n\nResponse with a string type:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  }\n\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n```\n\nPlain text response with headers:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\",\n        \"example\": \"whoa!\"\n      }\n    }\n  },\n  \"headers\": {\n    \"X-Rate-Limit-Limit\": {\n      \"description\": \"The number of allowed requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Remaining\": {\n      \"description\": \"The number of remaining requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Reset\": {\n      \"description\": \"The number of seconds left in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n    example: 'whoa!'\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    schema:\n      type: integer\n```\n\nResponse with no return value:\n\n```json\n{\n  \"description\": \"object created\"\n}\n```\n\n```yaml\ndescription: object created\n```\n\n#### Callback Object\n\nA map of possible out-of band callbacks related to the parent operation.\nEach value in the map is a [Path Item Object](#path-item-object) that describes a set of requests that may be initiated by the API provider and the expected responses.\nThe key value used to identify the path item object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"callbackExpression\"></a>{expression} | [Path Item Object](#path-item-object) | A Path Item Object used to define a callback request and expected responses.  A [complete example](../examples/v3.0/callback-example.yaml) is available.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Key Expression\n\nThe key that identifies the [Path Item Object](#path-item-object) is a [runtime expression](#runtime-expressions) that can be evaluated in the context of a runtime HTTP request/response to identify the URL to be used for the callback request.\nA simple example might be `$request.body#/url`.\nHowever, using a [runtime expression](#runtime-expressions) the complete HTTP message can be accessed.\nThis includes accessing any part of a body that a JSON Pointer [RFC6901](https://tools.ietf.org/html/rfc6901) can reference.\n\nFor example, given the following HTTP request:\n\n```http\nPOST /subscribe/myevent?queryUrl=http://clientdomain.com/stillrunning HTTP/1.1\nHost: example.org\nContent-Type: application/json\nContent-Length: 187\n\n{\n  \"failedUrl\" : \"http://clientdomain.com/failed\",\n  \"successUrls\" : [\n    \"http://clientdomain.com/fast\",\n    \"http://clientdomain.com/medium\",\n    \"http://clientdomain.com/slow\"\n  ]\n}\n\n201 Created\nLocation: http://example.org/subscription/1\n```\n\nThe following examples show how the various expressions evaluate, assuming the callback operation has a path parameter named `eventType` and a query parameter named `queryUrl`.\n\nExpression | Value\n---|:---\n$url | http://example.org/subscribe/myevent?queryUrl=http://clientdomain.com/stillrunning\n$method | POST\n$request.path.eventType | myevent\n$request.query.queryUrl | http://clientdomain.com/stillrunning\n$request.header.content-Type | application/json\n$request.body#/failedUrl | http://clientdomain.com/failed\n$request.body#/successUrls/2 | http://clientdomain.com/medium\n$response.header.Location | http://example.org/subscription/1\n\n\n##### Callback Object Examples\n\nThe following example uses the user provided `queryUrl` query string parameter to define the callback URL.  This is an example of how to use a callback object to describe a WebHook callback that goes with the subscription operation to enable registering for the WebHook.\n\n```yaml\nmyCallback:\n  '{$request.query.queryUrl}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          'application/json':\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\nThe following example shows a callback where the server is hard-coded, but the query string parameters are populated from the `id` and `email` property in the request body.\n\n```yaml\ntransactionCallback:\n  'http://notificationServer.com?transactionId={$request.body#/id}&email={$request.body#/email}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          'application/json':\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\n#### Example Object\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"exampleSummary\"></a>summary | `string` | Short description for the example.\n<a name=\"exampleDescription\"></a>description | `string` | Long description for the example. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"exampleValue\"></a>value | Any | Embedded literal example. The `value` field and `externalValue` field are mutually exclusive. To represent examples of media types that cannot naturally represented in JSON or YAML, use a string value to contain the example, escaping where necessary.\n<a name=\"exampleExternalValue\"></a>externalValue | `string` | A URL that points to the literal example. This provides the capability to reference examples that cannot easily be included in JSON or YAML documents.  The `value` field and `externalValue` field are mutually exclusive.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nIn all cases, the example value is expected to be compatible with the type schema\nof its associated value.  Tooling implementations MAY choose to\nvalidate compatibility automatically, and reject the example value(s) if incompatible.\n\n##### Example Object Examples\n\nIn a request body:\n\n```yaml\nrequestBody:\n  content:\n    'application/json':\n      schema:\n        $ref: '#/components/schemas/Address'\n      examples:\n        foo:\n          summary: A foo example\n          value: {\"foo\": \"bar\"}\n        bar:\n          summary: A bar example\n          value: {\"bar\": \"baz\"}\n    'application/xml':\n      examples:\n        xmlExample:\n          summary: This is an example in XML\n          externalValue: 'http://example.org/examples/address-example.xml'\n    'text/plain':\n      examples:\n        textExample:\n          summary: This is a text example\n          externalValue: 'http://foo.bar/examples/address-example.txt'\n```\n\nIn a parameter:\n\n```yaml\nparameters:\n  - name: 'zipCode'\n    in: 'query'\n    schema:\n      type: 'string'\n      format: 'zip-code'\n    examples:\n      zip-example:\n        $ref: '#/components/examples/zip-example'\n```\n\nIn a response:\n\n```yaml\nresponses:\n  '200':\n    description: your car appointment has been booked\n    content:\n      application/json:\n        schema:\n          $ref: '#/components/schemas/SuccessResponse'\n        examples:\n          confirmation-success:\n            $ref: '#/components/examples/confirmation-success'\n```\n\n\n#### Link Object\n\nThe `Link object` represents a possible design-time link for a response.\nThe presence of a link does not guarantee the caller's ability to successfully invoke it, rather it provides a known relationship and traversal mechanism between responses and other operations.\n\nUnlike _dynamic_ links (i.e. links provided **in** the response payload), the OAS linking mechanism does not require link information in the runtime response.\n\nFor computing links, and providing instructions to execute them, a [runtime expression](#runtime-expressions) is used for accessing values in an operation and using them as parameters while invoking the linked operation. \n\n##### Fixed Fields\n\nField Name  |  Type  | Description\n---|:---:|---\n<a name=\"linkOperationRef\"></a>operationRef | `string` | A relative or absolute URI reference to an OAS operation. This field is mutually exclusive of the `operationId` field, and MUST point to an [Operation Object](#operation-object). Relative `operationRef` values MAY be used to locate an existing [Operation Object](#operation-object) in the OpenAPI definition.\n<a name=\"linkOperationId\"></a>operationId  | `string` | The name of an _existing_, resolvable OAS operation, as defined with a unique `operationId`.  This field is mutually exclusive of the `operationRef` field. \n<a name=\"linkParameters\"></a>parameters   | Map[`string`, Any \\| [{expression}](#runtime-expressions)] | A map representing parameters to pass to an operation as specified with `operationId` or identified via `operationRef`. The key is the parameter name to be used, whereas the value can be a constant or an expression to be evaluated and passed to the linked operation.  The parameter name can be qualified using the [parameter location](#parameterIn) `[{in}.]{name}` for operations that use the same parameter name in different locations (e.g. path.id).\n<a name=\"linkRequestBody\"></a>requestBody | Any \\| [{expression}](#runtime-expressions) | A literal value or [{expression}](#runtime-expressions) to use as a request body when calling the target operation.\n<a name=\"linkDescription\"></a>description  | `string` | A description of the link. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"linkServer\"></a>server       | [Server Object](#server-object) | A server object to be used by the target operation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nA linked operation MUST be identified using either an `operationRef` or `operationId`.\nIn the case of an `operationId`, it MUST be unique and resolved in the scope of the OAS document.\nBecause of the potential for name clashes, the `operationRef` syntax is preferred\nfor specifications with external references.\n\n##### Examples\n\nComputing a link from a request operation where the `$request.path.id` is used to pass a request parameter to the linked operation.\n\n```yaml\npaths:\n  /users/{id}:\n    parameters:\n    - name: id\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n    get:\n      responses:\n        '200':\n          description: the user being returned\n          content:\n            application/json:\n              schema:\n                type: object\n                properties:\n                  uuid: # the unique user id\n                    type: string\n                    format: uuid\n          links:\n            address:\n              # the target link operationId\n              operationId: getUserAddress\n              parameters:\n                # get the `id` field from the request path parameter named `id`\n                userId: $request.path.id\n  # the path item of the linked operation\n  /users/{userid}/address:\n    parameters:\n    - name: userid\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n    # linked operation\n    get:\n      operationId: getUserAddress\n      responses:\n        '200':\n          description: the user's address\n```\n\nWhen a runtime expression fails to evaluate, no parameter value is passed to the target operation.\n\nValues from the response body can be used to drive a linked operation.\n\n```yaml\nlinks:\n  address:\n    operationId: getUserAddressByUUID\n    parameters:\n      # get the `uuid` field from the `uuid` field in the response body\n      userUuid: $response.body#/uuid\n```\n\nClients follow all links at their discretion.\nNeither permissions, nor the capability to make a successful call to that link, is guaranteed\nsolely by the existence of a relationship.\n\n\n##### OperationRef Examples\n\nAs references to `operationId` MAY NOT be possible (the `operationId` is an optional\nfield in an [Operation Object](#operation-object)), references MAY also be made through a relative `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: '#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nor an absolute `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: 'https://na2.gigantic-server.com/#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nNote that in the use of `operationRef`, the _escaped forward-slash_ is necessary when\nusing JSON references.\n\n\n##### Runtime Expressions\n\nRuntime expressions allow defining values based on information that will only be available within the HTTP message in an actual API call.\nThis mechanism is used by [Link Objects](#link-object) and [Callback Objects](#callback-object).\n\nThe runtime expression is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```abnf\n      expression = ( \"$url\" / \"$method\" / \"$statusCode\" / \"$request.\" source / \"$response.\" source )\n      source = ( header-reference / query-reference / path-reference / body-reference )\n      header-reference = \"header.\" token\n      query-reference = \"query.\" name \n      path-reference = \"path.\" name\n      body-reference = \"body\" [\"#\" json-pointer ]\n      json-pointer    = *( \"/\" reference-token )\n      reference-token = *( unescaped / escaped )\n      unescaped       = %x00-2E / %x30-7D / %x7F-10FFFF\n         ; %x2F ('/') and %x7E ('~') are excluded from 'unescaped'\n      escaped         = \"~\" ( \"0\" / \"1\" )\n        ; representing '~' and '/', respectively\n      name = *( CHAR )\n      token = 1*tchar\n      tchar = \"!\" / \"#\" / \"$\" / \"%\" / \"&\" / \"'\" / \"*\" / \"+\" / \"-\" / \".\" /\n        \"^\" / \"_\" / \"`\" / \"|\" / \"~\" / DIGIT / ALPHA\n```\n\nHere, `json-pointer` is taken from [RFC 6901](https://tools.ietf.org/html/rfc6901), `char` from [RFC 7159](https://tools.ietf.org/html/rfc7159#section-7) and `token` from [RFC 7230](https://tools.ietf.org/html/rfc7230#section-3.2.6).\n\nThe `name` identifier is case-sensitive, whereas `token` is not.\n\nThe table below provides examples of runtime expressions and examples of their use in a value:\n\n##### Examples\n\nSource Location | example expression  | notes\n---|:---|:---|\nHTTP Method            | `$method`         | The allowable values for the `$method` will be those for the HTTP operation.\nRequested media type | `$request.header.accept`        | \nRequest parameter      | `$request.path.id`        | Request parameters MUST be declared in the `parameters` section of the parent operation or they cannot be evaluated. This includes request headers.\nRequest body property   | `$request.body#/user/uuid`   | In operations which accept payloads, references may be made to portions of the `requestBody` or the entire body.\nRequest URL            | `$url`            | \nResponse value         | `$response.body#/status`       |  In operations which return payloads, references may be made to portions of the response body or the entire body.\nResponse header        | `$response.header.Server` |  Single header values only are available\n\nRuntime expressions preserve the type of the referenced value.\nExpressions can be embedded into string values by surrounding the expression with `{}` curly braces.\n\n#### Header Object\n\nThe Header Object follows the structure of the [Parameter Object](#parameter-object) with the following changes:\n\n1. `name` MUST NOT be specified, it is given in the corresponding `headers` map.\n1. `in` MUST NOT be specified, it is implicitly in `header`.\n1. All traits that are affected by the location MUST be applicable to a location of `header` (for example, [`style`](#parameterStyle)).\n\n##### Header Object Example\n\nA simple header of type `integer`:\n\n```json\n{\n  \"description\": \"The number of allowed requests in the current period\",\n  \"schema\": {\n    \"type\": \"integer\"\n  }\n}\n```\n\n```yaml\ndescription: The number of allowed requests in the current period\nschema:\n  type: integer\n```\n\n#### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nIt is not mandatory to have a Tag Object per tag defined in the Operation Object instances.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"tagName\"></a>name | `string` | **REQUIRED**. The name of the tag.\n<a name=\"tagDescription\"></a>description | `string` | A short description for the tag. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"tagExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Tag Object Example\n\n```json\n{\n\t\"name\": \"pet\",\n\t\"description\": \"Pets operations\"\n}\n```\n\n```yaml\nname: pet\ndescription: Pets operations\n```\n\n\n#### Reference Object\n\nA simple object to allow referencing other components in the specification, internally and externally.\n\nThe Reference Object is defined by [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03) and follows the same structure, behavior and rules.\n\nFor this specification, reference resolution is accomplished as defined by the JSON Reference specification and not by the JSON Schema specification.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"referenceRef\"></a>$ref | `string` | **REQUIRED**. The reference string.\n\nThis object cannot be extended with additional properties and any properties added SHALL be ignored.\n\n##### Reference Object Example\n\n```json\n{\n\t\"$ref\": \"#/components/schemas/Pet\"\n}\n```\n\n```yaml\n$ref: '#/components/schemas/Pet'\n```\n\n##### Relative Schema Document Example\n```json\n{\n  \"$ref\": \"Pet.json\"\n}\n```\n\n```yaml\n$ref: Pet.yaml\n```\n\n##### Relative Documents With Embedded Schema Example\n```json\n{\n  \"$ref\": \"definitions.json#/Pet\"\n}\n```\n\n```yaml\n$ref: definitions.yaml#/Pet\n```\n\n#### Schema Object\n\nThe Schema Object allows the definition of input and output data types.\nThese types can be objects, but also primitives and arrays.\nThis object is an extended subset of the [JSON Schema Specification Wright Draft 00](https://json-schema.org/).\n\nFor more information about the properties, see [JSON Schema Core](https://tools.ietf.org/html/draft-wright-json-schema-00) and [JSON Schema Validation](https://tools.ietf.org/html/draft-wright-json-schema-validation-00).\nUnless stated otherwise, the property definitions follow the JSON Schema.\n\n##### Properties\n\nThe following properties are taken directly from the JSON Schema definition and follow the same specifications:\n\n- title\n- multipleOf\n- maximum\n- exclusiveMaximum\n- minimum\n- exclusiveMinimum\n- maxLength\n- minLength\n- pattern (This string SHOULD be a valid regular expression, according to the [Ecma-262 Edition 5.1 regular expression](https://www.ecma-international.org/ecma-262/5.1/#sec-15.10.1) dialect)\n- maxItems\n- minItems\n- uniqueItems\n- maxProperties\n- minProperties\n- required\n- enum\n\nThe following properties are taken from the JSON Schema definition but their definitions were adjusted to the OpenAPI Specification.\n- type - Value MUST be a string. Multiple types via an array are not supported.\n- allOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- oneOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- anyOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- not - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n- items - Value MUST be an object and not an array. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema. `items` MUST be present if the `type` is `array`.\n- properties - Property definitions MUST be a [Schema Object](#schema-object) and not a standard JSON Schema (inline or referenced).\n- additionalProperties - Value can be boolean or object. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema. Consistent with JSON Schema, `additionalProperties` defaults to `true`.\n- description - [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n- format - See [Data Type Formats](#dataTypeFormat) for further details. While relying on JSON Schema's defined formats, the OAS offers a few additional predefined formats.\n- default - The default value represents what would be assumed by the consumer of the input as the value of the schema if one is not provided. Unlike JSON Schema, the value MUST conform to the defined type for the Schema Object defined at the same level. For example, if `type` is `string`, then `default` can be `\"foo\"` but cannot be `1`.\n\nAlternatively, any time a Schema Object can be used, a [Reference Object](#reference-object) can be used in its place. This allows referencing definitions instead of defining them inline.\n\nAdditional properties defined by the JSON Schema specification that are not mentioned here are strictly unsupported.\n\nOther than the JSON Schema subset fields, the following fields MAY be used for further schema documentation:\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"schemaNullable\"></a>nullable | `boolean` | A `true` value adds `\"null\"` to the allowed type specified by the `type` keyword, only if `type` is explicitly defined within the same Schema Object. Other Schema Object constraints retain their defined behavior, and therefore may disallow the use of `null` as a value. A `false` value leaves the specified or default `type` unmodified. The default value is `false`.\n<a name=\"schemaDiscriminator\"></a>discriminator | [Discriminator Object](#discriminator-object) | Adds support for polymorphism. The discriminator is an object name that is used to differentiate between other schemas which may satisfy the payload description. See [Composition and Inheritance](#composition-and-inheritance-polymorphism) for more details.\n<a name=\"schemaReadOnly\"></a>readOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"read only\". This means that it MAY be sent as part of a response but SHOULD NOT be sent as part of the request. If the property is marked as `readOnly` being `true` and is in the `required` list, the `required` will take effect on the response only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`.\n<a name=\"schemaWriteOnly\"></a>writeOnly | `boolean` | Relevant only for Schema `\"properties\"` definitions. Declares the property as \"write only\". Therefore, it MAY be sent as part of a request but SHOULD NOT be sent as part of the response. If the property is marked as `writeOnly` being `true` and is in the `required` list, the `required` will take effect on the request only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`.\n<a name=\"schemaXml\"></a>xml | [XML Object](#xml-object) | This MAY be used only on properties schemas. It has no effect on root schemas. Adds additional metadata to describe the XML representation of this property.\n<a name=\"schemaExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema.\n<a name=\"schemaExample\"></a>example | Any | A free-form property to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary.\n<a name=\"schemaDeprecated\"></a> deprecated | `boolean` | Specifies that a schema is deprecated and SHOULD be transitioned out of usage. Default value is `false`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n###### Composition and Inheritance (Polymorphism)\n\nThe OpenAPI Specification allows combining and extending model definitions using the `allOf` property of JSON Schema, in effect offering model composition.\n`allOf` takes an array of object definitions that are validated *independently* but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models.\nTo support polymorphism, the OpenAPI Specification adds the `discriminator` field.\nWhen used, the `discriminator` will be the name of the property that decides which schema definition validates the structure of the model.\nAs such, the `discriminator` field MUST be a required field.\nThere are two ways to define the value of a discriminator for an inheriting instance.\n- Use the schema name.\n- Override the schema name by overriding the property with a new value. If a new value exists, this takes precedence over the schema name.\nAs such, inline schema definitions, which do not have a given id, *cannot* be used in polymorphism.\n\n###### XML Modeling\n\nThe [xml](#schemaXml) property allows extra definitions when translating the JSON definition to XML.\nThe [XML Object](#xml-object) contains additional information about the available options.\n\n##### Schema Object Examples\n\n###### Primitive Sample\n\n```json\n{\n  \"type\": \"string\",\n  \"format\": \"email\"\n}\n```\n\n```yaml\ntype: string\nformat: email\n```\n\n###### Simple Model\n\n```json\n{\n  \"type\": \"object\",\n  \"required\": [\n    \"name\"\n  ],\n  \"properties\": {\n    \"name\": {\n      \"type\": \"string\"\n    },\n    \"address\": {\n      \"$ref\": \"#/components/schemas/Address\"\n    },\n    \"age\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\",\n      \"minimum\": 0\n    }\n  }\n}\n```\n\n```yaml\ntype: object\nrequired:\n- name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/components/schemas/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n###### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"$ref\": \"#/components/schemas/ComplexModel\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/components/schemas/ComplexModel'\n```\n\n###### Model with Example\n\n```json\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"name\": {\n      \"type\": \"string\"\n    }\n  },\n  \"required\": [\n    \"name\"\n  ],\n  \"example\": {\n    \"name\": \"Puma\",\n    \"id\": 1\n  }\n}\n```\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n- name\nexample:\n  name: Puma\n  id: 1\n```\n\n###### Models with Composition\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"ErrorModel\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"message\",\n          \"code\"\n        ],\n        \"properties\": {\n          \"message\": {\n            \"type\": \"string\"\n          },\n          \"code\": {\n            \"type\": \"integer\",\n            \"minimum\": 100,\n            \"maximum\": 600\n          }\n        }\n      },\n      \"ExtendedErrorModel\": {\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/ErrorModel\"\n          },\n          {\n            \"type\": \"object\",\n            \"required\": [\n              \"rootCause\"\n            ],\n            \"properties\": {\n              \"rootCause\": {\n                \"type\": \"string\"\n              }\n            }\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    ErrorModel:\n      type: object\n      required:\n      - message\n      - code\n      properties:\n        message:\n          type: string\n        code:\n          type: integer\n          minimum: 100\n          maximum: 600\n    ExtendedErrorModel:\n      allOf:\n      - $ref: '#/components/schemas/ErrorModel'\n      - type: object\n        required:\n        - rootCause\n        properties:\n          rootCause:\n            type: string\n```\n\n###### Models with Polymorphism Support\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"Pet\": {\n        \"type\": \"object\",\n        \"discriminator\": {\n          \"propertyName\": \"petType\"\n        },\n        \"properties\": {\n          \"name\": {\n            \"type\": \"string\"\n          },\n          \"petType\": {\n            \"type\": \"string\"\n          }\n        },\n        \"required\": [\n          \"name\",\n          \"petType\"\n        ]\n      },\n      \"Cat\": {\n        \"description\": \"A representation of a cat. Note that `Cat` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"huntingSkill\": {\n                \"type\": \"string\",\n                \"description\": \"The measured skill for hunting\",\n                \"default\": \"lazy\",\n                \"enum\": [\n                  \"clueless\",\n                  \"lazy\",\n                  \"adventurous\",\n                  \"aggressive\"\n                ]\n              }\n            },\n            \"required\": [\n              \"huntingSkill\"\n            ]\n          }\n        ]\n      },\n      \"Dog\": {\n        \"description\": \"A representation of a dog. Note that `Dog` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"packSize\": {\n                \"type\": \"integer\",\n                \"format\": \"int32\",\n                \"description\": \"the size of the pack the dog is from\",\n                \"default\": 0,\n                \"minimum\": 0\n              }\n            },\n            \"required\": [\n              \"packSize\"\n            ]\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n      properties:\n        name:\n          type: string\n        petType:\n          type: string\n      required:\n      - name\n      - petType\n    Cat:  ## \"Cat\" will be used as the discriminator value\n      description: A representation of a cat\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          huntingSkill:\n            type: string\n            description: The measured skill for hunting\n            enum:\n            - clueless\n            - lazy\n            - adventurous\n            - aggressive\n        required:\n        - huntingSkill\n    Dog:  ## \"Dog\" will be used as the discriminator value\n      description: A representation of a dog\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          packSize:\n            type: integer\n            format: int32\n            description: the size of the pack the dog is from\n            default: 0\n            minimum: 0\n        required:\n        - packSize\n```\n\n#### Discriminator Object\n\nWhen request bodies or response payloads may be one of a number of different schemas, a `discriminator` object can be used to aid in serialization, deserialization, and validation.  The discriminator is a specific object in a schema which is used to inform the consumer of the specification of an alternative schema based on the value associated with it.\n\nWhen using the discriminator, _inline_ schemas will not be considered.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"propertyName\"></a>propertyName | `string` | **REQUIRED**. The name of the property in the payload that will hold the discriminator value.\n<a name=\"discriminatorMapping\"></a> mapping | Map[`string`, `string`] | An object to hold mappings between payload values and schema names or references.\n\nThe discriminator object is legal only when using one of the composite keywords `oneOf`, `anyOf`, `allOf`.\n\nIn OAS 3.0, a response payload MAY be described to be exactly one of any number of types:\n\n```yaml\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n```\n\nwhich means the payload _MUST_, by validation, match exactly one of the schemas described by `Cat`, `Dog`, or `Lizard`.  In this case, a discriminator MAY act as a \"hint\" to shortcut validation and selection of the matching schema which may be a costly operation, depending on the complexity of the schema. We can then describe exactly which field tells us which schema to use:\n\n\n```yaml\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  discriminator:\n    propertyName: petType\n```\n\nThe expectation now is that a property with name `petType` _MUST_ be present in the response payload, and the value will correspond to the name of a schema defined in the OAS document.  Thus the response payload:\n\n```json\n{\n  \"id\": 12345,\n  \"petType\": \"Cat\"\n}\n```\n\nWill indicate that the `Cat` schema be used in conjunction with this payload.\n\nIn scenarios where the value of the discriminator field does not match the schema name or implicit mapping is not possible, an optional `mapping` definition MAY be used:\n\n```yaml\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  - $ref: 'https://gigantic-server.com/schemas/Monster/schema.json'\n  discriminator:\n    propertyName: petType\n    mapping:\n      dog: '#/components/schemas/Dog'\n      monster: 'https://gigantic-server.com/schemas/Monster/schema.json'\n```\n\nHere the discriminator _value_ of `dog` will map to the schema `#/components/schemas/Dog`, rather than the default (implicit) value of `Dog`.  If the discriminator _value_ does not match an implicit or explicit mapping, no schema can be determined and validation SHOULD fail. Mapping keys MUST be string values, but tooling MAY convert response values to strings for comparison.\n\nWhen used in conjunction with the `anyOf` construct, the use of the discriminator can avoid ambiguity where multiple schemas may satisfy a single payload.\n\nIn both the `oneOf` and `anyOf` use cases, all possible schemas MUST be listed explicitly.  To avoid redundancy, the discriminator MAY be added to a parent schema definition, and all schemas comprising the parent schema in an `allOf` construct may be used as an alternate schema.\n\nFor example:\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n      - petType\n      properties:\n        petType:\n          type: string\n      discriminator:\n        propertyName: petType\n        mapping:\n          dog: Dog\n    Cat:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Cat`\n        properties:\n          name:\n            type: string\n    Dog:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Dog`\n        properties:\n          bark:\n            type: string\n    Lizard:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Lizard`\n        properties:\n          lovesRocks:\n            type: boolean\n```\n\na payload like this:\n\n```json\n{\n  \"petType\": \"Cat\",\n  \"name\": \"misty\"\n}\n```\n\nwill indicate that the `Cat` schema be used.  Likewise this schema:\n\n```json\n{\n  \"petType\": \"dog\",\n  \"bark\": \"soft\"\n}\n```\n\nwill map to `Dog` because of the definition in the `mappings` element.\n\n\n#### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\n\nWhen using arrays, XML element names are *not* inferred (for singular/plural forms) and the `name` property SHOULD be used to add that information.\nSee examples for expected behavior.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"xmlName\"></a>name | `string` | Replaces the name of the element/attribute used for the described schema property. When defined within `items`, it will affect the name of the individual XML elements within the list. When defined alongside `type` being `array` (outside the `items`), it will affect the wrapping element and only if `wrapped` is `true`. If `wrapped` is `false`, it will be ignored.\n<a name=\"xmlNamespace\"></a>namespace | `string` | The URI of the namespace definition. Value MUST be in the form of an absolute URI.\n<a name=\"xmlPrefix\"></a>prefix | `string` | The prefix to be used for the [name](#xmlName).\n<a name=\"xmlAttribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`.\n<a name=\"xmlWrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `array` (outside the `items`).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### XML Object Examples\n\nThe examples of the XML object definitions are included inside a property definition of a [Schema Object](#schema-object) with a sample of the XML representation of it.\n\n###### No XML Element\n\nBasic string property:\n\n```json\n{\n    \"animals\": {\n        \"type\": \"string\"\n    }\n}\n```\n\n```yaml\nanimals:\n  type: string\n```\n\n```xml\n<animals>...</animals>\n```\n\nBasic string array property ([`wrapped`](#xmlWrapped) is `false` by default):\n\n```json\n{\n    \"animals\": {\n        \"type\": \"array\",\n        \"items\": {\n            \"type\": \"string\"\n        }\n    }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n```\n\n```xml\n<animals>...</animals>\n<animals>...</animals>\n<animals>...</animals>\n```\n\n###### XML Name Replacement\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\",\n    \"xml\": {\n      \"name\": \"animal\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n  xml:\n    name: animal\n```\n\n```xml\n<animal>...</animal>\n```\n\n\n###### XML Attribute, Prefix and Namespace\n\nIn this example, a full model definition is shown.\n\n```json\n{\n  \"Person\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\",\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"name\": {\n        \"type\": \"string\",\n        \"xml\": {\n          \"namespace\": \"http://example.com/schema/sample\",\n          \"prefix\": \"sample\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nPerson:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int32\n      xml:\n        attribute: true\n    name:\n      type: string\n      xml:\n        namespace: http://example.com/schema/sample\n        prefix: sample\n```\n\n```xml\n<Person id=\"123\">\n    <sample:name xmlns:sample=\"http://example.com/schema/sample\">example</sample:name>\n</Person>\n```\n\n###### XML Arrays\n\nChanging the element names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nThe external `name` property has no effect on the XML:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nEven when the array is wrapped, if a name is not explicitly defined, the same name will be used both internally and externally:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animals>value</animals>\n  <animals>value</animals>\n</animals>\n```\n\nTo overcome the naming problem in the example above, the following definition can be used:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animal>value</animal>\n  <animal>value</animal>\n</animals>\n```\n\nAffecting both internal and external names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <animal>value</animal>\n  <animal>value</animal>\n</aliens>\n```\n\nIf we change the external element but not the internal ones:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <aliens>value</aliens>\n  <aliens>value</aliens>\n</aliens>\n```\n\n#### Security Scheme Object\n\nDefines a security scheme that can be used by the operations.\nSupported schemes are HTTP authentication, an API key (either as a header, a cookie parameter or as a query parameter), OAuth2's common flows (implicit, password, client credentials and authorization code) as defined in [RFC6749](https://tools.ietf.org/html/rfc6749), and [OpenID Connect Discovery](https://tools.ietf.org/html/draft-ietf-oauth-discovery-06).\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"securitySchemeType\"></a>type | `string` | Any | **REQUIRED**. The type of the security scheme. Valid values are `\"apiKey\"`, `\"http\"`, `\"oauth2\"`, `\"openIdConnect\"`.\n<a name=\"securitySchemeDescription\"></a>description | `string` | Any | A short description for security scheme. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"securitySchemeName\"></a>name | `string` | `apiKey` | **REQUIRED**. The name of the header, query or cookie parameter to be used.\n<a name=\"securitySchemeIn\"></a>in | `string` | `apiKey` | **REQUIRED**. The location of the API key. Valid values are `\"query\"`, `\"header\"` or `\"cookie\"`.\n<a name=\"securitySchemeScheme\"></a>scheme | `string` | `http` | **REQUIRED**. The name of the HTTP Authorization scheme to be used in the [Authorization header as defined in RFC7235](https://tools.ietf.org/html/rfc7235#section-5.1).  The values used SHOULD be registered in the [IANA Authentication Scheme registry](https://www.iana.org/assignments/http-authschemes/http-authschemes.xhtml).\n<a name=\"securitySchemeBearerFormat\"></a>bearerFormat | `string` | `http` (`\"bearer\"`) | A hint to the client to identify how the bearer token is formatted.  Bearer tokens are usually generated by an authorization server, so this information is primarily for documentation purposes.\n<a name=\"securitySchemeFlows\"></a>flows | [OAuth Flows Object](#oauth-flows-object) | `oauth2` | **REQUIRED**. An object containing configuration information for the flow types supported.\n<a name=\"securitySchemeOpenIdConnectUrl\"></a>openIdConnectUrl | `string` | `openIdConnect` | **REQUIRED**. OpenId Connect URL to discover OAuth2 configuration values. This MUST be in the form of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Security Scheme Object Example\n\n###### Basic Authentication Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"basic\"\n}\n```\n\n```yaml\ntype: http\nscheme: basic\n```\n\n###### API Key Sample\n\n```json\n{\n  \"type\": \"apiKey\",\n  \"name\": \"api_key\",\n  \"in\": \"header\"\n}\n```\n\n```yaml\ntype: apiKey\nname: api_key\nin: header\n```\n\n###### JWT Bearer Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"bearer\",\n  \"bearerFormat\": \"JWT\",\n}\n```\n\n```yaml\ntype: http\nscheme: bearer\nbearerFormat: JWT\n```\n\n###### Implicit OAuth2 Sample\n\n```json\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### OAuth Flows Object\n\nAllows configuration of the supported OAuth Flows.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"oauthFlowsImplicit\"></a>implicit| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Implicit flow\n<a name=\"oauthFlowsPassword\"></a>password| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Resource Owner Password flow\n<a name=\"oauthFlowsClientCredentials\"></a>clientCredentials| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Client Credentials flow.  Previously called `application` in OpenAPI 2.0.\n<a name=\"oauthFlowsAuthorizationCode\"></a>authorizationCode| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Authorization Code flow.  Previously called `accessCode` in OpenAPI 2.0.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### OAuth Flow Object\n\nConfiguration details for a supported OAuth Flow\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"oauthFlowAuthorizationUrl\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"authorizationCode\"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL.\n<a name=\"oauthFlowTokenUrl\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"clientCredentials\"`, `\"authorizationCode\"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL.\n<a name=\"oauthFlowRefreshUrl\"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL.\n<a name=\"oauthFlowScopes\"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it. The map MAY be empty.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### OAuth Flow Object Examples\n\n```JSON\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    },\n    \"authorizationCode\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"tokenUrl\": \"https://example.com/api/oauth/token\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n  authorizationCode:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    tokenUrl: https://example.com/api/oauth/token\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### Security Requirement Object\n\nLists the required security schemes to execute this operation.\nThe name used for each property MUST correspond to a security scheme declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object).\n\nSecurity Requirement Objects that contain multiple schemes require that all schemes MUST be satisfied for a request to be authorized.\nThis enables support for scenarios where multiple query parameters or HTTP headers are required to convey security information.\n\nWhen a list of Security Requirement Objects is defined on the [OpenAPI Object](#openapi-object) or [Operation Object](#operation-object), only one of the Security Requirement Objects in the list needs to be satisfied to authorize the request.\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"securityRequirementsName\"></a>{name} | [`string`] | Each name MUST correspond to a security scheme which is declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object). If the security scheme is of type `\"oauth2\"` or `\"openIdConnect\"`, then the value is a list of scope names required for the execution, and the list MAY be empty if authorization does not require a specified scope. For other security scheme types, the array MUST be empty.\n\n##### Security Requirement Object Examples\n\n###### Non-OAuth2 Security Requirement\n\n```json\n{\n  \"api_key\": []\n}\n```\n\n```yaml\napi_key: []\n```\n\n###### OAuth2 Security Requirement\n\n```json\n{\n  \"petstore_auth\": [\n    \"write:pets\",\n    \"read:pets\"\n  ]\n}\n```\n\n```yaml\npetstore_auth:\n- write:pets\n- read:pets\n```\n\n###### Optional OAuth2 Security\n\nOptional OAuth2 security as would be defined in an <a href=\"#openapi-object\">OpenAPI Object</a> or an <a href=\"#operation-object\">Operation Object</a>:\n\n```json\n{\n  \"security\": [\n    {},\n    {\n      \"petstore_auth\": [\n        \"write:pets\",\n        \"read:pets\"\n      ]\n    }\n  ]\n}\n```\n\n```yaml\nsecurity:\n  - {}\n  - petstore_auth:\n    - write:pets\n    - read:pets\n```\n\n### Specification Extensions\n\nWhile the OpenAPI Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are implemented as patterned fields that are always prefixed by `\"x-\"`.\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"infoExtensions\"></a>^x- | Any | Allows extensions to the OpenAPI Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be `null`, a primitive, an array or an object. Can have any valid JSON format value.\n\nThe extensions may or may not be supported by the available tooling, but those may be extended as well to add requested support (if tools are internal or open-sourced).\n\n### Security Filtering\n\nSome objects in the OpenAPI Specification MAY be declared and remain empty, or be completely removed, even though they are inherently the core of the API documentation.\n\nThe reasoning is to allow an additional layer of access control over the documentation.\nWhile not part of the specification itself, certain libraries MAY choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples of this:\n\n1. The [Paths Object](#paths-object) MAY be empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They'd still have access to the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) MAY be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different from hiding the path itself from the [Paths Object](#paths-object), because the user will be aware of its existence. This allows the documentation provider to finely control what the viewer can see.\n\n## Appendix A: Revision History\n\nVersion   | Date       | Notes\n---       | ---        | ---\n3.0.3     | 2020-02-20 | Patch release of the OpenAPI Specification 3.0.3\n3.0.2     | 2018-10-08 | Patch release of the OpenAPI Specification 3.0.2\n3.0.1     | 2017-12-06 | Patch release of the OpenAPI Specification 3.0.1\n3.0.0     | 2017-07-26 | Release of the OpenAPI Specification 3.0.0\n3.0.0-rc2 | 2017-06-16 | rc2 of the 3.0 specification\n3.0.0-rc1 | 2017-04-27 | rc1 of the 3.0 specification\n3.0.0-rc0 | 2017-02-28 | Implementer's Draft of the 3.0 specification\n2.0       | 2015-12-31 | Donation of Swagger 2.0 to the OpenAPI Initiative\n2.0       | 2014-09-08 | Release of Swagger 2.0\n1.2       | 2014-03-14 | Initial release of the formal document.\n1.1       | 2012-08-22 | Release of Swagger 1.1\n1.0       | 2011-08-10 | First release of the Swagger Specification\n"
  },
  {
    "path": "versions/3.0.4-editors.md",
    "content": "# OpenAPI Specification Editors\n\n## Active\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Henry Andrews [@handrews](https://github.com/handrews)\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Lorna Mitchell [@lornajane](https://github.com/lornajane)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Miguel Quintero [@miqui](https://github.com/miqui)\n* Mike Kistler [@mikekistler](https://github.com/mikekistler)\n* Ralf Handl [@ralfhandl](https://github.com/ralfhandl)\n* Ron Ratovsky [@webron](https://github.com/webron)\n\n## Emeritus\n* Mike Ralphson [@MikeRalphson](https://github.com/MikeRalphson)\n* Uri Sarid [@usarid](https://github.com/usarid)\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "versions/3.0.4.md",
    "content": "# OpenAPI Specification\n\n## Version 3.0.4\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"NOT RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [BCP 14](https://tools.ietf.org/html/bcp14) [RFC2119](https://tools.ietf.org/html/rfc2119) [RFC8174](https://tools.ietf.org/html/rfc8174) when, and only when, they appear in all capitals, as shown here.\n\nThis document is licensed under [The Apache License, Version 2.0](https://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introduction\n\nThe OpenAPI Specification (OAS) defines a standard, language-agnostic interface to HTTP APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined, a consumer can understand and interact with the remote service with a minimal amount of implementation logic.\n\nAn OpenAPI Description can then be used by documentation generation tools to display the API, code generation tools to generate servers and clients in various programming languages, testing tools, and many other use cases.\n\nFor examples of OpenAPI usage and additional documentation, please visit [[?OpenAPI-Learn]].\n\nFor extension registries and other specifications published by the OpenAPI Initiative, as well as the authoritative rendering of this specification, please visit [spec.openapis.org](https://spec.openapis.org/).\n\n## Definitions\n\n### OpenAPI Description\n\nAn OpenAPI Description (OAD) formally describes the surface of an API and its semantics. It is composed of an [entry document](#openapi-description-structure), which must be an OpenAPI Document, and any/all of its referenced documents. An OAD uses and conforms to the OpenAPI Specification.\n\n### OpenAPI Document\n\nAn OpenAPI Document is a single JSON or YAML document that conforms to the OpenAPI Specification. An OpenAPI Document compatible with OAS 3.\\*.\\* contains a required [`openapi`](#oas-version) field which designates the version of the OAS that it uses.\n\n### Schema\n\nA \"schema\" is a formal description of syntax and structure.\nThis document serves as the [schema](#schema) for the OpenAPI Specification format; a non-authoritative JSON Schema based on this document is also provided on [spec.openapis.org](https://spec.openapis.org) for informational purposes.\nThis specification also _uses_ schemas in the form of the [Schema Object](#schema-object).\n\n### Object\n\nWhen capitalized, the word \"Object\" refers to any of the Objects that are named by section headings in this document.\n\n### Path Templating\n\nPath templating refers to the usage of template expressions, delimited by curly braces (`{}`), to mark a section of a URL path as replaceable using path parameters.\n\nEach template expression in the path MUST correspond to a path parameter that is included in the [Path Item](#path-item-object) itself and/or in each of the Path Item's [Operations](#operation-object).\n\n### Media Types\n\nMedia type definitions are spread across several resources.\nThe media type definitions SHOULD be in compliance with [RFC6838](https://tools.ietf.org/html/rfc6838).\n\nSome examples of possible media type definitions:\n\n```text\n  text/plain; charset=utf-8\n  application/json\n  application/vnd.github+json\n  application/vnd.github.v3+json\n  application/vnd.github.v3.raw+json\n  application/vnd.github.v3.text+json\n  application/vnd.github.v3.html+json\n  application/vnd.github.v3.full+json\n  application/vnd.github.v3.diff\n  application/vnd.github.v3.patch\n```\n\n### HTTP Status Codes\n\nThe HTTP Status Codes are used to indicate the status of the executed operation.\nStatus codes SHOULD be selected from the available status codes registered in the [IANA Status Code Registry](https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n### Case Sensitivity\n\nAs most field names and values in the OpenAPI Specification are case-sensitive, this document endeavors to call out any case-insensitive names and values.\nHowever, the case sensitivity of field names and values that map directly to HTTP concepts follow the case sensitivity rules of HTTP, even if this document does not make a note of every concept.\n\n### Undefined and Implementation-Defined Behavior\n\nThis specification deems certain situations to have either _undefined_ or _implementation-defined_ behavior.\n\nBehavior described as _undefined_ is likely, at least in some circumstances, to result in outcomes that contradict the specification.\nThis description is used when detecting the contradiction is impossible or impractical.\nImplementations MAY support undefined scenarios for historical reasons, including ambiguous text in prior versions of the specification.\nThis support might produce correct outcomes in many cases, but relying on it is NOT RECOMMENDED as there is no guarantee that it will work across all tools or with future specification versions, even if those versions are otherwise strictly compatible with this one.\n\nBehavior described as _implementation-defined_ allows implementations to choose which of several different-but-compliant approaches to a requirement to implement.\nThis documents ambiguous requirements that API description authors are RECOMMENDED to avoid in order to maximize interoperability.\nUnlike undefined behavior, it is safe to rely on implementation-defined behavior if _and only if_ it can be guaranteed that all relevant tools support the same behavior.\n\n## Specification\n\n### Versions\n\nThe OpenAPI Specification is versioned using a `major`.`minor`.`patch` versioning scheme. The `major`.`minor` portion of the version string (for example `3.1`) SHALL designate the OAS feature set. _`.patch`_ versions address errors in, or provide clarifications to, this document, not the feature set. Tooling which supports OAS 3.1 SHOULD be compatible with all OAS 3.1.\\* versions. The patch version SHOULD NOT be considered by tooling, making no distinction between `3.1.0` and `3.1.1` for example.\n\nOccasionally, non-backwards compatible changes may be made in `minor` versions of the OAS where impact is believed to be low relative to the benefit provided.\n\n### Format\n\nAn OpenAPI Document that conforms to the OpenAPI Specification is itself a JSON object, which may be represented either in JSON or YAML format.\n\nFor example, if a field has an array value, the JSON array representation will be used:\n\n```json\n{\n  \"field\": [1, 2, 3]\n}\n```\n\nAll field names in the specification are **case sensitive**.\nThis includes all fields that are used as keys in a map, except where explicitly noted that keys are **case insensitive**.\n\nThe [schema](#schema) exposes two types of fields: _fixed fields_, which have a declared name, and _patterned fields_, which have a declared pattern for the field name.\n\nPatterned fields MUST have unique names within the containing object.\n\nIn order to preserve the ability to round-trip between YAML and JSON formats, YAML version [1.2](https://yaml.org/spec/1.2/spec.html) is RECOMMENDED along with some additional constraints:\n\n* Tags MUST be limited to those allowed by [YAML's JSON schema ruleset](https://yaml.org/spec/1.2/spec.html#id2803231), which defines a subset of the YAML syntax and is unrelated to [[JSON-Schema-05|JSON Schema]].\n* Keys used in YAML maps MUST be limited to a scalar string, as defined by the [YAML Failsafe schema ruleset](https://yaml.org/spec/1.2/spec.html#id2802346).\n\n**Note:** While APIs may be described by OpenAPI Descriptions in either YAML or JSON format, the API request and response bodies and other content are not required to be JSON or YAML.\n\n### OpenAPI Description Structure\n\nAn OpenAPI Description (OAD) MAY be made up of a single JSON or YAML document or be divided into multiple, connected parts at the discretion of the author. In the latter case, [Reference Object](#reference-object) and [Path Item Object](#path-item-object) `$ref` fields, as well as the [Link Object](#link-object) `operationRef` field, and the URI form of the [Discriminator Object](#discriminator-object) `mapping` field, are used to identify the referenced elements.\n\nIn a multi-document OAD, the document containing the OpenAPI Object where parsing begins is known as that OAD's **entry document**.\n\nIt is RECOMMENDED that the entry document of an OAD be named: `openapi.json` or `openapi.yaml`.\n\n#### Structural Interoperability\n\nJSON or YAML objects within an OAD are interpreted as specific Objects (such as [Operation Objects](#operation-object), [Response Objects](#response-object), [Reference Objects](#reference-object), etc.) based on their context. Depending on how references are arranged, a given JSON or YAML object can be interpreted in multiple different contexts:\n\n* As the root object of the [entry document](#openapi-description-structure), which is always interpreted as an OpenAPI Object\n* As the Object type implied by its parent Object within the document\n* As a reference target, with the Object type matching the reference source's context\n\nIf the same JSON/YAML object is parsed multiple times and the respective contexts require it to be parsed as _different_ Object types, the resulting behavior is _implementation defined_, and MAY be treated as an error if detected. An example would be referencing an empty Schema Object under `#/components/schemas` where a Path Item Object is expected, as an empty object is valid for both types. For maximum interoperability, it is RECOMMENDED that OpenAPI Description authors avoid such scenarios.\n\n#### Resolving Implicit Connections\n\nSeveral features of this specification require resolution of non-URI-based connections to some other part of the OpenAPI Description (OAD).\n\nThese connections are unambiguously resolved in single-document OADs, but the resolution process in multi-document OADs is _implementation-defined_, within the constraints described in this section.\nIn some cases, an unambiguous URI-based alternative is available, and OAD authors are RECOMMENDED to always use the alternative:\n\n| Source | Target | Alternative |\n| ---- | ---- | ---- |\n| [Security Requirement Object](#security-requirement-object) `{name}` | [Security Scheme Object](#security-scheme-object) name under the [Components Object](#components-object) | _n/a_ |\n| [Discriminator Object](#discriminator-object) `mapping` _(implicit, or explicit name syntax)_ | [Schema Object](#schema-object) name under the Components Object | `mapping` _(explicit URI syntax)_ |\n| [Operation Object](#operation-object) `tags` | [Tag Object](#tag-object) `name` (in the [OpenAPI Object](#openapi-object)'s `tags` array) | _n/a_ |\n| [Link Object](#link-object) `operationId` | [Path Item Object](#path-item-object) `operationId` | `operationRef` |\n\nA fifth implicit connection involves appending the templated URL paths of the [Paths Object](#paths-object) to the appropriate [Server Object](#server-object)'s `url` field.\nThis is unambiguous because only the entry document's Paths Object contributes URLs to the described API.\n\nIt is RECOMMENDED to consider all Operation Objects from all parsed documents when resolving any Link Object `operationId`.\nThis requires parsing all referenced documents prior to determining an `operationId` to be unresolvable.\n\nThe implicit connections in the Security Requirement Object and Discriminator Object rely on the _component name_, which is the name of the property holding the component in the appropriately typed sub-object of the Components Object.\nFor example, the component name of the Schema Object at `#/components/schemas/Foo` is `Foo`.\nThe implicit connection of `tags` in the Operation Object uses the `name` field of Tag Objects, which (like the Components Object) are found under the root OpenAPI Object.\nThis means resolving component names and tag names both depend on starting from the correct OpenAPI Object.\n\nFor resolving component and tag name connections from a referenced (non-entry) document, it is RECOMMENDED that tools resolve from the entry document, rather than the current document.\nThis allows Security Scheme Objects and Tag Objects to be defined next to the API's deployment information (the top-level array of Server Objects), and treated as an interface for referenced documents to access.\n\nThe interface approach can also work for Discriminator Objects and Schema Objects, but it is also possible to keep the Discriminator Object's behavior within a single document using the relative URI-reference syntax of `mapping`.\n\nThere are no URI-based alternatives for the Security Requirement Object or for the Operation Object's `tags` field.\nThese limitations are expected to be addressed in a future release.\n\nSee [Appendix F: Resolving Security Requirements in a Referenced Document](#appendix-f-resolving-security-requirements-in-a-referenced-document) for an example of the possible resolutions, including which one is recommended by this section.\nThe behavior for Discrimator Object non-URI mappings and for the Operation Object's `tags` field operate on the same principles.\n\nNote that no aspect of implicit connection resolution changes how [URLs are resolved](#relative-references-in-urls) or restricts their possible targets.\n\n### Data Types\n\nData types in the OAS are based on the non-`null` types supported by the [JSON Schema Validation Specification Draft Wright-00](https://datatracker.ietf.org/doc/html/draft-wright-json-schema-validation-00#autoid-32):\n\"boolean\", \"object\", \"array\", \"number\", \"string\", or \"integer\".\nSee [`nullable`](#schema-nullable) for an alternative solution to \"null\" as a type.\nModels are defined using the [Schema Object](#schema-object), which is an extended subset of JSON Schema Specification Draft Wright-00.\n\nJSON Schema keywords and `format` values operate on JSON \"instances\" which may be one of the six JSON data types, \"null\", \"boolean\", \"object\", \"array\", \"number\", or \"string\", with certain keywords and formats [only applying to a specific type](https://datatracker.ietf.org/doc/html/draft-wright-json-schema-validation-00#section-4.1). For example, the `pattern` keyword and the `date-time` format only apply to strings, and treat any instance of the other five types as _automatically valid._ This means JSON Schema keywords and formats do **NOT** implicitly require the expected type. Use the `type` keyword to explicitly constrain the type.\n\nNote that the `type` keyword allows `\"integer\"` as a value for convenience, but keyword and format applicability does not recognize integers as being of a distinct JSON type from other numbers because [[RFC7159|JSON]] itself does not make that distinction. Since there is no distinct JSON integer type, JSON Schema defines integers mathematically. This means that both `1` and `1.0` are [equivalent](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.2.2), and are both considered to be integers.\n\n#### Data Type Format\n\nAs defined by the [JSON Schema Validation specification](https://datatracker.ietf.org/doc/html/draft-wright-json-schema-validation-00#section-7.3), data types can have an optional modifier keyword: `format`. As described in that specification, `format` is treated as a non-validating annotation by default; the ability to validate `format` varies across implementations.\n\nThe OpenAPI Initiative also hosts a [Format Registry](https://spec.openapis.org/registry/format/) for formats defined by OAS users and other specifications. Support for any registered format is strictly OPTIONAL, and support for one registered format does not imply support for any others.\n\nTypes that are not accompanied by a `format` keyword follow the type definition in the JSON Schema. Tools that do not recognize a specific `format` MAY default back to the `type` alone, as if the `format` is not specified.\nFor the purpose of [JSON Schema validation](https://datatracker.ietf.org/doc/html/draft-wright-json-schema-validation-00#section-7.1), each format should specify the set of JSON data types for which it applies. In this registry, these types are shown in the \"JSON Data Type\" column.\n\nThe formats defined by the OAS are:\n\n| `format` | JSON Data Type | Comments |\n| ---- | ---- | ---- |\n| `int32` | number | signed 32 bits |\n| `int64` | number | signed 64 bits (a.k.a long) |\n| `float` | number | |\n| `double` | number | |\n| `byte` | string | base64 encoded characters - [RFC4648](https://www.rfc-editor.org/rfc/rfc4648#section-4) |\n| `binary` | string | any sequence of octets |\n| `date` | string | As defined by `full-date` - [RFC3339](https://www.rfc-editor.org/rfc/rfc3339#section-5.6) |\n| `date-time` | string | As defined by `date-time` - [RFC3339](https://www.rfc-editor.org/rfc/rfc3339#section-5.6) |\n| `password` | string | A hint to obscure the value. |\n\n#### Working with Binary Data\n\nTwo formats, `binary` and `byte`, describe different ways to work with binary data:\n\n* `binary` is used where unencoded binary data is allowed, such as when sending a binary payload as an HTTP message body, or as part of a `multipart/*` payload that allows binary parts\n* `byte` is used where binary data is embedded in a text-only format such as `application/json` or `application/x-www-form-urlencoded`\n\nThe `maxLength` keyword MAY be used to set an expected upper bound on the length of a streaming payload. The keyword can be applied to either string data, including encoded binary data, or to unencoded binary data. For unencoded binary, the length is the number of octets.\n\nNote that the encoding indicated by `byte`, which inflates the size of data in order to represent it as 7-bit ASCII text, is unrelated to HTTP's `Content-Encoding` header, which indicates whether and how a message body has been compressed.\n\n### Rich Text Formatting\n\nThroughout the specification `description` fields are noted as supporting CommonMark markdown formatting.\nWhere OpenAPI tooling renders rich text it MUST support, at a minimum, markdown syntax as described by [CommonMark 0.27](https://spec.commonmark.org/0.27/). Tooling MAY choose to ignore some CommonMark or extension features to address security concerns.\n\nWhile the framing of CommonMark 0.27 as a minimum requirement means that tooling MAY choose to implement extensions on top of it, note that any such extensions are by definition implementation-defined and will not be interoperable.\nOpenAPI Description authors SHOULD consider how text using such extensions will be rendered by tools that offer only the minimum support.\n\n### Relative References in URLs\n\nUnless specified otherwise, all fields that are URLs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\n\nRelative references are resolved using the URLs defined in the [Server Object](#server-object) as a Base URI.\n\nRelative references used in `$ref` are processed as per [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03), using the URL of the current document as the base URI. See also the [Reference Object](#reference-object).\n\nIt is _implementation_defined_ whether the resolution of relative references in each of the `operationRef` field of the [Link Object](#link-object), the URI form of the `mapping` field of the [Discriminator Object](#discriminator-object), the `externalValue` field of the [Example Object](#example-object), and the `url` fields of the [External Documentation](#external-documentation-object), [Contact](#contact-object), and [License](#license-object) Objects resolve by using the same process as `$ref` or by using the Server Object.  For compatibility with future versions of this specification, the `$ref` process is RECOMMENDED for all of these fields.\n\nRelative references in CommonMark hyperlinks are resolved in their rendered context, which might differ from the context of the API description.\n\n### Schema\n\nThis section describes the structure of the OpenAPI Description format.\nThis text is the only normative description of the format.\nA JSON Schema is hosted on [spec.openapis.org](https://spec.openapis.org) for informational purposes.\nIf the JSON Schema differs from this section, then this section MUST be considered authoritative.\n\nIn the following description, if a field is not explicitly **REQUIRED** or described with a MUST or SHALL, it can be considered OPTIONAL.\n\n#### OpenAPI Object\n\nThis is the root object of the [OpenAPI Description](#openapi-description).\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"oas-version\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [version number](#versions) of the OpenAPI Specification that the OpenAPI Document uses. The `openapi` field SHOULD be used by tooling to interpret the OpenAPI Document. This is _not_ related to the API [`info.version`](#info-version) string. |\n| <a name=\"oas-info\"></a>info | [Info Object](#info-object) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required. |\n| <a name=\"oas-servers\"></a>servers | [[Server Object](#server-object)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` field is not provided, or is an empty array, the default value would be a [Server Object](#server-object) with a [url](#server-url) value of `/`. |\n| <a name=\"oas-paths\"></a>paths | [Paths Object](#paths-object) | **REQUIRED**. The available paths and operations for the API. |\n| <a name=\"oas-components\"></a>components | [Components Object](#components-object) | An element to hold various Objects for the OpenAPI Description. |\n| <a name=\"oas-security\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative Security Requirement Objects that can be used. Only one of the Security Requirement Objects need to be satisfied to authorize a request. Individual operations can override this definition. The list can be incomplete, up to being empty or absent. To make security explicitly optional, an empty security requirement (`{}`) can be included in the array. |\n| <a name=\"oas-tags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the OpenAPI Description with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique. |\n| <a name=\"oas-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Info Object\n\nThe object provides metadata about the API.\nThe metadata MAY be used by the clients if needed, and MAY be presented in editing or documentation generation tools for convenience.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"info-title\"></a>title | `string` | **REQUIRED**. The title of the API. |\n| <a name=\"info-description\"></a>description | `string` | A description of the API. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"info-terms-of-service\"></a>termsOfService | `string` | A URL for the Terms of Service for the API. This MUST be in the form of a URL. |\n| <a name=\"info-contact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API. |\n| <a name=\"info-license\"></a>license | [License Object](#license-object) | The license information for the exposed API. |\n| <a name=\"info-version\"></a>version | `string` | **REQUIRED**. The version of the OpenAPI Document (which is distinct from the [OpenAPI Specification version](#oas-version) or the version of the API being described or the version of the OpenAPI Description). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Info Object Example\n\n```json\n{\n  \"title\": \"Example Pet Store App\",\n  \"description\": \"This is an example server for a pet store.\",\n  \"termsOfService\": \"https://example.com/terms/\",\n  \"contact\": {\n    \"name\": \"API Support\",\n    \"url\": \"https://www.example.com/support\",\n    \"email\": \"support@example.com\"\n  },\n  \"license\": {\n    \"name\": \"Apache 2.0\",\n    \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n  },\n  \"version\": \"1.0.1\"\n}\n```\n\n```yaml\ntitle: Example Pet Store App\ndescription: This is an example server for a pet store.\ntermsOfService: https://example.com/terms/\ncontact:\n  name: API Support\n  url: https://www.example.com/support\n  email: support@example.com\nlicense:\n  name: Apache 2.0\n  url: https://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n#### Contact Object\n\nContact information for the exposed API.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"contact-name\"></a>name | `string` | The identifying name of the contact person/organization. |\n| <a name=\"contact-url\"></a>url | `string` | The URL for the contact information. This MUST be in the form of a URL. |\n| <a name=\"contact-email\"></a>email | `string` | The email address of the contact person/organization. This MUST be in the form of an email address. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Contact Object Example\n\n```json\n{\n  \"name\": \"API Support\",\n  \"url\": \"https://www.example.com/support\",\n  \"email\": \"support@example.com\"\n}\n```\n\n```yaml\nname: API Support\nurl: https://www.example.com/support\nemail: support@example.com\n```\n\n#### License Object\n\nLicense information for the exposed API.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"license-name\"></a>name | `string` | **REQUIRED**. The license name used for the API. |\n| <a name=\"license-url\"></a>url | `string` | A URL for the license used for the API. This MUST be in the form of a URL. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### License Object Example\n\n```json\n{\n  \"name\": \"Apache 2.0\",\n  \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n}\n```\n\n```yaml\nname: Apache 2.0\nurl: https://www.apache.org/licenses/LICENSE-2.0.html\n```\n\n#### Server Object\n\nAn object representing a Server.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"server-url\"></a>url | `string` | **REQUIRED**. A URL to the target host. This URL supports Server Variables and MAY be relative, to indicate that the host location is relative to the location where the document containing the Server Object is being served. Variable substitutions will be made when a variable is named in `{`braces`}`. |\n| <a name=\"server-description\"></a>description | `string` | An optional string describing the host designated by the URL. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"server-variables\"></a>variables | Map[`string`, [Server Variable Object](#server-variable-object)] | A map between a variable name and its value. The value is used for substitution in the server's URL template. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Server Object Example\n\nA single server would be described as:\n\n```json\n{\n  \"url\": \"https://development.gigantic-server.com/v1\",\n  \"description\": \"Development server\"\n}\n```\n\n```yaml\nurl: https://development.gigantic-server.com/v1\ndescription: Development server\n```\n\nThe following shows how multiple servers can be described, for example, at the OpenAPI Object's [`servers`](#oas-servers):\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://development.gigantic-server.com/v1\",\n      \"description\": \"Development server\"\n    },\n    {\n      \"url\": \"https://staging.gigantic-server.com/v1\",\n      \"description\": \"Staging server\"\n    },\n    {\n      \"url\": \"https://api.gigantic-server.com/v1\",\n      \"description\": \"Production server\"\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n  - url: https://development.gigantic-server.com/v1\n    description: Development server\n  - url: https://staging.gigantic-server.com/v1\n    description: Staging server\n  - url: https://api.gigantic-server.com/v1\n    description: Production server\n```\n\nThe following shows how variables can be used for a server configuration:\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://{username}.gigantic-server.com:{port}/{basePath}\",\n      \"description\": \"The production API server\",\n      \"variables\": {\n        \"username\": {\n          \"default\": \"demo\",\n          \"description\": \"A user-specific subdomain. Use `demo` for a free sandbox environment.\"\n        },\n        \"port\": {\n          \"enum\": [\"8443\", \"443\"],\n          \"default\": \"8443\"\n        },\n        \"basePath\": {\n          \"default\": \"v2\"\n        }\n      }\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n  - url: https://{username}.gigantic-server.com:{port}/{basePath}\n    description: The production API server\n    variables:\n      username:\n        # note! no enum here means it is an open value\n        default: demo\n        description: A user-specific subdomain. Use `demo` for a free sandbox environment.\n      port:\n        enum:\n          - '8443'\n          - '443'\n        default: '8443'\n      basePath:\n        # open meaning there is the opportunity to use special base paths as assigned by the provider, default is `v2`\n        default: v2\n```\n\n#### Server Variable Object\n\nAn object representing a Server Variable for server URL template substitution.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"server-variable-enum\"></a>enum | [`string`] | An enumeration of string values to be used if the substitution options are from a limited set. The array SHOULD NOT be empty. |\n| <a name=\"server-variable-default\"></a>default | `string` | **REQUIRED**. The default value to use for substitution, which SHALL be sent if an alternate value is _not_ supplied. If the [`enum`](#server-variable-enum) is defined, the value SHOULD exist in the enum's values. Note that this behavior is different from the [Schema Object](#schema-object)'s `default` keyword, which documents the receiver's behavior rather than inserting the value into the data. |\n| <a name=\"server-variable-description\"></a>description | `string` | An optional description for the server variable. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Components Object\n\nHolds a set of reusable objects for different aspects of the OAS.\nAll objects defined within the Components Object will have no effect on the API unless they are explicitly referenced from outside the Components Object.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :---- | ---- |\n| <a name=\"components-schemas\"></a> schemas | Map[`string`, [Schema Object](#schema-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Schema Objects](#schema-object). |\n| <a name=\"components-responses\"></a> responses | Map[`string`, [Response Object](#response-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Response Objects](#response-object). |\n| <a name=\"components-parameters\"></a> parameters | Map[`string`, [Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Parameter Objects](#parameter-object). |\n| <a name=\"components-examples\"></a> examples | Map[`string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Example Objects](#example-object). |\n| <a name=\"components-request-bodies\"></a> requestBodies | Map[`string`, [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Request Body Objects](#request-body-object). |\n| <a name=\"components-headers\"></a> headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Header Objects](#header-object). |\n| <a name=\"security-scheme-object\"></a> securitySchemes | Map[`string`, [Security Scheme Object](#security-scheme-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Security Scheme Objects](#security-scheme-object). |\n| <a name=\"components-links\"></a> links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Link Objects](#link-object). |\n| <a name=\"components-callbacks\"></a> callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Callback Objects](#callback-object). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nAll the fixed fields declared above are objects that MUST use keys that match the regular expression: `^[a-zA-Z0-9\\.\\-_]+$`.\n\nField Name Examples:\n\n```text\nUser\nUser_1\nUser_Name\nuser-name\nmy.org.User\n```\n\n##### Components Object Example\n\n```json\n\"components\": {\n  \"schemas\": {\n    \"GeneralError\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"code\": {\n          \"type\": \"integer\",\n          \"format\": \"int32\"\n        },\n        \"message\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Category\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Tag\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  },\n  \"parameters\": {\n    \"skipParam\": {\n      \"name\": \"skip\",\n      \"in\": \"query\",\n      \"description\": \"number of items to skip\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    },\n    \"limitParam\": {\n      \"name\": \"limit\",\n      \"in\": \"query\",\n      \"description\": \"max records to return\",\n      \"required\": true,\n      \"schema\" : {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    }\n  },\n  \"responses\": {\n    \"NotFound\": {\n      \"description\": \"Entity not found.\"\n    },\n    \"IllegalInput\": {\n      \"description\": \"Illegal input for operation.\"\n    },\n    \"GeneralError\": {\n      \"description\": \"General Error\",\n      \"content\": {\n        \"application/json\": {\n          \"schema\": {\n            \"$ref\": \"#/components/schemas/GeneralError\"\n          }\n        }\n      }\n    }\n  },\n  \"securitySchemes\": {\n    \"api_key\": {\n      \"type\": \"apiKey\",\n      \"name\": \"api-key\",\n      \"in\": \"header\"\n    },\n    \"petstore_auth\": {\n      \"type\": \"oauth2\",\n      \"flows\": {\n        \"implicit\": {\n          \"authorizationUrl\": \"https://example.org/api/oauth/dialog\",\n          \"scopes\": {\n            \"write:pets\": \"modify pets in your account\",\n            \"read:pets\": \"read your pets\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    GeneralError:\n      type: object\n      properties:\n        code:\n          type: integer\n          format: int32\n        message:\n          type: string\n    Category:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n    Tag:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n  parameters:\n    skipParam:\n      name: skip\n      in: query\n      description: number of items to skip\n      required: true\n      schema:\n        type: integer\n        format: int32\n    limitParam:\n      name: limit\n      in: query\n      description: max records to return\n      required: true\n      schema:\n        type: integer\n        format: int32\n  responses:\n    NotFound:\n      description: Entity not found.\n    IllegalInput:\n      description: Illegal input for operation.\n    GeneralError:\n      description: General Error\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/GeneralError'\n  securitySchemes:\n    api_key:\n      type: apiKey\n      name: api-key\n      in: header\n    petstore_auth:\n      type: oauth2\n      flows:\n        implicit:\n          authorizationUrl: https://example.org/api/oauth/dialog\n          scopes:\n            write:pets: modify pets in your account\n            read:pets: read your pets\n```\n\n#### Paths Object\n\nHolds the relative paths to the individual endpoints and their operations.\nThe path is appended to the URL from the [Server Object](#server-object) in order to construct the full URL. The Paths Object MAY be empty, due to [Access Control List (ACL) constraints](#security-filtering).\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"paths-path\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a forward slash (`/`). The path is **appended** (no relative URL resolution) to the expanded URL from the [Server Object](#server-object)'s `url` field in order to construct the full URL. [Path templating](#path-templating) is allowed. When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical. In case of ambiguous matching, it's up to the tooling to decide which one to use. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Templating Matching\n\nAssuming the following paths, the concrete definition, `/pets/mine`, will be matched first if used:\n\n```text\n  /pets/{petId}\n  /pets/mine\n```\n\nThe following paths are considered identical and invalid:\n\n```text\n  /pets/{petId}\n  /pets/{name}\n```\n\nThe following may lead to ambiguous resolution:\n\n```text\n  /{entity}/me\n  /books/{id}\n```\n\n##### Paths Object Example\n\n```json\n{\n  \"/pets\": {\n    \"get\": {\n      \"description\": \"Returns all pets from the system that the user has access to\",\n      \"responses\": {\n        \"200\": {\n          \"description\": \"A list of pets.\",\n          \"content\": {\n            \"application/json\": {\n              \"schema\": {\n                \"type\": \"array\",\n                \"items\": {\n                  \"$ref\": \"#/components/schemas/pet\"\n                }\n              }\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    responses:\n      '200':\n        description: A list of pets.\n        content:\n          application/json:\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/pet'\n```\n\n#### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item MAY be empty, due to [ACL constraints](#security-filtering).\nThe path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"path-item-ref\"></a>$ref | `string` | Allows for a referenced definition of this path item. The value MUST be in the form of a URL, and the referenced structure MUST be in the form of a [Path Item Object](#path-item-object). In case a Path Item Object field appears both in the defined object and the referenced object, the behavior is undefined. See the rules for resolving [Relative References](#relative-references-in-urls). |\n| <a name=\"path-item-summary\"></a>summary | `string` | An optional string summary, intended to apply to all operations in this path. |\n| <a name=\"path-item-description\"></a>description | `string` | An optional string description, intended to apply to all operations in this path. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"path-item-get\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path. |\n| <a name=\"path-item-put\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path. |\n| <a name=\"path-item-post\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path. |\n| <a name=\"path-item-delete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path. |\n| <a name=\"path-item-options\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path. |\n| <a name=\"path-item-head\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path. |\n| <a name=\"path-item-patch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path. |\n| <a name=\"path-item-trace\"></a>trace | [Operation Object](#operation-object) | A definition of a TRACE operation on this path. |\n| <a name=\"path-item-servers\"></a>servers | [[Server Object](#server-object)] | An alternative `servers` array to service all operations in this path. If a `servers` array is specified at the [OpenAPI Object](#oas-servers) level, it will be overridden by this value. |\n| <a name=\"path-item-parameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in). The list can use the [Reference Object](#reference-object) to link to parameters that are defined in the [OpenAPI Object's `components.parameters`](#components-parameters). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Item Object Example\n\n```json\n{\n  \"get\": {\n    \"description\": \"Returns pets based on ID\",\n    \"summary\": \"Find pets by ID\",\n    \"operationId\": \"getPetsById\",\n    \"responses\": {\n      \"200\": {\n        \"description\": \"pet response\",\n        \"content\": {\n          \"*/*\": {\n            \"schema\": {\n              \"type\": \"array\",\n              \"items\": {\n                \"$ref\": \"#/components/schemas/Pet\"\n              }\n            }\n          }\n        }\n      },\n      \"default\": {\n        \"description\": \"error payload\",\n        \"content\": {\n          \"text/html\": {\n            \"schema\": {\n              \"$ref\": \"#/components/schemas/ErrorModel\"\n            }\n          }\n        }\n      }\n    }\n  },\n  \"parameters\": [\n    {\n      \"name\": \"id\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet to use\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      },\n      \"style\": \"simple\"\n    }\n  ]\n}\n```\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  responses:\n    '200':\n      description: pet response\n      content:\n        '*/*':\n          schema:\n            type: array\n            items:\n              $ref: '#/components/schemas/Pet'\n    default:\n      description: error payload\n      content:\n        text/html:\n          schema:\n            $ref: '#/components/schemas/ErrorModel'\nparameters:\n  - name: id\n    in: path\n    description: ID of pet to use\n    required: true\n    schema:\n      type: array\n      items:\n        type: string\n    style: simple\n```\n\n#### Operation Object\n\nDescribes a single API operation on a path.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"operation-tags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier. |\n| <a name=\"operation-summary\"></a>summary | `string` | A short summary of what the operation does. |\n| <a name=\"operation-description\"></a>description | `string` | A verbose explanation of the operation behavior. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"operation-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation. |\n| <a name=\"operation-id\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. The operationId value is **case-sensitive**. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is RECOMMENDED to follow common programming naming conventions. |\n| <a name=\"operation-parameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined in the [Path Item](#path-item-parameters), the new definition will override it but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in). The list can use the [Reference Object](#reference-object) to link to parameters that are defined in the [OpenAPI Object's `components.parameters`](#components-parameters). |\n| <a name=\"operation-request-body\"></a>requestBody | [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object) | The request body applicable for this operation. The `requestBody` is only supported in HTTP methods where the HTTP 1.1 specification [RFC7231](https://tools.ietf.org/html/rfc7231#section-4.3.1) has explicitly defined semantics for request bodies. In other cases where the HTTP spec is vague (such as [GET](https://tools.ietf.org/html/rfc7231#section-4.3.1), [HEAD](https://tools.ietf.org/html/rfc7231#section-4.3.2) and [DELETE](https://tools.ietf.org/html/rfc7231#section-4.3.5)), `requestBody` SHALL be ignored by consumers. |\n| <a name=\"operation-responses\"></a>responses | [Responses Object](#responses-object) | **REQUIRED**. The list of possible responses as they are returned from executing this operation. |\n| <a name=\"operation-callbacks\"></a>callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | A map of possible out-of band callbacks related to the parent operation. The key is a unique identifier for the Callback Object. Each value in the map is a [Callback Object](#callback-object) that describes a request that may be initiated by the API provider and the expected responses. |\n| <a name=\"operation-deprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Consumers SHOULD refrain from usage of the declared operation. Default value is `false`. |\n| <a name=\"operation-security\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used for this operation. The list of values includes alternative Security Requirement Objects that can be used. Only one of the Security Requirement Objects need to be satisfied to authorize a request. To make security optional, an empty security requirement (`{}`) can be included in the array. This definition overrides any declared top-level [`security`](#oas-security). To remove a top-level security declaration, an empty array can be used. |\n| <a name=\"operation-servers\"></a>servers | [[Server Object](#server-object)] | An alternative `servers` array to service this operation. If a `servers` array is specified at the [Path Item Object](#path-item-servers) or [OpenAPI Object](#oas-servers) level, it will be overridden by this value. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Operation Object Example\n\n```json\n{\n  \"tags\": [\"pet\"],\n  \"summary\": \"Updates a pet in the store with form data\",\n  \"operationId\": \"updatePetWithForm\",\n  \"parameters\": [\n    {\n      \"name\": \"petId\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet that needs to be updated\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  ],\n  \"requestBody\": {\n    \"content\": {\n      \"application/x-www-form-urlencoded\": {\n        \"schema\": {\n          \"type\": \"object\",\n          \"properties\": {\n            \"name\": {\n              \"description\": \"Updated name of the pet\",\n              \"type\": \"string\"\n            },\n            \"status\": {\n              \"description\": \"Updated status of the pet\",\n              \"type\": \"string\"\n            }\n          },\n          \"required\": [\"status\"]\n        }\n      }\n    }\n  },\n  \"responses\": {\n    \"200\": {\n      \"description\": \"Pet updated.\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    },\n    \"405\": {\n      \"description\": \"Method Not Allowed\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    }\n  },\n  \"security\": [\n    {\n      \"petstore_auth\": [\"write:pets\", \"read:pets\"]\n    }\n  ]\n}\n```\n\n```yaml\ntags:\n  - pet\nsummary: Updates a pet in the store with form data\noperationId: updatePetWithForm\nparameters:\n  - name: petId\n    in: path\n    description: ID of pet that needs to be updated\n    required: true\n    schema:\n      type: string\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          name:\n            description: Updated name of the pet\n            type: string\n          status:\n            description: Updated status of the pet\n            type: string\n        required:\n          - status\nresponses:\n  '200':\n    description: Pet updated.\n    content:\n      application/json: {}\n      application/xml: {}\n  '405':\n    description: Method Not Allowed\n    content:\n      application/json: {}\n      application/xml: {}\nsecurity:\n  - petstore_auth:\n      - write:pets\n      - read:pets\n```\n\n#### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"external-doc-description\"></a>description | `string` | A description of the target documentation. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"external-doc-url\"></a>url | `string` | **REQUIRED**. The URL for the target documentation. This MUST be in the form of a URL. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### External Documentation Object Example\n\n```json\n{\n  \"description\": \"Find more info here\",\n  \"url\": \"https://example.com\"\n}\n```\n\n```yaml\ndescription: Find more info here\nurl: https://example.com\n```\n\n#### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in).\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns, including interactions with the `application/x-www-form-urlencoded` query string format.\n\n##### Parameter Locations\n\nThere are four possible parameter locations specified by the `in` field:\n\n* path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`.\n* header - Custom headers that are expected as part of the request. Note that [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2) states header names are case insensitive.\n* cookie - Used to pass a specific cookie value to the API.\n\n##### Fixed Fields\n\nThe rules for serialization of the parameter are specified in one of two ways.\nParameter Objects MUST include either a `content` field or a `schema` field, but not both.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of converting values of various types to string representations.\n\n###### Common Fixed Fields\n\nThese fields MAY be used with either `content` or `schema`.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-name\"></a>name | `string` | **REQUIRED**. The name of the parameter. Parameter names are _case sensitive_. <ul><li>If [`in`](#parameter-in) is `\"path\"`, the `name` field MUST correspond to a template expression occurring within the [path](#paths-path) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>If [`in`](#parameter-in) is `\"header\"` and the `name` field is `\"Accept\"`, `\"Content-Type\"` or `\"Authorization\"`, the parameter definition SHALL be ignored.<li>For all other cases, the `name` corresponds to the parameter name used by the [`in`](#parameter-in) field.</ul> |\n| <a name=\"parameter-in\"></a>in | `string` | **REQUIRED**. The location of the parameter. Possible values are `\"query\"`, `\"header\"`, `\"path\"` or `\"cookie\"`. |\n| <a name=\"parameter-description\"></a>description | `string` | A brief description of the parameter. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"parameter-required\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the [parameter location](#parameter-in) is `\"path\"`, this field is **REQUIRED** and its value MUST be `true`. Otherwise, the field MAY be included and its default value is `false`. |\n| <a name=\"parameter-deprecated\"></a> deprecated | `boolean` | Specifies that a parameter is deprecated and SHOULD be transitioned out of usage. Default value is `false`. |\n| <a name=\"parameter-allow-empty-value\"></a> allowEmptyValue | `boolean` | If `true`, clients MAY pass a zero-length string value in place of parameters that would otherwise be omitted entirely, which the server SHOULD interpret as the parameter being unused. Default value is `false`. If [`style`](#parameter-style) is used, and if [behavior is _n/a_ (cannot be serialized)](#style-examples), the value of `allowEmptyValue` SHALL be ignored. Interactions between this field and the parameter's [Schema Object](#schema-object) are implementation-defined. This field is valid only for `query` parameters. Use of this field is NOT RECOMMENDED, and it is likely to be removed in a later revision. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nNote that while `\"Cookie\"` as a `name` is not forbidden if `in` is `\"header\"`, the effect of defining a cookie parameter that way is undefined; use `in: \"cookie\"` instead.\n\n###### Fixed Fields for use with `schema`\n\nFor simpler scenarios, a [`schema`](#parameter-schema) and [`style`](#parameter-style) can describe the structure and syntax of the parameter.\nWhen `example` or `examples` are provided in conjunction with the `schema` field, the example SHOULD match the specified schema and follow the prescribed serialization strategy for the parameter.\nThe `example` and `examples` fields are mutually exclusive, and if either is present it SHALL _override_ any `example` in the schema.\n\nSerializing with `schema` is NOT RECOMMENDED for `in: \"cookie\"` parameters, `in: \"header\"` parameters that use HTTP header parameters (name=value pairs following a `;`) in their values, or `in: \"header\"` parameters where values might have non-URL-safe characters; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for details.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-style\"></a>style | `string` | Describes how the parameter value will be serialized depending on the type of the parameter value. Default values (based on value of `in`): for `\"query\"` - `\"form\"`; for `\"path\"` - `\"simple\"`; for `\"header\"` - `\"simple\"`; for `\"cookie\"` - `\"form\"`. |\n| <a name=\"parameter-explode\"></a>explode | `boolean` | When this is true, parameter values of type `array` or `object` generate separate parameters for each value of the array or key-value pair of the map. For other types of parameters this field has no effect. When [`style`](#parameter-style) is `\"form\"`, the default value is `true`. For all other styles, the default value is `false`. Note that despite `false` being the default for `deepObject`, the combination of `false` with `deepObject` is undefined. |\n| <a name=\"parameter-allow-reserved\"></a>allowReserved | `boolean` | When this is true, parameter values are serialized using reserved expansion, as defined by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570#section-3.2.3), which allows [RFC3986's reserved character set](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2), as well as percent-encoded triples, to pass through unchanged, while still percent-encoding all other disallowed characters (including `%` outside of percent-encoded triples). Applications are still responsible for percent-encoding reserved characters that are [not allowed in the query string](https://datatracker.ietf.org/doc/html/rfc3986#section-3.4) (`[`, `]`, `#`), or have a special meaning in `application/x-www-form-urlencoded` (`-`, `&`, `+`); see Appendices [C](#appendix-c-using-rfc6570-based-serialization) and [E](#appendix-e-percent-encoding-and-form-media-types) for details. This field only applies to parameters with an `in` value of `query`. The default value is `false`. |\n| <a name=\"parameter-schema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the type used for the parameter. |\n| <a name=\"parameter-example\"></a>example | Any | Example of the parameter's potential value; see [Working With Examples](#working-with-examples). |\n| <a name=\"parameter-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the parameter's potential value; see [Working With Examples](#working-with-examples). |\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\n###### Fixed Fields for use with `content`\n\nFor more complex scenarios, the [`content`](#parameter-content) field can define the media type and schema of the parameter, as well as give examples of its use.\nUsing `content` with a `text/plain` media type is RECOMMENDED for `in: \"header\"` and `in: \"cookie\"` parameters where the `schema` strategy is not appropriate.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the parameter. The key is the media type and the value describes it. The map MUST only contain one entry. |\n\n##### Style Values\n\nIn order to support common ways of serializing simple parameters, a set of `style` values are defined.\n\n| `style` | [`type`](#data-types) | `in` | Comments |\n| ---- | ---- | ---- | ---- |\n| matrix | `primitive`, `array`, `object` | `path` | Path-style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.7) |\n| label | `primitive`, `array`, `object` | `path` | Label style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.5) |\n| simple | `primitive`, `array`, `object` | `path`, `header` | Simple style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.2). This option replaces `collectionFormat` with a `csv` value from OpenAPI 2.0. |\n| form | `primitive`, `array`, `object` | `query`, `cookie` | Form style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.8). This option replaces `collectionFormat` with a `csv` (when `explode` is false) or `multi` (when `explode` is true) value from OpenAPI 2.0. |\n| spaceDelimited | `array`, `object` | `query` | Space separated array values or object properties and values. This option replaces `collectionFormat` equal to `ssv` from OpenAPI 2.0. |\n| pipeDelimited | `array`, `object` | `query` | Pipe separated array values or object properties and values. This option replaces `collectionFormat` equal to `pipes` from OpenAPI 2.0. |\n| deepObject | `object` | `query` | Allows objects with scalar properties to be represented using form parameters. The representation of array or object properties is not defined. |\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a discussion of percent-encoding, including when delimiters need to be percent-encoded and options for handling collisions with percent-encoded data.\n\n##### Style Examples\n\nAssume a parameter named `color` has one of the following values:\n\n```js\n   string -> \"blue\"\n   array -> [\"blue\", \"black\", \"brown\"]\n   object -> { \"R\": 100, \"G\": 200, \"B\": 150 }\n```\n\nThe following table shows examples, as would be shown with the `example` or `examples` keywords, of the different serializations for each value.\n\n* The value _empty_ denotes the empty string, and is unrelated to the `allowEmptyValue` field\n* The behavior of combinations marked _n/a_ is undefined\n* The `undefined` column replaces the `empty` column in previous versions of this specification in order to better align with [RFC6570](https://www.rfc-editor.org/rfc/rfc6570.html#section-2.3) terminology, which describes certain values including but not limited to `null` as \"undefined\" values with special handling; notably, the empty string is _not_ undefined\n* For `form` and the non-RFC6570 query string styles `spaceDelimited`, `pipeDelimited`, and `deepObject`, each example is shown prefixed with `?` as if it were the only query parameter; see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more information on constructing query strings from multiple parameters, and [Appendix D](#appendix-d-serializing-headers-and-cookies) for warnings regarding `form` and cookie parameters\n* Note that the `?` prefix is not appropriate for serializing `application/x-www-form-urlencoded` HTTP message bodies, and MUST be stripped or (if constructing the string manually) not added when used in that context; see the [Encoding Object](#encoding-object) for more information\n* The examples are percent-encoded as required by RFC6570 and RFC3986; see [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a thorough discussion of percent-encoding concerns, including why unencoded `|` (`%7C`), `[` (`%5B`), and `]` (`%5D`) seem to work in some environments despite not being compliant.\n\n| [`style`](#style-values) | `explode` | `undefined` | `string` | `array` | `object` |\n| ---- | ---- | ---- | ---- | ---- | ---- |\n| matrix | false | ;color | ;color=blue | ;color=blue,black,brown | ;color=R,100,G,200,B,150 |\n| matrix | true | ;color | ;color=blue | ;color=blue;color=black;color=brown | ;R=100;G=200;B=150 |\n| label | false | . | .blue | .blue,black,brown | .R,100,G,200,B,150 |\n| label | true | . | .blue | .blue.black.brown | .R=100.G=200.B=150 |\n| simple | false | _empty_ | blue | blue,black,brown | R,100,G,200,B,150 |\n| simple | true | _empty_ | blue | blue,black,brown | R=100,G=200,B=150 |\n| form | false | <span style=\"white-space: nowrap;\">?color=</span> | <span style=\"white-space: nowrap;\">?color=blue</span> | <span style=\"white-space: nowrap;\">?color=blue,black,brown</span> | <span style=\"white-space: nowrap;\">?color=R,100,G,200,B,150</span> |\n| form | true | <span style=\"white-space: nowrap;\">?color=</span> | <span style=\"white-space: nowrap;\">?color=blue</span> | <span style=\"white-space: nowrap;\">?color=blue&color=black&color=brown</span> | <span style=\"white-space: nowrap;\">?R=100&G=200&B=150</span> |\n| spaceDelimited</span> | false | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">?color=blue%20black%20brown</span> | <span style=\"white-space: nowrap;\">?color=R%20100%20G%20200%20B%20150</span> |\n| spaceDelimited | true | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| pipeDelimited | false | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">?color=blue%7Cblack%7Cbrown</span> | <span style=\"white-space: nowrap;\">?color=R%7C100%7CG%7C200%7CB%7C150</span> |\n| pipeDelimited | true | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| deepObject | false | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| deepObject | true | _n/a_ | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">?color%5BR%5D=100&color%5BG%5D=200&color%5BB%5D=150</span> |\n\n##### Parameter Object Examples\n\nA header parameter with an array of 64-bit integer numbers:\n\n```json\n{\n  \"name\": \"token\",\n  \"in\": \"header\",\n  \"description\": \"token to be passed as a header\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    }\n  },\n  \"style\": \"simple\"\n}\n```\n\n```yaml\nname: token\nin: header\ndescription: token to be passed as a header\nrequired: true\nschema:\n  type: array\n  items:\n    type: integer\n    format: int64\nstyle: simple\n```\n\nA path parameter of a string value:\n\n```json\n{\n  \"name\": \"username\",\n  \"in\": \"path\",\n  \"description\": \"username to fetch\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\nschema:\n  type: string\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter:\n\n```json\n{\n  \"name\": \"id\",\n  \"in\": \"query\",\n  \"description\": \"ID of the object to fetch\",\n  \"required\": false,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  },\n  \"style\": \"form\",\n  \"explode\": true\n}\n```\n\n```yaml\nname: id\nin: query\ndescription: ID of the object to fetch\nrequired: false\nschema:\n  type: array\n  items:\n    type: string\nstyle: form\nexplode: true\n```\n\nA free-form query parameter, allowing undefined parameters of a specific type:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"freeForm\",\n  \"schema\": {\n    \"type\": \"object\",\n    \"additionalProperties\": {\n      \"type\": \"integer\"\n    }\n  },\n  \"style\": \"form\"\n}\n```\n\n```yaml\nin: query\nname: freeForm\nschema:\n  type: object\n  additionalProperties:\n    type: integer\nstyle: form\n```\n\nA complex parameter using `content` to define serialization:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"coordinates\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"object\",\n        \"required\": [\"lat\", \"long\"],\n        \"properties\": {\n          \"lat\": {\n            \"type\": \"number\"\n          },\n          \"long\": {\n            \"type\": \"number\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nin: query\nname: coordinates\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n        - lat\n        - long\n      properties:\n        lat:\n          type: number\n        long:\n          type: number\n```\n\n#### Request Body Object\n\nDescribes a single request body.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"request-body-description\"></a>description | `string` | A brief description of the request body. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"request-body-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | **REQUIRED**. The content of the request body. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it. For requests that match multiple keys, only the most specific key is applicable. e.g. `\"text/plain\"` overrides `\"text/*\"` |\n| <a name=\"request-body-required\"></a>required | `boolean` | Determines if the request body is required in the request. Defaults to `false`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Request Body Examples\n\nA request body with a referenced schema definition.\n\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User Example\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.json\"\n        }\n      }\n    },\n    \"application/xml\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User example in XML\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.xml\"\n        }\n      }\n    },\n    \"text/plain\": {\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User example in Plain text\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.txt\"\n        }\n      }\n    },\n    \"*/*\": {\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User example in other format\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.whatever\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\ncontent:\n  application/json:\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User example\n        externalValue: https://foo.bar/examples/user-example.json\n  application/xml:\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User example in XML\n        externalValue: https://foo.bar/examples/user-example.xml\n  text/plain:\n    examples:\n      user:\n        summary: User example in plain text\n        externalValue: https://foo.bar/examples/user-example.txt\n  '*/*':\n    examples:\n      user:\n        summary: User example in other format\n        externalValue: https://foo.bar/examples/user-example.whatever\n```\n\n#### Media Type Object\n\nEach Media Type Object provides schema and examples for the media type identified by its key.\n\nWhen `example` or `examples` are provided, the example SHOULD match the specified schema and be in the correct format as specified by the media type and its encoding.\nThe `example` and `examples` fields are mutually exclusive, and if either is present it SHALL _override_ any `example` in the schema.\nSee [Working With Examples](#working-with-examples) for further guidance regarding the different ways of specifying examples, including non-JSON/YAML values.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"media-type-schema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the content of the request, response, parameter, or header. |\n| <a name=\"media-type-example\"></a>example | Any | Example of the media type; see [Working With Examples](#working-with-examples). |\n| <a name=\"media-type-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type; see [Working With Examples](#working-with-examples). |\n| <a name=\"media-type-encoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | A map between a property name and its encoding information. The key, being the property name, MUST exist in the schema as a property. The `encoding` field SHALL only apply to [Request Body Objects](#request-body-object), and only when the media type is `multipart` or `application/x-www-form-urlencoded`. If no Encoding Object is provided for a property, the behavior is determined by the default values documented for the Encoding Object. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Media Type Examples\n\n```json\n{\n  \"application/json\": {\n    \"schema\": {\n      \"$ref\": \"#/components/schemas/Pet\"\n    },\n    \"examples\": {\n      \"cat\": {\n        \"summary\": \"An example of a cat\",\n        \"value\": {\n          \"name\": \"Fluffy\",\n          \"petType\": \"Cat\",\n          \"color\": \"White\",\n          \"gender\": \"male\",\n          \"breed\": \"Persian\"\n        }\n      },\n      \"dog\": {\n        \"summary\": \"An example of a dog with a cat's name\",\n        \"value\": {\n          \"name\": \"Puma\",\n          \"petType\": \"Dog\",\n          \"color\": \"Black\",\n          \"gender\": \"Female\",\n          \"breed\": \"Mixed\"\n        }\n      },\n      \"frog\": {\n        \"$ref\": \"#/components/examples/frog-example\"\n      }\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    $ref: '#/components/schemas/Pet'\n  examples:\n    cat:\n      summary: An example of a cat\n      value:\n        name: Fluffy\n        petType: Cat\n        color: White\n        gender: male\n        breed: Persian\n    dog:\n      summary: An example of a dog with a cat's name\n      value:\n        name: Puma\n        petType: Dog\n        color: Black\n        gender: Female\n        breed: Mixed\n    frog:\n      $ref: '#/components/examples/frog-example'\n```\n\n##### Considerations for File Uploads\n\nIn contrast to OpenAPI 2.0, `file` input/output content in OpenAPI 3 is described with the same semantics as any other schema type. Specifically:\n\n```yaml\n# content transferred in binary (octet-stream):\nschema:\n  type: string\n  format: binary\n```\n\nThese examples apply to either input payloads of file uploads or response payloads.\n\nA `requestBody` for submitting a file in a `POST` operation may look like the following example:\n\n```yaml\nrequestBody:\n  content:\n    application/octet-stream:\n      schema:\n        # a binary file of any type\n        type: string\n        format: binary\n```\n\nIn addition, specific media types MAY be specified:\n\n```yaml\n# multiple, specific media types may be specified:\nrequestBody:\n  content:\n    # a binary file of type png or jpeg\n    'image/jpeg':\n      schema:\n        type: string\n        format: binary\n    'image/png':\n      schema:\n        type: string\n        format: binary\n```\n\nTo upload multiple files, a `multipart` media type MUST be used as shown under [Example: Multipart Form with Multiple Files](#example-multipart-form-with-multiple-files).\n\n##### Support for x-www-form-urlencoded Request Bodies\n\nSee [Encoding the `x-www-form-urlencoded` Media Type](#encoding-the-x-www-form-urlencoded-media-type) for guidance and examples, both with and without the `encoding` field.\n\n##### Special Considerations for `multipart` Content\n\nSee [Encoding `multipart` Media Types](#encoding-multipart-media-types) for further guidance and examples, both with and without the `encoding` field.\n\n#### Encoding Object\n\nA single encoding definition applied to a single schema property.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of converting values of various types to string representations.\n\nProperties are correlated with `multipart` parts using the [`name` parameter](https://www.rfc-editor.org/rfc/rfc7578#section-4.2) of `Content-Disposition: form-data`, and with `application/x-www-form-urlencoded` using the query string parameter names.\nIn both cases, their order is implementation-defined.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n##### Fixed Fields\n\n###### Common Fixed Fields\n\nThese fields MAY be used either with or without the RFC6570-style serialization fields defined in the next section below.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"encoding-content-type\"></a>contentType | `string` | The `Content-Type` for encoding a specific property. The value is a comma-separated list, each element of which is either a specific media type (e.g. `image/png`) or a wildcard media type (e.g. `image/*`). Default value depends on the property type as shown in the table below. |\n| <a name=\"encoding-headers\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | A map allowing additional information to be provided as headers. `Content-Type` is described separately and SHALL be ignored in this section. This field SHALL be ignored if the request body media type is not a `multipart`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nThe default values for `contentType` are as follows, where an _n/a_ in the `format` column means that the presence or value of `format` is irrelevant:\n\n| `type` | `format` | Default `contentType` |\n| ---- | ---- | ---- |\n| `string` | `binary` _or_ `byte` | `application/octet-stream` |\n| `string` | _none, or any except `binary` or `byte`_ | `text/plain` |\n| `number`, `integer`, or `boolean` | _n/a_ | `text/plain` |\n| `object` | _n/a_ | `application/json` |\n| `array` | _n/a_ | according to the `type` and `format` of the `items` schema |\n\nDetermining how to handle `null` values if `nullable: true` is present depends on how `null` values are being serialized.\nIf `null` values are entirely omitted, then the `contentType` is irrelevant.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of data type conversion options.\n\n###### Fixed Fields for RFC6570-style Serialization\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"encoding-style\"></a>style | `string` | Describes how a specific property value will be serialized depending on its type. See [Parameter Object](#parameter-object) for details on the [`style`](#parameter-style) field. The behavior follows the same values as `query` parameters, including default values. Note that the initial `?` used in query strings is not used in `application/x-www-form-urlencoded` message bodies, and MUST be removed (if using an RFC6570 implementation) or simply not added (if constructing the string manually). This field SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`. |\n| <a name=\"encoding-explode\"></a>explode | `boolean` | When this is true, property values of type `array` or `object` generate separate parameters for each value of the array, or key-value-pair of the map. For other types of properties this field has no effect. When [`style`](#encoding-style) is `\"form\"`, the default value is `true`. For all other styles, the default value is `false`. Note that despite `false` being the default for `deepObject`, the combination of `false` with `deepObject` is undefined. This field SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`. |\n| <a name=\"encoding-allow-reserved\"></a>allowReserved | `boolean` | When this is true, parameter values are serialized using reserved expansion, as defined by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570#section-3.2.3), which allows [RFC3986's reserved character set](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2), as well as percent-encoded triples, to pass through unchanged, while still percent-encoding all other disallowed characters (including `%` outside of percent-encoded triples). Applications are still responsible for percent-encoding reserved characters that are [not allowed in the query string](https://datatracker.ietf.org/doc/html/rfc3986#section-3.4) (`[`, `]`, `#`), or have a special meaning in `application/x-www-form-urlencoded` (`-`, `&`, `+`); see Appendices [C](#appendix-c-using-rfc6570-based-serialization) and [E](#appendix-e-percent-encoding-and-form-media-types) for details. The default value is `false`. This field SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded`. |\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\nThe role of `contentType` with `application/x-www-form-urlencoded` request bodies was not described in detail in version 3.0.3 and earlier of this specification.\nTo match the intent of these fields and be compatible with version 3.1 of this specification, it is RECOMMENDED that whenever any of `style`, `explode`, or `allowReserved` are present with an explicit value:\n\n* The value of `contentType`, whether it is explicitly defined or has the default value, is to be ignored\n* If any of `style`, `explode`, or `allowReserved` are _not_ present with explicit values, then they are to be treated as if they were present with their default values\n\nHowever, if all three of `style`, `explode`, and `allowReserved` fields are absent, it is RECOMMENDED that:\n\n* All three keywords are to be entirely ignored, rather than treated as having their default values\n* Encoding is to be based on `contentType` alone, whether it is present with an explicit value or absent and treated as having its default value\n\nNote that the presence of at least one of `style`, `explode`, or `allowReserved` with an explicit value is equivalent to using `schema` with `in: \"query\"` Parameter Objects.\nThe absence of all three of those fields is the equivalent of using `content`, but with the media type specified in `contentType` rather than through a Media Type Object.\n\n##### Encoding the `x-www-form-urlencoded` Media Type\n\nTo submit content using form url encoding via [RFC1866](https://tools.ietf.org/html/rfc1866), use the `application/x-www-form-urlencoded` media type in the [Media Type Object](#media-type-object) under the [Request Body Object](#request-body-object).\nThis configuration means that the request body MUST be encoded per [RFC1866](https://tools.ietf.org/html/rfc1866) when passed to the server, after any complex objects have been serialized to a string representation.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n###### Example: URL Encoded Form with JSON Values\n\nWhen there is no [`encoding`](#media-type-encoding) field, the serialization strategy is based on the Encoding Object's default values:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # complex types are stringified to support RFC 1866\n            type: object\n            properties: {}\n```\n\nWith this example, consider an `id` of `f81d4fae-7dec-11d0-a765-00a0c91e6bf6` and a US-style address (with ZIP+4) as follows:\n\n```json\n{\n  \"streetAddress\": \"123 Example Dr.\",\n  \"city\": \"Somewhere\",\n  \"state\": \"CA\",\n  \"zip\": \"99999+1234\"\n}\n```\n\nAssuming the most compact representation of the JSON value (with unnecessary whitespace removed), we would expect to see the following request body, where space characters have been replaced with `+` and `+`, `\"`, `{`, and `}` have been percent-encoded to `%2B`, `%22`, `%7B`, and `%7D`, respectively:\n\n```uri\nid=f81d4fae-7dec-11d0-a765-00a0c91e6bf6&address=%7B%22streetAddress%22:%22123+Example+Dr.%22,%22city%22:%22Somewhere%22,%22state%22:%22CA%22,%22zip%22:%2299999%2B1234%22%7D\n```\n\nNote that the `id` keyword is treated as `text/plain` per the [Encoding Object](#encoding-object)'s default behavior, and is serialized as-is.\nIf it were treated as `application/json`, then the serialized value would be a JSON string including quotation marks, which would be percent-encoded as `%22`.\n\nHere is the `id` parameter (without `address`) serialized as `application/json` instead of `text/plain`, and then encoded per RFC1866:\n\n```uri\nid=%22f81d4fae-7dec-11d0-a765-00a0c91e6bf6%22\n```\n\n###### Example: URL Encoded Form with Binary Values\n\nNote that `application/x-www-form-urlencoded` is a text format, which requires base64-encoding any binary data:\n\n```YAML\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          name:\n            type: string\n          icon:\n            # The default with \"format: byte\" is application/octet-stream,\n            # so we need to set image media type(s) in the Encoding Object.\n            type: string\n            format: byte\n  encoding:\n    icon:\n      contentType: image/png, image/jpeg\n```\n\nGiven a name of `example` and a solid red 2x2-pixel PNG for `icon`, this\nwould produce a request body of:\n\n```uri\nname=example&icon=iVBORw0KGgoAAAANSUhEUgAAAAIAAAACCAIAAAD91JpzAAAABGdBTUEAALGPC%2FxhBQAAADhlWElmTU0AKgAAAAgAAYdpAAQAAAABAAAAGgAAAAAAAqACAAQAAAABAAAAAqADAAQAAAABAAAAAgAAAADO0J6QAAAAEElEQVQIHWP8zwACTGCSAQANHQEDqtPptQAAAABJRU5ErkJggg%3D%3D\n```\n\nNote that this base64-encoded value had to be futher percent-encoded, replacing `/` with `%2F` and each of two final `=` padding characters with `%3D`.\nSome base64-decoding implementations may be able to use the string without the padding per [RFC4648](https://datatracker.ietf.org/doc/html/rfc4648#section-3.2).\nHowever, this is not guaranteed and the value would still need to be percent-decoded due to the `%2F`.\n\n##### Encoding `multipart` Media Types\n\nIt is common to use `multipart/form-data` as a `Content-Type` when transferring forms as request bodies. In contrast to OpenAPI 2.0, a `schema` is REQUIRED to define the input parameters to the operation when using `multipart` content. This supports complex structures as well as supporting mechanisms for multiple file uploads.\n\nThe `form-data` disposition and its `name` parameter are mandatory for `multipart/form-data` ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.2)).\nArray properties are handled by applying the same `name` to multiple parts, as is recommended by [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.3) for supplying multiple values per form field.\nSee [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-5) for guidance regarding non-ASCII part names.\n\nVarious other `multipart` types, most notable `multipart/mixed` ([RFC2046](https://www.rfc-editor.org/rfc/rfc2046.html#section-5.1.3)) neither require nor forbid specific `Content-Disposition` values, which means care must be taken to ensure that any values used are supported by all relevant software.\nIt is not currently possible to correlate schema properties with unnamed, ordered parts in media types such as `multipart/mixed`, but implementations MAY choose to support such types when `Content-Disposition: form-data` is used with a `name` parameter.\n\nNote that there are significant restrictions on what headers can be used with `multipart` media types in general ([RFC2046](https://www.rfc-editor.org/rfc/rfc2046.html#section-5.1)) and `multi-part/form-data` in particular ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.8)).\n\nNote also that `Content-Transfer-Encoding` is deprecated for `multipart/form-data` ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.7)) where binary data is supported, as it is in HTTP.\n\nUsing `format: \"byte\"` for a multipart field is equivalent to specifying an [Encoding Object](#encoding-object) with a `headers` field containing `Content-Transfer-Encoding` with a schema that requires the value `base64`.\nIf `format: \"byte\"` is used for a multipart field that has an Encoding Object with a `headers` field containing `Content-Transfer-Encoding` with a schema that disallows `base64`, the result is undefined for serialization and parsing.\n\nPer the JSON Schema specification, `contentMediaType` without `contentEncoding` present is treated as if `contentEncoding: \"identity\"` were present. While useful for embedding text documents such as `text/html` into JSON strings, it is not useful for a `multipart/form-data` part, as it just causes the document to be treated as `text/plain` instead of its actual media type. Use the Encoding Object without `contentMediaType` if no `contentEncoding` is required.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n###### Example: Basic Multipart Form\n\nWhen the `encoding` field is _not_ used, the encoding is determined by the Encoding Object's defaults:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            # default for primitives without a special format is text/plain\n            type: string\n            format: uuid\n          profileImage:\n            # default for string with binary format is `application/octet-stream`\n            type: string\n            format: binary\n          addresses:\n            # default for arrays is based on the type in the `items`\n            # subschema, which is an object, so `application/json`\n            type: array\n            items:\n              $ref: '#/components/schemas/Address'\n```\n\n###### Example: Multipart Form with Encoding Objects\n\nUsing `encoding`, we can set more specific types for binary data, or non-JSON formats for complex values.\nWe can also describe headers for each part:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            # default is `text/plain`\n            type: string\n            format: uuid\n          addresses:\n            # default based on the `items` subschema would be\n            # `application/json`, but we want these address objects\n            # serialized as `application/xml` instead\n            description: addresses in XML format\n            type: array\n            items:\n              $ref: '#/components/schemas/Address'\n          profileImage:\n            # default is application/octet-stream, but we can declare\n            # a more specific image type or types\n            type: string\n            format: binary\n      encoding:\n        addresses:\n          # require XML Content-Type in utf-8 encoding\n          # This is applied to each address part corresponding\n          # to each address in he array\n          contentType: application/xml; charset=utf-8\n        profileImage:\n          # only accept png or jpeg\n          contentType: image/png, image/jpeg\n          headers:\n            X-Rate-Limit-Limit:\n              description: The number of allowed requests in the current period\n              schema:\n                type: integer\n```\n\n###### Example: Multipart Form with Multiple Files\n\nIn accordance with [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.3), multiple files for a single form field are uploaded using the same name (`file` in this example) for each file's part:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        properties:\n          # The property name 'file' will be used for all files.\n          file:\n            type: array\n            items:\n              type: string\n              format: binary\n```\n\n#### Responses Object\n\nA container for the expected responses of an operation.\nThe container maps a HTTP response code to the expected response.\n\nThe documentation is not necessarily expected to cover all possible HTTP response codes because they may not be known in advance.\nHowever, documentation is expected to cover a successful operation response and any known errors.\n\nThe `default` MAY be used as a default Response Object for all HTTP codes\nthat are not covered individually by the Responses Object.\n\nThe Responses Object MUST contain at least one response code, and if only one\nresponse code is provided it SHOULD be the response for a successful operation\ncall.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"responses-default\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. Use this field to cover undeclared responses. A [Reference Object](#reference-object) can link to a response that the [OpenAPI Object's `components.responses`](#components-responses) section defines. |\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"responses-code\"></a>[HTTP Status Code](#http-status-codes) | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name, but only one property per code, to describe the expected response for that HTTP status code. A [Reference Object](#reference-object) can link to a response that is defined in the [OpenAPI Object's `components.responses`](#components-responses) section. This field MUST be enclosed in quotation marks (for example, \"200\") for compatibility between JSON and YAML. To define a range of response codes, this field MAY contain the uppercase wildcard character `X`. For example, `2XX` represents all response codes between `200` and `299`. Only the following range definitions are allowed: `1XX`, `2XX`, `3XX`, `4XX`, and `5XX`. If a response is defined using an explicit code, the explicit code definition takes precedence over the range definition for that code. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Responses Object Example\n\nA 200 response for a successful operation and a default response for others (implying an error):\n\n```json\n{\n  \"200\": {\n    \"description\": \"a pet to be returned\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/Pet\"\n        }\n      }\n    }\n  },\n  \"default\": {\n    \"description\": \"Unexpected error\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/ErrorModel\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n'200':\n  description: a pet to be returned\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/Pet'\ndefault:\n  description: Unexpected error\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/ErrorModel'\n```\n\n#### Response Object\n\nDescribes a single response from an API operation, including design-time, static\n`links` to operations based on the response.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"response-description\"></a>description | `string` | **REQUIRED**. A description of the response. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"response-headers\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | Maps a header name to its definition. [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2) states header names are case insensitive. If a response header is defined with the name `\"Content-Type\"`, it SHALL be ignored. |\n| <a name=\"response-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing descriptions of potential response payloads. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it. For responses that match multiple keys, only the most specific key is applicable. e.g. `\"text/plain\"` overrides `\"text/*\"` |\n| <a name=\"response-links\"></a>links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | A map of operations links that can be followed from the response. The key of the map is a short name for the link, following the naming constraints of the names for [Component Objects](#components-object). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Response Object Examples\n\nResponse of an array of a complex type:\n\n```json\n{\n  \"description\": \"A complex object array response\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"$ref\": \"#/components/schemas/VeryComplexType\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A complex object array response\ncontent:\n  application/json:\n    schema:\n      type: array\n      items:\n        $ref: '#/components/schemas/VeryComplexType'\n```\n\nResponse with a string type:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n```\n\nPlain text response with headers:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      },\n      \"example\": \"whoa!\"\n    }\n  },\n  \"headers\": {\n    \"X-Rate-Limit-Limit\": {\n      \"description\": \"The number of allowed requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Remaining\": {\n      \"description\": \"The number of remaining requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Reset\": {\n      \"description\": \"The number of seconds left in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n    example: 'whoa!'\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    schema:\n      type: integer\n```\n\nResponse with no return value:\n\n```json\n{\n  \"description\": \"object created\"\n}\n```\n\n```yaml\ndescription: object created\n```\n\n#### Callback Object\n\nA map of possible out-of band callbacks related to the parent operation.\nEach value in the map is a [Path Item Object](#path-item-object) that describes a set of requests that may be initiated by the API provider and the expected responses.\nThe key value used to identify the Path Item Object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"callback-expression\"></a>{expression} | [Path Item Object](#path-item-object) | A Path Item Object used to define a callback request and expected responses. A [complete example](https://learn.openapis.org/examples/v3.0/callback-example.html) is available. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Key Expression\n\nThe key that identifies the [Path Item Object](#path-item-object) is a [runtime expression](#runtime-expressions) that can be evaluated in the context of a runtime HTTP request/response to identify the URL to be used for the callback request.\nA simple example might be `$request.body#/url`.\nHowever, using a [runtime expression](#runtime-expressions) the complete HTTP message can be accessed.\nThis includes accessing any part of a body that a JSON Pointer [RFC6901](https://tools.ietf.org/html/rfc6901) can reference.\n\nFor example, given the following HTTP request:\n\n```http\nPOST /subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning HTTP/1.1\nHost: example.org\nContent-Type: application/json\nContent-Length: 188\n\n{\n  \"failedUrl\": \"https://clientdomain.com/failed\",\n  \"successUrls\": [\n    \"https://clientdomain.com/fast\",\n    \"https://clientdomain.com/medium\",\n    \"https://clientdomain.com/slow\"\n  ]\n}\n```\n\nresulting in:\n\n```http\n201 Created\nLocation: https://example.org/subscription/1\n```\n\nThe following examples show how the various expressions evaluate, assuming the callback operation has a path parameter named `eventType` and a query parameter named `queryUrl`.\n\n| Expression | Value |\n| ---- | :---- |\n| $url | <https://example.org/subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning> |\n| $method | POST |\n| $request.path.eventType | myevent |\n| $request.query.queryUrl | <https://clientdomain.com/stillrunning> |\n| $request.header.content-type | application/json |\n| $request.body#/failedUrl | <https://clientdomain.com/failed> |\n| $request.body#/successUrls/1 | <https://clientdomain.com/medium> |\n| $response.header.Location | <https://example.org/subscription/1> |\n\n##### Callback Object Examples\n\nThe following example uses the user provided `queryUrl` query string parameter to define the callback URL. This is an example of how to use a Callback Object to describe a WebHook callback that goes with the subscription operation to enable registering for the WebHook.\n\n```yaml\nmyCallback:\n  '{$request.query.queryUrl}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\nThe following example shows a callback where the server is hard-coded, but the query string parameters are populated from the `id` and `email` property in the request body.\n\n```yaml\ntransactionCallback:\n  'http://notificationServer.com?transactionId={$request.body#/id}&email={$request.body#/email}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\n#### Example Object\n\nAn object grouping an internal or external example value with basic `summary` and `description` metadata.\nThis object is typically used in fields named `examples` (plural), and is a [referenceable](#reference-object) alternative to older `example` (singular) fields that do not support referencing or metadata.\n\nExamples allow demonstration of the usage of properties, parameters and objects within OpenAPI.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"example-summary\"></a>summary | `string` | Short description for the example. |\n| <a name=\"example-description\"></a>description | `string` | Long description for the example. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"example-value\"></a>value | Any | Embedded literal example. The `value` field and `externalValue` field are mutually exclusive. To represent examples of media types that cannot naturally represented in JSON or YAML, use a string value to contain the example, escaping where necessary. |\n| <a name=\"example-external-value\"></a>externalValue | `string` | A URL that points to the literal example. This provides the capability to reference examples that cannot easily be included in JSON or YAML documents. The `value` field and `externalValue` field are mutually exclusive. See the rules for resolving [Relative References](#relative-references-in-urls). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nIn all cases, the example value SHOULD be compatible with the schema of its associated value.\nTooling implementations MAY choose to validate compatibility automatically, and reject the example value(s) if incompatible.\n\n##### Working with Examples\n\nExample Objects can be used in both [Parameter Objects](#parameter-object) and [Media Type Objects](#media-type-object).\nIn both objects, this is done through the `examples` (plural) field.\nHowever, there are two other ways to provide examples: The `example` (singular) field that is mutually exclusive with `examples` in both objects, and the `example` (singular) field in the [Schema Object](#schema-object) that appears in the `schema` field of both objects.\nEach of these fields has slightly different considerations.\n\nThe Schema Object's `example` field is used to show example values without regard to how they might be formatted as parameters or within media type representations.\n\nThe mutually exclusive fields in the Parameter or Media Type Objects are used to show example values which SHOULD both match the schema and be formatted as they would appear as a serialized parameter or within a media type representation.\nThe exact serialization and encoding is determined by various fields in the Parameter Object, or in the Media Type Object's [Encoding Object](#encoding-object).\nBecause examples using these fields represent the final serialized form of the data, they SHALL _override_ any `example` in the corresponding Schema Object.\n\nThe singular `example` field in the Parameter or Media Type Object is concise and convenient for simple examples, but does not offer any other advantages over using Example Objects under `examples`.\n\nSome examples cannot be represented directly in JSON or YAML.\nFor all three ways of providing examples, these can be shown as string values with any escaping necessary to make the string valid in the JSON or YAML format of documents that comprise the OpenAPI Description.\nWith the Example Object, such values can alternatively be handled through the `externalValue` field.\n\n##### Example Object Examples\n\nIn a request body:\n\n```yaml\nrequestBody:\n  content:\n    'application/json':\n      schema:\n        $ref: '#/components/schemas/Address'\n      examples:\n        foo:\n          summary: A foo example\n          value:\n            foo: bar\n        bar:\n          summary: A bar example\n          value:\n            bar: baz\n    application/xml:\n      examples:\n        xmlExample:\n          summary: This is an example in XML\n          externalValue: https://example.org/examples/address-example.xml\n    text/plain:\n      examples:\n        textExample:\n          summary: This is a text example\n          externalValue: https://foo.bar/examples/address-example.txt\n```\n\nIn a parameter:\n\n```yaml\nparameters:\n  - name: zipCode\n    in: query\n    schema:\n      type: string\n      format: zip-code\n    examples:\n      zip-example:\n        $ref: '#/components/examples/zip-example'\n```\n\nIn a response:\n\n```yaml\nresponses:\n  '200':\n    description: your car appointment has been booked\n    content:\n      application/json:\n        schema:\n          $ref: '#/components/schemas/SuccessResponse'\n        examples:\n          confirmation-success:\n            $ref: '#/components/examples/confirmation-success'\n```\n\nTwo different uses of JSON strings:\n\nFirst, a request or response body that is just a JSON string (not an object containing a string):\n\n```json\n\"application/json\": {\n  \"schema\": {\n    \"type\": \"string\"\n  },\n  \"examples\": {\n    \"jsonBody\": {\n      \"description\": \"A body of just the JSON string \\\"json\\\"\",\n      \"value\": \"json\"\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    type: string\n  examples:\n    jsonBody:\n      description: 'A body of just the JSON string \"json\"'\n      value: json\n```\n\nIn the above example, we can just show the JSON string (or any JSON value) as-is, rather than stuffing a serialized JSON value into a JSON string, which would have looked like `\"\\\"json\\\"\"`.\n\nIn contrast, a JSON string encoded inside of a URL-style form body:\n\n```json\n\"application/x-www-form-urlencoded\": {\n  \"schema\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"jsonValue\": {\n        \"type\": \"string\"\n      }\n    }\n  },\n  \"encoding\": {\n    \"jsonValue\": {\n      \"contentType\": \"application/json\"\n    }\n  },\n  \"examples\": {\n    \"jsonFormValue\": {\n      \"description\": \"The JSON string \\\"json\\\" as a form value\",\n      \"value\": \"jsonValue=%22json%22\"\n    }\n  }\n}\n```\n\n```yaml\napplication/x-www-form-urlencoded:\n  schema:\n    type: object\n    properties:\n      jsonValue:\n        type: string\n  encoding:\n    jsonValue:\n      contentType: application/json\n  examples:\n    jsonFormValue:\n      description: 'The JSON string \"json\" as a form value'\n      value: jsonValue=%22json%22\n```\n\nIn this example, the JSON string had to be serialized before encoding it into the URL form value, so the example includes the quotation marks that are part of the JSON serialization, which are then URL percent-encoded.\n\n#### Link Object\n\nThe Link Object represents a possible design-time link for a response.\nThe presence of a link does not guarantee the caller's ability to successfully invoke it, rather it provides a known relationship and traversal mechanism between responses and other operations.\n\nUnlike _dynamic_ links (i.e. links provided **in** the response payload), the OAS linking mechanism does not require link information in the runtime response.\n\nFor computing links and providing instructions to execute them, a [runtime expression](#runtime-expressions) is used for accessing values in an operation and using them as parameters while invoking the linked operation.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"link-operation-ref\"></a>operationRef | `string` | A URI reference to an OAS operation. This field is mutually exclusive of the `operationId` field, and MUST point to an [Operation Object](#operation-object). |\n| <a name=\"link-operation-id\"></a>operationId | `string` | The name of an _existing_, resolvable OAS operation, as defined with a unique `operationId`. This field is mutually exclusive of the `operationRef` field. |\n| <a name=\"link-parameters\"></a>parameters | Map[`string`, Any \\| [{expression}](#runtime-expressions)] | A map representing parameters to pass to an operation as specified with `operationId` or identified via `operationRef`. The key is the parameter name to be used (optionally qualified with the parameter location, e.g. `path.id` for an `id` parameter in the path), whereas the value can be a constant or an expression to be evaluated and passed to the linked operation. |\n| <a name=\"link-request-body\"></a>requestBody | Any \\| [{expression}](#runtime-expressions) | A literal value or [{expression}](#runtime-expressions) to use as a request body when calling the target operation. |\n| <a name=\"link-description\"></a>description | `string` | A description of the link. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"link-server\"></a>server | [Server Object](#server-object) | A server object to be used by the target operation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nA linked operation MUST be identified using either an `operationRef` or `operationId`.\nThe identified or reference operation MUST be unique, and in the case of an `operationId`, it MUST be resolved within the scope of the OpenAPI Description (OAD).\nBecause of the potential for name clashes, the `operationRef` syntax is preferred for multi-document OADs.\nHowever, because use of an operation depends on its URL path template in the [Paths Object](#paths-object), operations from any [Path Item Object](#path-item-object) that is referenced multiple times within the OAD cannot be resolved unambiguously.\nIn such ambiguous cases, the resulting behavior is implementation-defined and MAY result in an error.\n\nNote that it is not possible to provide a constant value to `parameters` that matches the syntax of a runtime expression.\nIt is possible to have ambiguous parameter names, e.g. `name: \"id\", in: \"path\"` and `name: \"path.id\", in: \"query\"`; this is NOT RECOMMENDED and the behavior is implementation-defined, however implementations SHOULD prefer the qualified interpretation (`path.id` as a path parameter), as the names can always be qualified to disambiguate them (e.g. using `query.path.id` for the query parameter).\n\n##### Examples\n\nComputing a link from a request operation where the `$request.path.id` is used to pass a request parameter to the linked operation.\n\n```yaml\npaths:\n  /users/{id}:\n    parameters:\n      - name: id\n        in: path\n        required: true\n        description: the user identifier, as userId\n        schema:\n          type: string\n    get:\n      responses:\n        '200':\n          description: the user being returned\n          content:\n            application/json:\n              schema:\n                type: object\n                properties:\n                  uuid: # the unique user id\n                    type: string\n                    format: uuid\n          links:\n            address:\n              # the target link operationId\n              operationId: getUserAddress\n              parameters:\n                # get the `id` field from the request path parameter named `id`\n                userid: $request.path.id\n  # the path item of the linked operation\n  /users/{userid}/address:\n    parameters:\n      - name: userid\n        in: path\n        required: true\n        description: the user identifier, as userId\n        schema:\n          type: string\n    # linked operation\n    get:\n      operationId: getUserAddress\n      responses:\n        '200':\n          description: the user's address\n```\n\nWhen a runtime expression fails to evaluate, no parameter value is passed to the target operation.\n\nValues from the response body can be used to drive a linked operation.\n\n```yaml\nlinks:\n  address:\n    operationId: getUserAddressByUUID\n    parameters:\n      # get the `uuid` field from the `uuid` field in the response body\n      userUuid: $response.body#/uuid\n```\n\nClients follow all links at their discretion.\nNeither permissions nor the capability to make a successful call to that link is guaranteed\nsolely by the existence of a relationship.\n\n##### `operationRef` Examples\n\nAs references to `operationId` MAY NOT be possible (the `operationId` is an optional\nfield in an [Operation Object](#operation-object)), references MAY also be made through a relative `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: '#/paths/~12.0~1repositories~1%7Busername%7D/get'\n    parameters:\n      username: $response.body#/username\n```\n\nor a URI `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: https://na2.gigantic-server.com/#/paths/~12.0~1repositories~1%7Busername%7D/get\n    parameters:\n      username: $response.body#/username\n```\n\nNote that in the use of `operationRef` the _escaped forward-slash_ is necessary when\nusing JSON Pointer, and it is necessary to URL-encode `{` and `}` as `%7B` and `%7D`, respectively, when using JSON Pointer as URI fragments.\n\n##### Runtime Expressions\n\nRuntime expressions allow defining values based on information that will only be available within the HTTP message in an actual API call.\nThis mechanism is used by [Link Objects](#link-object) and [Callback Objects](#callback-object).\n\nThe runtime expression is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```abnf\n    expression = \"$url\" / \"$method\" / \"$statusCode\" / \"$request.\" source / \"$response.\" source\n    source     = header-reference / query-reference / path-reference / body-reference\n    header-reference = \"header.\" token\n    query-reference  = \"query.\" name\n    path-reference   = \"path.\" name\n    body-reference   = \"body\" [\"#\" json-pointer ]\n    json-pointer    = *( \"/\" reference-token )\n    reference-token = *( unescaped / escaped )\n    unescaped       = %x00-2E / %x30-7D / %x7F-10FFFF\n                    ; %x2F ('/') and %x7E ('~') are excluded from 'unescaped'\n    escaped         = \"~\" ( \"0\" / \"1\" )\n                    ; representing '~' and '/', respectively\n    name = *( CHAR )\n    token = 1*tchar\n    tchar = \"!\" / \"#\" / \"$\" / \"%\" / \"&\" / \"'\" / \"*\" / \"+\" / \"-\" / \".\"\n          / \"^\" / \"_\" / \"`\" / \"|\" / \"~\" / DIGIT / ALPHA\n```\n\nHere, `json-pointer` is taken from [RFC6901](https://tools.ietf.org/html/rfc6901), `char` from [RFC7159](https://tools.ietf.org/html/rfc7159#section-7) and `token` from [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2.6).\n\nThe `name` identifier is case-sensitive, whereas `token` is not.\n\nThe table below provides examples of runtime expressions and examples of their use in a value:\n\n##### Examples\n\n| Source Location | example expression | notes |\n| ---- | :---- | :---- |\n| HTTP Method | `$method` | The allowable values for the `$method` will be those for the HTTP operation. |\n| Requested media type | `$request.header.accept` | |\n| Request parameter | `$request.path.id` | Request parameters MUST be declared in the `parameters` section of the parent operation or they cannot be evaluated. This includes request headers. |\n| Request body property | `$request.body#/user/uuid` | In operations which accept payloads, references may be made to portions of the `requestBody` or the entire body. |\n| Request URL | `$url` | |\n| Response value | `$response.body#/status` | In operations which return payloads, references may be made to portions of the response body or the entire body. |\n| Response header | `$response.header.Server` | Single header values only are available |\n\nRuntime expressions preserve the type of the referenced value.\nExpressions can be embedded into string values by surrounding the expression with `{}` curly braces.\n\n#### Header Object\n\nDescribes a single header for [HTTP responses](#response-headers) and for [individual parts in `multipart` representations](#encoding-headers); see the relevant [Response Object](#response-object) and [Encoding Object](#encoding-object) documentation for restrictions on which headers can be described.\n\nThe Header Object follows the structure of the [Parameter Object](#parameter-object), including determining its serialization strategy based on whether `schema` or `content` is present, with the following changes:\n\n1. `name` MUST NOT be specified, it is given in the corresponding `headers` map.\n1. `in` MUST NOT be specified, it is implicitly in `header`.\n1. All traits that are affected by the location MUST be applicable to a location of `header` (for example, [`style`](#parameter-style)). This means that `allowEmptyValue` and `allowReserved` MUST NOT be used, and `style`, if used, MUST be limited to `\"simple\"`.\n\n##### Fixed Fields\n\n###### Common Fixed Fields\n\nThese fields MAY be used with either `content` or `schema`.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-description\"></a>description | `string` | A brief description of the header. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"header-required\"></a>required | `boolean` | Determines whether this header is mandatory. The default value is `false`. |\n| <a name=\"header-deprecated\"></a> deprecated | `boolean` | Specifies that the header is deprecated and SHOULD be transitioned out of usage. Default value is `false`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n###### Fixed Fields for use with `schema`\n\nFor simpler scenarios, a [`schema`](#header-schema) and [`style`](#header-style) can describe the structure and syntax of the header.\nWhen `example` or `examples` are provided in conjunction with the `schema` field, the example MUST follow the prescribed serialization strategy for the header.\n\nSerializing with `schema` is NOT RECOMMENDED for headers with parameters (name=value pairs following a `;`) in their values, or where values might have non-URL-safe characters; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for details.\n\nWhen `example` or `examples` are provided in conjunction with the `schema` field, the example SHOULD match the specified schema and follow the prescribed serialization strategy for the header.\nThe `example` and `examples` fields are mutually exclusive, and if either is present it SHALL _override_ any `example` in the schema.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-style\"></a>style | `string` | Describes how the header value will be serialized. The default (and only legal value for headers) is `\"simple\"`. |\n| <a name=\"header-explode\"></a>explode | `boolean` | When this is true, header values of type `array` or `object` generate a single header whose value is a comma-separated list of the array items or key-value pairs of the map, see [Style Examples](#style-examples). For other data types this field has no effect. The default value is `false`. |\n| <a name=\"header-schema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the type used for the header. |\n| <a name=\"header-example\"></a>example | Any | Example of the header's potential value; see [Working With Examples](#working-with-examples). |\n| <a name=\"header-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the header's potential value; see [Working With Examples](#working-with-examples). |\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\n###### Fixed Fields for use with `content`\n\nFor more complex scenarios, the [`content`](#header-content) field can define the media type and schema of the header, as well as give examples of its use.\nUsing `content` with a `text/plain` media type is RECOMMENDED for headers where the `schema` strategy is not appropriate.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the header. The key is the media type and the value describes it. The map MUST only contain one entry. |\n\n##### Header Object Example\n\nA simple header of type `integer`:\n\n```json\n\"X-Rate-Limit-Limit\": {\n  \"description\": \"The number of allowed requests in the current period\",\n  \"schema\": {\n    \"type\": \"integer\"\n  }\n}\n```\n\n```yaml\nX-Rate-Limit-Limit:\n  description: The number of allowed requests in the current period\n  schema:\n    type: integer\n```\n\nRequiring that a strong `ETag` header (with a value starting with `\"` rather than `W/`) is present. Note the use of `content`, because using `schema` and `style` would require the `\"` to be percent-encoded as `%22`:\n\n```json\n\"ETag\": {\n  \"required\": true,\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\",\n        \"pattern\": \"^\\\"\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nETag:\n  required: true\n  content:\n    text/plain:\n      schema:\n        type: string\n        pattern: ^\"\n```\n\n#### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nIt is not mandatory to have a Tag Object per tag defined in the Operation Object instances.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"tag-name\"></a>name | `string` | **REQUIRED**. The name of the tag. |\n| <a name=\"tag-description\"></a>description | `string` | A description for the tag. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"tag-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Tag Object Example\n\n```json\n{\n  \"name\": \"pet\",\n  \"description\": \"Pets operations\"\n}\n```\n\n```yaml\nname: pet\ndescription: Pets operations\n```\n\n#### Reference Object\n\nA simple object to allow referencing other components in the OpenAPI Description, internally and externally.\n\nThe Reference Object is defined by [JSON Reference](https://tools.ietf.org/html/draft-pbryan-zyp-json-ref-03) and follows the same structure, behavior and rules.\n\nFor this specification, reference resolution is accomplished as defined by the JSON Reference specification and not by the JSON Schema specification.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"reference-ref\"></a>$ref | `string` | **REQUIRED**. The reference string. |\n\nThis object cannot be extended with additional properties, and any properties added SHALL be ignored.\n\n##### Reference Object Example\n\n```json\n{\n  \"$ref\": \"#/components/schemas/Pet\"\n}\n```\n\n```yaml\n$ref: '#/components/schemas/Pet'\n```\n\n##### Relative Schema Document Example\n\n```json\n{\n  \"$ref\": \"Pet.json\"\n}\n```\n\n```yaml\n$ref: Pet.yaml\n```\n\n##### Relative Documents with Embedded Schema Example\n\n```json\n{\n  \"$ref\": \"definitions.json#/Pet\"\n}\n```\n\n```yaml\n$ref: definitions.yaml#/Pet\n```\n\n#### Schema Object\n\nThe Schema Object allows the definition of input and output data types.\nThese types can be objects, but also primitives and arrays.\nThis object is an extended subset of the [[JSON-Schema-05|JSON Schema Specification Draft Wright-00]].\n\nFor more information about the keywords, see [JSON Schema Core](https://tools.ietf.org/html/draft-wright-json-schema-00) and [JSON Schema Validation](https://tools.ietf.org/html/draft-wright-json-schema-validation-00).\nUnless stated otherwise, the keyword definitions follow those of JSON Schema and do not add any additional semantics.\n\n##### JSON Schema Keywords\n\nThe following keywords are taken directly from the JSON Schema definition and follow the same specifications:\n\n* title\n* multipleOf\n* maximum\n* exclusiveMaximum\n* minimum\n* exclusiveMinimum\n* maxLength\n* minLength\n* pattern (This string SHOULD be a valid regular expression, according to the [Ecma-262 Edition 5.1 regular expression](https://www.ecma-international.org/ecma-262/5.1/#sec-15.10.1) dialect)\n* maxItems\n* minItems\n* uniqueItems\n* maxProperties\n* minProperties\n* required\n* enum\n\nThe following keywords are taken from the JSON Schema definition but their definitions were adjusted to the OpenAPI Specification.\n\n* type - Value MUST be a string. Multiple types via an array are not supported.\n* allOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n* oneOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n* anyOf - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n* not - Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema.\n* items - Value MUST be an object and not an array. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema. `items` MUST be present if `type` is `\"array\"`.\n* properties - Property definitions MUST be a [Schema Object](#schema-object) and not a standard JSON Schema (inline or referenced).\n* additionalProperties - Value can be boolean or object. Inline or referenced schema MUST be of a [Schema Object](#schema-object) and not a standard JSON Schema. Consistent with JSON Schema, `additionalProperties` defaults to `true`.\n* description - [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n* format - See [Data Type Formats](#data-type-format) for further details. While relying on JSON Schema's defined formats, the OAS offers a few additional predefined formats.\n* default - The default value represents what would be assumed by the consumer of the input as the value of the schema if one is not provided. Unlike JSON Schema, the value MUST conform to the defined `type` for the Schema Object defined at the same level. For example, if `type` is `\"string\"`, then `default` can be `\"foo\"` but cannot be `1`.\n\nAlternatively, any time a Schema Object can be used, a [Reference Object](#reference-object) can be used in its place. This allows referencing definitions instead of defining them inline.\n\nAdditional keywords defined by the JSON Schema specification that are not mentioned here are strictly unsupported.\n\nOther than the JSON Schema subset fields, the following fields MAY be used for further schema documentation:\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"schema-nullable\"></a>nullable | `boolean` | This keyword only takes effect if `type` is explicitly defined within the same Schema Object. A `true` value indicates that both `null` values and values of the type specified by `type` are allowed. Other Schema Object constraints retain their defined behavior, and therefore may disallow the use of `null` as a value. A `false` value leaves the specified or default `type` unmodified. The default value is `false`. |\n| <a name=\"schema-discriminator\"></a>discriminator | [Discriminator Object](#discriminator-object) | Adds support for polymorphism. The discriminator is used to determine which of a set of schemas a payload is expected to satisfy. See [Composition and Inheritance](#composition-and-inheritance-polymorphism) for more details. |\n| <a name=\"schema-read-only\"></a>readOnly | `boolean` | Relevant only for Schema Object `properties` definitions. Declares the property as \"read only\". This means that it MAY be sent as part of a response but SHOULD NOT be sent as part of the request. If the property is marked as `readOnly` being `true` and is in the `required` list, the `required` will take effect on the response only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`. |\n| <a name=\"schema-write-only\"></a>writeOnly | `boolean` | Relevant only for Schema Object `properties` definitions. Declares the property as \"write only\". Therefore, it MAY be sent as part of a request but SHOULD NOT be sent as part of the response. If the property is marked as `writeOnly` being `true` and is in the `required` list, the `required` will take effect on the request only. A property MUST NOT be marked as both `readOnly` and `writeOnly` being `true`. Default value is `false`. |\n| <a name=\"schema-xml\"></a>xml | [XML Object](#xml-object) | This MAY be used only on property schemas. It has no effect on root schemas. Adds additional metadata to describe the XML representation of this property. |\n| <a name=\"schema-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema. |\n| <a name=\"schema-example\"></a>example | Any | A free-form field to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary. |\n| <a name=\"schema-deprecated\"></a> deprecated | `boolean` | Specifies that a schema is deprecated and SHOULD be transitioned out of usage. Default value is `false`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n###### Composition and Inheritance (Polymorphism)\n\nThe OpenAPI Specification allows combining and extending model definitions using the `allOf` keyword of JSON Schema, in effect offering model composition.\n`allOf` takes an array of object definitions that are validated _independently_ but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models.\nTo support polymorphism, the OpenAPI Specification adds the [`discriminator`](#schema-discriminator) field.\nWhen used, the `discriminator` indicates the name of the property that hints which schema definition is expected to validate the structure of the model.\nAs such, the `discriminator` field MUST be a required field.\nThere are two ways to define the value of a discriminator for an inheriting instance.\n\n* Use the schema name.\n* [Override the schema name](#discriminator-mapping) by overriding the property with a new value. If a new value exists, this takes precedence over the schema name.\n\n###### XML Modeling\n\nThe [xml](#schema-xml) field allows extra definitions when translating the JSON definition to XML.\nThe [XML Object](#xml-object) contains additional information about the available options.\n\n##### Schema Object Examples\n\n###### Primitive Example\n\n```json\n{\n  \"type\": \"string\",\n  \"format\": \"email\"\n}\n```\n\n```yaml\ntype: string\nformat: email\n```\n\n###### Simple Model\n\n```json\n{\n  \"type\": \"object\",\n  \"required\": [\"name\"],\n  \"properties\": {\n    \"name\": {\n      \"type\": \"string\"\n    },\n    \"address\": {\n      \"$ref\": \"#/components/schemas/Address\"\n    },\n    \"age\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\",\n      \"minimum\": 0\n    }\n  }\n}\n```\n\n```yaml\ntype: object\nrequired:\n  - name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/components/schemas/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n###### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"$ref\": \"#/components/schemas/ComplexModel\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/components/schemas/ComplexModel'\n```\n\n###### Model with Example\n\n```json\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"name\": {\n      \"type\": \"string\"\n    }\n  },\n  \"required\": [\"name\"],\n  \"example\": {\n    \"name\": \"Puma\",\n    \"id\": 1\n  }\n}\n```\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n  - name\nexample:\n  name: Puma\n  id: 1\n```\n\n###### Models with Composition\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"ErrorModel\": {\n        \"type\": \"object\",\n        \"required\": [\"message\", \"code\"],\n        \"properties\": {\n          \"message\": {\n            \"type\": \"string\"\n          },\n          \"code\": {\n            \"type\": \"integer\",\n            \"minimum\": 100,\n            \"maximum\": 600\n          }\n        }\n      },\n      \"ExtendedErrorModel\": {\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/ErrorModel\"\n          },\n          {\n            \"type\": \"object\",\n            \"required\": [\"rootCause\"],\n            \"properties\": {\n              \"rootCause\": {\n                \"type\": \"string\"\n              }\n            }\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    ErrorModel:\n      type: object\n      required:\n        - message\n        - code\n      properties:\n        message:\n          type: string\n        code:\n          type: integer\n          minimum: 100\n          maximum: 600\n    ExtendedErrorModel:\n      allOf:\n        - $ref: '#/components/schemas/ErrorModel'\n        - type: object\n          required:\n            - rootCause\n          properties:\n            rootCause:\n              type: string\n```\n\n###### Models with Polymorphism Support\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"Pet\": {\n        \"type\": \"object\",\n        \"discriminator\": {\n          \"propertyName\": \"petType\"\n        },\n        \"properties\": {\n          \"name\": {\n            \"type\": \"string\"\n          },\n          \"petType\": {\n            \"type\": \"string\"\n          }\n        },\n        \"required\": [\"name\", \"petType\"]\n      },\n      \"Cat\": {\n        \"description\": \"A representation of a cat. Note that `Cat` will be used as the discriminating value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"huntingSkill\": {\n                \"type\": \"string\",\n                \"description\": \"The measured skill for hunting\",\n                \"default\": \"lazy\",\n                \"enum\": [\"clueless\", \"lazy\", \"adventurous\", \"aggressive\"]\n              }\n            },\n            \"required\": [\"huntingSkill\"]\n          }\n        ]\n      },\n      \"Dog\": {\n        \"description\": \"A representation of a dog. Note that `Dog` will be used as the discriminating value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"packSize\": {\n                \"type\": \"integer\",\n                \"format\": \"int32\",\n                \"description\": \"the size of the pack the dog is from\",\n                \"default\": 0,\n                \"minimum\": 0\n              }\n            },\n            \"required\": [\"packSize\"]\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n      properties:\n        name:\n          type: string\n        petType:\n          type: string\n      required:\n        - name\n        - petType\n    Cat: # \"Cat\" will be used as the discriminating value\n      description: A representation of a cat\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          properties:\n            huntingSkill:\n              type: string\n              description: The measured skill for hunting\n              enum:\n                - clueless\n                - lazy\n                - adventurous\n                - aggressive\n          required:\n            - huntingSkill\n    Dog: # \"Dog\" will be used as the discriminating value\n      description: A representation of a dog\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          properties:\n            packSize:\n              type: integer\n              format: int32\n              description: the size of the pack the dog is from\n              default: 0\n              minimum: 0\n          required:\n            - packSize\n```\n\n#### Discriminator Object\n\nWhen request bodies or response payloads may be one of a number of different schemas, a Discriminator Object gives a hint about the expected schema of the document.\nThis hint can be used to aid in serialization, deserialization, and validation.\nThe Discriminator Object does this by implicitly or explicitly associating the possible values of a named property with alternative schemas.\n\nNote that `discriminator` MUST NOT change the validation outcome of the schema.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"property-name\"></a>propertyName | `string` | **REQUIRED**. The name of the property in the payload that will hold the discriminating value. This property SHOULD be required in the payload schema, as the behavior when the property is absent is undefined. |\n| <a name=\"discriminator-mapping\"></a> mapping | Map[`string`, `string`] | An object to hold mappings between payload values and schema names or URI references. |\n\n##### Conditions for Using the Discriminator Object\n\nThe Discriminator Object is legal only when using one of the composite keywords `oneOf`, `anyOf`, `allOf`.\n\nIn both the `oneOf` and `anyOf` use cases, where those keywords are adjacent to `discriminator`, all possible schemas MUST be listed explicitly.\n\nTo avoid redundancy, the discriminator MAY be added to a parent schema definition, and all schemas building on the parent schema via an `allOf` construct may be used as an alternate schema.\nIt is implementation-defined as to whether all named [Schema Objects](#schema-object) under the [Components Object](#components-object), or only those that are otherwise directly referenced are searched for `allOf` references to the parent schema.\nHowever, it is RECOMMENDED to search all named schemas in the Components Object because it is common with the `allOf` usage for other parts of the API to only directly reference the parent schema.\n\nThe `allOf` form of `discriminator` is _only_ useful for non-validation use cases; validation with the parent schema with this form of `discriminator` _does not_ perform a search for child schemas or use them in validation in any way.\nThis is because `discriminator` cannot change the validation outcome, and no standard JSON Schema keyword connects the parent schema to the child schemas.\n\nThe behavior of any configuration of `oneOf`, `anyOf`, `allOf` and `discriminator` that is not described above is undefined.\n\n##### Options for Mapping Values to Schemas\n\nThe value of the property named in `propertyName` is used as the name of the associated schema under the [Components Object](#components-object), _unless_ a `mapping` is present for that value.\nThe `mapping` entry maps a specific property value to either a different schema component name, or to a schema identified by a URI.\nWhen using implicit or explicit schema component names, inline `oneOf` or `anyOf` subschemas are not considered.\nThe behavior of a `mapping` value that is both a valid schema name and a valid relative URI reference is implementation-defined, but it is RECOMMENDED that it be treated as a schema name.\nTo ensure that an ambiguous value (e.g. `\"foo\"`) is treated as a relative URI reference by all implementations, authors MUST prefix it with the `\".\"` path segment (e.g. `\"./foo\"`).\n\nMapping keys MUST be string values, but tooling MAY convert response values to strings for comparison.\nHowever, the exact nature of such conversions are implementation-defined.\n\n##### Examples\n\nFor these examples, assume all schemas are in the [entry document](#openapi-description-structure) of the OAD; for handling of `discriminator` in referenced documents see [Resolving Implicit Connections](#resolving-implicit-connections).\n\nIn OAS 3.0, a response payload MAY be described to be exactly one of any number of types:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n```\n\nwhich means the payload _MUST_, by validation, match exactly one of the schemas described by `Cat`, `Dog`, or `Lizard`. Deserialization of a `oneOf` can be a costly operation, as it requires determining which schema matches the payload and thus should be used in deserialization. This problem also exists for `anyOf` schemas. A `discriminator` MAY be used as a \"hint\" to improve the efficiency of selection of the matching schema. The `discriminator` field cannot change the validation result of the `oneOf`, it can only help make the deserialization more efficient and provide better error messaging. We can specify the exact field that tells us which schema is expected to match the instance:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n  discriminator:\n    propertyName: petType\n```\n\nThe expectation now is that a property with name `petType` _MUST_ be present in the response payload, and the value will correspond to the name of a schema defined in the OpenAPI Description. Thus the response payload:\n\n```json\n{\n  \"id\": 12345,\n  \"petType\": \"Cat\"\n}\n```\n\nwill indicate that the `Cat` schema is expected to match this payload.\n\nIn scenarios where the value of the `discriminator` field does not match the schema name or implicit mapping is not possible, an optional `mapping` definition MAY be used:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n    - $ref: https://gigantic-server.com/schemas/Monster/schema.json\n  discriminator:\n    propertyName: petType\n    mapping:\n      dog: '#/components/schemas/Dog'\n      monster: https://gigantic-server.com/schemas/Monster/schema.json\n```\n\nHere the discriminating value of `dog` will map to the schema `#/components/schemas/Dog`, rather than the default (implicit) value of `#/components/schemas/dog`. If the discriminating value does not match an implicit or explicit mapping, no schema can be determined and validation SHOULD fail.\n\nWhen used in conjunction with the `anyOf` construct, the use of the discriminator can avoid ambiguity for serializers/deserializers where multiple schemas may satisfy a single payload.\n\nThis example shows the `allOf` usage, which avoids needing to reference all child schemas in the parent:\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n        - petType\n      properties:\n        petType:\n          type: string\n      discriminator:\n        propertyName: petType\n        mapping:\n          dog: Dog\n    Cat:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a `Cat`\n          properties:\n            name:\n              type: string\n    Dog:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a `Dog`\n          properties:\n            bark:\n              type: string\n    Lizard:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a `Lizard`\n          properties:\n            lovesRocks:\n              type: boolean\n```\n\nValidated against the `Pet` schema, a payload like this:\n\n```json\n{\n  \"petType\": \"Cat\",\n  \"name\": \"Misty\"\n}\n```\n\nwill indicate that the `#/components/schemas/Cat` schema is expected to match. Likewise this payload:\n\n```json\n{\n  \"petType\": \"dog\",\n  \"bark\": \"soft\"\n}\n```\n\nwill map to `#/components/schemas/Dog` because the `dog` entry in the `mapping` element maps to `Dog` which is the schema name for `#/components/schemas/Dog`.\n\n#### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\n\nWhen using arrays, XML element names are _not_ inferred (for singular/plural forms) and the `name` field SHOULD be used to add that information.\nSee examples for expected behavior.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"xml-name\"></a>name | `string` | Replaces the name of the element/attribute used for the described schema property. When defined within `items`, it will affect the name of the individual XML elements within the list. When defined alongside `type` being `\"array\"` (outside the `items`), it will affect the wrapping element if and only if `wrapped` is `true`. If `wrapped` is `false`, it will be ignored. |\n| <a name=\"xml-namespace\"></a>namespace | `string` | The URI of the namespace definition. Value MUST be in the form of a non-relative URI. |\n| <a name=\"xml-prefix\"></a>prefix | `string` | The prefix to be used for the [name](#xml-name). |\n| <a name=\"xml-attribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`. |\n| <a name=\"xml-wrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `\"array\"` (outside the `items`). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nThe `namespace` field is intended to match the syntax of [XML namespaces](https://www.w3.org/TR/xml-names11/), although there are a few caveats:\n\n* Version 3.0.3 and earlier of this specification erroneously used the term \"absolute URI\" instead of \"non-relative URI\", so authors using namespaces that include a fragment should check tooling support carefully.\n* XML allows but discourages relative URI-references, while this specification outright forbids them.\n* XML 1.1 allows IRIs ([RFC3987](https://datatracker.ietf.org/doc/html/rfc3987)) as namespaces, and specifies that namespaces are compared without any encoding or decoding, which means that IRIs encoded to meet this specification's URI syntax requirement cannot be compared to IRIs as-is.\n\n##### XML Object Examples\n\nEach of the following examples represent the value of the `properties` keyword in a [Schema Object](#schema-object) that is omitted for brevity.\nThe JSON and YAML representations of the `properties` value are followed by an example XML representation produced for the single property shown.\n\n###### No XML Element\n\nBasic string property:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n```\n\n```xml\n<animals>...</animals>\n```\n\nBasic string array property ([`wrapped`](#xml-wrapped) is `false` by default):\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n```\n\n```xml\n<animals>...</animals>\n<animals>...</animals>\n<animals>...</animals>\n```\n\n###### XML Name Replacement\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\",\n    \"xml\": {\n      \"name\": \"animal\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n  xml:\n    name: animal\n```\n\n```xml\n<animal>...</animal>\n```\n\n###### XML Attribute, Prefix and Namespace\n\nIn this example, a full model definition is shown.\n\n```json\n{\n  \"Person\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\",\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"name\": {\n        \"type\": \"string\",\n        \"xml\": {\n          \"namespace\": \"https://example.com/schema/sample\",\n          \"prefix\": \"sample\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nPerson:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int32\n      xml:\n        attribute: true\n    name:\n      type: string\n      xml:\n        namespace: https://example.com/schema/sample\n        prefix: sample\n```\n\n```xml\n<Person id=\"123\">\n    <sample:name xmlns:sample=\"https://example.com/schema/sample\">example</sample:name>\n</Person>\n```\n\n###### XML Arrays\n\nChanging the element names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nThe external `name` field has no effect on the XML:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nEven when the array is wrapped, if a name is not explicitly defined, the same name will be used both internally and externally:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animals>value</animals>\n  <animals>value</animals>\n</animals>\n```\n\nTo overcome the naming problem in the example above, the following definition can be used:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animal>value</animal>\n  <animal>value</animal>\n</animals>\n```\n\nAffecting both internal and external names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <animal>value</animal>\n  <animal>value</animal>\n</aliens>\n```\n\nIf we change the external element but not the internal ones:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <aliens>value</aliens>\n  <aliens>value</aliens>\n</aliens>\n```\n\n#### Security Scheme Object\n\nDefines a security scheme that can be used by the operations.\n\nSupported schemes are HTTP authentication, an API key (either as a header, a cookie parameter, or as a query parameter), OAuth2's common flows (implicit, password, client credentials, and authorization code) as defined in [RFC6749](https://tools.ietf.org/html/rfc6749), and [[OpenID-Connect-Core]].\nPlease note that as of 2020, the implicit flow is about to be deprecated by [OAuth 2.0 Security Best Current Practice](https://tools.ietf.org/html/draft-ietf-oauth-security-topics). Recommended for most use cases is Authorization Code Grant flow with PKCE.\n\n##### Fixed Fields\n\n| Field Name | Type | Applies To | Description |\n| ---- | :----: | ---- | ---- |\n| <a name=\"security-scheme-type\"></a>type | `string` | Any | **REQUIRED**. The type of the security scheme. Valid values are `\"apiKey\"`, `\"http\"`, `\"oauth2\"`, `\"openIdConnect\"`. |\n| <a name=\"security-scheme-description\"></a>description | `string` | Any | A description for security scheme. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"security-scheme-name\"></a>name | `string` | `apiKey` | **REQUIRED**. The name of the header, query or cookie parameter to be used. |\n| <a name=\"security-scheme-in\"></a>in | `string` | `apiKey` | **REQUIRED**. The location of the API key. Valid values are `\"query\"`, `\"header\"`, or `\"cookie\"`. |\n| <a name=\"security-scheme-scheme\"></a>scheme | `string` | `http` | **REQUIRED**. The name of the HTTP Authentication scheme to be used in the [Authorization header as defined in RFC7235](https://tools.ietf.org/html/rfc7235#section-5.1). The values used SHOULD be registered in the [IANA Authentication Scheme registry](https://www.iana.org/assignments/http-authschemes/http-authschemes.xhtml). The value is case-insensitive, as defined in [RFC7235](https://datatracker.ietf.org/doc/html/rfc7235#section-2.1). |\n| <a name=\"security-scheme-bearer-format\"></a>bearerFormat | `string` | `http` (`\"bearer\"`) | A hint to the client to identify how the bearer token is formatted. Bearer tokens are usually generated by an authorization server, so this information is primarily for documentation purposes. |\n| <a name=\"security-scheme-flows\"></a>flows | [OAuth Flows Object](#oauth-flows-object) | `oauth2` | **REQUIRED**. An object containing configuration information for the flow types supported. |\n| <a name=\"security-scheme-open-id-connect-url\"></a>openIdConnectUrl | `string` | `openIdConnect` | **REQUIRED**. [Well-known URL](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfig) to discover the [[OpenID-Connect-Discovery]] [provider metadata](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Security Scheme Object Examples\n\n###### Basic Authentication Example\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"basic\"\n}\n```\n\n```yaml\ntype: http\nscheme: basic\n```\n\n###### API Key Example\n\n```json\n{\n  \"type\": \"apiKey\",\n  \"name\": \"api-key\",\n  \"in\": \"header\"\n}\n```\n\n```yaml\ntype: apiKey\nname: api-key\nin: header\n```\n\n###### JWT Bearer Example\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"bearer\",\n  \"bearerFormat\": \"JWT\"\n}\n```\n\n```yaml\ntype: http\nscheme: bearer\nbearerFormat: JWT\n```\n\n###### Implicit OAuth2 Example\n\n```json\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### OAuth Flows Object\n\nAllows configuration of the supported OAuth Flows.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"oauth-flows-implicit\"></a>implicit | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Implicit flow |\n| <a name=\"oauth-flows-password\"></a>password | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Resource Owner Password flow |\n| <a name=\"oauth-flows-client-credentials\"></a>clientCredentials | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Client Credentials flow. Previously called `application` in OpenAPI 2.0. |\n| <a name=\"oauth-flows-authorization-code\"></a>authorizationCode | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Authorization Code flow. Previously called `accessCode` in OpenAPI 2.0. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### OAuth Flow Object\n\nConfiguration details for a supported OAuth Flow\n\n##### Fixed Fields\n\n| Field Name | Type | Applies To | Description |\n| ---- | :----: | ---- | ---- |\n| <a name=\"oauth-flow-authorization-url\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"authorizationCode\"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-token-url\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"clientCredentials\"`, `\"authorizationCode\"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-refresh-url\"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-scopes\"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it. The map MAY be empty. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### OAuth Flow Object Example\n\n```JSON\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    },\n    \"authorizationCode\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"tokenUrl\": \"https://example.com/api/oauth/token\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n  authorizationCode:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    tokenUrl: https://example.com/api/oauth/token\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### Security Requirement Object\n\nLists the required security schemes to execute this operation.\nThe name used for each property MUST correspond to a security scheme declared in the [Security Schemes](#security-scheme-object) under the [Components Object](#components-object).\n\nA Security Requirement Object MAY refer to multiple security schemes in which case all schemes MUST be satisfied for a request to be authorized.\nThis enables support for scenarios where multiple query parameters or HTTP headers are required to convey security information.\n\nWhen the `security` field is defined on the [OpenAPI Object](#openapi-object) or [Operation Object](#operation-object) and contains multiple Security Requirement Objects, only one of the entries in the list needs to be satisfied to authorize the request.\nThis enables support for scenarios where the API allows multiple, independent security schemes.\n\nAn empty Security Requirement Object (`{}`) indicates anonymous access is supported.\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"security-requirements-name\"></a>{name} | [`string`] | Each name MUST correspond to a security scheme which is declared in the [Security Schemes](#security-scheme-object) under the [Components Object](#components-object). If the security scheme is of type `\"oauth2\"` or `\"openIdConnect\"`, then the value is a list of scope names required for the execution, and the list MAY be empty if authorization does not require a specified scope. For other security scheme types, the array MUST be empty. |\n\n##### Security Requirement Object Examples\n\nSee also [Appendix F: Resolving Security Requirements in a Referenced Document](#appendix-f-resolving-security-requirements-in-a-referenced-document) for an example using Security Requirement Objects in multi-document OpenAPI Descriptions.\n\n###### Non-OAuth2 Security Requirement\n\n```json\n{\n  \"api_key\": []\n}\n```\n\n```yaml\napi_key: []\n```\n\n###### OAuth2 Security Requirement\n\n```json\n{\n  \"petstore_auth\": [\"write:pets\", \"read:pets\"]\n}\n```\n\n```yaml\npetstore_auth:\n  - write:pets\n  - read:pets\n```\n\n###### Optional OAuth2 Security\n\nOptional OAuth2 security as would be defined in an <a href=\"#openapi-object\">OpenAPI Object</a> or an <a href=\"#operation-object\">Operation Object</a>:\n\n```json\n{\n  \"security\": [\n    {},\n    {\n      \"petstore_auth\": [\"write:pets\", \"read:pets\"]\n    }\n  ]\n}\n```\n\n```yaml\nsecurity:\n  - {}\n  - petstore_auth:\n      - write:pets\n      - read:pets\n```\n\n### Specification Extensions\n\nWhile the OpenAPI Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are implemented as patterned fields that are always prefixed by `x-`.\n\n| Field Pattern | Type | Description |\n| ---- | :--: | ---- |\n| <a name=\"info-extensions\"></a>^x- | Any | Allows extensions to the OpenAPI Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. The value can be any valid JSON value (`null`, a primitive, an array, or an object.) |\n\nThe OpenAPI Initiative maintains several [[OpenAPI-Registry|extension registries]], including registries for [individual extension keywords](https://spec.openapis.org/registry/extension/) and [extension keyword namespaces](https://spec.openapis.org/registry/namespace/).\n\nExtensions are one of the best ways to prove the viability of proposed additions to the specification.\nIt is therefore RECOMMENDED that implementations be designed for extensibility to support community experimentation.\n\nSupport for any one extension is OPTIONAL, and support for one extension does not imply support for others.\n\n### Security Filtering\n\nSome objects in the OpenAPI Specification MAY be declared and remain empty, or be completely removed, even though they are inherently the core of the API documentation.\n\nThe reasoning is to allow an additional layer of access control over the documentation.\nWhile not part of the specification itself, certain libraries MAY choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples of this:\n\n1. The [Paths Object](#paths-object) MAY be present but empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They would still have access to at least the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) MAY be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different from hiding the path itself from the [Paths Object](#paths-object), because the user will be aware of its existence. This allows the documentation provider to finely control what the viewer can see.\n\n## Security Considerations\n\n### OpenAPI Description Formats\n\nOpenAPI Descriptions use a combination of JSON, YAML, and JSON Schema, and therefore share their security considerations:\n\n* [JSON](https://www.iana.org/assignments/media-types/application/json)\n* [YAML](https://www.iana.org/assignments/media-types/application/yaml)\n* [JSON Schema Core](https://tools.ietf.org/html/draft-wright-json-schema-00#section-10)\n* [JSON Schema Validation](https://tools.ietf.org/html/draft-wright-json-schema-validation-00#section-8)\n\n### Tooling and Usage Scenarios\n\nIn addition, OpenAPI Descriptions are processed by a wide variety of tooling for numerous different purposes, such as client code generation, documentation generation, server side routing, and API testing. OpenAPI Description authors must consider the risks of the scenarios where the OpenAPI Description may be used.\n\n### Security Schemes\n\nAn OpenAPI Description describes the security schemes used to protect the resources it defines. The security schemes available offer varying degrees of protection. Factors such as the sensitivity of the data and the potential impact of a security breach should guide the selection of security schemes for the API resources. Some security schemes, such as basic auth and OAuth Implicit flow, are supported for compatibility with existing APIs. However, their inclusion in OpenAPI does not constitute an endorsement of their use, particularly for highly sensitive data or operations.\n\n### Handling External Resources\n\nOpenAPI Descriptions may contain references to external resources that may be dereferenced automatically by consuming tools. External resources may be hosted on different domains that may be untrusted.\n\n### Handling Reference Cycles\n\nReferences in an OpenAPI Description may cause a cycle. Tooling must detect and handle cycles to prevent resource exhaustion.\n\n### Markdown and HTML Sanitization\n\nCertain fields allow the use of Markdown which can contain HTML including script. It is the responsibility of tooling to appropriately sanitize the Markdown.\n\n## Appendix A: Revision History\n\n| Version | Date | Notes |\n| ---- | ---- | ---- |\n| 3.0.4 | 2024-10-24 | Patch release of the OpenAPI Specification 3.0.4 |\n| 3.0.3 | 2020-02-20 | Patch release of the OpenAPI Specification 3.0.3 |\n| 3.0.2 | 2018-10-08 | Patch release of the OpenAPI Specification 3.0.2 |\n| 3.0.1 | 2017-12-06 | Patch release of the OpenAPI Specification 3.0.1 |\n| 3.0.0 | 2017-07-26 | Release of the OpenAPI Specification 3.0.0 |\n| 3.0.0-rc2 | 2017-06-16 | rc2 of the 3.0 specification |\n| 3.0.0-rc1 | 2017-04-27 | rc1 of the 3.0 specification |\n| 3.0.0-rc0 | 2017-02-28 | Implementer's Draft of the 3.0 specification |\n| 2.0 | 2015-12-31 | Donation of Swagger 2.0 to the OpenAPI Initiative |\n| 2.0 | 2014-09-08 | Release of Swagger 2.0 |\n| 1.2 | 2014-03-14 | Initial release of the formal document. |\n| 1.1 | 2012-08-22 | Release of Swagger 1.1 |\n| 1.0 | 2011-08-10 | First release of the Swagger Specification |\n\n## Appendix B: Data Type Conversion\n\nSerializing typed data to plain text, which can occur in `text/plain` message bodies or `multipart` parts, as well as in the `application/x-www-form-urlencoded` format in either URL query strings or message bodies, involves significant implementation- or application-defined behavior.\n\n[Schema Objects](#schema-object) validate data based on the [JSON Schema data model](https://tools.ietf.org/html/draft-wright-json-schema-00#section-4.2), which only recognizes four primitive data types: strings (which are [only broadly interoperable as UTF-8](https://datatracker.ietf.org/doc/html/rfc7159#section-8.1)), numbers, booleans, and `null`.\nNotably, integers are not a distinct type from other numbers, with `type: \"integer\"` being a convenience defined mathematically, rather than based on the presence or absence of a decimal point in any string representation.\n\nThe [Parameter Object](#parameter-object), [Header Object](#header-object), and [Encoding Object](#encoding-object) offer features to control how to arrange values from array or object types.\nThey can also be used to control how strings are further encoded to avoid reserved or illegal characters.\nHowever, there is no general-purpose specification for converting schema-validated non-UTF-8 primitive data types (or entire arrays or objects) to strings.\n\nTwo cases do offer standards-based guidance:\n\n* [RFC3987](https://datatracker.ietf.org/doc/html/rfc3987#section-3.1) provides guidance for converting non-Unicode strings to UTF-8, particularly in the context of URIs (and by extension, the form media types which use the same encoding rules)\n* [RFC6570](https://www.rfc-editor.org/rfc/rfc6570#section-2.3) specifies which values, including but not limited to `null`, are considered _undefined_ and therefore treated specially in the expansion process when serializing based on that specification\n\nImplementations of RFC6570 often have their own conventions for converting non-string values, but these are implementation-specific and not defined by the RFC itself.\nThis is one reason for the OpenAPI Specification to leave these conversions as implementation-defined: It allows using RFC6570 implementations regardless of how they choose to perform the conversions.\n\nTo control the serialization of numbers, booleans, and `null` (or other values RFC6570 deems to be undefined) more precisely, schemas can be defined as `type: \"string\"` and constrained using `pattern`, `enum`, `format`, and other keywords to communicate how applications must pre-convert their data prior to schema validation.\nThe resulting strings would not require any further type conversion.\n\nThe `format` keyword can assist in serialization.\nSome formats (such as `date-time`) are unambiguous, while others (such as [`decimal`](https://spec.openapis.org/registry/format/decimal.html) in the [Format Registry](https://spec.openapis.org/registry/format/)) are less clear.\nHowever, care must be taken with `format` to ensure that the specific formats are supported by all relevant tools as unrecognized formats are ignored.\n\nRequiring input as pre-formatted, schema-validated strings also improves round-trip interoperability as not all programming languages and environments support the same data types.\n\n## Appendix C: Using RFC6570-Based Serialization\n\nSerialization is defined in terms of [RFC6570](https://www.rfc-editor.org/rfc/rfc6570) URI Templates in three scenarios:\n\n| Object | Condition |\n| ---- | ---- |\n| [Parameter Object](#parameter-object) | When `schema` is present |\n| [Header Object](#header-object) | When `schema` is present |\n| [Encoding Object](#encoding-object) | When encoding for `application/x-www-form-urlencoded` and any of `style`, `explode`, or `allowReserved` are used |\n\nImplementations of this specification MAY use an implementation of RFC6570 to perform variable expansion, however, some caveats apply.\n\nNote that when using `style: \"form\"` RFC6570 expansion to produce an `application/x-www-form-urlencoded` HTTP message body, it is necessary to remove the `?` prefix that is produced to satisfy the URI query string syntax.\n\nNote also that not all RFC6570 implementations support all four levels of operators, all of which are needed to fully support the OpenAPI Specification's usage.\nUsing an implementation with a lower level of support will require additional manual construction of URI Templates to work around the limitations.\n\n### Equivalences Between Fields and RFC6570 Operators\n\nCertain field values translate to RFC6570 [operators](https://datatracker.ietf.org/doc/html/rfc6570#section-2.2) (or lack thereof):\n\n| field | value | equivalent |\n| ---- | ---- | ---- |\n| style | `\"simple\"` | _n/a_ |\n| style | `\"matrix\"` | `;` prefix operator |\n| style | `\"label\"` | `.` prefix operator |\n| style | `\"form\"` | `?` prefix operator |\n| allowReserved | `false` | _n/a_ |\n| allowReserved | `true` | `+` prefix operator |\n| explode | `false` | _n/a_ |\n| explode | `true` | `*` modifier suffix |\n\nMultiple `style: \"form\"` parameters are equivalent to a single RFC6570 [variable list](https://www.rfc-editor.org/rfc/rfc6570#section-2.2) using the `?` prefix operator:\n\n```YAML\nparameters:\n- name: foo\n  in: query\n  schema:\n    type: object\n  explode: true\n- name: bar\n  in: query\n  schema:\n    type: string\n```\n\nThis example is equivalent to RFC6570's `{?foo*,bar}`, and **NOT** `{?foo*}{&bar}`. The latter is problematic because if `foo` is not defined, the result will be an invalid URI.\nThe `&` prefix operator has no equivalent in the Parameter Object.\n\nNote that RFC6570 does not specify behavior for compound values beyond the single level addressed by `explode`. The result of using objects or arrays where no behavior is clearly specified for them is implementation-defined.\n\n### Delimiters in Parameter Values\n\nDelimiters used by RFC6570 expansion, such as the `,` used to join arrays or object values with `style: \"simple\"`, are all automatically percent-encoded as long as `allowReserved` is `false`.\nNote that since RFC6570 does not define a way to parse variables based on a URI Template, users must take care to first split values by delimiter before percent-decoding values that might contain the delimiter character.\n\nWhen `allowReserved` is `true`, both percent-encoding (prior to joining values with a delimiter) and percent-decoding (after splitting on the delimiter) must be done manually at the correct time.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for additional guidance on handling delimiters for `style` values with no RFC6570 equivalent that already need to be percent-encoded when used as delimiters.\n\n### Non-RFC6570 Field Values and Combinations\n\nConfigurations with no direct [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570) equivalent SHOULD also be handled according to RFC6570.\nImplementations MAY create a properly delimited URI Template with variables for individual names and values using RFC6570 regular or reserved expansion (based on `allowReserved`).\n\nThis includes:\n\n* the styles `pipeDelimited`, `spaceDelimited`, and `deepObject`, which have no equivalents at all\n* the combination of the style `form` with `allowReserved: true`, which is not allowed because only one prefix operator can be used at a time\n* any parameter name that is not a legal RFC6570 variable name\n\nThe Parameter Object's `name` field has a much more permissive syntax than RFC6570 [variable name syntax](https://www.rfc-editor.org/rfc/rfc6570#section-2.3).\nA parameter name that includes characters outside of the allowed RFC6570 variable character set MUST be percent-encoded before it can be used in a URI Template.\n\n### Examples\n\nLet's say we want to use the following data in a form query string, where `formulas` is exploded, and `words` is not:\n\n```YAML\nformulas:\n  a: x+y\n  b: x/y\n  c: x^y\nwords:\n- math\n- is\n- fun\n```\n\n#### RFC6570-Equivalent Expansion\n\nThis array of Parameter Objects uses regular `style: \"form\"` expansion, fully supported by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570):\n\n```YAML\nparameters:\n- name: formulas\n  in: query\n  schema:\n    type: object\n    additionalProperties:\n      type: string\n  explode: true\n- name: words\n  in: query\n  schema:\n    type: array\n    items:\n      type: string\n```\n\nThis translates to the following URI Template:\n\n```uritemplate\n{?formulas*,words}\n```\n\nwhen expanded with the data given earlier, we get:\n\n```uri\n?a=x%2By&b=x%2Fy&c=x%5Ey&words=math,is,fun\n```\n\n#### Expansion with Non-RFC6570-Supported Options\n\nBut now let's say that (for some reason), we really want that `/` in the `b` formula to show up as-is in the query string, and we want our words to be space-separated like in a written phrase.\nTo do that, we'll add `allowReserved: true` to `formulas`, and change to `style: \"spaceDelimited\"` for `words`:\n\n```YAML\nparameters:\n- name: formulas\n  in: query\n  schema:\n    type: object\n    additionalProperties:\n      type: string\n  explode: true\n  allowReserved: true\n- name: words\n  in: query\n  style: spaceDelimited\n  explode: false\n  schema:\n    type: array\n    items:\n      type: string\n```\n\nWe can't combine the `?` and `+` RFC6570 [prefixes](https://datatracker.ietf.org/doc/html/rfc6570#section-2.4.1), and there's no way with RFC6570 to replace the `,` separator with a space character.\nSo we need to restructure the data to fit a manually constructed URI Template that passes all of the pieces through the right sort of expansion.\n\nHere is one such template, using a made-up convention of `words.0` for the first entry in the words value, `words.1` for the second, and `words.2` for the third:\n\n```uritemplate\n?a={+a}&b={+b}&c={+c}&words={words.0} {words.1} {words.2}\n```\n\nRFC6570 [mentions](https://www.rfc-editor.org/rfc/rfc6570.html#section-2.4.2) the use of `.` \"to indicate name hierarchy in substructures,\" but does not define any specific naming convention or behavior for it.\nSince the `.` usage is not automatic, we'll need to construct an appropriate input structure for this new template.\n\nWe'll also need to pre-process the values for `formulas` because while `/` and most other reserved characters are allowed in the query string by RFC3986, `[`, `]`, and `#` [are not](https://datatracker.ietf.org/doc/html/rfc3986#appendix-A), and `&`, `=`, and `+` all have [special behavior](https://www.rfc-editor.org/rfc/rfc1866#section-8.2.1) in the `application/x-www-form-urlencoded` format, which is what we are using in the query string.\n\nSetting `allowReserved: true` does _not_ make reserved characters that are not allowed in URIs allowed, it just allows them to be _passed through expansion unchanged._\nTherefore, any tooling still needs to percent-encode those characters because reserved expansion will not do it, but it _will_ leave the percent-encoded triples unchanged.\nSee also [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for further guidance on percent-encoding and form media types, including guidance on handling the delimiter characters for `spaceDelimited`, `pipeDelimited`, and `deepObject` in parameter names and values.\n\nSo here is our data structure that arranges the names and values to suit the template above, where values for `formulas` have `[]#&=+` pre-percent encoded (although only `+` appears in this example):\n\n```YAML\na: x%2By\nb: x/y\nc: x^y\nwords.0: math\nwords.1: is\nwords.2: fun\n```\n\nExpanding our manually assembled template with our restructured data yields the following query string:\n\n```uri\n?a=x%2By&b=x/y&c=x%5Ey&words=math%20is%20fun\n```\n\nThe `/` and the pre-percent-encoded `%2B` have been left alone, but the disallowed `^` character (inside a value) and space characters (in the template but outside of the expanded variables) were percent-encoded.\n\n#### Undefined Values and Manual URI Template Construction\n\nCare must be taken when manually constructing templates to handle the values that RFC6570 [considers to be _undefined_](https://datatracker.ietf.org/doc/html/rfc6570#section-2.3) correctly:\n\n```YAML\nformulas: {}\nwords:\n- hello\n- world\n```\n\nUsing this data with our original RFC6570-friendly URI Template, `{?formulas*,words}`, produces the following:\n\n```uri\n?words=hello,world\n```\n\nThis means that the manually constructed URI Template and restructured data need to leave out the `formulas` object entirely so that the `words` parameter is the first and only parameter in the query string.\n\nRestructured data:\n\n```YAML\nwords.0: hello\nwords.1: world\n```\n\nManually constructed URI Template:\n\n```uritemplate\n?words={words.0} {words.1}\n```\n\nResult:\n\n```uri\n?words=hello%20world\n```\n\n#### Illegal Variable Names as Parameter Names\n\nIn this example, the heart emoji is not legal in URI Template names (or URIs):\n\n```YAML\nparameters:\n- name: ❤️\n  in: query\n  schema:\n    type: string\n```\n\nWe can't just pass `❤️: \"love!\"` to an RFC6570 implementation.\nInstead, we have to pre-percent-encode the name (which is a six-octet UTF-8 sequence) in both the data and the URI Template:\n\n```YAML\n\"%E2%9D%A4%EF%B8%8F\": love!\n```\n\n```uritemplate\n{?%E2%9D%A4%EF%B8%8F}\n```\n\nThis will expand to the result:\n\n```uri\n?%E2%9D%A4%EF%B8%8F=love%21\n```\n\n## Appendix D: Serializing Headers and Cookies\n\n[RFC6570](https://www.rfc-editor.org/rfc/rfc6570)'s percent-encoding behavior is not always appropriate for `in: \"header\"` and `in: \"cookie\"` parameters.\nIn many cases, it is more appropriate to use `content` with a media type such as `text/plain` and require the application to assemble the correct string.\n\nFor both [RFC6265](https://www.rfc-editor.org/rfc/rfc6265) cookies and HTTP headers using the [RFC8941](https://www.rfc-editor.org/rfc/rfc8941) structured fields syntax, non-ASCII content is handled using base64 encoding (`format: \"byte\"`).\nNote that the standard base64-encoding alphabet includes non-URL-safe characters that are percent-encoded by RFC6570 expansion; serializing values through both encodings is NOT RECOMMENDED.\n\nMost HTTP headers predate the structured field syntax, and a comprehensive assessment of their syntax and encoding rules is well beyond the scope of this specification.\nWhile [RFC8187](https://www.rfc-editor.org/rfc/rfc8187) recommends percent-encoding HTTP (header or trailer) field parameters, these parameters appear after a `;` character.\nWith `style: \"simple\"`, that delimiter would itself be percent-encoded, violating the general HTTP field syntax.\n\nUsing `style: \"form\"` with `in: \"cookie\"` is ambiguous for a single value, and incorrect for multiple values.\nThis is true whether the multiple values are the result of using `explode: true` or not.\n\nThis style is specified to be equivalent to RFC6570 form expansion which includes the `?` character (see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more details), which is not part of the cookie syntax.\nHowever, examples of this style in past versions of this specification have not included the `?` prefix, suggesting that the comparison is not exact.\nBecause implementations that rely on an RFC6570 implementation and those that perform custom serialization based on the style example will produce different results, it is implementation-defined as to which of the two results is correct.\n\nFor multiple values, `style: \"form\"` is always incorrect as name=value pairs in cookies are delimited by `;` (a semicolon followed by a space character) rather than `&`.\n\n## Appendix E: Percent-Encoding and Form Media Types\n\n_**NOTE:** In this section, the `application/x-www-form-urlencoded` and `multipart/form-data` media types are abbreviated as `form-urlencoded` and `form-data`, respectively, for readability._\n\nPercent-encoding is used in URIs and media types that derive their syntax from URIs.\nThis process is concerned with three sets of characters, the names of which vary among specifications but are defined as follows for the purposes of this section:\n\n* _unreserved_ characters do not need to be percent-encoded; while it is safe to percent-encode them, doing so produces a URI that is [not normalized](https://datatracker.ietf.org/doc/html/rfc3986#section-6.2.2.2)\n* _reserved_ characters either have special behavior in the URI syntax (such as delimiting components) or are reserved for other specifications that need to define special behavior (e.g. `form-urlencoded` defines special behavior for `=`, `&`, and `+`)\n* _unsafe_ characters are known to cause problems when parsing URIs in certain environments\n\nUnless otherwise specified, this section uses RFC3986's definition of [reserved](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2) and [unreserved](https://datatracker.ietf.org/doc/html/rfc3986#section-2.3), and defines the unsafe set as all characters not included in either of those sets.\n\n### Percent-Encoding and `form-urlencoded`\n\nEach URI component (such as the query string) considers some of the reserved characters to be unsafe, either because they serve as delimiters between the components (e.g. `#`), or (in the case of `[` and `]`) were historically considered globally unsafe but were later given reserved status for limited purposes.\n\nReserved characters with no special meaning defined within a component can be left un-percent encoded.\nHowever, other specifications can define special meanings, requiring percent-encoding for those characters outside of the additional special meanings.\n\nThe `form-urlencoded` media type defines special meanings for `=` and `&` as delimiters, and `+` as the replacement for the space character (instead of its percent-encoded form of `%20`).\nThis means that while these three characters are reserved-but-allowed in query strings by RFC3986, they must be percent-encoded in `form-urlencoded` query strings except when used for their `form-urlencoded` purposes; see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for an example of handling `+` in form values.\n\n### Percent-Encoding and `form-data`\n\n[RFC7578](https://datatracker.ietf.org/doc/html/rfc7578#section-2) suggests RFC3986-based percent-encoding as a mechanism to keep text-based per-part header data such as file names within the ASCII character set.\nThis suggestion was not part of older (pre-2015) specifications for `form-data`, so care must be taken to ensure interoperability.\n\nThe `form-data` media type allows arbitrary text or binary data in its parts, so percent-encoding is not needed and is likely to cause interoperability problems unless the `Content-Type` of the part is defined to require it.\n\n### Generating and Validating URIs and `form-urlencoded` Strings\n\nURI percent encoding and the `form-urlencoded` media type have complex specification histories spanning multiple revisions and, in some cases, conflicting claims of ownership by different standards bodies.\nUnfortunately, these specifications each define slightly different percent-encoding rules, which need to be taken into account if the URIs or `form-urlencoded` message bodies will be subject to strict validation.\n(Note that many URI parsers do not perform validation by default.)\n\nThis specification normatively cites the following relevant standards:\n\n| Specification | Date | OAS Usage | Percent-Encoding | Notes |\n| ---- | ---- | ---- | ---- | ---- |\n| [RFC3986](https://www.rfc-editor.org/rfc/rfc3986) | 01/2005 | URI/URL syntax | [[RFC3986]] | obsoletes [[RFC1738]], [[RFC2396]] |\n| [RFC6570](https://www.rfc-editor.org/rfc/rfc6570) | 03/2012 | style-based serialization | [[RFC3986]] | does not use `+` for <code>form&#8209;urlencoded</code> |\n| [RFC1866](https://datatracker.ietf.org/doc/html/rfc1866#section-8.2.1) | 11/1995 | content-based serialization | [[RFC1738]] | obsoleted by [[HTML401]] [Section 17.13.4.1](https://www.w3.org/TR/html401/interact/forms.html#h-17.13.4.1), [[URL]] [Section 5](https://url.spec.whatwg.org/#urlencoded-serializing) |\n\nStyle-based serialization is used in the [Parameter Object](#parameter-object) when `schema` is present, and in the [Encoding Object](#encoding-object) when at least one of `style`, `explode`, or `allowReserved` is present.\nSee [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more details of RFC6570's two different approaches to percent-encoding, including an example involving `+`.\n\nContent-based serialization is defined by the [Media Type Object](#media-type-object), and used with the [Parameter Object](#parameter-object) when the `content` field is present, and with the [Encoding Object](#encoding-object) based on the `contentType` field when the fields `style`, `explode`, and `allowReserved` are absent.\nEach part is encoded based on the media type (e.g. `text/plain` or `application/json`), and must then be percent-encoded for use in a `form-urlencoded` string.\n\nNote that content-based serialization for `form-data` does not expect or require percent-encoding in the data, only in per-part header values.\n\n#### Interoperability with Historical Specifications\n\nIn most cases, generating query strings in strict compliance with [[RFC3986]] is sufficient to pass validation (including JSON Schema's `format: \"uri\"` and `format: \"uri-reference\"`), but some `form-urlencoded` implementations still expect the slightly more restrictive [[RFC1738]] rules to be used.\n\nSince all RFC1738-compliant URIs are compliant with RFC3986, applications needing to ensure historical interoperability SHOULD use RFC1738's rules.\n\n#### Interoperability with Web Browser Environments\n\nWHATWG is a [web browser-oriented](https://whatwg.org/faq#what-is-the-whatwg-working-on) standards group that has defined a \"URL Living Standard\" for parsing and serializing URLs in a browser context, including parsing and serializing `form-urlencoded` data.\nWHATWG's percent-encoding rules for query strings are different depending on whether the query string is [being treated as `form-urlencoded`](https://url.spec.whatwg.org/#application-x-www-form-urlencoded-percent-encode-set) (where it requires more percent-encoding than [[RFC1738]]) or [as part of the generic syntax](https://url.spec.whatwg.org/#query-percent-encode-set), where it allows characters that [[RFC3986]] forbids.\n\nImplementations needing maximum compatibility with web browsers SHOULD use WHATWG's `form-urlencoded` percent-encoding rules.\nHowever, they SHOULD NOT rely on WHATWG's less stringent generic query string rules, as the resulting URLs would fail RFC3986 validation, including JSON Schema's `format: uri` and `format: uri-reference`.\n\n### Decoding URIs and `form-urlencoded` Strings\n\nThe percent-decoding algorithm does not care which characters were or were not percent-decoded, which means that URIs percent-encoded according to any specification will be decoded correctly.\n\nSimilarly, all `form-urlencoded` decoding algorithms simply add `+`-for-space handling to the percent-decoding algorithm, and will work regardless of the encoding specification used.\n\nHowever, care must be taken to use `form-urlencoded` decoding if `+` represents a space, and to use regular percent-decoding if `+` represents itself as a literal value.\n\n### Percent-Encoding and Illegal or Reserved Delimiters\n\nThe `[`, `]`, `|`, and space characters, which are used as delimiters for the `deepObject`, `pipeDelimited`, and `spaceDelimited` styles, respectively, all MUST be percent-encoded to comply with [[RFC3986]].\nThis requires users to pre-encode the character(s) in some other way in parameter names and values to distinguish them from the delimiter usage when using one of these styles.\n\nThe space character is always illegal and encoded in some way by all implementations of all versions of the relevant standards.\nWhile one could use the `form-urlencoded` convention of `+` to distinguish spaces in parameter names and values from `spaceDelimited` delimiters encoded as `%20`, the specifications define the decoding as a single pass, making it impossible to distinguish the different usages in the decoded result.\n\nSome environments use `[`, `]`, and possibly `|` unencoded in query strings without apparent difficulties, and WHATWG's generic query string rules do not require percent-encoding them.\nCode that relies on leaving these delimiters unencoded, while using regular percent-encoding for them within names and values, is not guaranteed to be interoperable across all implementations.\n\nFor maximum interoperability, it is RECOMMENDED to either define and document an additional escape convention while percent-encoding the delimiters for these styles, or to avoid these styles entirely.\nThe exact method of additional encoding/escaping is left to the API designer, and is expected to be performed before serialization and encoding described in this specification, and reversed after this specification's encoding and serialization steps are reversed.\nThis keeps it outside of the processes governed by this specification.\n\n## Appendix F: Resolving Security Requirements in a Referenced Document\n\nThis appendix shows how to retrieve an HTTP-accessible multi-document OpenAPI Description (OAD) and resolve a [Security Requirement Object](#security-requirement-object) in the referenced (non-entry) document.  See [Resolving Implicit Connections](#resolving-implicit-connections) for more information.\n\nFirst, the [entry document](#openapi-description-structure) is where parsing begins. It defines the `MySecurity` security scheme to be JWT-based, and it defines a Path Item as a reference to a component in another document:\n\n```HTTP\nGET /api/description/openapi HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+json\n```\n\n```json\n\"components\": {\n  \"securitySchemes\": {\n    \"MySecurity\": {\n      \"type\": \"http\",\n      \"scheme\": \"bearer\",\n      \"bearerFormat\": \"JWT\"\n    }\n  }\n},\n\"paths\": {\n  \"/foo\": {\n    \"$ref\": \"other#/components/pathItems/Foo\"\n  }\n}\n```\n\n```HTTP\nGET /api/description/openapi HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+yaml\n```\n\n```yaml\ncomponents:\n  securitySchemes:\n    MySecurity:\n      type: http\n      scheme: bearer\n      bearerFormat: JWT\npaths:\n  /foo:\n    $ref: 'other#/components/pathItems/Foo'\n```\n\nThis entry document references another document, `other`, without using a file extension.  This gives the client the flexibility to choose an acceptable format on a resource-by-resource basis, assuming both representations are available:\n\n```HTTP\nGET /api/description/other HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+json\n```\n\n```json\n\"components\": {\n  \"securitySchemes\": {\n    \"MySecurity\": {\n      \"type\": \"http\",\n      \"scheme\": \"basic\"\n    }\n  },\n  \"pathItems\": {\n    \"Foo\": {\n      \"get\": {\n        \"security\": [\n          \"MySecurity\": []\n        ]\n      }\n    }\n  }\n}\n```\n\n```HTTP\nGET /api/description/other HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+yaml\n```\n\n```yaml\ncomponents:\n  securitySchemes:\n    MySecurity:\n      type: http\n      scheme: basic\n  pathItems:\n    Foo:\n      get:\n        security:\n          - MySecurity: []\n```\n\nIn the `other` document, the referenced path item has a Security Requirement for a Security Scheme, `MySecurity`. The same Security Scheme exists in the original entry document. As outlined in [Resolving Implicit Connections](#resolving-implicit-connections), `MySecurity` is resolved with an [implementation-defined behavior](#undefined-and-implementation-defined-behavior). However, documented in that section, it is RECOMMENDED that tools resolve component names from the [entry document](#openapi-description-structure). As with all implementation-defined behavior, it is important to check tool documentation to determine which behavior is supported.\n"
  },
  {
    "path": "versions/3.1.0-editors.md",
    "content": "## Active\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Mike Ralphson [@MikeRalphson](https://github.com/MikeRalphson)\n* Ron Ratovsky [@webron](https://github.com/webron)\n* Uri Sarid [@usarid](https://github.com/usarid)\n\n## Emeritus\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "versions/3.1.0.md",
    "content": "# OpenAPI Specification\n\n#### Version 3.1.0\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"NOT RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [BCP 14](https://tools.ietf.org/html/bcp14) [RFC2119](https://tools.ietf.org/html/rfc2119) [RFC8174](https://tools.ietf.org/html/rfc8174) when, and only when, they appear in all capitals, as shown here.\n\nThis document is licensed under [The Apache License, Version 2.0](https://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introduction\n\nThe OpenAPI Specification (OAS) defines a standard, language-agnostic interface to HTTP APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined, a consumer can understand and interact with the remote service with a minimal amount of implementation logic.\n\nAn OpenAPI definition can then be used by documentation generation tools to display the API, code generation tools to generate servers and clients in various programming languages, testing tools, and many other use cases.\n\n## Table of Contents\n<!-- TOC depthFrom:1 depthTo:3 withLinks:1 updateOnSave:1 orderedList:0 -->\n\n- [Definitions](#definitions)\n\t- [OpenAPI Document](#openapi-document)\n\t- [Path Templating](#path-templating)\n\t- [Media Types](#media-types)\n\t- [HTTP Status Codes](#http-status-codes)\n- [Specification](#specification)\n\t- [Versions](#versions)\n\t- [Format](#format)\n\t- [Document Structure](#document-structure)\n\t- [Data Types](#data-types)\n\t- [Rich Text Formatting](#rich-text-formatting)\n\t- [Relative References In URIs](#relative-references-in-uris)\n\t- [Relative References In URLs](#relative-references-in-urls)\n\t- [Schema](#schema)\n\t\t- [OpenAPI Object](#openapi-object)\n\t\t- [Info Object](#info-object)\n\t\t- [Contact Object](#contact-object)\n\t\t- [License Object](#license-object)\n\t\t- [Server Object](#server-object)\n\t\t- [Server Variable Object](#server-variable-object)\n\t\t- [Components Object](#components-object)\n\t\t- [Paths Object](#paths-object)\n\t\t- [Path Item Object](#path-item-object)\n\t\t- [Operation Object](#operation-object)\n\t\t- [External Documentation Object](#external-documentation-object)\n\t\t- [Parameter Object](#parameter-object)\n\t\t- [Request Body Object](#request-body-object)\n\t\t- [Media Type Object](#media-type-object)\n\t\t- [Encoding Object](#encoding-object)\n\t\t- [Responses Object](#responses-object)\n\t\t- [Response Object](#response-object)\n\t\t- [Callback Object](#callback-object)\n\t\t- [Example Object](#example-object)\n\t\t- [Link Object](#link-object)\n\t\t- [Header Object](#header-object)\n\t\t- [Tag Object](#tag-object)\n\t\t- [Reference Object](#reference-object)\n\t\t- [Schema Object](#schema-object)\n\t\t- [Discriminator Object](#discriminator-object)\n\t\t- [XML Object](#xml-object)\n\t\t- [Security Scheme Object](#security-scheme-object)\n\t\t- [OAuth Flows Object](#oauth-flows-object)\n\t\t- [OAuth Flow Object](#oauth-flow-object)\n\t\t- [Security Requirement Object](#security-requirement-object)\n\t- [Specification Extensions](#specification-extensions)\n\t- [Security Filtering](#security-filtering)\n- [Appendix A: Revision History](#appendix-a-revision-history)\n\t\n\n<!-- /TOC -->\n\n## Definitions\n\n##### OpenAPI Document\nA self-contained or composite resource which defines or describes an API or elements of an API. The OpenAPI document MUST contain at least one [paths](#paths-object) field, a [components](#oasComponents) field or a [webhooks](#oasWebhooks) field. An OpenAPI document uses and conforms to the OpenAPI Specification.\n\n##### Path Templating\nPath templating refers to the usage of template expressions, delimited by curly braces ({}), to mark a section of a URL path as replaceable using path parameters.\n\nEach template expression in the path MUST correspond to a path parameter that is included in the [Path Item](#path-item-object) itself and/or in each of the Path Item's [Operations](#operation-object). An exception is if the path item is empty, for example due to ACL constraints, matching path parameters are not required.\n\nThe value for these path parameters MUST NOT contain any unescaped \"generic syntax\" characters described by [RFC3986](https://tools.ietf.org/html/rfc3986#section-3): forward slashes (`/`), question marks (`?`), or hashes (`#`).\n\n##### Media Types\nMedia type definitions are spread across several resources.\nThe media type definitions SHOULD be in compliance with [RFC6838](https://tools.ietf.org/html/rfc6838).\n\nSome examples of possible media type definitions:\n```\n  text/plain; charset=utf-8\n  application/json\n  application/vnd.github+json\n  application/vnd.github.v3+json\n  application/vnd.github.v3.raw+json\n  application/vnd.github.v3.text+json\n  application/vnd.github.v3.html+json\n  application/vnd.github.v3.full+json\n  application/vnd.github.v3.diff\n  application/vnd.github.v3.patch\n```\n##### HTTP Status Codes\nThe HTTP Status Codes are used to indicate the status of the executed operation.\nThe available status codes are defined by [RFC7231](https://tools.ietf.org/html/rfc7231#section-6) and registered status codes are listed in the [IANA Status Code Registry](https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n## Specification\n\n### Versions\n\nThe OpenAPI Specification is versioned using a `major`.`minor`.`patch` versioning scheme. The `major`.`minor` portion of the version string (for example `3.1`) SHALL designate the OAS feature set. *`.patch`* versions address errors in, or provide clarifications to, this document, not the feature set. Tooling which supports OAS 3.1 SHOULD be compatible with all OAS 3.1.\\* versions. The patch version SHOULD NOT be considered by tooling, making no distinction between `3.1.0` and `3.1.1` for example.\n\nOccasionally, non-backwards compatible changes may be made in `minor` versions of the OAS where impact is believed to be low relative to the benefit provided.\n\nAn OpenAPI document compatible with OAS 3.\\*.\\* contains a required [`openapi`](#oasVersion) field which designates the version of the OAS that it uses.\n\n### Format\n\nAn OpenAPI document that conforms to the OpenAPI Specification is itself a JSON object, which may be represented either in JSON or YAML format.\n\nFor example, if a field has an array value, the JSON array representation will be used:\n\n```json\n{\n   \"field\": [ 1, 2, 3 ]\n}\n```\nAll field names in the specification are **case sensitive**.\nThis includes all fields that are used as keys in a map, except where explicitly noted that keys are **case insensitive**.\n\nThe schema exposes two types of fields: Fixed fields, which have a declared name, and Patterned fields, which declare a regex pattern for the field name.\n\nPatterned fields MUST have unique names within the containing object.\n\nIn order to preserve the ability to round-trip between YAML and JSON formats, YAML version [1.2](https://yaml.org/spec/1.2/spec.html) is RECOMMENDED along with some additional constraints:\n\n- Tags MUST be limited to those allowed by the [JSON Schema ruleset](https://yaml.org/spec/1.2/spec.html#id2803231).\n- Keys used in YAML maps MUST be limited to a scalar string, as defined by the [YAML Failsafe schema ruleset](https://yaml.org/spec/1.2/spec.html#id2802346).\n\n**Note:** While APIs may be defined by OpenAPI documents in either YAML or JSON format, the API request and response bodies and other content are not required to be JSON or YAML.\n\n### Document Structure\n\nAn OpenAPI document MAY be made up of a single document or be divided into multiple, connected parts at the discretion of the author. In the latter case, [`Reference Objects`](#reference-object) and [`Schema Object`](#schema-object) `$ref` keywords are used.\n\nIt is RECOMMENDED that the root OpenAPI document be named: `openapi.json` or `openapi.yaml`.\n\n### Data Types\n\nData types in the OAS are based on the types supported by the [JSON Schema Specification Draft 2020-12](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-4.2.1).\nNote that `integer` as a type is also supported and is defined as a JSON number without a fraction or exponent part.\nModels are defined using the [Schema Object](#schema-object), which is a superset of JSON Schema Specification Draft 2020-12.\n\n<a name=\"dataTypeFormat\"></a>As defined by the [JSON Schema Validation vocabulary](https://tools.ietf.org/html/draft-bhutton-json-schema-validation-00#section-7.3), data types can have an optional modifier property: `format`.\nOAS defines additional formats to provide fine detail for primitive data types.\n\nThe formats defined by the OAS are:\n\n[`type`](#data-types) | [`format`](#dataTypeFormat) | Comments\n------ | -------- | --------\n`integer` | `int32` | signed 32 bits\n`integer` | `int64` | signed 64 bits (a.k.a long)\n`number` | `float` | |\n`number` | `double` | |\n`string` | `password` | A hint to UIs to obscure input.\n\n### Rich Text Formatting\nThroughout the specification `description` fields are noted as supporting CommonMark markdown formatting.\nWhere OpenAPI tooling renders rich text it MUST support, at a minimum, markdown syntax as described by [CommonMark 0.27](https://spec.commonmark.org/0.27/). Tooling MAY choose to ignore some CommonMark features to address security concerns.\n\n### Relative References in URIs\n\nUnless specified otherwise, all properties that are URIs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\n\nRelative references, including those in [`Reference Objects`](#reference-object), [`PathItem Object`](#path-item-object) `$ref` fields, [`Link Object`](#link-object) `operationRef` fields and [`Example Object`](#example-object) `externalValue` fields, are resolved using the referring document as the Base URI according to [RFC3986](https://tools.ietf.org/html/rfc3986#section-5.2).\n\nIf a URI contains a fragment identifier, then the fragment should be resolved per the fragment resolution mechanism of the referenced document.  If the representation of the referenced document is JSON or YAML, then the fragment identifier SHOULD be interpreted as a JSON-Pointer as per [RFC6901](https://tools.ietf.org/html/rfc6901).\n\nRelative references in [`Schema Objects`](#schema-object), including any that appear as `$id` values, use the nearest parent `$id` as a Base URI, as described by [JSON Schema Specification Draft 2020-12](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-8.2).  If no parent schema contains an `$id`, then the Base URI MUST be determined according to [RFC3986](https://tools.ietf.org/html/rfc3986#section-5.1).\n\n### Relative References in URLs\n\nUnless specified otherwise, all properties that are URLs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\nUnless specified otherwise, relative references are resolved using the URLs defined in the [`Server Object`](#server-object) as a Base URL. Note that these themselves MAY be relative to the referring document.\n\n### Schema\n\nIn the following description, if a field is not explicitly **REQUIRED** or described with a MUST or SHALL, it can be considered OPTIONAL.\n\n#### OpenAPI Object\n\nThis is the root object of the [OpenAPI document](#openapi-document).\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"oasVersion\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [version number](#versions) of the OpenAPI Specification that the OpenAPI document uses. The `openapi` field SHOULD be used by tooling to interpret the OpenAPI document. This is *not* related to the API [`info.version`](#infoVersion) string.\n<a name=\"oasInfo\"></a>info | [Info Object](#info-object) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required.\n<a name=\"oasJsonSchemaDialect\"></a> jsonSchemaDialect | `string` | The default value for the `$schema` keyword within [Schema Objects](#schema-object) contained within this OAS document. This MUST be in the form of a URI.\n<a name=\"oasServers\"></a>servers | [[Server Object](#server-object)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` property is not provided, or is an empty array, the default value would be a [Server Object](#server-object) with a [url](#serverUrl) value of `/`.\n<a name=\"oasPaths\"></a>paths | [Paths Object](#paths-object) | The available paths and operations for the API.\n<a name=\"oasWebhooks\"></a>webhooks | Map[`string`, [Path Item Object](#path-item-object) \\| [Reference Object](#reference-object)] ] | The incoming webhooks that MAY be received as part of this API and that the API consumer MAY choose to implement. Closely related to the `callbacks` feature, this section describes requests initiated other than by an API call, for example by an out of band registration. The key name is a unique string to refer to each webhook, while the (optionally referenced) Path Item Object describes a request that may be initiated by the API provider and the expected responses. An [example](../examples/v3.1/webhook-example.yaml) is available.\n<a name=\"oasComponents\"></a>components | [Components Object](#components-object) | An element to hold various schemas for the document.\n<a name=\"oasSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. Individual operations can override this definition. To make security optional, an empty security requirement (`{}`) can be included in the array.\n<a name=\"oasTags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the document with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique.\n<a name=\"oasExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Info Object\n\nThe object provides metadata about the API.\nThe metadata MAY be used by the clients if needed, and MAY be presented in editing or documentation generation tools for convenience.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"infoTitle\"></a>title | `string` | **REQUIRED**. The title of the API.\n<a name=\"infoSummary\"></a>summary | `string` | A short summary of the API.\n<a name=\"infoDescription\"></a>description | `string` | A description of the API. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"infoTermsOfService\"></a>termsOfService | `string` | A URL to the Terms of Service for the API. This MUST be in the form of a URL.\n<a name=\"infoContact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API.\n<a name=\"infoLicense\"></a>license | [License Object](#license-object) | The license information for the exposed API.\n<a name=\"infoVersion\"></a>version | `string` | **REQUIRED**. The version of the OpenAPI document (which is distinct from the [OpenAPI Specification version](#oasVersion) or the API implementation version).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Info Object Example\n\n```json\n{\n  \"title\": \"Sample Pet Store App\",\n  \"summary\": \"A pet store manager.\",\n  \"description\": \"This is a sample server for a pet store.\",\n  \"termsOfService\": \"https://example.com/terms/\",\n  \"contact\": {\n    \"name\": \"API Support\",\n    \"url\": \"https://www.example.com/support\",\n    \"email\": \"support@example.com\"\n  },\n  \"license\": {\n    \"name\": \"Apache 2.0\",\n    \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n  },\n  \"version\": \"1.0.1\"\n}\n```\n\n```yaml\ntitle: Sample Pet Store App\nsummary: A pet store manager.\ndescription: This is a sample server for a pet store.\ntermsOfService: https://example.com/terms/\ncontact:\n  name: API Support\n  url: https://www.example.com/support\n  email: support@example.com\nlicense:\n  name: Apache 2.0\n  url: https://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n#### Contact Object\n\nContact information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"contactName\"></a>name | `string` | The identifying name of the contact person/organization.\n<a name=\"contactUrl\"></a>url | `string` | The URL pointing to the contact information. This MUST be in the form of a URL.\n<a name=\"contactEmail\"></a>email | `string` | The email address of the contact person/organization. This MUST be in the form of an email address.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Contact Object Example\n\n```json\n{\n  \"name\": \"API Support\",\n  \"url\": \"https://www.example.com/support\",\n  \"email\": \"support@example.com\"\n}\n```\n\n```yaml\nname: API Support\nurl: https://www.example.com/support\nemail: support@example.com\n```\n\n#### License Object\n\nLicense information for the exposed API.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"licenseName\"></a>name | `string` | **REQUIRED**. The license name used for the API.\n<a name=\"licenseIdentifier\"></a>identifier | `string` | An [SPDX](https://spdx.org/licenses/) license expression for the API. The `identifier` field is mutually exclusive of the `url` field.\n<a name=\"licenseUrl\"></a>url | `string` | A URL to the license used for the API. This MUST be in the form of a URL. The `url` field is mutually exclusive of the `identifier` field.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### License Object Example\n\n```json\n{\n  \"name\": \"Apache 2.0\",\n  \"identifier\": \"Apache-2.0\"\n}\n```\n\n```yaml\nname: Apache 2.0\nidentifier: Apache-2.0\n```\n\n#### Server Object\n\nAn object representing a Server.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverUrl\"></a>url | `string` | **REQUIRED**. A URL to the target host.  This URL supports Server Variables and MAY be relative, to indicate that the host location is relative to the location where the OpenAPI document is being served. Variable substitutions will be made when a variable is named in `{`brackets`}`.\n<a name=\"serverDescription\"></a>description | `string` | An optional string describing the host designated by the URL. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"serverVariables\"></a>variables | Map[`string`, [Server Variable Object](#server-variable-object)] | A map between a variable name and its value.  The value is used for substitution in the server's URL template.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Server Object Example\n\nA single server would be described as:\n\n```json\n{\n  \"url\": \"https://development.gigantic-server.com/v1\",\n  \"description\": \"Development server\"\n}\n```\n\n```yaml\nurl: https://development.gigantic-server.com/v1\ndescription: Development server\n```\n\nThe following shows how multiple servers can be described, for example, at the OpenAPI Object's [`servers`](#oasServers):\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://development.gigantic-server.com/v1\",\n      \"description\": \"Development server\"\n    },\n    {\n      \"url\": \"https://staging.gigantic-server.com/v1\",\n      \"description\": \"Staging server\"\n    },\n    {\n      \"url\": \"https://api.gigantic-server.com/v1\",\n      \"description\": \"Production server\"\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://development.gigantic-server.com/v1\n  description: Development server\n- url: https://staging.gigantic-server.com/v1\n  description: Staging server\n- url: https://api.gigantic-server.com/v1\n  description: Production server\n```\n\nThe following shows how variables can be used for a server configuration:\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://{username}.gigantic-server.com:{port}/{basePath}\",\n      \"description\": \"The production API server\",\n      \"variables\": {\n        \"username\": {\n          \"default\": \"demo\",\n          \"description\": \"this value is assigned by the service provider, in this example `gigantic-server.com`\"\n        },\n        \"port\": {\n          \"enum\": [\n            \"8443\",\n            \"443\"\n          ],\n          \"default\": \"8443\"\n        },\n        \"basePath\": {\n          \"default\": \"v2\"\n        }\n      }\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n- url: https://{username}.gigantic-server.com:{port}/{basePath}\n  description: The production API server\n  variables:\n    username:\n      # note! no enum here means it is an open value\n      default: demo\n      description: this value is assigned by the service provider, in this example `gigantic-server.com`\n    port:\n      enum:\n        - '8443'\n        - '443'\n      default: '8443'\n    basePath:\n      # open meaning there is the opportunity to use special base paths as assigned by the provider, default is `v2`\n      default: v2\n```\n\n\n#### Server Variable Object\n\nAn object representing a Server Variable for server URL template substitution.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"serverVariableEnum\"></a>enum | [`string`] | An enumeration of string values to be used if the substitution options are from a limited set. The array MUST NOT be empty.\n<a name=\"serverVariableDefault\"></a>default | `string` |  **REQUIRED**. The default value to use for substitution, which SHALL be sent if an alternate value is _not_ supplied. Note this behavior is different than the [Schema Object's](#schema-object) treatment of default values, because in those cases parameter values are optional. If the [`enum`](#serverVariableEnum) is defined, the value MUST exist in the enum's values.\n<a name=\"serverVariableDescription\"></a>description | `string` | An optional description for the server variable. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Components Object\n\nHolds a set of reusable objects for different aspects of the OAS.\nAll objects defined within the components object will have no effect on the API unless they are explicitly referenced from properties outside the components object.\n\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---|---\n<a name=\"componentsSchemas\"></a> schemas | Map[`string`, [Schema Object](#schema-object)] | An object to hold reusable [Schema Objects](#schema-object).\n<a name=\"componentsResponses\"></a> responses | Map[`string`, [Response Object](#response-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Response Objects](#response-object).\n<a name=\"componentsParameters\"></a> parameters | Map[`string`, [Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Parameter Objects](#parameter-object).\n<a name=\"componentsExamples\"></a> examples | Map[`string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Example Objects](#example-object).\n<a name=\"componentsRequestBodies\"></a> requestBodies | Map[`string`, [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Request Body Objects](#request-body-object).\n<a name=\"componentsHeaders\"></a> headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Header Objects](#header-object).\n<a name=\"componentsSecuritySchemes\"></a> securitySchemes| Map[`string`, [Security Scheme Object](#security-scheme-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Security Scheme Objects](#security-scheme-object).\n<a name=\"componentsLinks\"></a> links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Link Objects](#link-object).\n<a name=\"componentsCallbacks\"></a> callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Callback Objects](#callback-object).\n<a name=\"componentsPathItems\"></a> pathItems | Map[`string`, [Path Item Object](#path-item-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Path Item Object](#path-item-object).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nAll the fixed fields declared above are objects that MUST use keys that match the regular expression: `^[a-zA-Z0-9\\.\\-_]+$`.\n\nField Name Examples:\n\n```\nUser\nUser_1\nUser_Name\nuser-name\nmy.org.User\n```\n\n##### Components Object Example\n\n```json\n\"components\": {\n  \"schemas\": {\n    \"GeneralError\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"code\": {\n          \"type\": \"integer\",\n          \"format\": \"int32\"\n        },\n        \"message\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Category\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Tag\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  },\n  \"parameters\": {\n    \"skipParam\": {\n      \"name\": \"skip\",\n      \"in\": \"query\",\n      \"description\": \"number of items to skip\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    },\n    \"limitParam\": {\n      \"name\": \"limit\",\n      \"in\": \"query\",\n      \"description\": \"max records to return\",\n      \"required\": true,\n      \"schema\" : {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    }\n  },\n  \"responses\": {\n    \"NotFound\": {\n      \"description\": \"Entity not found.\"\n    },\n    \"IllegalInput\": {\n      \"description\": \"Illegal input for operation.\"\n    },\n    \"GeneralError\": {\n      \"description\": \"General Error\",\n      \"content\": {\n        \"application/json\": {\n          \"schema\": {\n            \"$ref\": \"#/components/schemas/GeneralError\"\n          }\n        }\n      }\n    }\n  },\n  \"securitySchemes\": {\n    \"api_key\": {\n      \"type\": \"apiKey\",\n      \"name\": \"api_key\",\n      \"in\": \"header\"\n    },\n    \"petstore_auth\": {\n      \"type\": \"oauth2\",\n      \"flows\": {\n        \"implicit\": {\n          \"authorizationUrl\": \"https://example.org/api/oauth/dialog\",\n          \"scopes\": {\n            \"write:pets\": \"modify pets in your account\",\n            \"read:pets\": \"read your pets\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    GeneralError:\n      type: object\n      properties:\n        code:\n          type: integer\n          format: int32\n        message:\n          type: string\n    Category:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n    Tag:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n  parameters:\n    skipParam:\n      name: skip\n      in: query\n      description: number of items to skip\n      required: true\n      schema:\n        type: integer\n        format: int32\n    limitParam:\n      name: limit\n      in: query\n      description: max records to return\n      required: true\n      schema:\n        type: integer\n        format: int32\n  responses:\n    NotFound:\n      description: Entity not found.\n    IllegalInput:\n      description: Illegal input for operation.\n    GeneralError:\n      description: General Error\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/GeneralError'\n  securitySchemes:\n    api_key:\n      type: apiKey\n      name: api_key\n      in: header\n    petstore_auth:\n      type: oauth2\n      flows:\n        implicit:\n          authorizationUrl: https://example.org/api/oauth/dialog\n          scopes:\n            write:pets: modify pets in your account\n            read:pets: read your pets\n```\n\n#### Paths Object\n\nHolds the relative paths to the individual endpoints and their operations.\nThe path is appended to the URL from the [`Server Object`](#server-object) in order to construct the full URL.  The Paths MAY be empty, due to [Access Control List (ACL) constraints](#security-filtering).\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"pathsPath\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a forward slash (`/`). The path is **appended** (no relative URL resolution) to the expanded URL from the [`Server Object`](#server-object)'s `url` field in order to construct the full URL. [Path templating](#path-templating) is allowed. When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical. In case of ambiguous matching, it's up to the tooling to decide which one to use.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Templating Matching\n\nAssuming the following paths, the concrete definition, `/pets/mine`, will be matched first if used:\n\n```\n  /pets/{petId}\n  /pets/mine\n```\n\nThe following paths are considered identical and invalid:\n\n```\n  /pets/{petId}\n  /pets/{name}\n```\n\nThe following may lead to ambiguous resolution:\n\n```\n  /{entity}/me\n  /books/{id}\n```\n\n##### Paths Object Example\n\n```json\n{\n  \"/pets\": {\n    \"get\": {\n      \"description\": \"Returns all pets from the system that the user has access to\",\n      \"responses\": {\n        \"200\": {         \n          \"description\": \"A list of pets.\",\n          \"content\": {\n            \"application/json\": {\n              \"schema\": {\n                \"type\": \"array\",\n                \"items\": {\n                  \"$ref\": \"#/components/schemas/pet\"\n                }\n              }\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    responses:\n      '200':\n        description: A list of pets.\n        content:\n          application/json:\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/pet'\n```\n\n#### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item MAY be empty, due to [ACL constraints](#security-filtering).\nThe path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"pathItemRef\"></a>$ref | `string` | Allows for a referenced definition of this path item. The referenced structure MUST be in the form of a [Path Item Object](#path-item-object).  In case a Path Item Object field appears both in the defined object and the referenced object, the behavior is undefined. See the rules for resolving [Relative References](#relative-references-in-uris).\n<a name=\"pathItemSummary\"></a>summary| `string` | An optional, string summary, intended to apply to all operations in this path.\n<a name=\"pathItemDescription\"></a>description | `string` | An optional, string description, intended to apply to all operations in this path. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"pathItemGet\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path.\n<a name=\"pathItemPut\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path.\n<a name=\"pathItemPost\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path.\n<a name=\"pathItemDelete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path.\n<a name=\"pathItemOptions\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path.\n<a name=\"pathItemHead\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path.\n<a name=\"pathItemPatch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path.\n<a name=\"pathItemTrace\"></a>trace | [Operation Object](#operation-object) | A definition of a TRACE operation on this path.\n<a name=\"pathItemServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service all operations in this path.\n<a name=\"pathItemParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Item Object Example\n\n```json\n{\n  \"get\": {\n    \"description\": \"Returns pets based on ID\",\n    \"summary\": \"Find pets by ID\",\n    \"operationId\": \"getPetsById\",\n    \"responses\": {\n      \"200\": {\n        \"description\": \"pet response\",\n        \"content\": {\n          \"*/*\": {\n            \"schema\": {\n              \"type\": \"array\",\n              \"items\": {\n                \"$ref\": \"#/components/schemas/Pet\"\n              }\n            }\n          }\n        }\n      },\n      \"default\": {\n        \"description\": \"error payload\",\n        \"content\": {\n          \"text/html\": {\n            \"schema\": {\n              \"$ref\": \"#/components/schemas/ErrorModel\"\n            }\n          }\n        }\n      }\n    }\n  },\n  \"parameters\": [\n    {\n      \"name\": \"id\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet to use\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      },\n      \"style\": \"simple\"\n    }\n  ]\n}\n```\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  responses:\n    '200':\n      description: pet response\n      content:\n        '*/*' :\n          schema:\n            type: array\n            items:\n              $ref: '#/components/schemas/Pet'\n    default:\n      description: error payload\n      content:\n        'text/html':\n          schema:\n            $ref: '#/components/schemas/ErrorModel'\nparameters:\n- name: id\n  in: path\n  description: ID of pet to use\n  required: true\n  schema:\n    type: array\n    items:\n      type: string \n  style: simple\n```\n\n#### Operation Object\n\nDescribes a single API operation on a path.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"operationTags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier.\n<a name=\"operationSummary\"></a>summary | `string` | A short summary of what the operation does.\n<a name=\"operationDescription\"></a>description | `string` | A verbose explanation of the operation behavior. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"operationExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation.\n<a name=\"operationId\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. The operationId value is **case-sensitive**. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is RECOMMENDED to follow common programming naming conventions.\n<a name=\"operationParameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined at the [Path Item](#pathItemParameters), the new definition will override it but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn). The list can use the [Reference Object](#reference-object) to link to parameters that are defined at the [OpenAPI Object's components/parameters](#componentsParameters).\n<a name=\"operationRequestBody\"></a>requestBody | [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object) | The request body applicable for this operation.  The `requestBody` is fully supported in HTTP methods where the HTTP 1.1 specification [RFC7231](https://tools.ietf.org/html/rfc7231#section-4.3.1) has explicitly defined semantics for request bodies.  In other cases where the HTTP spec is vague (such as [GET](https://tools.ietf.org/html/rfc7231#section-4.3.1), [HEAD](https://tools.ietf.org/html/rfc7231#section-4.3.2) and [DELETE](https://tools.ietf.org/html/rfc7231#section-4.3.5)), `requestBody` is permitted but does not have well-defined semantics and SHOULD be avoided if possible.\n<a name=\"operationResponses\"></a>responses | [Responses Object](#responses-object) | The list of possible responses as they are returned from executing this operation.\n<a name=\"operationCallbacks\"></a>callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | A map of possible out-of band callbacks related to the parent operation. The key is a unique identifier for the Callback Object. Each value in the map is a [Callback Object](#callback-object) that describes a request that may be initiated by the API provider and the expected responses.\n<a name=\"operationDeprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Consumers SHOULD refrain from usage of the declared operation. Default value is `false`.\n<a name=\"operationSecurity\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used for this operation. The list of values includes alternative security requirement objects that can be used. Only one of the security requirement objects need to be satisfied to authorize a request. To make security optional, an empty security requirement (`{}`) can be included in the array. This definition overrides any declared top-level [`security`](#oasSecurity). To remove a top-level security declaration, an empty array can be used.\n<a name=\"operationServers\"></a>servers | [[Server Object](#server-object)] | An alternative `server` array to service this operation. If an alternative `server` object is specified at the Path Item Object or Root level, it will be overridden by this value.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Operation Object Example\n\n```json\n{\n  \"tags\": [\n    \"pet\"\n  ],\n  \"summary\": \"Updates a pet in the store with form data\",\n  \"operationId\": \"updatePetWithForm\",\n  \"parameters\": [\n    {\n      \"name\": \"petId\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet that needs to be updated\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  ],\n  \"requestBody\": {\n    \"content\": {\n      \"application/x-www-form-urlencoded\": {\n        \"schema\": {\n          \"type\": \"object\",\n          \"properties\": {\n            \"name\": {\n              \"description\": \"Updated name of the pet\",\n              \"type\": \"string\"\n            },\n            \"status\": {\n              \"description\": \"Updated status of the pet\",\n              \"type\": \"string\"\n            }\n          },\n          \"required\": [\"status\"]\n        }\n      }\n    }\n  },\n  \"responses\": {\n    \"200\": {\n      \"description\": \"Pet updated.\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    },\n    \"405\": {\n      \"description\": \"Method Not Allowed\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    }\n  },\n  \"security\": [\n    {\n      \"petstore_auth\": [\n        \"write:pets\",\n        \"read:pets\"\n      ]\n    }\n  ]\n}\n```\n\n```yaml\ntags:\n- pet\nsummary: Updates a pet in the store with form data\noperationId: updatePetWithForm\nparameters:\n- name: petId\n  in: path\n  description: ID of pet that needs to be updated\n  required: true\n  schema:\n    type: string\nrequestBody:\n  content:\n    'application/x-www-form-urlencoded':\n      schema:\n       type: object\n       properties:\n          name:\n            description: Updated name of the pet\n            type: string\n          status:\n            description: Updated status of the pet\n            type: string\n       required:\n         - status\nresponses:\n  '200':\n    description: Pet updated.\n    content:\n      'application/json': {}\n      'application/xml': {}\n  '405':\n    description: Method Not Allowed\n    content:\n      'application/json': {}\n      'application/xml': {}\nsecurity:\n- petstore_auth:\n  - write:pets\n  - read:pets\n```\n\n\n#### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"externalDocDescription\"></a>description | `string` | A description of the target documentation. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"externalDocUrl\"></a>url | `string` | **REQUIRED**. The URL for the target documentation. This MUST be in the form of a URL.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### External Documentation Object Example\n\n```json\n{\n  \"description\": \"Find more info here\",\n  \"url\": \"https://example.com\"\n}\n```\n\n```yaml\ndescription: Find more info here\nurl: https://example.com\n```\n\n#### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameterName) and [location](#parameterIn).\n\n##### Parameter Locations\nThere are four possible parameter locations specified by the `in` field:\n* path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`.\n* header - Custom headers that are expected as part of the request. Note that [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive.\n* cookie - Used to pass a specific cookie value to the API.\n\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterName\"></a>name | `string` | **REQUIRED**. The name of the parameter. Parameter names are *case sensitive*. <ul><li>If [`in`](#parameterIn) is `\"path\"`, the `name` field MUST correspond to a template expression occurring within the [path](#pathsPath) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>If [`in`](#parameterIn) is `\"header\"` and the `name` field is `\"Accept\"`, `\"Content-Type\"` or `\"Authorization\"`, the parameter definition SHALL be ignored.<li>For all other cases, the `name` corresponds to the parameter name used by the [`in`](#parameterIn) property.</ul>\n<a name=\"parameterIn\"></a>in | `string` | **REQUIRED**. The location of the parameter. Possible values are `\"query\"`, `\"header\"`, `\"path\"` or `\"cookie\"`.\n<a name=\"parameterDescription\"></a>description | `string` | A brief description of the parameter. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"parameterRequired\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the [parameter location](#parameterIn) is `\"path\"`, this property is **REQUIRED** and its value MUST be `true`. Otherwise, the property MAY be included and its default value is `false`.\n<a name=\"parameterDeprecated\"></a> deprecated | `boolean` | Specifies that a parameter is deprecated and SHOULD be transitioned out of usage. Default value is `false`.\n<a name=\"parameterAllowEmptyValue\"></a> allowEmptyValue | `boolean` | Sets the ability to pass empty-valued parameters. This is valid only for `query` parameters and allows sending a parameter with an empty value. Default value is `false`. If [`style`](#parameterStyle) is used, and if behavior is `n/a` (cannot be serialized), the value of `allowEmptyValue` SHALL be ignored. Use of this property is NOT RECOMMENDED, as it is likely to be removed in a later revision.\n\nThe rules for serialization of the parameter are specified in one of two ways.\nFor simpler scenarios, a [`schema`](#parameterSchema) and [`style`](#parameterStyle) can describe the structure and syntax of the parameter.\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterStyle\"></a>style | `string` | Describes how the parameter value will be serialized depending on the type of the parameter value. Default values (based on value of `in`): for `query` - `form`; for `path` - `simple`; for `header` - `simple`; for `cookie` - `form`.\n<a name=\"parameterExplode\"></a>explode | `boolean` | When this is true, parameter values of type `array` or `object` generate separate parameters for each value of the array or key-value pair of the map. For other types of parameters this property has no effect. When [`style`](#parameterStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`.\n<a name=\"parameterAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. This property only applies to parameters with an `in` value of `query`. The default value is `false`.\n<a name=\"parameterSchema\"></a>schema | [Schema Object](#schema-object) | The schema defining the type used for the parameter.\n<a name=\"parameterExample\"></a>example | Any | Example of the parameter's potential value. The example SHOULD match the specified schema and encoding properties if present. The `example` field is mutually exclusive of the `examples` field. Furthermore, if referencing a `schema` that contains an example, the `example` value SHALL _override_ the example provided by the schema. To represent examples of media types that cannot naturally be represented in JSON or YAML, a string value can contain the example with escaping where necessary.\n<a name=\"parameterExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the parameter's potential value. Each example SHOULD contain a value in the correct format as specified in the parameter encoding. The `examples` field is mutually exclusive of the `example` field. Furthermore, if referencing a `schema` that contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n\nFor more complex scenarios, the [`content`](#parameterContent) property can define the media type and schema of the parameter.\nA parameter MUST contain either a `schema` property, or a `content` property, but not both.\nWhen `example` or `examples` are provided in conjunction with the `schema` object, the example MUST follow the prescribed serialization strategy for the parameter.\n\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"parameterContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the parameter. The key is the media type and the value describes it. The map MUST only contain one entry.\n\n##### Style Values\n\nIn order to support common ways of serializing simple parameters, a set of `style` values are defined.\n\n`style` | [`type`](#data-types) |  `in` | Comments\n----------- | ------ | -------- | --------\nmatrix |  `primitive`, `array`, `object` |  `path` | Path-style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.7)\nlabel | `primitive`, `array`, `object` |  `path` | Label style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.5)\nform |  `primitive`, `array`, `object` |  `query`, `cookie` | Form style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.8). This option replaces `collectionFormat` with a `csv` (when `explode` is false) or `multi` (when `explode` is true) value from OpenAPI 2.0.\nsimple | `array` | `path`, `header` | Simple style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.2).  This option replaces `collectionFormat` with a `csv` value from OpenAPI 2.0.\nspaceDelimited | `array`, `object` | `query` | Space separated array or object values. This option replaces `collectionFormat` equal to `ssv` from OpenAPI 2.0.\npipeDelimited | `array`, `object` | `query` | Pipe separated array or object values. This option replaces `collectionFormat` equal to `pipes` from OpenAPI 2.0.\ndeepObject | `object` | `query` | Provides a simple way of rendering nested objects using form parameters.\n\n\n##### Style Examples\n\nAssume a parameter named `color` has one of the following values:\n\n```\n   string -> \"blue\"\n   array -> [\"blue\",\"black\",\"brown\"]\n   object -> { \"R\": 100, \"G\": 200, \"B\": 150 }\n```\nThe following table shows examples of rendering differences for each value.\n\n[`style`](#style-values) | `explode` | `empty` | `string` | `array` | `object`\n----------- | ------ | -------- | -------- | -------- | -------\nmatrix | false | ;color | ;color=blue | ;color=blue,black,brown | ;color=R,100,G,200,B,150\nmatrix | true | ;color | ;color=blue | ;color=blue;color=black;color=brown | ;R=100;G=200;B=150\nlabel | false | .  | .blue |  .blue.black.brown | .R.100.G.200.B.150\nlabel | true | . | .blue |  .blue.black.brown | .R=100.G=200.B=150\nform | false | color= | color=blue | color=blue,black,brown | color=R,100,G,200,B,150\nform | true | color= | color=blue | color=blue&color=black&color=brown | R=100&G=200&B=150\nsimple | false | n/a | blue | blue,black,brown | R,100,G,200,B,150\nsimple | true | n/a | blue | blue,black,brown | R=100,G=200,B=150\nspaceDelimited | false | n/a | n/a | blue%20black%20brown | R%20100%20G%20200%20B%20150\npipeDelimited | false | n/a | n/a | blue\\|black\\|brown | R\\|100\\|G\\|200\\|B\\|150\ndeepObject | true | n/a | n/a | n/a | color[R]=100&color[G]=200&color[B]=150\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Parameter Object Examples\n\nA header parameter with an array of 64 bit integer numbers:\n\n```json\n{\n  \"name\": \"token\",\n  \"in\": \"header\",\n  \"description\": \"token to be passed as a header\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    }\n  },\n  \"style\": \"simple\"\n}\n```\n\n```yaml\nname: token\nin: header\ndescription: token to be passed as a header\nrequired: true\nschema:\n  type: array\n  items:\n    type: integer\n    format: int64\nstyle: simple\n```\n\nA path parameter of a string value:\n```json\n{\n  \"name\": \"username\",\n  \"in\": \"path\",\n  \"description\": \"username to fetch\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\nschema:\n  type: string\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter:\n```json\n{\n  \"name\": \"id\",\n  \"in\": \"query\",\n  \"description\": \"ID of the object to fetch\",\n  \"required\": false,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  },\n  \"style\": \"form\",\n  \"explode\": true\n}\n```\n\n```yaml\nname: id\nin: query\ndescription: ID of the object to fetch\nrequired: false\nschema:\n  type: array\n  items:\n    type: string\nstyle: form\nexplode: true\n```\n\nA free-form query parameter, allowing undefined parameters of a specific type:\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"freeForm\",\n  \"schema\": {\n    \"type\": \"object\",\n    \"additionalProperties\": {\n      \"type\": \"integer\"\n    },\n  },\n  \"style\": \"form\"\n}\n```\n\n```yaml\nin: query\nname: freeForm\nschema:\n  type: object\n  additionalProperties:\n    type: integer\nstyle: form\n```\n\nA complex parameter using `content` to define serialization:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"coordinates\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"lat\",\n          \"long\"\n        ],\n        \"properties\": {\n          \"lat\": {\n            \"type\": \"number\"\n          },\n          \"long\": {\n            \"type\": \"number\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nin: query\nname: coordinates\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n        - lat\n        - long\n      properties:\n        lat:\n          type: number\n        long:\n          type: number\n```\n\n#### Request Body Object\n\nDescribes a single request body.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"requestBodyDescription\"></a>description | `string` | A brief description of the request body. This could contain examples of use.  [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"requestBodyContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | **REQUIRED**. The content of the request body. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For requests that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"requestBodyRequired\"></a>required | `boolean` | Determines if the request body is required in the request. Defaults to `false`.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Request Body Examples\n\nA request body with a referenced model definition.\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User Example\",\n            \"externalValue\": \"https://foo.bar/examples/user-example.json\"\n          }\n        }\n    },\n    \"application/xml\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n          \"user\" : {\n            \"summary\": \"User example in XML\",\n            \"externalValue\": \"https://foo.bar/examples/user-example.xml\"\n          }\n        }\n    },\n    \"text/plain\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in Plain text\",\n            \"externalValue\": \"https://foo.bar/examples/user-example.txt\"\n        }\n      }\n    },\n    \"*/*\": {\n      \"examples\": {\n        \"user\" : {\n            \"summary\": \"User example in other format\",\n            \"externalValue\": \"https://foo.bar/examples/user-example.whatever\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\ncontent:\n  'application/json':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User Example\n        externalValue: 'https://foo.bar/examples/user-example.json'\n  'application/xml':\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User example in XML\n        externalValue: 'https://foo.bar/examples/user-example.xml'\n  'text/plain':\n    examples:\n      user:\n        summary: User example in Plain text\n        externalValue: 'https://foo.bar/examples/user-example.txt'\n  '*/*':\n    examples:\n      user:\n        summary: User example in other format\n        externalValue: 'https://foo.bar/examples/user-example.whatever'\n```\n\nA body parameter that is an array of string values:\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"required\": true,\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\nrequired: true\ncontent:\n  text/plain:\n    schema:\n      type: array\n      items:\n        type: string\n```\n\n\n#### Media Type Object\nEach Media Type Object provides schema and examples for the media type identified by its key.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"mediaTypeSchema\"></a>schema | [Schema Object](#schema-object) | The schema defining the content of the request, response, or parameter.\n<a name=\"mediaTypeExample\"></a>example | Any | Example of the media type.  The example object SHOULD be in the correct format as specified by the media type.  The `example` field is mutually exclusive of the `examples` field.  Furthermore, if referencing a `schema` which contains an example, the `example` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeExamples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type.  Each example object SHOULD  match the media type and specified schema if present.  The `examples` field is mutually exclusive of the `example` field.  Furthermore, if referencing a `schema` which contains an example, the `examples` value SHALL _override_ the example provided by the schema.\n<a name=\"mediaTypeEncoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | A map between a property name and its encoding information. The key, being the property name, MUST exist in the schema as a property. The encoding object SHALL only apply to `requestBody` objects when the media type is `multipart` or `application/x-www-form-urlencoded`.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Media Type Examples\n\n```json\n{\n  \"application/json\": {\n    \"schema\": {\n         \"$ref\": \"#/components/schemas/Pet\"\n    },\n    \"examples\": {\n      \"cat\" : {\n        \"summary\": \"An example of a cat\",\n        \"value\":\n          {\n            \"name\": \"Fluffy\",\n            \"petType\": \"Cat\",\n            \"color\": \"White\",\n            \"gender\": \"male\",\n            \"breed\": \"Persian\"\n          }\n      },\n      \"dog\": {\n        \"summary\": \"An example of a dog with a cat's name\",\n        \"value\" :  {\n          \"name\": \"Puma\",\n          \"petType\": \"Dog\",\n          \"color\": \"Black\",\n          \"gender\": \"Female\",\n          \"breed\": \"Mixed\"\n        },\n      \"frog\": {\n          \"$ref\": \"#/components/examples/frog-example\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    $ref: \"#/components/schemas/Pet\"\n  examples:\n    cat:\n      summary: An example of a cat\n      value:\n        name: Fluffy\n        petType: Cat\n        color: White\n        gender: male\n        breed: Persian\n    dog:\n      summary: An example of a dog with a cat's name\n      value:\n        name: Puma\n        petType: Dog\n        color: Black\n        gender: Female\n        breed: Mixed\n    frog:\n      $ref: \"#/components/examples/frog-example\"\n```\n\n##### Considerations for File Uploads\n\nIn contrast with the 2.0 specification, `file` input/output content in OpenAPI is described with the same semantics as any other schema type.\n\nIn contrast with the 3.0 specification, the `format` keyword has no effect on the content-encoding of the schema. JSON Schema offers a `contentEncoding` keyword, which may be used to specify the `Content-Encoding` for the schema. The `contentEncoding` keyword supports all encodings defined in [RFC4648](https://tools.ietf.org/html/rfc4648), including \"base64\" and \"base64url\", as well as \"quoted-printable\" from [RFC2045](https://tools.ietf.org/html/rfc2045#section-6.7). The encoding specified by the `contentEncoding` keyword is independent of an encoding specified by the `Content-Type` header in the request or response or metadata of a multipart body -- when both are present, the encoding specified in the `contentEncoding` is applied first and then the encoding specified in the `Content-Type` header.\n\nJSON Schema also offers a `contentMediaType` keyword.  However, when the media type is already specified by the Media Type Object's key, or by the `contentType` field of an [Encoding Object](#encoding-object), the `contentMediaType` keyword SHALL be ignored if present.\n\nExamples:\n\nContent transferred in binary (octet-stream) MAY omit `schema`:\n\n```yaml\n# a PNG image as a binary file:\ncontent:\n    image/png: {}\n```\n\n```yaml\n# an arbitrary binary file:\ncontent:\n    application/octet-stream: {}\n```\n\nBinary content transferred with base64 encoding:\n\n```yaml\ncontent:\n    image/png:\n        schema:\n            type: string\n            contentMediaType: image/png\n            contentEncoding: base64\n```\n\nNote that the `Content-Type` remains `image/png`, describing the semantics of the payload.  The JSON Schema `type` and `contentEncoding` fields explain that the payload is transferred as text.  The JSON Schema `contentMediaType` is technically redundant, but can be used by JSON Schema tools that may not be aware of the OpenAPI context.\n\nThese examples apply to either input payloads of file uploads or response payloads.\n\nA `requestBody` for submitting a file in a `POST` operation may look like the following example:\n\n```yaml\nrequestBody:\n  content:\n    application/octet-stream: {}\n```\n\nIn addition, specific media types MAY be specified:\n\n```yaml\n# multiple, specific media types may be specified:\nrequestBody:\n  content:\n    # a binary file of type png or jpeg\n    image/jpeg: {}\n    image/png: {}\n```\n\nTo upload multiple files, a `multipart` media type MUST be used:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        properties:\n          # The property name 'file' will be used for all files.\n          file:\n            type: array\n            items: {}\n```\n\nAs seen in the section on `multipart/form-data` below, the empty schema for `items` indicates a media type of `application/octet-stream`.\n\n##### Support for x-www-form-urlencoded Request Bodies\n\nTo submit content using form url encoding via [RFC1866](https://tools.ietf.org/html/rfc1866), the following\ndefinition may be used:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # complex types are stringified to support RFC 1866\n            type: object\n            properties: {}\n```\n\nIn this example, the contents in the `requestBody` MUST be stringified per [RFC1866](https://tools.ietf.org/html/rfc1866/) when passed to the server.  In addition, the `address` field complex object will be stringified.\n\nWhen passing complex objects in the `application/x-www-form-urlencoded` content type, the default serialization strategy of such properties is described in the [`Encoding Object`](#encoding-object)'s [`style`](#encodingStyle) property as `form`.\n\n##### Special Considerations for `multipart` Content\n\nIt is common to use `multipart/form-data` as a `Content-Type` when transferring request bodies to operations.  In contrast to 2.0, a `schema` is REQUIRED to define the input parameters to the operation when using `multipart` content.  This supports complex structures as well as supporting mechanisms for multiple file uploads.\n\nIn a `multipart/form-data` request body, each schema property, or each element of a schema array property, takes a section in the payload with an internal header as defined by [RFC7578](https://tools.ietf.org/html/rfc7578). The serialization strategy for each property of a `multipart/form-data` request body can be specified in an associated [`Encoding Object`](#encoding-object).\n\nWhen passing in `multipart` types, boundaries MAY be used to separate sections of the content being transferred – thus, the following default `Content-Type`s are defined for `multipart`:\n\n* If the property is a primitive, or an array of primitive values, the default Content-Type is `text/plain`\n* If the property is complex, or an array of complex values, the default Content-Type is `application/json`\n* If the property is a `type: string` with a `contentEncoding`, the default Content-Type is `application/octet-stream`\n\nPer the JSON Schema specification, `contentMediaType` without `contentEncoding` present is treated as if `contentEncoding: identity` were present.  While useful for embedding text documents such as `text/html` into JSON strings, it is not useful for a `multipart/form-data` part, as it just causes the document to be treated as `text/plain` instead of its actual media type.  Use the Encoding Object without `contentMediaType` if no `contentEncoding` is required.\n\nExamples:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # default Content-Type for objects is `application/json`\n            type: object\n            properties: {}\n          profileImage:\n            # Content-Type for application-level encoded resource is `text/plain`\n            type: string\n            contentMediaType: image/png\n            contentEncoding: base64\n          children:\n            # default Content-Type for arrays is based on the _inner_ type (`text/plain` here)\n            type: array\n            items:\n              type: string\n          addresses:\n            # default Content-Type for arrays is based on the _inner_ type (object shown, so `application/json` in this example)\n            type: array\n            items:\n              type: object\n              $ref: '#/components/schemas/Address'\n```\n\nAn `encoding` attribute is introduced to give you control over the serialization of parts of `multipart` request bodies.  This attribute is _only_ applicable to `multipart` and `application/x-www-form-urlencoded` request bodies.\n\n#### Encoding Object\n\nA single encoding definition applied to a single schema property.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"encodingContentType\"></a>contentType | `string` | The Content-Type for encoding a specific property. Default value depends on the property type: for `object` - `application/json`;  for `array` – the default is defined based on the inner type; for all other cases the default is `application/octet-stream`. The value can be a specific media type (e.g. `application/json`), a wildcard media type (e.g. `image/*`), or a comma-separated list of the two types.\n<a name=\"encodingHeaders\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | A map allowing additional information to be provided as headers, for example `Content-Disposition`.  `Content-Type` is described separately and SHALL be ignored in this section. This property SHALL be ignored if the request body media type is not a `multipart`.\n<a name=\"encodingStyle\"></a>style | `string` | Describes how a specific property value will be serialized depending on its type.  See [Parameter Object](#parameter-object) for details on the [`style`](#parameterStyle) property. The behavior follows the same values as `query` parameters, including default values. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encodingContentType) (implicit or explicit) SHALL be ignored.\n<a name=\"encodingExplode\"></a>explode | `boolean` | When this is true, property values of type `array` or `object` generate separate parameters for each value of the array, or key-value-pair of the map.  For other types of properties this property has no effect. When [`style`](#encodingStyle) is `form`, the default value is `true`. For all other styles, the default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encodingContentType) (implicit or explicit) SHALL be ignored.\n<a name=\"encodingAllowReserved\"></a>allowReserved | `boolean` | Determines whether the parameter value SHOULD allow reserved characters, as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-2.2) `:/?#[]@!$&'()*+,;=` to be included without percent-encoding. The default value is `false`. This property SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encodingContentType) (implicit or explicit) SHALL be ignored.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Encoding Object Example\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            # default is text/plain\n            type: string\n            format: uuid\n          address:\n            # default is application/json\n            type: object\n            properties: {}\n          historyMetadata:\n            # need to declare XML format!\n            description: metadata in XML format\n            type: object\n            properties: {}\n          profileImage: {}\n      encoding:\n        historyMetadata:\n          # require XML Content-Type in utf-8 encoding\n          contentType: application/xml; charset=utf-8\n        profileImage:\n          # only accept png/jpeg\n          contentType: image/png, image/jpeg\n          headers:\n            X-Rate-Limit-Limit:\n              description: The number of allowed requests in the current period\n              schema:\n                type: integer\n```\n\n#### Responses Object\n\nA container for the expected responses of an operation.\nThe container maps a HTTP response code to the expected response.\n\nThe documentation is not necessarily expected to cover all possible HTTP response codes because they may not be known in advance.\nHowever, documentation is expected to cover a successful operation response and any known errors.\n\nThe `default` MAY be used as a default response object for all HTTP codes\nthat are not covered individually by the `Responses Object`.\n\nThe `Responses Object` MUST contain at least one response code, and if only one\nresponse code is provided it SHOULD be the response for a successful operation\ncall.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responsesDefault\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. Use this field to cover undeclared responses.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"responsesCode\"></a>[HTTP Status Code](#http-status-codes) | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name, but only one property per code, to describe the expected response for that HTTP status code. This field MUST be enclosed in quotation marks (for example, \"200\") for compatibility between JSON and YAML. To define a range of response codes, this field MAY contain the uppercase wildcard character `X`. For example, `2XX` represents all response codes between `[200-299]`. Only the following range definitions are allowed: `1XX`, `2XX`, `3XX`, `4XX`, and `5XX`. If a response is defined using an explicit code, the explicit code definition takes precedence over the range definition for that code.\n\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Responses Object Example\n\nA 200 response for a successful operation and a default response for others (implying an error):\n\n```json\n{\n  \"200\": {\n    \"description\": \"a pet to be returned\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/Pet\"\n        }\n      }\n    }\n  },\n  \"default\": {\n    \"description\": \"Unexpected error\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/ErrorModel\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n'200':\n  description: a pet to be returned\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/Pet'\ndefault:\n  description: Unexpected error\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/ErrorModel'\n```\n\n#### Response Object\nDescribes a single response from an API Operation, including design-time, static\n`links` to operations based on the response.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"responseDescription\"></a>description | `string` | **REQUIRED**. A description of the response. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"responseHeaders\"></a>headers | Map[`string`, [Header Object](#header-object)  \\| [Reference Object](#reference-object)] |  Maps a header name to its definition. [RFC7230](https://tools.ietf.org/html/rfc7230#page-22) states header names are case insensitive. If a response header is defined with the name `\"Content-Type\"`, it SHALL be ignored.\n<a name=\"responseContent\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing descriptions of potential response payloads. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it.  For responses that match multiple keys, only the most specific key is applicable. e.g. text/plain overrides text/*\n<a name=\"responseLinks\"></a>links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | A map of operations links that can be followed from the response. The key of the map is a short name for the link, following the naming constraints of the names for [Component Objects](#components-object).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Response Object Examples\n\nResponse of an array of a complex type:\n\n```json\n{\n  \"description\": \"A complex object array response\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"$ref\": \"#/components/schemas/VeryComplexType\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A complex object array response\ncontent:\n  application/json:\n    schema:\n      type: array\n      items:\n        $ref: '#/components/schemas/VeryComplexType'\n```\n\nResponse with a string type:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  }\n\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n```\n\nPlain text response with headers:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\",\n        \"example\": \"whoa!\"\n      }\n    }\n  },\n  \"headers\": {\n    \"X-Rate-Limit-Limit\": {\n      \"description\": \"The number of allowed requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Remaining\": {\n      \"description\": \"The number of remaining requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Reset\": {\n      \"description\": \"The number of seconds left in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n    example: 'whoa!'\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    schema:\n      type: integer\n```\n\nResponse with no return value:\n\n```json\n{\n  \"description\": \"object created\"\n}\n```\n\n```yaml\ndescription: object created\n```\n\n#### Callback Object\n\nA map of possible out-of band callbacks related to the parent operation.\nEach value in the map is a [Path Item Object](#path-item-object) that describes a set of requests that may be initiated by the API provider and the expected responses.\nThe key value used to identify the path item object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n\nTo describe incoming requests from the API provider independent from another API call, use the [`webhooks`](#oasWebhooks) field.\n\n##### Patterned Fields\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"callbackExpression\"></a>{expression} | [Path Item Object](#path-item-object) \\| [Reference Object](#reference-object) | A Path Item Object, or a reference to one, used to define a callback request and expected responses.  A [complete example](../examples/v3.0/callback-example.yaml) is available.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Key Expression\n\nThe key that identifies the [Path Item Object](#path-item-object) is a [runtime expression](#runtime-expressions) that can be evaluated in the context of a runtime HTTP request/response to identify the URL to be used for the callback request.\nA simple example might be `$request.body#/url`.\nHowever, using a [runtime expression](#runtime-expressions) the complete HTTP message can be accessed.\nThis includes accessing any part of a body that a JSON Pointer [RFC6901](https://tools.ietf.org/html/rfc6901) can reference.\n\nFor example, given the following HTTP request:\n\n```http\nPOST /subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning HTTP/1.1\nHost: example.org\nContent-Type: application/json\nContent-Length: 187\n\n{\n  \"failedUrl\" : \"https://clientdomain.com/failed\",\n  \"successUrls\" : [\n    \"https://clientdomain.com/fast\",\n    \"https://clientdomain.com/medium\",\n    \"https://clientdomain.com/slow\"\n  ]\n}\n\n201 Created\nLocation: https://example.org/subscription/1\n```\n\nThe following examples show how the various expressions evaluate, assuming the callback operation has a path parameter named `eventType` and a query parameter named `queryUrl`.\n\nExpression | Value\n---|:---\n$url | https://example.org/subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning\n$method | POST\n$request.path.eventType | myevent\n$request.query.queryUrl | https://clientdomain.com/stillrunning\n$request.header.content-Type | application/json\n$request.body#/failedUrl | https://clientdomain.com/failed\n$request.body#/successUrls/2 | https://clientdomain.com/medium\n$response.header.Location | https://example.org/subscription/1\n\n\n##### Callback Object Examples\n\nThe following example uses the user provided `queryUrl` query string parameter to define the callback URL.  This is an example of how to use a callback object to describe a WebHook callback that goes with the subscription operation to enable registering for the WebHook.\n\n```yaml\nmyCallback:\n  '{$request.query.queryUrl}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          'application/json':\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\nThe following example shows a callback where the server is hard-coded, but the query string parameters are populated from the `id` and `email` property in the request body.\n\n```yaml\ntransactionCallback:\n  'http://notificationServer.com?transactionId={$request.body#/id}&email={$request.body#/email}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          'application/json':\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\n#### Example Object\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"exampleSummary\"></a>summary | `string` | Short description for the example.\n<a name=\"exampleDescription\"></a>description | `string` | Long description for the example. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"exampleValue\"></a>value | Any | Embedded literal example. The `value` field and `externalValue` field are mutually exclusive. To represent examples of media types that cannot naturally represented in JSON or YAML, use a string value to contain the example, escaping where necessary.\n<a name=\"exampleExternalValue\"></a>externalValue | `string` | A URI that points to the literal example. This provides the capability to reference examples that cannot easily be included in JSON or YAML documents.  The `value` field and `externalValue` field are mutually exclusive. See the rules for resolving [Relative References](#relative-references-in-uris).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nIn all cases, the example value is expected to be compatible with the type schema\nof its associated value.  Tooling implementations MAY choose to\nvalidate compatibility automatically, and reject the example value(s) if incompatible.\n\n##### Example Object Examples\n\nIn a request body:\n\n```yaml\nrequestBody:\n  content:\n    'application/json':\n      schema:\n        $ref: '#/components/schemas/Address'\n      examples:\n        foo:\n          summary: A foo example\n          value: {\"foo\": \"bar\"}\n        bar:\n          summary: A bar example\n          value: {\"bar\": \"baz\"}\n    'application/xml':\n      examples:\n        xmlExample:\n          summary: This is an example in XML\n          externalValue: 'https://example.org/examples/address-example.xml'\n    'text/plain':\n      examples:\n        textExample:\n          summary: This is a text example\n          externalValue: 'https://foo.bar/examples/address-example.txt'\n```\n\nIn a parameter:\n\n```yaml\nparameters:\n  - name: 'zipCode'\n    in: 'query'\n    schema:\n      type: 'string'\n      format: 'zip-code'\n    examples:\n      zip-example:\n        $ref: '#/components/examples/zip-example'\n```\n\nIn a response:\n\n```yaml\nresponses:\n  '200':\n    description: your car appointment has been booked\n    content:\n      application/json:\n        schema:\n          $ref: '#/components/schemas/SuccessResponse'\n        examples:\n          confirmation-success:\n            $ref: '#/components/examples/confirmation-success'\n```\n\n\n#### Link Object\n\nThe `Link object` represents a possible design-time link for a response.\nThe presence of a link does not guarantee the caller's ability to successfully invoke it, rather it provides a known relationship and traversal mechanism between responses and other operations.\n\nUnlike _dynamic_ links (i.e. links provided **in** the response payload), the OAS linking mechanism does not require link information in the runtime response.\n\nFor computing links, and providing instructions to execute them, a [runtime expression](#runtime-expressions) is used for accessing values in an operation and using them as parameters while invoking the linked operation. \n\n##### Fixed Fields\n\nField Name  |  Type  | Description\n---|:---:|---\n<a name=\"linkOperationRef\"></a>operationRef | `string` | A relative or absolute URI reference to an OAS operation. This field is mutually exclusive of the `operationId` field, and MUST point to an [Operation Object](#operation-object). Relative `operationRef` values MAY be used to locate an existing [Operation Object](#operation-object) in the OpenAPI definition. See the rules for resolving [Relative References](#relative-references-in-uris).\n<a name=\"linkOperationId\"></a>operationId  | `string` | The name of an _existing_, resolvable OAS operation, as defined with a unique `operationId`.  This field is mutually exclusive of the `operationRef` field. \n<a name=\"linkParameters\"></a>parameters   | Map[`string`, Any \\| [{expression}](#runtime-expressions)] | A map representing parameters to pass to an operation as specified with `operationId` or identified via `operationRef`. The key is the parameter name to be used, whereas the value can be a constant or an expression to be evaluated and passed to the linked operation.  The parameter name can be qualified using the [parameter location](#parameterIn) `[{in}.]{name}` for operations that use the same parameter name in different locations (e.g. path.id).\n<a name=\"linkRequestBody\"></a>requestBody | Any \\| [{expression}](#runtime-expressions) | A literal value or [{expression}](#runtime-expressions) to use as a request body when calling the target operation.\n<a name=\"linkDescription\"></a>description  | `string` | A description of the link. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"linkServer\"></a>server       | [Server Object](#server-object) | A server object to be used by the target operation.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nA linked operation MUST be identified using either an `operationRef` or `operationId`.\nIn the case of an `operationId`, it MUST be unique and resolved in the scope of the OAS document.\nBecause of the potential for name clashes, the `operationRef` syntax is preferred\nfor OpenAPI documents with external references.\n\n##### Examples\n\nComputing a link from a request operation where the `$request.path.id` is used to pass a request parameter to the linked operation.\n\n```yaml\npaths:\n  /users/{id}:\n    parameters:\n    - name: id\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n    get:\n      responses:\n        '200':\n          description: the user being returned\n          content:\n            application/json:\n              schema:\n                type: object\n                properties:\n                  uuid: # the unique user id\n                    type: string\n                    format: uuid\n          links:\n            address:\n              # the target link operationId\n              operationId: getUserAddress\n              parameters:\n                # get the `id` field from the request path parameter named `id`\n                userId: $request.path.id\n  # the path item of the linked operation\n  /users/{userid}/address:\n    parameters:\n    - name: userid\n      in: path\n      required: true\n      description: the user identifier, as userId\n      schema:\n        type: string\n    # linked operation\n    get:\n      operationId: getUserAddress\n      responses:\n        '200':\n          description: the user's address\n```\n\nWhen a runtime expression fails to evaluate, no parameter value is passed to the target operation.\n\nValues from the response body can be used to drive a linked operation.\n\n```yaml\nlinks:\n  address:\n    operationId: getUserAddressByUUID\n    parameters:\n      # get the `uuid` field from the `uuid` field in the response body\n      userUuid: $response.body#/uuid\n```\n\nClients follow all links at their discretion.\nNeither permissions, nor the capability to make a successful call to that link, is guaranteed\nsolely by the existence of a relationship.\n\n\n##### OperationRef Examples\n\nAs references to `operationId` MAY NOT be possible (the `operationId` is an optional\nfield in an [Operation Object](#operation-object)), references MAY also be made through a relative `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: '#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nor an absolute `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: 'https://na2.gigantic-server.com/#/paths/~12.0~1repositories~1{username}/get'\n    parameters:\n      username: $response.body#/username\n```\n\nNote that in the use of `operationRef`, the _escaped forward-slash_ is necessary when\nusing JSON references.\n\n\n##### Runtime Expressions\n\nRuntime expressions allow defining values based on information that will only be available within the HTTP message in an actual API call.\nThis mechanism is used by [Link Objects](#link-object) and [Callback Objects](#callback-object).\n\nThe runtime expression is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```abnf\n      expression = ( \"$url\" / \"$method\" / \"$statusCode\" / \"$request.\" source / \"$response.\" source )\n      source = ( header-reference / query-reference / path-reference / body-reference )\n      header-reference = \"header.\" token\n      query-reference = \"query.\" name \n      path-reference = \"path.\" name\n      body-reference = \"body\" [\"#\" json-pointer ]\n      json-pointer    = *( \"/\" reference-token )\n      reference-token = *( unescaped / escaped )\n      unescaped       = %x00-2E / %x30-7D / %x7F-10FFFF\n         ; %x2F ('/') and %x7E ('~') are excluded from 'unescaped'\n      escaped         = \"~\" ( \"0\" / \"1\" )\n        ; representing '~' and '/', respectively\n      name = *( CHAR )\n      token = 1*tchar\n      tchar = \"!\" / \"#\" / \"$\" / \"%\" / \"&\" / \"'\" / \"*\" / \"+\" / \"-\" / \".\" /\n        \"^\" / \"_\" / \"`\" / \"|\" / \"~\" / DIGIT / ALPHA\n```\n\nHere, `json-pointer` is taken from [RFC6901](https://tools.ietf.org/html/rfc6901), `char` from [RFC7159](https://tools.ietf.org/html/rfc7159#section-7) and `token` from [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2.6).\n\nThe `name` identifier is case-sensitive, whereas `token` is not.\n\nThe table below provides examples of runtime expressions and examples of their use in a value:\n\n##### Examples\n\nSource Location | example expression  | notes\n---|:---|:---|\nHTTP Method            | `$method`         | The allowable values for the `$method` will be those for the HTTP operation.\nRequested media type | `$request.header.accept`        | \nRequest parameter      | `$request.path.id`        | Request parameters MUST be declared in the `parameters` section of the parent operation or they cannot be evaluated. This includes request headers.\nRequest body property   | `$request.body#/user/uuid`   | In operations which accept payloads, references may be made to portions of the `requestBody` or the entire body.\nRequest URL            | `$url`            | \nResponse value         | `$response.body#/status`       |  In operations which return payloads, references may be made to portions of the response body or the entire body.\nResponse header        | `$response.header.Server` |  Single header values only are available\n\nRuntime expressions preserve the type of the referenced value.\nExpressions can be embedded into string values by surrounding the expression with `{}` curly braces.\n\n#### Header Object\n\nThe Header Object follows the structure of the [Parameter Object](#parameter-object) with the following changes:\n\n1. `name` MUST NOT be specified, it is given in the corresponding `headers` map.\n1. `in` MUST NOT be specified, it is implicitly in `header`.\n1. All traits that are affected by the location MUST be applicable to a location of `header` (for example, [`style`](#parameterStyle)).\n\n##### Header Object Example\n\nA simple header of type `integer`:\n\n```json\n{\n  \"description\": \"The number of allowed requests in the current period\",\n  \"schema\": {\n    \"type\": \"integer\"\n  }\n}\n```\n\n```yaml\ndescription: The number of allowed requests in the current period\nschema:\n  type: integer\n```\n\n#### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nIt is not mandatory to have a Tag Object per tag defined in the Operation Object instances.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"tagName\"></a>name | `string` | **REQUIRED**. The name of the tag.\n<a name=\"tagDescription\"></a>description | `string` | A description for the tag. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"tagExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Tag Object Example\n\n```json\n{\n\t\"name\": \"pet\",\n\t\"description\": \"Pets operations\"\n}\n```\n\n```yaml\nname: pet\ndescription: Pets operations\n```\n\n\n#### Reference Object\n\nA simple object to allow referencing other components in the OpenAPI document, internally and externally.\n\nThe `$ref` string value contains a URI [RFC3986](https://tools.ietf.org/html/rfc3986), which identifies the location of the value being referenced.\n\nSee the rules for resolving [Relative References](#relative-references-in-uris).\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"referenceRef\"></a>$ref | `string` | **REQUIRED**. The reference identifier. This MUST be in the form of a URI.\n<a name=\"referenceSummary\"></a>summary | `string` | A short summary which by default SHOULD override that of the referenced component. If the referenced object-type does not allow a `summary` field, then this field has no effect.\n<a name=\"referenceDescription\"></a>description | `string` | A description which by default SHOULD override that of the referenced component. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. If the referenced object-type does not allow a `description` field, then this field has no effect.\n\nThis object cannot be extended with additional properties and any properties added SHALL be ignored.\n\nNote that this restriction on additional properties is a difference between Reference Objects and [`Schema Objects`](#schema-object) that contain a `$ref` keyword.\n\n##### Reference Object Example\n\n```json\n{\n\t\"$ref\": \"#/components/schemas/Pet\"\n}\n```\n\n```yaml\n$ref: '#/components/schemas/Pet'\n```\n\n##### Relative Schema Document Example\n```json\n{\n  \"$ref\": \"Pet.json\"\n}\n```\n\n```yaml\n$ref: Pet.yaml\n```\n\n##### Relative Documents With Embedded Schema Example\n```json\n{\n  \"$ref\": \"definitions.json#/Pet\"\n}\n```\n\n```yaml\n$ref: definitions.yaml#/Pet\n```\n\n#### Schema Object\n\nThe Schema Object allows the definition of input and output data types.\nThese types can be objects, but also primitives and arrays. This object is a superset of the [JSON Schema Specification Draft 2020-12](https://tools.ietf.org/html/draft-bhutton-json-schema-00).\n\nFor more information about the properties, see [JSON Schema Core](https://tools.ietf.org/html/draft-bhutton-json-schema-00) and [JSON Schema Validation](https://tools.ietf.org/html/draft-bhutton-json-schema-validation-00).\n\nUnless stated otherwise, the property definitions follow those of JSON Schema and do not add any additional semantics.\nWhere JSON Schema indicates that behavior is defined by the application (e.g. for annotations), OAS also defers the definition of semantics to the application consuming the OpenAPI document.\n\n##### Properties\n\nThe OpenAPI Schema Object [dialect](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-4.3.3) is defined as requiring the [OAS base vocabulary](#fixed-fields-20), in addition to the vocabularies as specified in the JSON Schema draft 2020-12 [general purpose meta-schema](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-8).\n\nThe OpenAPI Schema Object dialect for this version of the specification is identified by the URI `https://spec.openapis.org/oas/3.1/dialect/base` (the <a name=\"dialectSchemaId\"></a>\"OAS dialect schema id\").\n\nThe following properties are taken from the JSON Schema specification but their definitions have been extended by the OAS:\n\n- description - [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n- format - See [Data Type Formats](#dataTypeFormat) for further details. While relying on JSON Schema's defined formats, the OAS offers a few additional predefined formats.\n\nIn addition to the JSON Schema properties comprising the OAS dialect, the Schema Object supports keywords from any other vocabularies, or entirely arbitrary properties.\n\nThe OpenAPI Specification's base vocabulary is comprised of the following keywords:\n\n##### Fixed Fields\n\nField Name | Type | Description\n---|:---:|---\n<a name=\"schemaDiscriminator\"></a>discriminator | [Discriminator Object](#discriminator-object) | Adds support for polymorphism. The discriminator is an object name that is used to differentiate between other schemas which may satisfy the payload description. See [Composition and Inheritance](#composition-and-inheritance-polymorphism) for more details.\n<a name=\"schemaXml\"></a>xml | [XML Object](#xml-object) | This MAY be used only on properties schemas. It has no effect on root schemas. Adds additional metadata to describe the XML representation of this property.\n<a name=\"schemaExternalDocs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema.\n<a name=\"schemaExample\"></a>example | Any | A free-form property to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary.<br><br>**Deprecated:** The `example` property has been deprecated in favor of the JSON Schema `examples` keyword. Use of `example` is discouraged, and later versions of this specification may remove it.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions), though as noted, additional properties MAY omit the `x-` prefix within this object.\n\n###### Composition and Inheritance (Polymorphism)\n\nThe OpenAPI Specification allows combining and extending model definitions using the `allOf` property of JSON Schema, in effect offering model composition.\n`allOf` takes an array of object definitions that are validated *independently* but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models.\nTo support polymorphism, the OpenAPI Specification adds the `discriminator` field.\nWhen used, the `discriminator` will be the name of the property that decides which schema definition validates the structure of the model.\nAs such, the `discriminator` field MUST be a required field.\nThere are two ways to define the value of a discriminator for an inheriting instance.\n- Use the schema name.\n- Override the schema name by overriding the property with a new value. If a new value exists, this takes precedence over the schema name.\nAs such, inline schema definitions, which do not have a given id, *cannot* be used in polymorphism.\n\n###### XML Modeling\n\nThe [xml](#schemaXml) property allows extra definitions when translating the JSON definition to XML.\nThe [XML Object](#xml-object) contains additional information about the available options.\n\n###### Specifying Schema Dialects\n\nIt is important for tooling to be able to determine which dialect or meta-schema any given resource wishes to be processed with: JSON Schema Core, JSON Schema Validation, OpenAPI Schema dialect, or some custom meta-schema.\n\nThe `$schema` keyword MAY be present in any root Schema Object, and if present MUST be used to determine which dialect should be used when processing the schema. This allows use of Schema Objects which comply with other drafts of JSON Schema than the default Draft 2020-12 support. Tooling MUST support the <a href=\"#dialectSchemaId\">OAS dialect schema id</a>, and MAY support additional values of `$schema`.\n\nTo allow use of a different default `$schema` value for all Schema Objects contained within an OAS document, a `jsonSchemaDialect` value may be set within the <a href=\"#openapi-object\">OpenAPI Object</a>. If this default is not set, then the OAS dialect schema id MUST be used for these Schema Objects. The value of `$schema` within a Schema Object always overrides any default.\n\nWhen a Schema Object is referenced from an external resource which is not an OAS document (e.g. a bare JSON Schema resource), then the value of the `$schema` keyword for schemas within that resource MUST follow [JSON Schema rules](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-8.1.1).\n\n##### Schema Object Examples\n\n###### Primitive Sample\n\n```json\n{\n  \"type\": \"string\",\n  \"format\": \"email\"\n}\n```\n\n```yaml\ntype: string\nformat: email\n```\n\n###### Simple Model\n\n```json\n{\n  \"type\": \"object\",\n  \"required\": [\n    \"name\"\n  ],\n  \"properties\": {\n    \"name\": {\n      \"type\": \"string\"\n    },\n    \"address\": {\n      \"$ref\": \"#/components/schemas/Address\"\n    },\n    \"age\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\",\n      \"minimum\": 0\n    }\n  }\n}\n```\n\n```yaml\ntype: object\nrequired:\n- name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/components/schemas/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n###### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"$ref\": \"#/components/schemas/ComplexModel\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/components/schemas/ComplexModel'\n```\n\n###### Model with Example\n\n```json\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"name\": {\n      \"type\": \"string\"\n    }\n  },\n  \"required\": [\n    \"name\"\n  ],\n  \"example\": {\n    \"name\": \"Puma\",\n    \"id\": 1\n  }\n}\n```\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n- name\nexample:\n  name: Puma\n  id: 1\n```\n\n###### Models with Composition\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"ErrorModel\": {\n        \"type\": \"object\",\n        \"required\": [\n          \"message\",\n          \"code\"\n        ],\n        \"properties\": {\n          \"message\": {\n            \"type\": \"string\"\n          },\n          \"code\": {\n            \"type\": \"integer\",\n            \"minimum\": 100,\n            \"maximum\": 600\n          }\n        }\n      },\n      \"ExtendedErrorModel\": {\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/ErrorModel\"\n          },\n          {\n            \"type\": \"object\",\n            \"required\": [\n              \"rootCause\"\n            ],\n            \"properties\": {\n              \"rootCause\": {\n                \"type\": \"string\"\n              }\n            }\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    ErrorModel:\n      type: object\n      required:\n      - message\n      - code\n      properties:\n        message:\n          type: string\n        code:\n          type: integer\n          minimum: 100\n          maximum: 600\n    ExtendedErrorModel:\n      allOf:\n      - $ref: '#/components/schemas/ErrorModel'\n      - type: object\n        required:\n        - rootCause\n        properties:\n          rootCause:\n            type: string\n```\n\n###### Models with Polymorphism Support\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"Pet\": {\n        \"type\": \"object\",\n        \"discriminator\": {\n          \"propertyName\": \"petType\"\n        },\n        \"properties\": {\n          \"name\": {\n            \"type\": \"string\"\n          },\n          \"petType\": {\n            \"type\": \"string\"\n          }\n        },\n        \"required\": [\n          \"name\",\n          \"petType\"\n        ]\n      },\n      \"Cat\": {\n        \"description\": \"A representation of a cat. Note that `Cat` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"huntingSkill\": {\n                \"type\": \"string\",\n                \"description\": \"The measured skill for hunting\",\n                \"default\": \"lazy\",\n                \"enum\": [\n                  \"clueless\",\n                  \"lazy\",\n                  \"adventurous\",\n                  \"aggressive\"\n                ]\n              }\n            },\n            \"required\": [\n              \"huntingSkill\"\n            ]\n          }\n        ]\n      },\n      \"Dog\": {\n        \"description\": \"A representation of a dog. Note that `Dog` will be used as the discriminator value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"packSize\": {\n                \"type\": \"integer\",\n                \"format\": \"int32\",\n                \"description\": \"the size of the pack the dog is from\",\n                \"default\": 0,\n                \"minimum\": 0\n              }\n            },\n            \"required\": [\n              \"packSize\"\n            ]\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n      properties:\n        name:\n          type: string\n        petType:\n          type: string\n      required:\n      - name\n      - petType\n    Cat:  ## \"Cat\" will be used as the discriminator value\n      description: A representation of a cat\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          huntingSkill:\n            type: string\n            description: The measured skill for hunting\n            enum:\n            - clueless\n            - lazy\n            - adventurous\n            - aggressive\n        required:\n        - huntingSkill\n    Dog:  ## \"Dog\" will be used as the discriminator value\n      description: A representation of a dog\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        properties:\n          packSize:\n            type: integer\n            format: int32\n            description: the size of the pack the dog is from\n            default: 0\n            minimum: 0\n        required:\n        - packSize\n```\n\n#### Discriminator Object\n\nWhen request bodies or response payloads may be one of a number of different schemas, a `discriminator` object can be used to aid in serialization, deserialization, and validation.  The discriminator is a specific object in a schema which is used to inform the consumer of the document of an alternative schema based on the value associated with it.\n\nWhen using the discriminator, _inline_ schemas will not be considered.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"propertyName\"></a>propertyName | `string` | **REQUIRED**. The name of the property in the payload that will hold the discriminator value.\n<a name=\"discriminatorMapping\"></a> mapping | Map[`string`, `string`] | An object to hold mappings between payload values and schema names or references.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nThe discriminator object is legal only when using one of the composite keywords `oneOf`, `anyOf`, `allOf`.\n\nIn OAS 3.0, a response payload MAY be described to be exactly one of any number of types:\n\n```yaml\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n```\n\nwhich means the payload _MUST_, by validation, match exactly one of the schemas described by `Cat`, `Dog`, or `Lizard`.  In this case, a discriminator MAY act as a \"hint\" to shortcut validation and selection of the matching schema which may be a costly operation, depending on the complexity of the schema. We can then describe exactly which field tells us which schema to use:\n\n\n```yaml\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  discriminator:\n    propertyName: petType\n```\n\nThe expectation now is that a property with name `petType` _MUST_ be present in the response payload, and the value will correspond to the name of a schema defined in the OAS document.  Thus the response payload:\n\n```json\n{\n  \"id\": 12345,\n  \"petType\": \"Cat\"\n}\n```\n\nWill indicate that the `Cat` schema be used in conjunction with this payload.\n\nIn scenarios where the value of the discriminator field does not match the schema name or implicit mapping is not possible, an optional `mapping` definition MAY be used:\n\n```yaml\nMyResponseType:\n  oneOf:\n  - $ref: '#/components/schemas/Cat'\n  - $ref: '#/components/schemas/Dog'\n  - $ref: '#/components/schemas/Lizard'\n  - $ref: 'https://gigantic-server.com/schemas/Monster/schema.json'\n  discriminator:\n    propertyName: petType\n    mapping:\n      dog: '#/components/schemas/Dog'\n      monster: 'https://gigantic-server.com/schemas/Monster/schema.json'\n```\n\nHere the discriminator _value_ of `dog` will map to the schema `#/components/schemas/Dog`, rather than the default (implicit) value of `Dog`.  If the discriminator _value_ does not match an implicit or explicit mapping, no schema can be determined and validation SHOULD fail. Mapping keys MUST be string values, but tooling MAY convert response values to strings for comparison.\n\nWhen used in conjunction with the `anyOf` construct, the use of the discriminator can avoid ambiguity where multiple schemas may satisfy a single payload.\n\nIn both the `oneOf` and `anyOf` use cases, all possible schemas MUST be listed explicitly.  To avoid redundancy, the discriminator MAY be added to a parent schema definition, and all schemas comprising the parent schema in an `allOf` construct may be used as an alternate schema.\n\nFor example:\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n      - petType\n      properties:\n        petType:\n          type: string\n      discriminator:\n        propertyName: petType\n        mapping:\n          dog: Dog\n    Cat:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Cat`\n        properties:\n          name:\n            type: string\n    Dog:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Dog`\n        properties:\n          bark:\n            type: string\n    Lizard:\n      allOf:\n      - $ref: '#/components/schemas/Pet'\n      - type: object\n        # all other properties specific to a `Lizard`\n        properties:\n          lovesRocks:\n            type: boolean\n```\n\na payload like this:\n\n```json\n{\n  \"petType\": \"Cat\",\n  \"name\": \"misty\"\n}\n```\n\nwill indicate that the `Cat` schema be used.  Likewise this schema:\n\n```json\n{\n  \"petType\": \"dog\",\n  \"bark\": \"soft\"\n}\n```\n\nwill map to `Dog` because of the definition in the `mapping` element.\n\n\n#### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\n\nWhen using arrays, XML element names are *not* inferred (for singular/plural forms) and the `name` property SHOULD be used to add that information.\nSee examples for expected behavior.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"xmlName\"></a>name | `string` | Replaces the name of the element/attribute used for the described schema property. When defined within `items`, it will affect the name of the individual XML elements within the list. When defined alongside `type` being `array` (outside the `items`), it will affect the wrapping element and only if `wrapped` is `true`. If `wrapped` is `false`, it will be ignored.\n<a name=\"xmlNamespace\"></a>namespace | `string` | The URI of the namespace definition. This MUST be in the form of an absolute URI.\n<a name=\"xmlPrefix\"></a>prefix | `string` | The prefix to be used for the [name](#xmlName).\n<a name=\"xmlAttribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`.\n<a name=\"xmlWrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `array` (outside the `items`).\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### XML Object Examples\n\nThe examples of the XML object definitions are included inside a property definition of a [Schema Object](#schema-object) with a sample of the XML representation of it.\n\n###### No XML Element\n\nBasic string property:\n\n```json\n{\n    \"animals\": {\n        \"type\": \"string\"\n    }\n}\n```\n\n```yaml\nanimals:\n  type: string\n```\n\n```xml\n<animals>...</animals>\n```\n\nBasic string array property ([`wrapped`](#xmlWrapped) is `false` by default):\n\n```json\n{\n    \"animals\": {\n        \"type\": \"array\",\n        \"items\": {\n            \"type\": \"string\"\n        }\n    }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n```\n\n```xml\n<animals>...</animals>\n<animals>...</animals>\n<animals>...</animals>\n```\n\n###### XML Name Replacement\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\",\n    \"xml\": {\n      \"name\": \"animal\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n  xml:\n    name: animal\n```\n\n```xml\n<animal>...</animal>\n```\n\n\n###### XML Attribute, Prefix and Namespace\n\nIn this example, a full model definition is shown.\n\n```json\n{\n  \"Person\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\",\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"name\": {\n        \"type\": \"string\",\n        \"xml\": {\n          \"namespace\": \"https://example.com/schema/sample\",\n          \"prefix\": \"sample\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nPerson:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int32\n      xml:\n        attribute: true\n    name:\n      type: string\n      xml:\n        namespace: https://example.com/schema/sample\n        prefix: sample\n```\n\n```xml\n<Person id=\"123\">\n    <sample:name xmlns:sample=\"https://example.com/schema/sample\">example</sample:name>\n</Person>\n```\n\n###### XML Arrays\n\nChanging the element names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nThe external `name` property has no effect on the XML:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nEven when the array is wrapped, if a name is not explicitly defined, the same name will be used both internally and externally:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animals>value</animals>\n  <animals>value</animals>\n</animals>\n```\n\nTo overcome the naming problem in the example above, the following definition can be used:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animal>value</animal>\n  <animal>value</animal>\n</animals>\n```\n\nAffecting both internal and external names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <animal>value</animal>\n  <animal>value</animal>\n</aliens>\n```\n\nIf we change the external element but not the internal ones:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <aliens>value</aliens>\n  <aliens>value</aliens>\n</aliens>\n```\n\n#### Security Scheme Object\n\nDefines a security scheme that can be used by the operations.\n\nSupported schemes are HTTP authentication, an API key (either as a header, a cookie parameter or as a query parameter), mutual TLS (use of a client certificate), OAuth2's common flows (implicit, password, client credentials and authorization code) as defined in [RFC6749](https://tools.ietf.org/html/rfc6749), and [OpenID Connect Discovery](https://tools.ietf.org/html/draft-ietf-oauth-discovery-06).\nPlease note that as of 2020, the implicit flow is about to be deprecated by [OAuth 2.0 Security Best Current Practice](https://tools.ietf.org/html/draft-ietf-oauth-security-topics). Recommended for most use case is Authorization Code Grant flow with PKCE.\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"securitySchemeType\"></a>type | `string` | Any | **REQUIRED**. The type of the security scheme. Valid values are `\"apiKey\"`, `\"http\"`, `\"mutualTLS\"`, `\"oauth2\"`, `\"openIdConnect\"`.\n<a name=\"securitySchemeDescription\"></a>description | `string` | Any | A description for security scheme. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n<a name=\"securitySchemeName\"></a>name | `string` | `apiKey` | **REQUIRED**. The name of the header, query or cookie parameter to be used.\n<a name=\"securitySchemeIn\"></a>in | `string` | `apiKey` | **REQUIRED**. The location of the API key. Valid values are `\"query\"`, `\"header\"` or `\"cookie\"`.\n<a name=\"securitySchemeScheme\"></a>scheme | `string` | `http` | **REQUIRED**. The name of the HTTP Authorization scheme to be used in the [Authorization header as defined in RFC7235](https://tools.ietf.org/html/rfc7235#section-5.1).  The values used SHOULD be registered in the [IANA Authentication Scheme registry](https://www.iana.org/assignments/http-authschemes/http-authschemes.xhtml).\n<a name=\"securitySchemeBearerFormat\"></a>bearerFormat | `string` | `http` (`\"bearer\"`) | A hint to the client to identify how the bearer token is formatted.  Bearer tokens are usually generated by an authorization server, so this information is primarily for documentation purposes.\n<a name=\"securitySchemeFlows\"></a>flows | [OAuth Flows Object](#oauth-flows-object) | `oauth2` | **REQUIRED**. An object containing configuration information for the flow types supported.\n<a name=\"securitySchemeOpenIdConnectUrl\"></a>openIdConnectUrl | `string` | `openIdConnect` | **REQUIRED**. OpenId Connect URL to discover OAuth2 configuration values. This MUST be in the form of a URL. The OpenID Connect standard requires the use of TLS.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Security Scheme Object Example\n\n###### Basic Authentication Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"basic\"\n}\n```\n\n```yaml\ntype: http\nscheme: basic\n```\n\n###### API Key Sample\n\n```json\n{\n  \"type\": \"apiKey\",\n  \"name\": \"api_key\",\n  \"in\": \"header\"\n}\n```\n\n```yaml\ntype: apiKey\nname: api_key\nin: header\n```\n\n###### JWT Bearer Sample\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"bearer\",\n  \"bearerFormat\": \"JWT\",\n}\n```\n\n```yaml\ntype: http\nscheme: bearer\nbearerFormat: JWT\n```\n\n###### Implicit OAuth2 Sample\n\n```json\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### OAuth Flows Object\n\nAllows configuration of the supported OAuth Flows.\n\n##### Fixed Fields\nField Name | Type | Description\n---|:---:|---\n<a name=\"oauthFlowsImplicit\"></a>implicit| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Implicit flow\n<a name=\"oauthFlowsPassword\"></a>password| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Resource Owner Password flow\n<a name=\"oauthFlowsClientCredentials\"></a>clientCredentials| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Client Credentials flow.  Previously called `application` in OpenAPI 2.0.\n<a name=\"oauthFlowsAuthorizationCode\"></a>authorizationCode| [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Authorization Code flow.  Previously called `accessCode` in OpenAPI 2.0.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### OAuth Flow Object\n\nConfiguration details for a supported OAuth Flow\n\n##### Fixed Fields\nField Name | Type | Applies To | Description\n---|:---:|---|---\n<a name=\"oauthFlowAuthorizationUrl\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"authorizationCode\"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS.\n<a name=\"oauthFlowTokenUrl\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"clientCredentials\"`, `\"authorizationCode\"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS.\n<a name=\"oauthFlowRefreshUrl\"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS.\n<a name=\"oauthFlowScopes\"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it. The map MAY be empty.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### OAuth Flow Object Examples\n\n```JSON\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    },\n    \"authorizationCode\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"tokenUrl\": \"https://example.com/api/oauth/token\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n  authorizationCode:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    tokenUrl: https://example.com/api/oauth/token\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### Security Requirement Object\n\nLists the required security schemes to execute this operation.\nThe name used for each property MUST correspond to a security scheme declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object).\n\nSecurity Requirement Objects that contain multiple schemes require that all schemes MUST be satisfied for a request to be authorized.\nThis enables support for scenarios where multiple query parameters or HTTP headers are required to convey security information.\n\nWhen a list of Security Requirement Objects is defined on the [OpenAPI Object](#openapi-object) or [Operation Object](#operation-object), only one of the Security Requirement Objects in the list needs to be satisfied to authorize the request.\n\n##### Patterned Fields\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"securityRequirementsName\"></a>{name} | [`string`] | Each name MUST correspond to a security scheme which is declared in the [Security Schemes](#componentsSecuritySchemes) under the [Components Object](#components-object). If the security scheme is of type `\"oauth2\"` or `\"openIdConnect\"`, then the value is a list of scope names required for the execution, and the list MAY be empty if authorization does not require a specified scope. For other security scheme types, the array MAY contain a list of role names which are required for the execution, but are not otherwise defined or exchanged in-band.\n\n##### Security Requirement Object Examples\n\n###### Non-OAuth2 Security Requirement\n\n```json\n{\n  \"api_key\": []\n}\n```\n\n```yaml\napi_key: []\n```\n\n###### OAuth2 Security Requirement\n\n```json\n{\n  \"petstore_auth\": [\n    \"write:pets\",\n    \"read:pets\"\n  ]\n}\n```\n\n```yaml\npetstore_auth:\n- write:pets\n- read:pets\n```\n\n###### Optional OAuth2 Security\n\nOptional OAuth2 security as would be defined in an <a href=\"#openapi-object\">OpenAPI Object</a> or an <a href=\"#operation-object\">Operation Object</a>:\n\n```json\n{\n  \"security\": [\n    {},\n    {\n      \"petstore_auth\": [\n        \"write:pets\",\n        \"read:pets\"\n      ]\n    }\n  ]\n}\n```\n\n```yaml\nsecurity:\n  - {}\n  - petstore_auth:\n    - write:pets\n    - read:pets\n```\n\n### Specification Extensions\n\nWhile the OpenAPI Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are implemented as patterned fields that are always prefixed by `\"x-\"`.\n\nField Pattern | Type | Description\n---|:---:|---\n<a name=\"infoExtensions\"></a>^x- | Any | Allows extensions to the OpenAPI Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. Field names beginning `x-oai-` and `x-oas-` are reserved for uses defined by the [OpenAPI Initiative](https://www.openapis.org/). The value can be `null`, a primitive, an array or an object.\n\nThe extensions may or may not be supported by the available tooling, but those may be extended as well to add requested support (if tools are internal or open-sourced).\n\n### Security Filtering\n\nSome objects in the OpenAPI Specification MAY be declared and remain empty, or be completely removed, even though they are inherently the core of the API documentation.\n\nThe reasoning is to allow an additional layer of access control over the documentation.\nWhile not part of the specification itself, certain libraries MAY choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples of this:\n\n1. The [Paths Object](#paths-object) MAY be present but empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They would still have access to at least the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) MAY be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different from hiding the path itself from the [Paths Object](#paths-object), because the user will be aware of its existence. This allows the documentation provider to finely control what the viewer can see.\n\n\n## Appendix A: Revision History\n\nVersion   | Date       | Notes\n---       | ---        | ---\n3.1.0     | 2021-02-15 | Release of the OpenAPI Specification 3.1.0\n3.1.0-rc1 | 2020-10-08 | rc1 of the 3.1 specification\n3.1.0-rc0 | 2020-06-18 | rc0 of the 3.1 specification\n3.0.3     | 2020-02-20 | Patch release of the OpenAPI Specification 3.0.3\n3.0.2     | 2018-10-08 | Patch release of the OpenAPI Specification 3.0.2\n3.0.1     | 2017-12-06 | Patch release of the OpenAPI Specification 3.0.1\n3.0.0     | 2017-07-26 | Release of the OpenAPI Specification 3.0.0\n3.0.0-rc2 | 2017-06-16 | rc2 of the 3.0 specification\n3.0.0-rc1 | 2017-04-27 | rc1 of the 3.0 specification\n3.0.0-rc0 | 2017-02-28 | Implementer's Draft of the 3.0 specification\n2.0       | 2015-12-31 | Donation of Swagger 2.0 to the OpenAPI Initiative\n2.0       | 2014-09-08 | Release of Swagger 2.0\n1.2       | 2014-03-14 | Initial release of the formal document.\n1.1       | 2012-08-22 | Release of Swagger 1.1\n1.0       | 2011-08-10 | First release of the Swagger Specification\n"
  },
  {
    "path": "versions/3.1.1-editors.md",
    "content": "# OpenAPI Specification Editors\n\n## Active\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Henry Andrews [@handrews](https://github.com/handrews)\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Lorna Mitchell [@lornajane](https://github.com/lornajane)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Miguel Quintero [@miqui](https://github.com/miqui)\n* Mike Kistler [@mikekistler](https://github.com/mikekistler)\n* Ralf Handl [@ralfhandl](https://github.com/ralfhandl)\n* Ron Ratovsky [@webron](https://github.com/webron)\n\n## Emeritus\n* Mike Ralphson [@MikeRalphson](https://github.com/MikeRalphson)\n* Uri Sarid [@usarid](https://github.com/usarid)\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "versions/3.1.1.md",
    "content": "# OpenAPI Specification\n\n## Version 3.1.1\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"NOT RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [BCP 14](https://tools.ietf.org/html/bcp14) [RFC2119](https://tools.ietf.org/html/rfc2119) [RFC8174](https://tools.ietf.org/html/rfc8174) when, and only when, they appear in all capitals, as shown here.\n\nThis document is licensed under [The Apache License, Version 2.0](https://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introduction\n\nThe OpenAPI Specification (OAS) defines a standard, language-agnostic interface to HTTP APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined, a consumer can understand and interact with the remote service with a minimal amount of implementation logic.\n\nAn OpenAPI Description can then be used by documentation generation tools to display the API, code generation tools to generate servers and clients in various programming languages, testing tools, and many other use cases.\n\nFor examples of OpenAPI usage and additional documentation, please visit [[?OpenAPI-Learn]].\n\nFor extension registries and other specifications published by the OpenAPI Initiative, as well as the authoritative rendering of this specification, please visit [spec.openapis.org](https://spec.openapis.org/).\n\n## Definitions\n\n### OpenAPI Description\n\nAn OpenAPI Description (OAD) formally describes the surface of an API and its semantics. It is composed of an [entry document](#openapi-description-structure), which must be an OpenAPI Document, and any/all of its referenced documents. An OAD uses and conforms to the OpenAPI Specification, and MUST contain at least one [paths](#paths-object) field, [components](#oas-components) field, or [webhooks](#oas-webhooks) field.\n\n### OpenAPI Document\n\nAn OpenAPI Document is a single JSON or YAML document that conforms to the OpenAPI Specification. An OpenAPI Document compatible with OAS 3.\\*.\\* contains a required [`openapi`](#oas-version) field which designates the version of the OAS that it uses.\n\n### Schema\n\nA \"schema\" is a formal description of syntax and structure.\nThis document serves as the [schema](#schema) for the OpenAPI Specification format; a non-authoritative JSON Schema based on this document is also provided on [spec.openapis.org](https://spec.openapis.org) for informational purposes.\nThis specification also _uses_ schemas in the form of the [Schema Object](#schema-object).\n\n### Object\n\nWhen capitalized, the word \"Object\" refers to any of the Objects that are named by section headings in this document.\n\n### Path Templating\n\nPath templating refers to the usage of template expressions, delimited by curly braces (`{}`), to mark a section of a URL path as replaceable using path parameters.\n\nEach template expression in the path MUST correspond to a path parameter that is included in the [Path Item](#path-item-object) itself and/or in each of the Path Item's [Operations](#operation-object). An exception is if the path item is empty, for example due to ACL constraints, matching path parameters are not required.\n\nThe value for these path parameters MUST NOT contain any unescaped \"generic syntax\" characters described by [RFC3986](https://tools.ietf.org/html/rfc3986#section-3): forward slashes (`/`), question marks (`?`), or hashes (`#`).\n\n### Media Types\n\nMedia type definitions are spread across several resources.\nThe media type definitions SHOULD be in compliance with [RFC6838](https://tools.ietf.org/html/rfc6838).\n\nSome examples of possible media type definitions:\n\n```text\n  text/plain; charset=utf-8\n  application/json\n  application/vnd.github+json\n  application/vnd.github.v3+json\n  application/vnd.github.v3.raw+json\n  application/vnd.github.v3.text+json\n  application/vnd.github.v3.html+json\n  application/vnd.github.v3.full+json\n  application/vnd.github.v3.diff\n  application/vnd.github.v3.patch\n```\n\n### HTTP Status Codes\n\nThe HTTP Status Codes are used to indicate the status of the executed operation.\nStatus codes SHOULD be selected from the available status codes registered in the [IANA Status Code Registry](https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n### Case Sensitivity\n\nAs most field names and values in the OpenAPI Specification are case-sensitive, this document endeavors to call out any case-insensitive names and values.\nHowever, the case sensitivity of field names and values that map directly to HTTP concepts follow the case sensitivity rules of HTTP, even if this document does not make a note of every concept.\n\n### Undefined and Implementation-Defined Behavior\n\nThis specification deems certain situations to have either _undefined_ or _implementation-defined_ behavior.\n\nBehavior described as _undefined_ is likely, at least in some circumstances, to result in outcomes that contradict the specification.\nThis description is used when detecting the contradiction is impossible or impractical.\nImplementations MAY support undefined scenarios for historical reasons, including ambiguous text in prior versions of the specification.\nThis support might produce correct outcomes in many cases, but relying on it is NOT RECOMMENDED as there is no guarantee that it will work across all tools or with future specification versions, even if those versions are otherwise strictly compatible with this one.\n\nBehavior described as _implementation-defined_ allows implementations to choose which of several different-but-compliant approaches to a requirement to implement.\nThis documents ambiguous requirements that API description authors are RECOMMENDED to avoid in order to maximize interoperability.\nUnlike undefined behavior, it is safe to rely on implementation-defined behavior if _and only if_ it can be guaranteed that all relevant tools support the same behavior.\n\n## Specification\n\n### Versions\n\nThe OpenAPI Specification is versioned using a `major`.`minor`.`patch` versioning scheme. The `major`.`minor` portion of the version string (for example `3.1`) SHALL designate the OAS feature set. _`.patch`_ versions address errors in, or provide clarifications to, this document, not the feature set. Tooling which supports OAS 3.1 SHOULD be compatible with all OAS 3.1.\\* versions. The patch version SHOULD NOT be considered by tooling, making no distinction between `3.1.0` and `3.1.1` for example.\n\nOccasionally, non-backwards compatible changes may be made in `minor` versions of the OAS where impact is believed to be low relative to the benefit provided.\n\n### Format\n\nAn OpenAPI Document that conforms to the OpenAPI Specification is itself a JSON object, which may be represented either in JSON or YAML format.\n\nFor example, if a field has an array value, the JSON array representation will be used:\n\n```json\n{\n  \"field\": [1, 2, 3]\n}\n```\n\nAll field names in the specification are **case sensitive**.\nThis includes all fields that are used as keys in a map, except where explicitly noted that keys are **case insensitive**.\n\nThe [schema](#schema) exposes two types of fields: _fixed fields_, which have a declared name, and _patterned fields_, which have a declared pattern for the field name.\n\nPatterned fields MUST have unique names within the containing object.\n\nIn order to preserve the ability to round-trip between YAML and JSON formats, YAML version [1.2](https://yaml.org/spec/1.2/spec.html) is RECOMMENDED along with some additional constraints:\n\n* Tags MUST be limited to those allowed by [YAML's JSON schema ruleset](https://yaml.org/spec/1.2/spec.html#id2803231), which defines a subset of the YAML syntax and is unrelated to [[JSON-Schema-2020-12|JSON Schema]].\n* Keys used in YAML maps MUST be limited to a scalar string, as defined by the [YAML Failsafe schema ruleset](https://yaml.org/spec/1.2/spec.html#id2802346).\n\n**Note:** While APIs may be described by OpenAPI Descriptions in either YAML or JSON format, the API request and response bodies and other content are not required to be JSON or YAML.\n\n### OpenAPI Description Structure\n\nAn OpenAPI Description (OAD) MAY be made up of a single JSON or YAML document or be divided into multiple, connected parts at the discretion of the author. In the latter case, [Reference Object](#reference-object), [Path Item Object](#path-item-object) and [Schema Object](#schema-object) `$ref` fields, as well as the [Link Object](#link-object) `operationRef` field, and the URI form of the [Discriminator Object](#discriminator-object) `mapping` field, are used to identify the referenced elements.\n\nIn a multi-document OAD, the document containing the OpenAPI Object where parsing begins is known as that OAD's **entry document**.\n\nIt is RECOMMENDED that the entry document of an OAD be named: `openapi.json` or `openapi.yaml`.\n\n#### Parsing Documents\n\nIn order to properly handle [Schema Objects](#schema-object), OAS 3.1 inherits the parsing requirements of [JSON Schema Specification Draft 2020-12](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-9), with appropriate modifications regarding base URIs as specified in [Relative References In URIs](#relative-references-in-api-description-uris).\n\nThis includes a requirement to parse complete documents before deeming a Schema Object reference to be unresolvable, in order to detect keywords that might provide the reference target or impact the determination of the appropriate base URI.\n\nImplementations MAY support complete-document parsing in any of the following ways:\n\n* Detecting OpenAPI or JSON Schema documents using media types\n* Detecting OpenAPI documents through the root `openapi` field\n* Detecting JSON Schema documents through detecting keywords or otherwise successfully parsing the document in accordance with the JSON Schema specification\n* Detecting a document containing a referenceable Object at its root based on the expected type of the reference\n* Allowing users to configure the type of documents that might be loaded due to a reference to a non-root Object\n\nImplementations that parse referenced fragments of OpenAPI content without regard for the content of the rest of the containing document will miss keywords that change the meaning and behavior of the reference target.\nIn particular, failing to take into account keywords that change the base URI introduces security risks by causing references to resolve to unintended URIs, with unpredictable results.\nWhile some implementations support this sort of parsing due to the requirements of past versions of this specification, in version 3.1, the result of parsing fragments in isolation is _undefined_ and likely to contradict the requirements of this specification.\n\nWhile it is possible to structure certain OpenAPI Descriptions to ensure that they will behave correctly when references are parsed as isolated fragments, depending on this is NOT RECOMMENDED.\nThis specification does not explicitly enumerate the conditions under which such behavior is safe and provides no guarantee for continued safety in any future versions of the OAS.\n\nA special case of parsing fragments of OAS content would be if such fragments are embedded in another format, referred to as an _embedding format_ with respect to the OAS.\nNote that the OAS itself is an embedding format with respect to JSON Schema, which is embedded as Schema Objects.\nIt is the responsibility of an embedding format to define how to parse embedded content, and OAS implementations that do not document support for an embedding format cannot be expected to parse embedded OAS content correctly.\n\n#### Structural Interoperability\n\nJSON or YAML objects within an OAD are interpreted as specific Objects (such as [Operation Objects](#operation-object), [Response Objects](#response-object), [Reference Objects](#reference-object), etc.) based on their context. Depending on how references are arranged, a given JSON or YAML object can be interpreted in multiple different contexts:\n\n* As the root object of the [entry document](#openapi-description-structure), which is always interpreted as an OpenAPI Object\n* As the Object type implied by its parent Object within the document\n* As a reference target, with the Object type matching the reference source's context\n\nIf the same JSON/YAML object is parsed multiple times and the respective contexts require it to be parsed as _different_ Object types, the resulting behavior is _implementation defined_, and MAY be treated as an error if detected. An example would be referencing an empty Schema Object under `#/components/schemas` where a Path Item Object is expected, as an empty object is valid for both types. For maximum interoperability, it is RECOMMENDED that OpenAPI Description authors avoid such scenarios.\n\n#### Resolving Implicit Connections\n\nSeveral features of this specification require resolution of non-URI-based connections to some other part of the OpenAPI Description (OAD).\n\nThese connections are unambiguously resolved in single-document OADs, but the resolution process in multi-document OADs is _implementation-defined_, within the constraints described in this section.\nIn some cases, an unambiguous URI-based alternative is available, and OAD authors are RECOMMENDED to always use the alternative:\n\n| Source | Target | Alternative |\n| ---- | ---- | ---- |\n| [Security Requirement Object](#security-requirement-object) `{name}` | [Security Scheme Object](#security-scheme-object) name under the [Components Object](#components-object) | _n/a_ |\n| [Discriminator Object](#discriminator-object) `mapping` _(implicit, or explicit name syntax)_ | [Schema Object](#schema-object) name under the Components Object | `mapping` _(explicit URI syntax)_ |\n| [Operation Object](#operation-object) `tags` | [Tag Object](#tag-object) `name` (in the [OpenAPI Object](#openapi-object)'s `tags` array) | _n/a_ |\n| [Link Object](#link-object) `operationId` | [Path Item Object](#path-item-object) `operationId` | `operationRef` |\n\nA fifth implicit connection involves appending the templated URL paths of the [Paths Object](#paths-object) to the appropriate [Server Object](#server-object)'s `url` field.\nThis is unambiguous because only the entry document's Paths Object contributes URLs to the described API.\n\nIt is RECOMMENDED to consider all Operation Objects from all parsed documents when resolving any Link Object `operationId`.\nThis requires parsing all referenced documents prior to determining an `operationId` to be unresolvable.\n\nThe implicit connections in the Security Requirement Object and Discriminator Object rely on the _component name_, which is the name of the property holding the component in the appropriately typed sub-object of the Components Object.\nFor example, the component name of the Schema Object at `#/components/schemas/Foo` is `Foo`.\nThe implicit connection of `tags` in the Operation Object uses the `name` field of Tag Objects, which (like the Components Object) are found under the root OpenAPI Object.\nThis means resolving component names and tag names both depend on starting from the correct OpenAPI Object.\n\nFor resolving component and tag name connections from a referenced (non-entry) document, it is RECOMMENDED that tools resolve from the entry document, rather than the current document.\nThis allows Security Scheme Objects and Tag Objects to be defined next to the API's deployment information (the top-level array of Server Objects), and treated as an interface for referenced documents to access.\n\nThe interface approach can also work for Discriminator Objects and Schema Objects, but it is also possible to keep the Discriminator Object's behavior within a single document using the relative URI-reference syntax of `mapping`.\n\nThere are no URI-based alternatives for the Security Requirement Object or for the Operation Object's `tags` field.\nThese limitations are expected to be addressed in a future release.\n\nSee [Appendix F: Resolving Security Requirements in a Referenced Document](#appendix-f-resolving-security-requirements-in-a-referenced-document) for an example of the possible resolutions, including which one is recommended by this section.\nThe behavior for Discrimator Object non-URI mappings and for the Operation Object's `tags` field operate on the same principles.\n\nNote that no aspect of implicit connection resolution changes how [URIs are resolved](#relative-references-in-api-description-uris), or restricts their possible targets.\n\n### Data Types\n\nData types in the OAS are based on the types defined by the [JSON Schema Validation Specification Draft 2020-12](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-6.1.1):\n\"null\", \"boolean\", \"object\", \"array\", \"number\", \"string\", or \"integer\".\nModels are defined using the [Schema Object](#schema-object), which is a superset of the JSON Schema Specification Draft 2020-12.\n\nJSON Schema keywords and `format` values operate on JSON \"instances\" which may be one of the six JSON data types, \"null\", \"boolean\", \"object\", \"array\", \"number\", or \"string\", with certain keywords and formats only applying to a specific type. For example, the `pattern` keyword and the `date-time` format only apply to strings, and treat any instance of the other five types as _automatically valid._ This means JSON Schema keywords and formats do **NOT** implicitly require the expected type. Use the `type` keyword to explicitly constrain the type.\n\nNote that the `type` keyword allows `\"integer\"` as a value for convenience, but keyword and format applicability does not recognize integers as being of a distinct JSON type from other numbers because [[RFC7159|JSON]] itself does not make that distinction. Since there is no distinct JSON integer type, JSON Schema defines integers mathematically. This means that both `1` and `1.0` are [equivalent](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.2.2), and are both considered to be integers.\n\n#### Data Type Format\n\nAs defined by the [JSON Schema Validation specification](https://tools.ietf.org/html/draft-bhutton-json-schema-validation-00#section-7.3), data types can have an optional modifier keyword: `format`. As described in that specification, `format` is treated as a non-validating annotation by default; the ability to validate `format` varies across implementations.\n\nThe OpenAPI Initiative also hosts a [Format Registry](https://spec.openapis.org/registry/format/) for formats defined by OAS users and other specifications. Support for any registered format is strictly OPTIONAL, and support for one registered format does not imply support for any others.\n\nTypes that are not accompanied by a `format` keyword follow the type definition in the JSON Schema. Tools that do not recognize a specific `format` MAY default back to the `type` alone, as if the `format` is not specified.\nFor the purpose of [JSON Schema validation](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-7.1), each format should specify the set of JSON data types for which it applies. In this registry, these types are shown in the \"JSON Data Type\" column.\n\nThe formats defined by the OAS are:\n\n| `format` | JSON Data Type | Comments |\n| ---- | ---- | ---- |\n| `int32` | number | signed 32 bits |\n| `int64` | number | signed 64 bits (a.k.a long) |\n| `float` | number | |\n| `double` | number | |\n| `password` | string | A hint to obscure the value. |\n\nAs noted under [Data Type](#data-types), both `type: number` and `type: integer` are considered to be numbers in the data model.\n\n#### Working with Binary Data\n\nThe OAS can describe either _raw_ or _encoded_ binary data.\n\n* **raw binary** is used where unencoded binary data is allowed, such as when sending a binary payload as the entire HTTP message body, or as part of a `multipart/*` payload that allows binary parts\n* **encoded binary** is used where binary data is embedded in a text-only format such as `application/json` or `application/x-www-form-urlencoded` (either as a message body or in the URL query string).\n\nIn the following table showing how to use Schema Object keywords for binary data, we use `image/png` as an example binary media type. Any binary media type, including `application/octet-stream`, is sufficient to indicate binary content.\n\n| Keyword | Raw | Encoded | Comments |\n| ---- | ---- | ---- | ---- |\n| `type` | _omit_ | `string` | raw binary is [outside of `type`](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.2.3) |\n| `contentMediaType` | `image/png` | `image/png` | can sometimes be omitted if redundant (see below) |\n| `contentEncoding` | _omit_ | `base64`&nbsp;or&nbsp;`base64url` | other encodings are [allowed](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-8.3) |\n\nNote that the encoding indicated by `contentEncoding`, which inflates the size of data in order to represent it as 7-bit ASCII text, is unrelated to HTTP's `Content-Encoding` header, which indicates whether and how a message body has been compressed and is applied after all content serialization described in this section has occurred. Since HTTP allows unencoded binary message bodies, there is no standardized HTTP header for indicating base64 or similar encoding of an entire message body.\n\nUsing a `contentEncoding` of `base64url` ensures that URL encoding (as required in the query string and in message bodies of type `application/x-www-form-urlencoded`) does not need to further encode any part of the already-encoded binary data.\n\nThe `contentMediaType` keyword is redundant if the media type is already set:\n\n* as the key for a [MediaType Object](#media-type-object)\n* in the `contentType` field of an [Encoding Object](#encoding-object)\n\nIf the [Schema Object](#schema-object) will be processed by a non-OAS-aware JSON Schema implementation, it may be useful to include `contentMediaType` even if it is redundant. However, if `contentMediaType` contradicts a relevant Media Type Object or Encoding Object, then `contentMediaType` SHALL be ignored.\n\nThe `maxLength` keyword MAY be used to set an expected upper bound on the length of a streaming payload. The keyword can be applied to either string data, including encoded binary data, or to unencoded binary data. For unencoded binary, the length is the number of octets.\n\n##### Migrating binary descriptions from OAS 3.0\n\nThe following table shows how to migrate from OAS 3.0 binary data descriptions, continuing to use `image/png` as the example binary media type:\n\n| OAS < 3.1 | OAS 3.1 | Comments |\n| ---- | ---- | ---- |\n| <code style=\"white-space:nowrap\">type: string</code><br /><code style=\"white-space:nowrap\">format: binary</code> | <code style=\"white-space:nowrap\">contentMediaType: image/png</code> | if redundant, can be omitted, often resulting in an empty [Schema Object](#schema-object) |\n| <code style=\"white-space:nowrap\">type: string</code><br /><code style=\"white-space:nowrap\">format: byte</code> | <code style=\"white-space:nowrap\">type: string</code><br /><code style=\"white-space:nowrap\">contentMediaType: image/png</code><br /><code style=\"white-space:nowrap\">contentEncoding: base64</code> | note that `base64url` can be used to avoid re-encoding the base64 string to be URL-safe |\n\n### Rich Text Formatting\n\nThroughout the specification `description` fields are noted as supporting CommonMark markdown formatting.\nWhere OpenAPI tooling renders rich text it MUST support, at a minimum, markdown syntax as described by [CommonMark 0.27](https://spec.commonmark.org/0.27/). Tooling MAY choose to ignore some CommonMark or extension features to address security concerns.\n\nWhile the framing of CommonMark 0.27 as a minimum requirement means that tooling MAY choose to implement extensions on top of it, note that any such extensions are by definition implementation-defined and will not be interoperable.\nOpenAPI Description authors SHOULD consider how text using such extensions will be rendered by tools that offer only the minimum support.\n\n### Relative References in API Description URIs\n\nURIs used as references within an OpenAPI Description, or to external documentation or other supplementary information such as a license, are resolved as _identifiers_, and described by this specification as **_URIs_**.\nAs noted under [Parsing Documents](#parsing-documents), this specification inherits JSON Schema Specification Draft 2020-12's requirements for [loading documents](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-9) and associating them with their expected URIs, which might not match their current location.\nThis feature is used both for working in development or test environments without having to change the URIs, and for working within restrictive network configurations or security policies.\n\nNote that some URI fields are named `url` for historical reasons, but the descriptive text for those fields uses the correct \"URI\" terminology.\n\nUnless specified otherwise, all fields that are URIs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\n\nRelative references in [Schema Objects](#schema-object), including any that appear as `$id` values, use the nearest parent `$id` as a Base URI, as described by [JSON Schema Specification Draft 2020-12](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-8.2).\n\nRelative URI references in other Objects, and in Schema Objects where no parent schema contains an `$id`, MUST be resolved using the referring document's base URI, which is determined in accordance with [[RFC3986]] [Section 5.1.2 – 5.1.4](https://tools.ietf.org/html/rfc3986#section-5.1.2).\nIn practice, this is usually the retrieval URI of the document, which MAY be determined based on either its current actual location or a user-supplied expected location.\n\nIf a URI contains a fragment identifier, then the fragment should be resolved per the fragment resolution mechanism of the referenced document. If the representation of the referenced document is JSON or YAML, then the fragment identifier SHOULD be interpreted as a JSON-Pointer as per [RFC6901](https://tools.ietf.org/html/rfc6901).\n\nRelative references in CommonMark hyperlinks are resolved in their rendered context, which might differ from the context of the API description.\n\n### Relative References in API URLs\n\nAPI endpoints are by definition accessed as locations, and are described by this specification as **_URLs_**.\n\nUnless specified otherwise, all fields that are URLs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\nUnless specified otherwise, relative references are resolved using the URLs defined in the [Server Object](#server-object) as a Base URL. Note that these themselves MAY be relative to the referring document.\n\n### Schema\n\nThis section describes the structure of the OpenAPI Description format.\nThis text is the only normative description of the format.\nA JSON Schema is hosted on [spec.openapis.org](https://spec.openapis.org) for informational purposes.\nIf the JSON Schema differs from this section, then this section MUST be considered authoritative.\n\nIn the following description, if a field is not explicitly **REQUIRED** or described with a MUST or SHALL, it can be considered OPTIONAL.\n\n#### OpenAPI Object\n\nThis is the root object of the [OpenAPI Description](#openapi-description).\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"oas-version\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [version number](#versions) of the OpenAPI Specification that the OpenAPI Document uses. The `openapi` field SHOULD be used by tooling to interpret the OpenAPI Document. This is _not_ related to the API [`info.version`](#info-version) string. |\n| <a name=\"oas-info\"></a>info | [Info Object](#info-object) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required. |\n| <a name=\"oas-json-schema-dialect\"></a> jsonSchemaDialect | `string` | The default value for the `$schema` keyword within [Schema Objects](#schema-object) contained within this OAS document. This MUST be in the form of a URI. |\n| <a name=\"oas-servers\"></a>servers | [[Server Object](#server-object)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` field is not provided, or is an empty array, the default value would be a [Server Object](#server-object) with a [url](#server-url) value of `/`. |\n| <a name=\"oas-paths\"></a>paths | [Paths Object](#paths-object) | The available paths and operations for the API. |\n| <a name=\"oas-webhooks\"></a>webhooks | Map[`string`, [Path Item Object](#path-item-object)] | The incoming webhooks that MAY be received as part of this API and that the API consumer MAY choose to implement. Closely related to the `callbacks` feature, this section describes requests initiated other than by an API call, for example by an out of band registration. The key name is a unique string to refer to each webhook, while the (optionally referenced) Path Item Object describes a request that may be initiated by the API provider and the expected responses. An [example](https://learn.openapis.org/examples/v3.1/webhook-example.html) is available. |\n| <a name=\"oas-components\"></a>components | [Components Object](#components-object) | An element to hold various Objects for the OpenAPI Description. |\n| <a name=\"oas-security\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative Security Requirement Objects that can be used. Only one of the Security Requirement Objects need to be satisfied to authorize a request. Individual operations can override this definition. The list can be incomplete, up to being empty or absent. To make security explicitly optional, an empty security requirement (`{}`) can be included in the array. |\n| <a name=\"oas-tags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the OpenAPI Description with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique. |\n| <a name=\"oas-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Info Object\n\nThe object provides metadata about the API.\nThe metadata MAY be used by the clients if needed, and MAY be presented in editing or documentation generation tools for convenience.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"info-title\"></a>title | `string` | **REQUIRED**. The title of the API. |\n| <a name=\"info-summary\"></a>summary | `string` | A short summary of the API. |\n| <a name=\"info-description\"></a>description | `string` | A description of the API. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"info-terms-of-service\"></a>termsOfService | `string` | A URI for the Terms of Service for the API. This MUST be in the form of a URI. |\n| <a name=\"info-contact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API. |\n| <a name=\"info-license\"></a>license | [License Object](#license-object) | The license information for the exposed API. |\n| <a name=\"info-version\"></a>version | `string` | **REQUIRED**. The version of the OpenAPI Document (which is distinct from the [OpenAPI Specification version](#oas-version) or the version of the API being described or the version of the OpenAPI Description). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Info Object Example\n\n```json\n{\n  \"title\": \"Example Pet Store App\",\n  \"summary\": \"A pet store manager.\",\n  \"description\": \"This is an example server for a pet store.\",\n  \"termsOfService\": \"https://example.com/terms/\",\n  \"contact\": {\n    \"name\": \"API Support\",\n    \"url\": \"https://www.example.com/support\",\n    \"email\": \"support@example.com\"\n  },\n  \"license\": {\n    \"name\": \"Apache 2.0\",\n    \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n  },\n  \"version\": \"1.0.1\"\n}\n```\n\n```yaml\ntitle: Example Pet Store App\nsummary: A pet store manager.\ndescription: This is an example server for a pet store.\ntermsOfService: https://example.com/terms/\ncontact:\n  name: API Support\n  url: https://www.example.com/support\n  email: support@example.com\nlicense:\n  name: Apache 2.0\n  url: https://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n#### Contact Object\n\nContact information for the exposed API.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"contact-name\"></a>name | `string` | The identifying name of the contact person/organization. |\n| <a name=\"contact-url\"></a>url | `string` | The URI for the contact information. This MUST be in the form of a URI. |\n| <a name=\"contact-email\"></a>email | `string` | The email address of the contact person/organization. This MUST be in the form of an email address. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Contact Object Example\n\n```json\n{\n  \"name\": \"API Support\",\n  \"url\": \"https://www.example.com/support\",\n  \"email\": \"support@example.com\"\n}\n```\n\n```yaml\nname: API Support\nurl: https://www.example.com/support\nemail: support@example.com\n```\n\n#### License Object\n\nLicense information for the exposed API.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"license-name\"></a>name | `string` | **REQUIRED**. The license name used for the API. |\n| <a name=\"license-identifier\"></a>identifier | `string` | An [SPDX](https://spdx.org/licenses/) license expression for the API. The `identifier` field is mutually exclusive of the `url` field. |\n| <a name=\"license-url\"></a>url | `string` | A URI for the license used for the API. This MUST be in the form of a URI. The `url` field is mutually exclusive of the `identifier` field. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### License Object Example\n\n```json\n{\n  \"name\": \"Apache 2.0\",\n  \"identifier\": \"Apache-2.0\"\n}\n```\n\n```yaml\nname: Apache 2.0\nidentifier: Apache-2.0\n```\n\n#### Server Object\n\nAn object representing a Server.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"server-url\"></a>url | `string` | **REQUIRED**. A URL to the target host. This URL supports Server Variables and MAY be relative, to indicate that the host location is relative to the location where the document containing the Server Object is being served. Variable substitutions will be made when a variable is named in `{`braces`}`. |\n| <a name=\"server-description\"></a>description | `string` | An optional string describing the host designated by the URL. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"server-variables\"></a>variables | Map[`string`, [Server Variable Object](#server-variable-object)] | A map between a variable name and its value. The value is used for substitution in the server's URL template. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Server Object Example\n\nA single server would be described as:\n\n```json\n{\n  \"url\": \"https://development.gigantic-server.com/v1\",\n  \"description\": \"Development server\"\n}\n```\n\n```yaml\nurl: https://development.gigantic-server.com/v1\ndescription: Development server\n```\n\nThe following shows how multiple servers can be described, for example, at the OpenAPI Object's [`servers`](#oas-servers):\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://development.gigantic-server.com/v1\",\n      \"description\": \"Development server\"\n    },\n    {\n      \"url\": \"https://staging.gigantic-server.com/v1\",\n      \"description\": \"Staging server\"\n    },\n    {\n      \"url\": \"https://api.gigantic-server.com/v1\",\n      \"description\": \"Production server\"\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n  - url: https://development.gigantic-server.com/v1\n    description: Development server\n  - url: https://staging.gigantic-server.com/v1\n    description: Staging server\n  - url: https://api.gigantic-server.com/v1\n    description: Production server\n```\n\nThe following shows how variables can be used for a server configuration:\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://{username}.gigantic-server.com:{port}/{basePath}\",\n      \"description\": \"The production API server\",\n      \"variables\": {\n        \"username\": {\n          \"default\": \"demo\",\n          \"description\": \"A user-specific subdomain. Use `demo` for a free sandbox environment.\"\n        },\n        \"port\": {\n          \"enum\": [\"8443\", \"443\"],\n          \"default\": \"8443\"\n        },\n        \"basePath\": {\n          \"default\": \"v2\"\n        }\n      }\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n  - url: https://{username}.gigantic-server.com:{port}/{basePath}\n    description: The production API server\n    variables:\n      username:\n        # note! no enum here means it is an open value\n        default: demo\n        description: A user-specific subdomain. Use `demo` for a free sandbox environment.\n      port:\n        enum:\n          - '8443'\n          - '443'\n        default: '8443'\n      basePath:\n        # open meaning there is the opportunity to use special base paths as assigned by the provider, default is `v2`\n        default: v2\n```\n\n#### Server Variable Object\n\nAn object representing a Server Variable for server URL template substitution.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"server-variable-enum\"></a>enum | [`string`] | An enumeration of string values to be used if the substitution options are from a limited set. The array MUST NOT be empty. |\n| <a name=\"server-variable-default\"></a>default | `string` | **REQUIRED**. The default value to use for substitution, which SHALL be sent if an alternate value is _not_ supplied. If the [`enum`](#server-variable-enum) is defined, the value MUST exist in the enum's values. Note that this behavior is different from the [Schema Object](#schema-object)'s `default` keyword, which documents the receiver's behavior rather than inserting the value into the data. |\n| <a name=\"server-variable-description\"></a>description | `string` | An optional description for the server variable. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Components Object\n\nHolds a set of reusable objects for different aspects of the OAS.\nAll objects defined within the Components Object will have no effect on the API unless they are explicitly referenced from outside the Components Object.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :---- | ---- |\n| <a name=\"components-schemas\"></a> schemas | Map[`string`, [Schema Object](#schema-object)] | An object to hold reusable [Schema Objects](#schema-object). |\n| <a name=\"components-responses\"></a> responses | Map[`string`, [Response Object](#response-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Response Objects](#response-object). |\n| <a name=\"components-parameters\"></a> parameters | Map[`string`, [Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Parameter Objects](#parameter-object). |\n| <a name=\"components-examples\"></a> examples | Map[`string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Example Objects](#example-object). |\n| <a name=\"components-request-bodies\"></a> requestBodies | Map[`string`, [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Request Body Objects](#request-body-object). |\n| <a name=\"components-headers\"></a> headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Header Objects](#header-object). |\n| <a name=\"security-scheme-object\"></a> securitySchemes | Map[`string`, [Security Scheme Object](#security-scheme-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Security Scheme Objects](#security-scheme-object). |\n| <a name=\"components-links\"></a> links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Link Objects](#link-object). |\n| <a name=\"components-callbacks\"></a> callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Callback Objects](#callback-object). |\n| <a name=\"components-path-items\"></a> pathItems | Map[`string`, [Path Item Object](#path-item-object)] | An object to hold reusable [Path Item Objects](#path-item-object). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nAll the fixed fields declared above are objects that MUST use keys that match the regular expression: `^[a-zA-Z0-9\\.\\-_]+$`.\n\nField Name Examples:\n\n```text\nUser\nUser_1\nUser_Name\nuser-name\nmy.org.User\n```\n\n##### Components Object Example\n\n```json\n\"components\": {\n  \"schemas\": {\n    \"GeneralError\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"code\": {\n          \"type\": \"integer\",\n          \"format\": \"int32\"\n        },\n        \"message\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Category\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Tag\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  },\n  \"parameters\": {\n    \"skipParam\": {\n      \"name\": \"skip\",\n      \"in\": \"query\",\n      \"description\": \"number of items to skip\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    },\n    \"limitParam\": {\n      \"name\": \"limit\",\n      \"in\": \"query\",\n      \"description\": \"max records to return\",\n      \"required\": true,\n      \"schema\" : {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    }\n  },\n  \"responses\": {\n    \"NotFound\": {\n      \"description\": \"Entity not found.\"\n    },\n    \"IllegalInput\": {\n      \"description\": \"Illegal input for operation.\"\n    },\n    \"GeneralError\": {\n      \"description\": \"General Error\",\n      \"content\": {\n        \"application/json\": {\n          \"schema\": {\n            \"$ref\": \"#/components/schemas/GeneralError\"\n          }\n        }\n      }\n    }\n  },\n  \"securitySchemes\": {\n    \"api_key\": {\n      \"type\": \"apiKey\",\n      \"name\": \"api-key\",\n      \"in\": \"header\"\n    },\n    \"petstore_auth\": {\n      \"type\": \"oauth2\",\n      \"flows\": {\n        \"implicit\": {\n          \"authorizationUrl\": \"https://example.org/api/oauth/dialog\",\n          \"scopes\": {\n            \"write:pets\": \"modify pets in your account\",\n            \"read:pets\": \"read your pets\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    GeneralError:\n      type: object\n      properties:\n        code:\n          type: integer\n          format: int32\n        message:\n          type: string\n    Category:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n    Tag:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n  parameters:\n    skipParam:\n      name: skip\n      in: query\n      description: number of items to skip\n      required: true\n      schema:\n        type: integer\n        format: int32\n    limitParam:\n      name: limit\n      in: query\n      description: max records to return\n      required: true\n      schema:\n        type: integer\n        format: int32\n  responses:\n    NotFound:\n      description: Entity not found.\n    IllegalInput:\n      description: Illegal input for operation.\n    GeneralError:\n      description: General Error\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/GeneralError'\n  securitySchemes:\n    api_key:\n      type: apiKey\n      name: api-key\n      in: header\n    petstore_auth:\n      type: oauth2\n      flows:\n        implicit:\n          authorizationUrl: https://example.org/api/oauth/dialog\n          scopes:\n            write:pets: modify pets in your account\n            read:pets: read your pets\n```\n\n#### Paths Object\n\nHolds the relative paths to the individual endpoints and their operations.\nThe path is appended to the URL from the [Server Object](#server-object) in order to construct the full URL. The Paths Object MAY be empty, due to [Access Control List (ACL) constraints](#security-filtering).\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"paths-path\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a forward slash (`/`). The path is **appended** (no relative URL resolution) to the expanded URL from the [Server Object](#server-object)'s `url` field in order to construct the full URL. [Path templating](#path-templating) is allowed. When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical. In case of ambiguous matching, it's up to the tooling to decide which one to use. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Templating Matching\n\nAssuming the following paths, the concrete definition, `/pets/mine`, will be matched first if used:\n\n```text\n  /pets/{petId}\n  /pets/mine\n```\n\nThe following paths are considered identical and invalid:\n\n```text\n  /pets/{petId}\n  /pets/{name}\n```\n\nThe following may lead to ambiguous resolution:\n\n```text\n  /{entity}/me\n  /books/{id}\n```\n\n##### Paths Object Example\n\n```json\n{\n  \"/pets\": {\n    \"get\": {\n      \"description\": \"Returns all pets from the system that the user has access to\",\n      \"responses\": {\n        \"200\": {\n          \"description\": \"A list of pets.\",\n          \"content\": {\n            \"application/json\": {\n              \"schema\": {\n                \"type\": \"array\",\n                \"items\": {\n                  \"$ref\": \"#/components/schemas/pet\"\n                }\n              }\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    responses:\n      '200':\n        description: A list of pets.\n        content:\n          application/json:\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/pet'\n```\n\n#### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item MAY be empty, due to [ACL constraints](#security-filtering).\nThe path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"path-item-ref\"></a>$ref | `string` | Allows for a referenced definition of this path item. The value MUST be in the form of a URI, and the referenced structure MUST be in the form of a [Path Item Object](#path-item-object). In case a Path Item Object field appears both in the defined object and the referenced object, the behavior is undefined. See the rules for resolving [Relative References](#relative-references-in-api-description-uris). <br><br>_**Note:** The behavior of `$ref` with adjacent properties is likely to change in future versions of this specification to bring it into closer alignment with the behavior of the [Reference Object](#reference-object)._ |\n| <a name=\"path-item-summary\"></a>summary | `string` | An optional string summary, intended to apply to all operations in this path. |\n| <a name=\"path-item-description\"></a>description | `string` | An optional string description, intended to apply to all operations in this path. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"path-item-get\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path. |\n| <a name=\"path-item-put\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path. |\n| <a name=\"path-item-post\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path. |\n| <a name=\"path-item-delete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path. |\n| <a name=\"path-item-options\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path. |\n| <a name=\"path-item-head\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path. |\n| <a name=\"path-item-patch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path. |\n| <a name=\"path-item-trace\"></a>trace | [Operation Object](#operation-object) | A definition of a TRACE operation on this path. |\n| <a name=\"path-item-servers\"></a>servers | [[Server Object](#server-object)] | An alternative `servers` array to service all operations in this path. If a `servers` array is specified at the [OpenAPI Object](#oas-servers) level, it will be overridden by this value. |\n| <a name=\"path-item-parameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in). The list can use the [Reference Object](#reference-object) to link to parameters that are defined in the [OpenAPI Object's `components.parameters`](#components-parameters). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Item Object Example\n\n```json\n{\n  \"get\": {\n    \"description\": \"Returns pets based on ID\",\n    \"summary\": \"Find pets by ID\",\n    \"operationId\": \"getPetsById\",\n    \"responses\": {\n      \"200\": {\n        \"description\": \"pet response\",\n        \"content\": {\n          \"*/*\": {\n            \"schema\": {\n              \"type\": \"array\",\n              \"items\": {\n                \"$ref\": \"#/components/schemas/Pet\"\n              }\n            }\n          }\n        }\n      },\n      \"default\": {\n        \"description\": \"error payload\",\n        \"content\": {\n          \"text/html\": {\n            \"schema\": {\n              \"$ref\": \"#/components/schemas/ErrorModel\"\n            }\n          }\n        }\n      }\n    }\n  },\n  \"parameters\": [\n    {\n      \"name\": \"id\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet to use\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      },\n      \"style\": \"simple\"\n    }\n  ]\n}\n```\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  responses:\n    '200':\n      description: pet response\n      content:\n        '*/*':\n          schema:\n            type: array\n            items:\n              $ref: '#/components/schemas/Pet'\n    default:\n      description: error payload\n      content:\n        text/html:\n          schema:\n            $ref: '#/components/schemas/ErrorModel'\nparameters:\n  - name: id\n    in: path\n    description: ID of pet to use\n    required: true\n    schema:\n      type: array\n      items:\n        type: string\n    style: simple\n```\n\n#### Operation Object\n\nDescribes a single API operation on a path.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"operation-tags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier. |\n| <a name=\"operation-summary\"></a>summary | `string` | A short summary of what the operation does. |\n| <a name=\"operation-description\"></a>description | `string` | A verbose explanation of the operation behavior. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"operation-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation. |\n| <a name=\"operation-id\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. The operationId value is **case-sensitive**. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is RECOMMENDED to follow common programming naming conventions. |\n| <a name=\"operation-parameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined at the [Path Item](#path-item-parameters), the new definition will override it but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in). The list can use the [Reference Object](#reference-object) to link to parameters that are defined in the [OpenAPI Object's `components.parameters`](#components-parameters). |\n| <a name=\"operation-request-body\"></a>requestBody | [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object) | The request body applicable for this operation. The `requestBody` is fully supported in HTTP methods where the HTTP 1.1 specification [RFC7231](https://tools.ietf.org/html/rfc7231#section-4.3.1) has explicitly defined semantics for request bodies. In other cases where the HTTP spec is vague (such as [GET](https://tools.ietf.org/html/rfc7231#section-4.3.1), [HEAD](https://tools.ietf.org/html/rfc7231#section-4.3.2) and [DELETE](https://tools.ietf.org/html/rfc7231#section-4.3.5)), `requestBody` is permitted but does not have well-defined semantics and SHOULD be avoided if possible. |\n| <a name=\"operation-responses\"></a>responses | [Responses Object](#responses-object) | The list of possible responses as they are returned from executing this operation. |\n| <a name=\"operation-callbacks\"></a>callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | A map of possible out-of band callbacks related to the parent operation. The key is a unique identifier for the Callback Object. Each value in the map is a [Callback Object](#callback-object) that describes a request that may be initiated by the API provider and the expected responses. |\n| <a name=\"operation-deprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Consumers SHOULD refrain from usage of the declared operation. Default value is `false`. |\n| <a name=\"operation-security\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used for this operation. The list of values includes alternative Security Requirement Objects that can be used. Only one of the Security Requirement Objects need to be satisfied to authorize a request. To make security optional, an empty security requirement (`{}`) can be included in the array. This definition overrides any declared top-level [`security`](#oas-security). To remove a top-level security declaration, an empty array can be used. |\n| <a name=\"operation-servers\"></a>servers | [[Server Object](#server-object)] | An alternative `servers` array to service this operation. If a `servers` array is specified at the [Path Item Object](#path-item-servers) or [OpenAPI Object](#oas-servers) level, it will be overridden by this value. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Operation Object Example\n\n```json\n{\n  \"tags\": [\"pet\"],\n  \"summary\": \"Updates a pet in the store with form data\",\n  \"operationId\": \"updatePetWithForm\",\n  \"parameters\": [\n    {\n      \"name\": \"petId\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet that needs to be updated\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  ],\n  \"requestBody\": {\n    \"content\": {\n      \"application/x-www-form-urlencoded\": {\n        \"schema\": {\n          \"type\": \"object\",\n          \"properties\": {\n            \"name\": {\n              \"description\": \"Updated name of the pet\",\n              \"type\": \"string\"\n            },\n            \"status\": {\n              \"description\": \"Updated status of the pet\",\n              \"type\": \"string\"\n            }\n          },\n          \"required\": [\"status\"]\n        }\n      }\n    }\n  },\n  \"responses\": {\n    \"200\": {\n      \"description\": \"Pet updated.\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    },\n    \"405\": {\n      \"description\": \"Method Not Allowed\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    }\n  },\n  \"security\": [\n    {\n      \"petstore_auth\": [\"write:pets\", \"read:pets\"]\n    }\n  ]\n}\n```\n\n```yaml\ntags:\n  - pet\nsummary: Updates a pet in the store with form data\noperationId: updatePetWithForm\nparameters:\n  - name: petId\n    in: path\n    description: ID of pet that needs to be updated\n    required: true\n    schema:\n      type: string\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          name:\n            description: Updated name of the pet\n            type: string\n          status:\n            description: Updated status of the pet\n            type: string\n        required:\n          - status\nresponses:\n  '200':\n    description: Pet updated.\n    content:\n      application/json: {}\n      application/xml: {}\n  '405':\n    description: Method Not Allowed\n    content:\n      application/json: {}\n      application/xml: {}\nsecurity:\n  - petstore_auth:\n      - write:pets\n      - read:pets\n```\n\n#### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"external-doc-description\"></a>description | `string` | A description of the target documentation. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"external-doc-url\"></a>url | `string` | **REQUIRED**. The URI for the target documentation. This MUST be in the form of a URI. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### External Documentation Object Example\n\n```json\n{\n  \"description\": \"Find more info here\",\n  \"url\": \"https://example.com\"\n}\n```\n\n```yaml\ndescription: Find more info here\nurl: https://example.com\n```\n\n#### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in).\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns, including interactions with the `application/x-www-form-urlencoded` query string format.\n\n##### Parameter Locations\n\nThere are four possible parameter locations specified by the `in` field:\n\n* path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`.\n* header - Custom headers that are expected as part of the request. Note that [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2) states header names are case insensitive.\n* cookie - Used to pass a specific cookie value to the API.\n\n##### Fixed Fields\n\nThe rules for serialization of the parameter are specified in one of two ways.\nParameter Objects MUST include either a `content` field or a `schema` field, but not both.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of converting values of various types to string representations.\n\n###### Common Fixed Fields\n\nThese fields MAY be used with either `content` or `schema`.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-name\"></a>name | `string` | **REQUIRED**. The name of the parameter. Parameter names are _case sensitive_. <ul><li>If [`in`](#parameter-in) is `\"path\"`, the `name` field MUST correspond to a template expression occurring within the [path](#paths-path) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>If [`in`](#parameter-in) is `\"header\"` and the `name` field is `\"Accept\"`, `\"Content-Type\"` or `\"Authorization\"`, the parameter definition SHALL be ignored.<li>For all other cases, the `name` corresponds to the parameter name used by the [`in`](#parameter-in) field.</ul> |\n| <a name=\"parameter-in\"></a>in | `string` | **REQUIRED**. The location of the parameter. Possible values are `\"query\"`, `\"header\"`, `\"path\"` or `\"cookie\"`. |\n| <a name=\"parameter-description\"></a>description | `string` | A brief description of the parameter. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"parameter-required\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the [parameter location](#parameter-in) is `\"path\"`, this field is **REQUIRED** and its value MUST be `true`. Otherwise, the field MAY be included and its default value is `false`. |\n| <a name=\"parameter-deprecated\"></a> deprecated | `boolean` | Specifies that a parameter is deprecated and SHOULD be transitioned out of usage. Default value is `false`. |\n| <a name=\"parameter-allow-empty-value\"></a> allowEmptyValue | `boolean` | If `true`, clients MAY pass a zero-length string value in place of parameters that would otherwise be omitted entirely, which the server SHOULD interpret as the parameter being unused. Default value is `false`. If [`style`](#parameter-style) is used, and if [behavior is _n/a_ (cannot be serialized)](#style-examples), the value of `allowEmptyValue` SHALL be ignored. Interactions between this field and the parameter's [Schema Object](#schema-object) are implementation-defined. This field is valid only for `query` parameters. Use of this field is NOT RECOMMENDED, and it is likely to be removed in a later revision. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nNote that while `\"Cookie\"` as a `name` is not forbidden if `in` is `\"header\"`, the effect of defining a cookie parameter that way is undefined; use `in: \"cookie\"` instead.\n\n###### Fixed Fields for use with `schema`\n\nFor simpler scenarios, a [`schema`](#parameter-schema) and [`style`](#parameter-style) can describe the structure and syntax of the parameter.\nWhen `example` or `examples` are provided in conjunction with the `schema` field, the example SHOULD match the specified schema and follow the prescribed serialization strategy for the parameter.\nThe `example` and `examples` fields are mutually exclusive, and if either is present it SHALL _override_ any `example` in the schema.\n\nSerializing with `schema` is NOT RECOMMENDED for `in: \"cookie\"` parameters, `in: \"header\"` parameters that use HTTP header parameters (name=value pairs following a `;`) in their values, or `in: \"header\"` parameters where values might have non-URL-safe characters; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for details.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-style\"></a>style | `string` | Describes how the parameter value will be serialized depending on the type of the parameter value. Default values (based on value of `in`): for `\"query\"` - `\"form\"`; for `\"path\"` - `\"simple\"`; for `\"header\"` - `\"simple\"`; for `\"cookie\"` - `\"form\"`. |\n| <a name=\"parameter-explode\"></a>explode | `boolean` | When this is true, parameter values of type `array` or `object` generate separate parameters for each value of the array or key-value pair of the map. For other types of parameters this field has no effect. When [`style`](#parameter-style) is `\"form\"`, the default value is `true`. For all other styles, the default value is `false`. Note that despite `false` being the default for `deepObject`, the combination of `false` with `deepObject` is undefined. |\n| <a name=\"parameter-allow-reserved\"></a>allowReserved | `boolean` | When this is true, parameter values are serialized using reserved expansion, as defined by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570#section-3.2.3), which allows [RFC3986's reserved character set](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2), as well as percent-encoded triples, to pass through unchanged, while still percent-encoding all other disallowed characters (including `%` outside of percent-encoded triples). Applications are still responsible for percent-encoding reserved characters that are [not allowed in the query string](https://datatracker.ietf.org/doc/html/rfc3986#section-3.4) (`[`, `]`, `#`), or have a special meaning in `application/x-www-form-urlencoded` (`-`, `&`, `+`); see Appendices [C](#appendix-c-using-rfc6570-based-serialization) and [E](#appendix-e-percent-encoding-and-form-media-types) for details. This field only applies to parameters with an `in` value of `query`. The default value is `false`. |\n| <a name=\"parameter-schema\"></a>schema | [Schema Object](#schema-object) | The schema defining the type used for the parameter. |\n| <a name=\"parameter-example\"></a>example | Any | Example of the parameter's potential value; see [Working With Examples](#working-with-examples). |\n| <a name=\"parameter-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the parameter's potential value; see [Working With Examples](#working-with-examples). |\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\n###### Fixed Fields for use with `content`\n\nFor more complex scenarios, the [`content`](#parameter-content) field can define the media type and schema of the parameter, as well as give examples of its use.\nUsing `content` with a `text/plain` media type is RECOMMENDED for `in: \"header\"` and `in: \"cookie\"` parameters where the `schema` strategy is not appropriate.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the parameter. The key is the media type and the value describes it. The map MUST only contain one entry. |\n\n##### Style Values\n\nIn order to support common ways of serializing simple parameters, a set of `style` values are defined.\n\n| `style` | [`type`](#data-types) | `in` | Comments |\n| ---- | ---- | ---- | ---- |\n| matrix | `primitive`, `array`, `object` | `path` | Path-style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.7) |\n| label | `primitive`, `array`, `object` | `path` | Label style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.5) |\n| simple | `primitive`, `array`, `object` | `path`, `header` | Simple style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.2). This option replaces `collectionFormat` with a `csv` value from OpenAPI 2.0. |\n| form | `primitive`, `array`, `object` | `query`, `cookie` | Form style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.8). This option replaces `collectionFormat` with a `csv` (when `explode` is false) or `multi` (when `explode` is true) value from OpenAPI 2.0. |\n| spaceDelimited | `array`, `object` | `query` | Space separated array values or object properties and values. This option replaces `collectionFormat` equal to `ssv` from OpenAPI 2.0. |\n| pipeDelimited | `array`, `object` | `query` | Pipe separated array values or object properties and values. This option replaces `collectionFormat` equal to `pipes` from OpenAPI 2.0. |\n| deepObject | `object` | `query` | Allows objects with scalar properties to be represented using form parameters. The representation of array or object properties is not defined. |\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a discussion of percent-encoding, including when delimiters need to be percent-encoded and options for handling collisions with percent-encoded data.\n\n##### Style Examples\n\nAssume a parameter named `color` has one of the following values:\n\n```js\n   string -> \"blue\"\n   array -> [\"blue\", \"black\", \"brown\"]\n   object -> { \"R\": 100, \"G\": 200, \"B\": 150 }\n```\n\nThe following table shows examples, as would be shown with the `example` or `examples` keywords, of the different serializations for each value.\n\n* The value _empty_ denotes the empty string, and is unrelated to the `allowEmptyValue` field\n* The behavior of combinations marked _n/a_ is undefined\n* The `undefined` column replaces the `empty` column in previous versions of this specification in order to better align with [RFC6570](https://www.rfc-editor.org/rfc/rfc6570.html#section-2.3) terminology, which describes certain values including but not limited to `null` as \"undefined\" values with special handling; notably, the empty string is _not_ undefined\n* For `form` and the non-RFC6570 query string styles `spaceDelimited`, `pipeDelimited`, and `deepObject`, each example is shown prefixed with `?` as if it were the only query parameter; see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more information on constructing query strings from multiple parameters, and [Appendix D](#appendix-d-serializing-headers-and-cookies) for warnings regarding `form` and cookie parameters\n* Note that the `?` prefix is not appropriate for serializing `application/x-www-form-urlencoded` HTTP message bodies, and MUST be stripped or (if constructing the string manually) not added when used in that context; see the [Encoding Object](#encoding-object) for more information\n* The examples are percent-encoded as required by RFC6570 and RFC3986; see [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a thorough discussion of percent-encoding concerns, including why unencoded `|` (`%7C`), `[` (`%5B`), and `]` (`%5D`) seem to work in some environments despite not being compliant.\n\n| [`style`](#style-values) | `explode` | `undefined` | `string` | `array` | `object` |\n| ---- | ---- | ---- | ---- | ---- | ---- |\n| matrix | false | ;color | ;color=blue | ;color=blue,black,brown | ;color=R,100,G,200,B,150 |\n| matrix | true | ;color | ;color=blue | ;color=blue;color=black;color=brown | ;R=100;G=200;B=150 |\n| label | false | . | .blue | .blue,black,brown | .R,100,G,200,B,150 |\n| label | true | . | .blue | .blue.black.brown | .R=100.G=200.B=150 |\n| simple | false | _empty_ | blue | blue,black,brown | R,100,G,200,B,150 |\n| simple | true | _empty_ | blue | blue,black,brown | R=100,G=200,B=150 |\n| form | false | <span style=\"white-space: nowrap;\">?color=</span> | <span style=\"white-space: nowrap;\">?color=blue</span> | <span style=\"white-space: nowrap;\">?color=blue,black,brown</span> | <span style=\"white-space: nowrap;\">?color=R,100,G,200,B,150</span> |\n| form | true | <span style=\"white-space: nowrap;\">?color=</span> | <span style=\"white-space: nowrap;\">?color=blue</span> | <span style=\"white-space: nowrap;\">?color=blue&color=black&color=brown</span> | <span style=\"white-space: nowrap;\">?R=100&G=200&B=150</span> |\n| spaceDelimited</span> | false | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">?color=blue%20black%20brown</span> | <span style=\"white-space: nowrap;\">?color=R%20100%20G%20200%20B%20150</span> |\n| spaceDelimited | true | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| pipeDelimited | false | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">?color=blue%7Cblack%7Cbrown</span> | <span style=\"white-space: nowrap;\">?color=R%7C100%7CG%7C200%7CB%7C150</span> |\n| pipeDelimited | true | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| deepObject | false | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| deepObject | true | _n/a_ | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">?color%5BR%5D=100&color%5BG%5D=200&color%5BB%5D=150</span> |\n\n##### Parameter Object Examples\n\nA header parameter with an array of 64-bit integer numbers:\n\n```json\n{\n  \"name\": \"token\",\n  \"in\": \"header\",\n  \"description\": \"token to be passed as a header\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    }\n  },\n  \"style\": \"simple\"\n}\n```\n\n```yaml\nname: token\nin: header\ndescription: token to be passed as a header\nrequired: true\nschema:\n  type: array\n  items:\n    type: integer\n    format: int64\nstyle: simple\n```\n\nA path parameter of a string value:\n\n```json\n{\n  \"name\": \"username\",\n  \"in\": \"path\",\n  \"description\": \"username to fetch\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\nschema:\n  type: string\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter:\n\n```json\n{\n  \"name\": \"id\",\n  \"in\": \"query\",\n  \"description\": \"ID of the object to fetch\",\n  \"required\": false,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  },\n  \"style\": \"form\",\n  \"explode\": true\n}\n```\n\n```yaml\nname: id\nin: query\ndescription: ID of the object to fetch\nrequired: false\nschema:\n  type: array\n  items:\n    type: string\nstyle: form\nexplode: true\n```\n\nA free-form query parameter, allowing undefined parameters of a specific type:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"freeForm\",\n  \"schema\": {\n    \"type\": \"object\",\n    \"additionalProperties\": {\n      \"type\": \"integer\"\n    }\n  },\n  \"style\": \"form\"\n}\n```\n\n```yaml\nin: query\nname: freeForm\nschema:\n  type: object\n  additionalProperties:\n    type: integer\nstyle: form\n```\n\nA complex parameter using `content` to define serialization:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"coordinates\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"object\",\n        \"required\": [\"lat\", \"long\"],\n        \"properties\": {\n          \"lat\": {\n            \"type\": \"number\"\n          },\n          \"long\": {\n            \"type\": \"number\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nin: query\nname: coordinates\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n        - lat\n        - long\n      properties:\n        lat:\n          type: number\n        long:\n          type: number\n```\n\n#### Request Body Object\n\nDescribes a single request body.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"request-body-description\"></a>description | `string` | A brief description of the request body. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"request-body-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | **REQUIRED**. The content of the request body. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it. For requests that match multiple keys, only the most specific key is applicable. e.g. `\"text/plain\"` overrides `\"text/*\"` |\n| <a name=\"request-body-required\"></a>required | `boolean` | Determines if the request body is required in the request. Defaults to `false`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Request Body Examples\n\nA request body with a referenced schema definition.\n\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User Example\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.json\"\n        }\n      }\n    },\n    \"application/xml\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User example in XML\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.xml\"\n        }\n      }\n    },\n    \"text/plain\": {\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User example in Plain text\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.txt\"\n        }\n      }\n    },\n    \"*/*\": {\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User example in other format\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.whatever\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\ncontent:\n  application/json:\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User example\n        externalValue: https://foo.bar/examples/user-example.json\n  application/xml:\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User example in XML\n        externalValue: https://foo.bar/examples/user-example.xml\n  text/plain:\n    examples:\n      user:\n        summary: User example in plain text\n        externalValue: https://foo.bar/examples/user-example.txt\n  '*/*':\n    examples:\n      user:\n        summary: User example in other format\n        externalValue: https://foo.bar/examples/user-example.whatever\n```\n\n#### Media Type Object\n\nEach Media Type Object provides schema and examples for the media type identified by its key.\n\nWhen `example` or `examples` are provided, the example SHOULD match the specified schema and be in the correct format as specified by the media type and its encoding.\nThe `example` and `examples` fields are mutually exclusive, and if either is present it SHALL _override_ any `example` in the schema.\nSee [Working With Examples](#working-with-examples) for further guidance regarding the different ways of specifying examples, including non-JSON/YAML values.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"media-type-schema\"></a>schema | [Schema Object](#schema-object) | The schema defining the content of the request, response, parameter, or header. |\n| <a name=\"media-type-example\"></a>example | Any | Example of the media type; see [Working With Examples](#working-with-examples). |\n| <a name=\"media-type-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type; see [Working With Examples](#working-with-examples). |\n| <a name=\"media-type-encoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | A map between a property name and its encoding information. The key, being the property name, MUST exist in the schema as a property. The `encoding` field SHALL only apply to [Request Body Objects](#request-body-object), and only when the media type is `multipart` or `application/x-www-form-urlencoded`. If no Encoding Object is provided for a property, the behavior is determined by the default values documented for the Encoding Object. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Media Type Examples\n\n```json\n{\n  \"application/json\": {\n    \"schema\": {\n      \"$ref\": \"#/components/schemas/Pet\"\n    },\n    \"examples\": {\n      \"cat\": {\n        \"summary\": \"An example of a cat\",\n        \"value\": {\n          \"name\": \"Fluffy\",\n          \"petType\": \"Cat\",\n          \"color\": \"White\",\n          \"gender\": \"male\",\n          \"breed\": \"Persian\"\n        }\n      },\n      \"dog\": {\n        \"summary\": \"An example of a dog with a cat's name\",\n        \"value\": {\n          \"name\": \"Puma\",\n          \"petType\": \"Dog\",\n          \"color\": \"Black\",\n          \"gender\": \"Female\",\n          \"breed\": \"Mixed\"\n        }\n      },\n      \"frog\": {\n        \"$ref\": \"#/components/examples/frog-example\"\n      }\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    $ref: '#/components/schemas/Pet'\n  examples:\n    cat:\n      summary: An example of a cat\n      value:\n        name: Fluffy\n        petType: Cat\n        color: White\n        gender: male\n        breed: Persian\n    dog:\n      summary: An example of a dog with a cat's name\n      value:\n        name: Puma\n        petType: Dog\n        color: Black\n        gender: Female\n        breed: Mixed\n    frog:\n      $ref: '#/components/examples/frog-example'\n```\n\n##### Considerations for File Uploads\n\nIn contrast to OpenAPI 2.0, `file` input/output content in OAS 3.x is described with the same semantics as any other schema type.\n\nIn contrast to OAS 3.0, the `format` keyword has no effect on the content-encoding of the schema in OAS 3.1. Instead, JSON Schema's `contentEncoding` and `contentMediaType` keywords are used. See [Working With Binary Data](#working-with-binary-data) for how to model various scenarios with these keywords, and how to migrate from the previous `format` usage.\n\nExamples:\n\nContent transferred in binary (octet-stream) MAY omit `schema`:\n\n```yaml\n# a PNG image as a binary file:\ncontent:\n  image/png: {}\n```\n\n```yaml\n# an arbitrary binary file:\ncontent:\n  application/octet-stream: {}\n```\n\n```yaml\n# arbitrary JSON without constraints beyond being syntactically valid:\ncontent:\n  application/json: {}\n```\n\nThese examples apply to either input payloads of file uploads or response payloads.\n\nA `requestBody` for submitting a file in a `POST` operation may look like the following example:\n\n```yaml\nrequestBody:\n  content:\n    application/octet-stream: {}\n```\n\nIn addition, specific media types MAY be specified:\n\n```yaml\n# multiple, specific media types may be specified:\nrequestBody:\n  content:\n    # a binary file of type png or jpeg\n    image/jpeg: {}\n    image/png: {}\n```\n\nTo upload multiple files, a `multipart` media type MUST be used as shown under [Example: Multipart Form with Multiple Files](#example-multipart-form-with-multiple-files).\n\n##### Support for x-www-form-urlencoded Request Bodies\n\nSee [Encoding the `x-www-form-urlencoded` Media Type](#encoding-the-x-www-form-urlencoded-media-type) for guidance and examples, both with and without the `encoding` field.\n\n##### Special Considerations for `multipart` Content\n\nSee [Encoding `multipart` Media Types](#encoding-multipart-media-types) for further guidance and examples, both with and without the `encoding` field.\n\n#### Encoding Object\n\nA single encoding definition applied to a single schema property.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of converting values of various types to string representations.\n\nProperties are correlated with `multipart` parts using the [`name` parameter](https://www.rfc-editor.org/rfc/rfc7578#section-4.2) of `Content-Disposition: form-data`, and with `application/x-www-form-urlencoded` using the query string parameter names.\nIn both cases, their order is implementation-defined.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n##### Fixed Fields\n\n###### Common Fixed Fields\n\nThese fields MAY be used either with or without the RFC6570-style serialization fields defined in the next section below.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"encoding-content-type\"></a>contentType | `string` | The `Content-Type` for encoding a specific property. The value is a comma-separated list, each element of which is either a specific media type (e.g. `image/png`) or a wildcard media type (e.g. `image/*`). Default value depends on the property type as shown in the table below. |\n| <a name=\"encoding-headers\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | A map allowing additional information to be provided as headers. `Content-Type` is described separately and SHALL be ignored in this section. This field SHALL be ignored if the request body media type is not a `multipart`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nThe default values for `contentType` are as follows, where an _n/a_ in the `contentEncoding` column means that the presence or value of `contentEncoding` is irrelevant:\n\n| `type` | `contentEncoding` | Default `contentType` |\n| ---- | ---- | ---- |\n| [_absent_](#working-with-binary-data) | _n/a_ | `application/octet-stream` |\n| `string` | _present_ | `application/octet-stream` |\n| `string` | _absent_ | `text/plain` |\n| `number`, `integer`, or `boolean` | _n/a_ | `text/plain` |\n| `object` | _n/a_ | `application/json` |\n| `array` | _n/a_ | according to the `type` of the `items` schema |\n\nDetermining how to handle a `type` value of `null` depends on how `null` values are being serialized.\nIf `null` values are entirely omitted, then the `contentType` is irrelevant.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of data type conversion options.\n\n###### Fixed Fields for RFC6570-style Serialization\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"encoding-style\"></a>style | `string` | Describes how a specific property value will be serialized depending on its type. See [Parameter Object](#parameter-object) for details on the [`style`](#parameter-style) field. The behavior follows the same values as `query` parameters, including default values. Note that the initial `?` used in query strings is not used in `application/x-www-form-urlencoded` message bodies, and MUST be removed (if using an RFC6570 implementation) or simply not added (if constructing the string manually). This field SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encoding-content-type) (implicit or explicit) SHALL be ignored. |\n| <a name=\"encoding-explode\"></a>explode | `boolean` | When this is true, property values of type `array` or `object` generate separate parameters for each value of the array, or key-value-pair of the map. For other types of properties this field has no effect. When [`style`](#encoding-style) is `\"form\"`, the default value is `true`. For all other styles, the default value is `false`. Note that despite `false` being the default for `deepObject`, the combination of `false` with `deepObject` is undefined. This field SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encoding-content-type) (implicit or explicit) SHALL be ignored. |\n| <a name=\"encoding-allow-reserved\"></a>allowReserved | `boolean` | When this is true, parameter values are serialized using reserved expansion, as defined by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570#section-3.2.3), which allows [RFC3986's reserved character set](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2), as well as percent-encoded triples, to pass through unchanged, while still percent-encoding all other disallowed characters (including `%` outside of percent-encoded triples). Applications are still responsible for percent-encoding reserved characters that are [not allowed in the query string](https://datatracker.ietf.org/doc/html/rfc3986#section-3.4) (`[`, `]`, `#`), or have a special meaning in `application/x-www-form-urlencoded` (`-`, `&`, `+`); see Appendices [C](#appendix-c-using-rfc6570-based-serialization) and [E](#appendix-e-percent-encoding-and-form-media-types) for details. The default value is `false`. This field SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encoding-content-type) (implicit or explicit) SHALL be ignored. |\n\nSee also [Appendix C: Using RFC6570 Implementations](#appendix-c-using-rfc6570-based-serialization) for additional guidance, including on difficulties caused by the interaction between RFC6570's percent-encoding rules and the `multipart/form-data` media type.\n\nNote that the presence of at least one of `style`, `explode`, or `allowReserved` with an explicit value is equivalent to using `schema` with `in: \"query\"` Parameter Objects.\nThe absence of all three of those fields is the equivalent of using `content`, but with the media type specified in `contentType` rather than through a Media Type Object.\n\n##### Encoding the `x-www-form-urlencoded` Media Type\n\nTo submit content using form url encoding via [RFC1866](https://tools.ietf.org/html/rfc1866), use the `application/x-www-form-urlencoded` media type in the [Media Type Object](#media-type-object) under the [Request Body Object](#request-body-object).\nThis configuration means that the request body MUST be encoded per [RFC1866](https://tools.ietf.org/html/rfc1866) when passed to the server, after any complex objects have been serialized to a string representation.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n###### Example: URL Encoded Form with JSON Values\n\nWhen there is no [`encoding`](#media-type-encoding) field, the serialization strategy is based on the Encoding Object's default values:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # complex types are stringified to support RFC 1866\n            type: object\n            properties: {}\n```\n\nWith this example, consider an `id` of `f81d4fae-7dec-11d0-a765-00a0c91e6bf6` and a US-style address (with ZIP+4) as follows:\n\n```json\n{\n  \"streetAddress\": \"123 Example Dr.\",\n  \"city\": \"Somewhere\",\n  \"state\": \"CA\",\n  \"zip\": \"99999+1234\"\n}\n```\n\nAssuming the most compact representation of the JSON value (with unnecessary whitespace removed), we would expect to see the following request body, where space characters have been replaced with `+` and `+`, `\"`, `{`, and `}` have been percent-encoded to `%2B`, `%22`, `%7B`, and `%7D`, respectively:\n\n```uri\nid=f81d4fae-7dec-11d0-a765-00a0c91e6bf6&address=%7B%22streetAddress%22:%22123+Example+Dr.%22,%22city%22:%22Somewhere%22,%22state%22:%22CA%22,%22zip%22:%2299999%2B1234%22%7D\n```\n\nNote that the `id` keyword is treated as `text/plain` per the [Encoding Object](#encoding-object)'s default behavior, and is serialized as-is.\nIf it were treated as `application/json`, then the serialized value would be a JSON string including quotation marks, which would be percent-encoded as `%22`.\n\nHere is the `id` parameter (without `address`) serialized as `application/json` instead of `text/plain`, and then encoded per RFC1866:\n\n```uri\nid=%22f81d4fae-7dec-11d0-a765-00a0c91e6bf6%22\n```\n\n###### Example: URL Encoded Form with Binary Values\n\nNote that `application/x-www-form-urlencoded` is a text format, which requires base64-encoding any binary data:\n\n```YAML\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          name:\n            type: string\n          icon:\n            # The default with \"contentEncoding\" is application/octet-stream,\n            # so we need to set image media type(s) in the Encoding Object.\n            type: string\n            contentEncoding: base64url\n  encoding:\n    icon:\n      contentType: image/png, image/jpeg\n```\n\nGiven a name of `example` and a solid red 2x2-pixel PNG for `icon`, this\nwould produce a request body of:\n\n```uri\nname=example&icon=iVBORw0KGgoAAAANSUhEUgAAAAIAAAACCAIAAAD91JpzAAAABGdBTUEAALGPC_xhBQAAADhlWElmTU0AKgAAAAgAAYdpAAQAAAABAAAAGgAAAAAAAqACAAQAAAABAAAAAqADAAQAAAABAAAAAgAAAADO0J6QAAAAEElEQVQIHWP8zwACTGCSAQANHQEDqtPptQAAAABJRU5ErkJggg%3D%3D\n```\n\nNote that the `=` padding characters at the end need to be percent-encoded, even with the \"URL safe\" `contentEncoding: base64url`.\nSome base64-decoding implementations may be able to use the string without the padding per [RFC4648](https://datatracker.ietf.org/doc/html/rfc4648#section-3.2).\nHowever, this is not guaranteed, so it may be more interoperable to keep the padding and rely on percent-decoding.\n\n##### Encoding `multipart` Media Types\n\nIt is common to use `multipart/form-data` as a `Content-Type` when transferring forms as request bodies. In contrast to OpenAPI 2.0, a `schema` is REQUIRED to define the input parameters to the operation when using `multipart` content. This supports complex structures as well as supporting mechanisms for multiple file uploads.\n\nThe `form-data` disposition and its `name` parameter are mandatory for `multipart/form-data` ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.2)).\nArray properties are handled by applying the same `name` to multiple parts, as is recommended by [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.3) for supplying multiple values per form field.\nSee [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-5) for guidance regarding non-ASCII part names.\n\nVarious other `multipart` types, most notable `multipart/mixed` ([RFC2046](https://www.rfc-editor.org/rfc/rfc2046.html#section-5.1.3)) neither require nor forbid specific `Content-Disposition` values, which means care must be taken to ensure that any values used are supported by all relevant software.\nIt is not currently possible to correlate schema properties with unnamed, ordered parts in media types such as `multipart/mixed`, but implementations MAY choose to support such types when `Content-Disposition: form-data` is used with a `name` parameter.\n\nNote that there are significant restrictions on what headers can be used with `multipart` media types in general ([RFC2046](https://www.rfc-editor.org/rfc/rfc2046.html#section-5.1)) and `multi-part/form-data` in particular ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.8)).\n\nNote also that `Content-Transfer-Encoding` is deprecated for `multipart/form-data` ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.7)) where binary data is supported, as it is in HTTP.\n\n+Using `contentEncoding` for a multipart field is equivalent to specifying an [Encoding Object](#encoding-object) with a `headers` field containing `Content-Transfer-Encoding` with a schema that requires the value used in `contentEncoding`.\n+If `contentEncoding` is used for a multipart field that has an Encoding Object with a `headers` field containing `Content-Transfer-Encoding` with a schema that disallows the value from `contentEncoding`, the result is undefined for serialization and parsing.\n\nNote that as stated in [Working with Binary Data](#working-with-binary-data), if the Encoding Object's `contentType`, whether set explicitly or implicitly through its default value rules, disagrees with the `contentMediaType` in a Schema Object, the `contentMediaType` SHALL be ignored.\nBecause of this, and because the Encoding Object's `contentType` defaulting rules do not take the Schema Object's`contentMediaType` into account, the use of `contentMediaType` with an Encoding Object is NOT RECOMMENDED.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n###### Example: Basic Multipart Form\n\nWhen the `encoding` field is _not_ used, the encoding is determined by the Encoding Object's defaults:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            # default for primitives without a special format is text/plain\n            type: string\n            format: uuid\n          profileImage:\n            # default for string with binary format is `application/octet-stream`\n            type: string\n            format: binary\n          addresses:\n            # default for arrays is based on the type in the `items`\n            # subschema, which is an object, so `application/json`\n            type: array\n            items:\n              $ref: '#/components/schemas/Address'\n```\n\n###### Example: Multipart Form with Encoding Objects\n\nUsing `encoding`, we can set more specific types for binary data, or non-JSON formats for complex values.\nWe can also describe headers for each part:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          id:\n            # default is `text/plain`\n            type: string\n            format: uuid\n          addresses:\n            # default based on the `items` subschema would be\n            # `application/json`, but we want these address objects\n            # serialized as `application/xml` instead\n            description: addresses in XML format\n            type: array\n            items:\n              $ref: '#/components/schemas/Address'\n          profileImage:\n            # default is application/octet-stream, but we can declare\n            # a more specific image type or types\n            type: string\n            format: binary\n      encoding:\n        addresses:\n          # require XML Content-Type in utf-8 encoding\n          # This is applied to each address part corresponding\n          # to each address in he array\n          contentType: application/xml; charset=utf-8\n        profileImage:\n          # only accept png or jpeg\n          contentType: image/png, image/jpeg\n          headers:\n            X-Rate-Limit-Limit:\n              description: The number of allowed requests in the current period\n              schema:\n                type: integer\n```\n\n###### Example: Multipart Form with Multiple Files\n\nIn accordance with [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.3), multiple files for a single form field are uploaded using the same name (`file` in this example) for each file's part:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        properties:\n          # The property name 'file' will be used for all files.\n          file:\n            type: array\n            items: {}\n```\n\nAs seen in the [Encoding Object's `contentType` field documentation](#encoding-content-type), the empty schema for `items` indicates a media type of `application/octet-stream`.\n\n#### Responses Object\n\nA container for the expected responses of an operation.\nThe container maps a HTTP response code to the expected response.\n\nThe documentation is not necessarily expected to cover all possible HTTP response codes because they may not be known in advance.\nHowever, documentation is expected to cover a successful operation response and any known errors.\n\nThe `default` MAY be used as a default Response Object for all HTTP codes\nthat are not covered individually by the Responses Object.\n\nThe Responses Object MUST contain at least one response code, and if only one\nresponse code is provided it SHOULD be the response for a successful operation\ncall.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"responses-default\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. Use this field to cover undeclared responses. |\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"responses-code\"></a>[HTTP Status Code](#http-status-codes) | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name, but only one property per code, to describe the expected response for that HTTP status code. This field MUST be enclosed in quotation marks (for example, \"200\") for compatibility between JSON and YAML. To define a range of response codes, this field MAY contain the uppercase wildcard character `X`. For example, `2XX` represents all response codes between `200` and `299`. Only the following range definitions are allowed: `1XX`, `2XX`, `3XX`, `4XX`, and `5XX`. If a response is defined using an explicit code, the explicit code definition takes precedence over the range definition for that code. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Responses Object Example\n\nA 200 response for a successful operation and a default response for others (implying an error):\n\n```json\n{\n  \"200\": {\n    \"description\": \"a pet to be returned\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/Pet\"\n        }\n      }\n    }\n  },\n  \"default\": {\n    \"description\": \"Unexpected error\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/ErrorModel\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n'200':\n  description: a pet to be returned\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/Pet'\ndefault:\n  description: Unexpected error\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/ErrorModel'\n```\n\n#### Response Object\n\nDescribes a single response from an API operation, including design-time, static\n`links` to operations based on the response.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"response-description\"></a>description | `string` | **REQUIRED**. A description of the response. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"response-headers\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | Maps a header name to its definition. [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2) states header names are case insensitive. If a response header is defined with the name `\"Content-Type\"`, it SHALL be ignored. |\n| <a name=\"response-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing descriptions of potential response payloads. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it. For responses that match multiple keys, only the most specific key is applicable. e.g. `\"text/plain\"` overrides `\"text/*\"` |\n| <a name=\"response-links\"></a>links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | A map of operations links that can be followed from the response. The key of the map is a short name for the link, following the naming constraints of the names for [Component Objects](#components-object). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Response Object Examples\n\nResponse of an array of a complex type:\n\n```json\n{\n  \"description\": \"A complex object array response\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"$ref\": \"#/components/schemas/VeryComplexType\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A complex object array response\ncontent:\n  application/json:\n    schema:\n      type: array\n      items:\n        $ref: '#/components/schemas/VeryComplexType'\n```\n\nResponse with a string type:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n```\n\nPlain text response with headers:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      },\n      \"example\": \"whoa!\"\n    }\n  },\n  \"headers\": {\n    \"X-Rate-Limit-Limit\": {\n      \"description\": \"The number of allowed requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Remaining\": {\n      \"description\": \"The number of remaining requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Reset\": {\n      \"description\": \"The number of seconds left in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n    example: 'whoa!'\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    schema:\n      type: integer\n```\n\nResponse with no return value:\n\n```json\n{\n  \"description\": \"object created\"\n}\n```\n\n```yaml\ndescription: object created\n```\n\n#### Callback Object\n\nA map of possible out-of band callbacks related to the parent operation.\nEach value in the map is a [Path Item Object](#path-item-object) that describes a set of requests that may be initiated by the API provider and the expected responses.\nThe key value used to identify the Path Item Object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n\nTo describe incoming requests from the API provider independent from another API call, use the [`webhooks`](#oas-webhooks) field.\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"callback-expression\"></a>{expression} | [Path Item Object](#path-item-object) | A Path Item Object used to define a callback request and expected responses. A [complete example](https://learn.openapis.org/examples/v3.0/callback-example.html) is available. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Key Expression\n\nThe key that identifies the [Path Item Object](#path-item-object) is a [runtime expression](#runtime-expressions) that can be evaluated in the context of a runtime HTTP request/response to identify the URL to be used for the callback request.\nA simple example might be `$request.body#/url`.\nHowever, using a [runtime expression](#runtime-expressions) the complete HTTP message can be accessed.\nThis includes accessing any part of a body that a JSON Pointer [RFC6901](https://tools.ietf.org/html/rfc6901) can reference.\n\nFor example, given the following HTTP request:\n\n```http\nPOST /subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning HTTP/1.1\nHost: example.org\nContent-Type: application/json\nContent-Length: 188\n\n{\n  \"failedUrl\": \"https://clientdomain.com/failed\",\n  \"successUrls\": [\n    \"https://clientdomain.com/fast\",\n    \"https://clientdomain.com/medium\",\n    \"https://clientdomain.com/slow\"\n  ]\n}\n```\n\nresulting in:\n\n```http\n201 Created\nLocation: https://example.org/subscription/1\n```\n\nThe following examples show how the various expressions evaluate, assuming the callback operation has a path parameter named `eventType` and a query parameter named `queryUrl`.\n\n| Expression | Value |\n| ---- | :---- |\n| $url | <https://example.org/subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning> |\n| $method | POST |\n| $request.path.eventType | myevent |\n| $request.query.queryUrl | <https://clientdomain.com/stillrunning> |\n| $request.header.content-type | application/json |\n| $request.body#/failedUrl | <https://clientdomain.com/failed> |\n| $request.body#/successUrls/1 | <https://clientdomain.com/medium> |\n| $response.header.Location | <https://example.org/subscription/1> |\n\n##### Callback Object Examples\n\nThe following example uses the user provided `queryUrl` query string parameter to define the callback URL. This is similar to a [webhook](#oas-webhooks), but differs in that the callback only occurs because of the initial request that sent the `queryUrl`.\n\n```yaml\nmyCallback:\n  '{$request.query.queryUrl}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\nThe following example shows a callback where the server is hard-coded, but the query string parameters are populated from the `id` and `email` property in the request body.\n\n```yaml\ntransactionCallback:\n  'http://notificationServer.com?transactionId={$request.body#/id}&email={$request.body#/email}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\n#### Example Object\n\nAn object grouping an internal or external example value with basic `summary` and `description` metadata.\nThis object is typically used in fields named `examples` (plural), and is a [referenceable](#reference-object) alternative to older `example` (singular) fields that do not support referencing or metadata.\n\nExamples allow demonstration of the usage of properties, parameters and objects within OpenAPI.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"example-summary\"></a>summary | `string` | Short description for the example. |\n| <a name=\"example-description\"></a>description | `string` | Long description for the example. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"example-value\"></a>value | Any | Embedded literal example. The `value` field and `externalValue` field are mutually exclusive. To represent examples of media types that cannot naturally represented in JSON or YAML, use a string value to contain the example, escaping where necessary. |\n| <a name=\"example-external-value\"></a>externalValue | `string` | A URI that identifies the literal example. This provides the capability to reference examples that cannot easily be included in JSON or YAML documents. The `value` field and `externalValue` field are mutually exclusive. See the rules for resolving [Relative References](#relative-references-in-api-description-uris). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nIn all cases, the example value SHOULD be compatible with the schema of its associated value.\nTooling implementations MAY choose to validate compatibility automatically, and reject the example value(s) if incompatible.\n\n##### Working with Examples\n\nExample Objects can be used in both [Parameter Objects](#parameter-object) and [Media Type Objects](#media-type-object).\nIn both Objects, this is done through the `examples` (plural) field.\nHowever, there are several other ways to provide examples: The `example` (singular) field that is mutually exclusive with `examples` in both Objects, and two keywords (the deprecated singular `example` and the current plural `examples`, which takes an array of examples) in the [Schema Object](#schema-object) that appears in the `schema` field of both Objects.\nEach of these fields has slightly different considerations.\n\nThe Schema Object's fields are used to show example values without regard to how they might be formatted as parameters or within media type representations.\nThe `examples` array is part of JSON Schema and is the preferred way to include examples in the Schema Object, while `example` is retained purely for compatibility with older versions of the OpenAPI Specification.\n\nThe mutually exclusive fields in the Parameter or Media Type Objects are used to show example values which SHOULD both match the schema and be formatted as they would appear as a serialized parameter or within a media type representation.\nThe exact serialization and encoding is determined by various fields in the Parameter Object, or in the Media Type Object's [Encoding Object](#encoding-object).\nBecause examples using these fields represent the final serialized form of the data, they SHALL _override_ any `example` in the corresponding Schema Object.\n\nThe singular `example` field in the Parameter or Media Type Object is concise and convenient for simple examples, but does not offer any other advantages over using Example Objects under `examples`.\n\nSome examples cannot be represented directly in JSON or YAML.\nFor all three ways of providing examples, these can be shown as string values with any escaping necessary to make the string valid in the JSON or YAML format of documents that comprise the OpenAPI Description.\nWith the Example Object, such values can alternatively be handled through the `externalValue` field.\n\n##### Example Object Examples\n\nIn a request body:\n\n```yaml\nrequestBody:\n  content:\n    'application/json':\n      schema:\n        $ref: '#/components/schemas/Address'\n      examples:\n        foo:\n          summary: A foo example\n          value:\n            foo: bar\n        bar:\n          summary: A bar example\n          value:\n            bar: baz\n    application/xml:\n      examples:\n        xmlExample:\n          summary: This is an example in XML\n          externalValue: https://example.org/examples/address-example.xml\n    text/plain:\n      examples:\n        textExample:\n          summary: This is a text example\n          externalValue: https://foo.bar/examples/address-example.txt\n```\n\nIn a parameter:\n\n```yaml\nparameters:\n  - name: zipCode\n    in: query\n    schema:\n      type: string\n      format: zip-code\n    examples:\n      zip-example:\n        $ref: '#/components/examples/zip-example'\n```\n\nIn a response:\n\n```yaml\nresponses:\n  '200':\n    description: your car appointment has been booked\n    content:\n      application/json:\n        schema:\n          $ref: '#/components/schemas/SuccessResponse'\n        examples:\n          confirmation-success:\n            $ref: '#/components/examples/confirmation-success'\n```\n\nTwo different uses of JSON strings:\n\nFirst, a request or response body that is just a JSON string (not an object containing a string):\n\n```json\n\"application/json\": {\n  \"schema\": {\n    \"type\": \"string\"\n  },\n  \"examples\": {\n    \"jsonBody\": {\n      \"description\": \"A body of just the JSON string \\\"json\\\"\",\n      \"value\": \"json\"\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    type: string\n  examples:\n    jsonBody:\n      description: 'A body of just the JSON string \"json\"'\n      value: json\n```\n\nIn the above example, we can just show the JSON string (or any JSON value) as-is, rather than stuffing a serialized JSON value into a JSON string, which would have looked like `\"\\\"json\\\"\"`.\n\nIn contrast, a JSON string encoded inside of a URL-style form body:\n\n```json\n\"application/x-www-form-urlencoded\": {\n  \"schema\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"jsonValue\": {\n        \"type\": \"string\"\n      }\n    }\n  },\n  \"encoding\": {\n    \"jsonValue\": {\n      \"contentType\": \"application/json\"\n    }\n  },\n  \"examples\": {\n    \"jsonFormValue\": {\n      \"description\": \"The JSON string \\\"json\\\" as a form value\",\n      \"value\": \"jsonValue=%22json%22\"\n    }\n  }\n}\n```\n\n```yaml\napplication/x-www-form-urlencoded:\n  schema:\n    type: object\n    properties:\n      jsonValue:\n        type: string\n  encoding:\n    jsonValue:\n      contentType: application/json\n  examples:\n    jsonFormValue:\n      description: 'The JSON string \"json\" as a form value'\n      value: jsonValue=%22json%22\n```\n\nIn this example, the JSON string had to be serialized before encoding it into the URL form value, so the example includes the quotation marks that are part of the JSON serialization, which are then URL percent-encoded.\n\n#### Link Object\n\nThe Link Object represents a possible design-time link for a response.\nThe presence of a link does not guarantee the caller's ability to successfully invoke it, rather it provides a known relationship and traversal mechanism between responses and other operations.\n\nUnlike _dynamic_ links (i.e. links provided **in** the response payload), the OAS linking mechanism does not require link information in the runtime response.\n\nFor computing links and providing instructions to execute them, a [runtime expression](#runtime-expressions) is used for accessing values in an operation and using them as parameters while invoking the linked operation.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"link-operation-ref\"></a>operationRef | `string` | A URI reference to an OAS operation. This field is mutually exclusive of the `operationId` field, and MUST point to an [Operation Object](#operation-object). Relative `operationRef` values MAY be used to locate an existing [Operation Object](#operation-object) in the OpenAPI Description. |\n| <a name=\"link-operation-id\"></a>operationId | `string` | The name of an _existing_, resolvable OAS operation, as defined with a unique `operationId`. This field is mutually exclusive of the `operationRef` field. |\n| <a name=\"link-parameters\"></a>parameters | Map[`string`, Any \\| [{expression}](#runtime-expressions)] | A map representing parameters to pass to an operation as specified with `operationId` or identified via `operationRef`. The key is the parameter name to be used (optionally qualified with the parameter location, e.g. `path.id` for an `id` parameter in the path), whereas the value can be a constant or an expression to be evaluated and passed to the linked operation. |\n| <a name=\"link-request-body\"></a>requestBody | Any \\| [{expression}](#runtime-expressions) | A literal value or [{expression}](#runtime-expressions) to use as a request body when calling the target operation. |\n| <a name=\"link-description\"></a>description | `string` | A description of the link. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"link-server\"></a>server | [Server Object](#server-object) | A server object to be used by the target operation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nA linked operation MUST be identified using either an `operationRef` or `operationId`.\nThe identified or reference operation MUST be unique, and in the case of an `operationId`, it MUST be resolved within the scope of the OpenAPI Description (OAD).\nBecause of the potential for name clashes, the `operationRef` syntax is preferred for multi-document OADs.\nHowever, because use of an operation depends on its URL path template in the [Paths Object](#paths-object), operations from any [Path Item Object](#path-item-object) that is referenced multiple times within the OAD cannot be resolved unambiguously.\nIn such ambiguous cases, the resulting behavior is implementation-defined and MAY result in an error.\n\nNote that it is not possible to provide a constant value to `parameters` that matches the syntax of a runtime expression.\nIt is possible to have ambiguous parameter names, e.g. `name: \"id\", in: \"path\"` and `name: \"path.id\", in: \"query\"`; this is NOT RECOMMENDED and the behavior is implementation-defined, however implementations SHOULD prefer the qualified interpretation (`path.id` as a path parameter), as the names can always be qualified to disambiguate them (e.g. using `query.path.id` for the query parameter).\n\n##### Examples\n\nComputing a link from a request operation where the `$request.path.id` is used to pass a request parameter to the linked operation.\n\n```yaml\npaths:\n  /users/{id}:\n    parameters:\n      - name: id\n        in: path\n        required: true\n        description: the user identifier, as userId\n        schema:\n          type: string\n    get:\n      responses:\n        '200':\n          description: the user being returned\n          content:\n            application/json:\n              schema:\n                type: object\n                properties:\n                  uuid: # the unique user id\n                    type: string\n                    format: uuid\n          links:\n            address:\n              # the target link operationId\n              operationId: getUserAddress\n              parameters:\n                # get the `id` field from the request path parameter named `id`\n                userid: $request.path.id\n  # the path item of the linked operation\n  /users/{userid}/address:\n    parameters:\n      - name: userid\n        in: path\n        required: true\n        description: the user identifier, as userId\n        schema:\n          type: string\n    # linked operation\n    get:\n      operationId: getUserAddress\n      responses:\n        '200':\n          description: the user's address\n```\n\nWhen a runtime expression fails to evaluate, no parameter value is passed to the target operation.\n\nValues from the response body can be used to drive a linked operation.\n\n```yaml\nlinks:\n  address:\n    operationId: getUserAddressByUUID\n    parameters:\n      # get the `uuid` field from the `uuid` field in the response body\n      userUuid: $response.body#/uuid\n```\n\nClients follow all links at their discretion.\nNeither permissions nor the capability to make a successful call to that link is guaranteed\nsolely by the existence of a relationship.\n\n##### `operationRef` Examples\n\nAs references to `operationId` MAY NOT be possible (the `operationId` is an optional\nfield in an [Operation Object](#operation-object)), references MAY also be made through a relative `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: '#/paths/~12.0~1repositories~1%7Busername%7D/get'\n    parameters:\n      username: $response.body#/username\n```\n\nor a URI `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: https://na2.gigantic-server.com/#/paths/~12.0~1repositories~1%7Busername%7D/get\n    parameters:\n      username: $response.body#/username\n```\n\nNote that in the use of `operationRef` the _escaped forward-slash_ is necessary when\nusing JSON Pointer, and it is necessary to URL-encode `{` and `}` as `%7B` and `%7D`, respectively, when using JSON Pointer as URI fragments.\n\n##### Runtime Expressions\n\nRuntime expressions allow defining values based on information that will only be available within the HTTP message in an actual API call.\nThis mechanism is used by [Link Objects](#link-object) and [Callback Objects](#callback-object).\n\nThe runtime expression is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```abnf\n    expression = \"$url\" / \"$method\" / \"$statusCode\" / \"$request.\" source / \"$response.\" source\n    source     = header-reference / query-reference / path-reference / body-reference\n    header-reference = \"header.\" token\n    query-reference  = \"query.\" name\n    path-reference   = \"path.\" name\n    body-reference   = \"body\" [\"#\" json-pointer ]\n    json-pointer    = *( \"/\" reference-token )\n    reference-token = *( unescaped / escaped )\n    unescaped       = %x00-2E / %x30-7D / %x7F-10FFFF\n                    ; %x2F ('/') and %x7E ('~') are excluded from 'unescaped'\n    escaped         = \"~\" ( \"0\" / \"1\" )\n                    ; representing '~' and '/', respectively\n    name = *( CHAR )\n    token = 1*tchar\n    tchar = \"!\" / \"#\" / \"$\" / \"%\" / \"&\" / \"'\" / \"*\" / \"+\" / \"-\" / \".\"\n          / \"^\" / \"_\" / \"`\" / \"|\" / \"~\" / DIGIT / ALPHA\n```\n\nHere, `json-pointer` is taken from [RFC6901](https://tools.ietf.org/html/rfc6901), `char` from [RFC7159](https://tools.ietf.org/html/rfc7159#section-7) and `token` from [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2.6).\n\nThe `name` identifier is case-sensitive, whereas `token` is not.\n\nThe table below provides examples of runtime expressions and examples of their use in a value:\n\n##### Examples\n\n| Source Location | example expression | notes |\n| ---- | :---- | :---- |\n| HTTP Method | `$method` | The allowable values for the `$method` will be those for the HTTP operation. |\n| Requested media type | `$request.header.accept` | |\n| Request parameter | `$request.path.id` | Request parameters MUST be declared in the `parameters` section of the parent operation or they cannot be evaluated. This includes request headers. |\n| Request body property | `$request.body#/user/uuid` | In operations which accept payloads, references may be made to portions of the `requestBody` or the entire body. |\n| Request URL | `$url` | |\n| Response value | `$response.body#/status` | In operations which return payloads, references may be made to portions of the response body or the entire body. |\n| Response header | `$response.header.Server` | Single header values only are available |\n\nRuntime expressions preserve the type of the referenced value.\nExpressions can be embedded into string values by surrounding the expression with `{}` curly braces.\n\n#### Header Object\n\nDescribes a single header for [HTTP responses](#response-headers) and for [individual parts in `multipart` representations](#encoding-headers); see the relevant [Response Object](#response-object) and [Encoding Object](#encoding-object) documentation for restrictions on which headers can be described.\n\nThe Header Object follows the structure of the [Parameter Object](#parameter-object), including determining its serialization strategy based on whether `schema` or `content` is present, with the following changes:\n\n1. `name` MUST NOT be specified, it is given in the corresponding `headers` map.\n1. `in` MUST NOT be specified, it is implicitly in `header`.\n1. All traits that are affected by the location MUST be applicable to a location of `header` (for example, [`style`](#parameter-style)). This means that `allowEmptyValue` and `allowReserved` MUST NOT be used, and `style`, if used, MUST be limited to `\"simple\"`.\n\n##### Fixed Fields\n\n###### Common Fixed Fields\n\nThese fields MAY be used with either `content` or `schema`.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-description\"></a>description | `string` | A brief description of the header. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"header-required\"></a>required | `boolean` | Determines whether this header is mandatory. The default value is `false`. |\n| <a name=\"header-deprecated\"></a> deprecated | `boolean` | Specifies that the header is deprecated and SHOULD be transitioned out of usage. Default value is `false`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n###### Fixed Fields for use with `schema`\n\nFor simpler scenarios, a [`schema`](#header-schema) and [`style`](#header-style) can describe the structure and syntax of the header.\nWhen `example` or `examples` are provided in conjunction with the `schema` field, the example MUST follow the prescribed serialization strategy for the header.\n\nSerializing with `schema` is NOT RECOMMENDED for headers with parameters (name=value pairs following a `;`) in their values, or where values might have non-URL-safe characters; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for details.\n\nWhen `example` or `examples` are provided in conjunction with the `schema` field, the example SHOULD match the specified schema and follow the prescribed serialization strategy for the header.\nThe `example` and `examples` fields are mutually exclusive, and if either is present it SHALL _override_ any `example` in the schema.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-style\"></a>style | `string` | Describes how the header value will be serialized. The default (and only legal value for headers) is `\"simple\"`. |\n| <a name=\"header-explode\"></a>explode | `boolean` | When this is true, header values of type `array` or `object` generate a single header whose value is a comma-separated list of the array items or key-value pairs of the map, see [Style Examples](#style-examples). For other data types this field has no effect. The default value is `false`. |\n| <a name=\"header-schema\"></a>schema | [Schema Object](#schema-object) \\| [Reference Object](#reference-object) | The schema defining the type used for the header. |\n| <a name=\"header-example\"></a>example | Any | Example of the header's potential value; see [Working With Examples](#working-with-examples). |\n| <a name=\"header-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the header's potential value; see [Working With Examples](#working-with-examples). |\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\n###### Fixed Fields for use with `content`\n\nFor more complex scenarios, the [`content`](#header-content) field can define the media type and schema of the header, as well as give examples of its use.\nUsing `content` with a `text/plain` media type is RECOMMENDED for headers where the `schema` strategy is not appropriate.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the header. The key is the media type and the value describes it. The map MUST only contain one entry. |\n\n##### Header Object Example\n\nA simple header of type `integer`:\n\n```json\n\"X-Rate-Limit-Limit\": {\n  \"description\": \"The number of allowed requests in the current period\",\n  \"schema\": {\n    \"type\": \"integer\"\n  }\n}\n```\n\n```yaml\nX-Rate-Limit-Limit:\n  description: The number of allowed requests in the current period\n  schema:\n    type: integer\n```\n\nRequiring that a strong `ETag` header (with a value starting with `\"` rather than `W/`) is present. Note the use of `content`, because using `schema` and `style` would require the `\"` to be percent-encoded as `%22`:\n\n```json\n\"ETag\": {\n  \"required\": true,\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\",\n        \"pattern\": \"^\\\"\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nETag:\n  required: true\n  content:\n    text/plain:\n      schema:\n        type: string\n        pattern: ^\"\n```\n\n#### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nIt is not mandatory to have a Tag Object per tag defined in the Operation Object instances.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"tag-name\"></a>name | `string` | **REQUIRED**. The name of the tag. |\n| <a name=\"tag-description\"></a>description | `string` | A description for the tag. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"tag-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Tag Object Example\n\n```json\n{\n  \"name\": \"pet\",\n  \"description\": \"Pets operations\"\n}\n```\n\n```yaml\nname: pet\ndescription: Pets operations\n```\n\n#### Reference Object\n\nA simple object to allow referencing other components in the OpenAPI Description, internally and externally.\n\nThe `$ref` string value contains a URI [RFC3986](https://tools.ietf.org/html/rfc3986), which identifies the value being referenced.\n\nSee the rules for resolving [Relative References](#relative-references-in-api-description-uris).\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"reference-ref\"></a>$ref | `string` | **REQUIRED**. The reference identifier. This MUST be in the form of a URI. |\n| <a name=\"reference-summary\"></a>summary | `string` | A short summary which by default SHOULD override that of the referenced component. If the referenced object-type does not allow a `summary` field, then this field has no effect. |\n| <a name=\"reference-description\"></a>description | `string` | A description which by default SHOULD override that of the referenced component. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. If the referenced object-type does not allow a `description` field, then this field has no effect. |\n\nThis object cannot be extended with additional properties, and any properties added SHALL be ignored.\n\nNote that this restriction on additional properties is a difference between Reference Objects and [Schema Objects](#schema-object) that contain a `$ref` keyword.\n\n##### Reference Object Example\n\n```json\n{\n  \"$ref\": \"#/components/schemas/Pet\"\n}\n```\n\n```yaml\n$ref: '#/components/schemas/Pet'\n```\n\n##### Relative Schema Document Example\n\n```json\n{\n  \"$ref\": \"Pet.json\"\n}\n```\n\n```yaml\n$ref: Pet.yaml\n```\n\n##### Relative Documents with Embedded Schema Example\n\n```json\n{\n  \"$ref\": \"definitions.json#/Pet\"\n}\n```\n\n```yaml\n$ref: definitions.yaml#/Pet\n```\n\n#### Schema Object\n\nThe Schema Object allows the definition of input and output data types.\nThese types can be objects, but also primitives and arrays. This object is a superset of the [JSON Schema Specification Draft 2020-12](https://tools.ietf.org/html/draft-bhutton-json-schema-00). The empty schema (which allows any instance to validate) MAY be represented by the boolean value `true` and a schema which allows no instance to validate MAY be represented by the boolean value `false`.\n\nFor more information about the keywords, see [JSON Schema Core](https://tools.ietf.org/html/draft-bhutton-json-schema-00) and [JSON Schema Validation](https://tools.ietf.org/html/draft-bhutton-json-schema-validation-00).\n\nUnless stated otherwise, the keyword definitions follow those of JSON Schema and do not add any additional semantics; this includes keywords such as `$schema`, `$id`, `$ref`, and `$dynamicRef` being URIs rather than URLs.\nWhere JSON Schema indicates that behavior is defined by the application (e.g. for annotations), OAS also defers the definition of semantics to the application consuming the OpenAPI document.\n\n##### JSON Schema Keywords\n\nThe OpenAPI Schema Object [dialect](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-4.3.3) is defined as requiring the [OAS base vocabulary](#base-vocabulary), in addition to the vocabularies as specified in the JSON Schema Specification Draft 2020-12 [general purpose meta-schema](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-8).\n\nThe OpenAPI Schema Object dialect for this version of the specification is identified by the URI `https://spec.openapis.org/oas/3.1/dialect/base` (the <a name=\"dialect-schema-id\"></a>\"OAS dialect schema id\").\n\nThe following keywords are taken from the JSON Schema specification but their definitions have been extended by the OAS:\n\n* description - [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n* format - See [Data Type Formats](#data-type-format) for further details. While relying on JSON Schema's defined formats, the OAS offers a few additional predefined formats.\n\nIn addition to the JSON Schema keywords comprising the OAS dialect, the Schema Object supports keywords from any other vocabularies, or entirely arbitrary properties.\n\nJSON Schema implementations MAY choose to treat keywords defined by the OpenAPI Specification's base vocabulary as [unknown keywords](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.3.1), due to its inclusion in the OAS dialect with a [`$vocabulary`](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-8.1.2) value of `false`.\n<a name=\"base-vocabulary\"></a>The OAS base vocabulary is comprised of the following keywords:\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"schema-discriminator\"></a>discriminator | [Discriminator Object](#discriminator-object) | Adds support for polymorphism. The discriminator is used to determine which of a set of schemas a payload is expected to satisfy. See [Composition and Inheritance](#composition-and-inheritance-polymorphism) for more details. |\n| <a name=\"schema-xml\"></a>xml | [XML Object](#xml-object) | This MAY be used only on property schemas. It has no effect on root schemas. Adds additional metadata to describe the XML representation of this property. |\n| <a name=\"schema-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema. |\n| <a name=\"schema-example\"></a>example | Any | A free-form field to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary.<br><br>**Deprecated:** The `example` field has been deprecated in favor of the JSON Schema `examples` keyword. Use of `example` is discouraged, and later versions of this specification may remove it. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions), though as noted, additional properties MAY omit the `x-` prefix within this object.\n\n##### Extended Validation with Annotations\n\nJSON Schema Draft 2020-12 supports [collecting annotations](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-7.7.1), including [treating unrecognized keywords as annotations](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-6.5).\nOAS implementations MAY use such annotations, including [extensions](https://spec.openapis.org/registry/extension/) not recognized as part of a declared JSON Schema vocabulary, as the basis for further validation.\nNote that JSON Schema Draft 2020-12 does not require an `x-` prefix for extensions.\n\n###### Non-validating constraint keywords\n\nThe [`format` keyword (when using default format-annotation vocabulary)](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-7.2.1) and the [`contentMediaType`, `contentEncoding`, and `contentSchema` keywords](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-8.2) define constraints on the data, but are treated as annotations instead of being validated directly.\nExtended validation is one way that these constraints MAY be enforced.\n\n###### Validating `readOnly` and `writeOnly`\n\nThe `readOnly` and `writeOnly` keywords are annotations, as JSON Schema is not aware of how the data it is validating is being used.\nValidation of these keywords MAY be done by checking the annotation, the read or write direction, and (if relevant) the current value of the field.\n[JSON Schema Validation Draft 2020-12 §9.4](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-9.4) defines the expectations of these keywords, including that a resource (described as the \"owning authority\") MAY either ignore a `readOnly` field or treat it as an error.\n\nFields that are both required and read-only are an example of when it is beneficial to ignore a `readOnly: true` constraint in a PUT, particularly if the value has not been changed.\nThis allows correctly requiring the field on a GET and still using the same representation and schema with PUT.\nEven when read-only fields are not required, stripping them is burdensome for clients, particularly when the JSON data is complex or deeply nested.\n\nNote that the behavior of `readOnly` in particular differs from that specified by version 3.0 of this specification.\n\n##### Data Modeling Techniques\n\n###### Composition and Inheritance (Polymorphism)\n\nThe OpenAPI Specification allows combining and extending model definitions using the `allOf` keyword of JSON Schema, in effect offering model composition.\n`allOf` takes an array of object definitions that are validated _independently_ but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models.\nTo support polymorphism, the OpenAPI Specification adds the [`discriminator`](#schema-discriminator) field.\nWhen used, the `discriminator` indicates the name of the property that hints which schema definition is expected to validate the structure of the model.\nAs such, the `discriminator` field MUST be a required field.\nThere are two ways to define the value of a discriminator for an inheriting instance.\n\n* Use the schema name.\n* [Override the schema name](#discriminator-mapping) by overriding the property with a new value. If a new value exists, this takes precedence over the schema name.\n\n###### Generic (Template) Data Structures\n\nImplementations MAY support defining generic or template data structures using JSON Schema's dynamic referencing feature:\n\n* `$dynamicAnchor` identifies a set of possible schemas (including a default placeholder schema) to which a `$dynamicRef` can resolve\n* `$dynamicRef` resolves to the first matching `$dynamicAnchor` encountered on its path from the schema entry point to the reference, as described in the JSON Schema specification\n\nAn example is included in the \"Schema Object Examples\" section below, and further information can be found on the Learn OpenAPI site's [\"Dynamic References\"](https://learn.openapis.org/referencing/dynamic.html) page.\n\n###### Annotated Enumerations\n\nThe Schema Object's `enum` keyword does not allow associating descriptions or other information with individual values.\n\nImplementations MAY support recognizing a `oneOf` or `anyOf` where each subschema in the keyword's array consists of a `const` keyword and annotations such as `title` or `description` as an enumerated type with additional information. The exact behavior of this pattern beyond what is required by JSON Schema is implementation-defined.\n\n###### XML Modeling\n\nThe [xml](#schema-xml) field allows extra definitions when translating the JSON definition to XML.\nThe [XML Object](#xml-object) contains additional information about the available options.\n\n##### Specifying Schema Dialects\n\nIt is important for tooling to be able to determine which dialect or meta-schema any given resource wishes to be processed with: JSON Schema Core, JSON Schema Validation, OpenAPI Schema dialect, or some custom meta-schema.\n\nThe `$schema` keyword MAY be present in any Schema Object that is a [schema resource root](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.3.5), and if present MUST be used to determine which dialect should be used when processing the schema. This allows use of Schema Objects which comply with other drafts of JSON Schema than the default Draft 2020-12 support. Tooling MUST support the <a href=\"#dialect-schema-id\">OAS dialect schema id</a>, and MAY support additional values of `$schema`.\n\nTo allow use of a different default `$schema` value for all Schema Objects contained within an OAS document, a `jsonSchemaDialect` value may be set within the <a href=\"#openapi-object\">OpenAPI Object</a>. If this default is not set, then the OAS dialect schema id MUST be used for these Schema Objects. The value of `$schema` within a resource root Schema Object always overrides any default.\n\nFor standalone JSON Schema documents that do not set `$schema`, or for Schema Objects in OpenAPI description documents that are _not_ [complete documents](#openapi-description-structure), the dialect SHOULD be assumed to be the OAS dialect.\nHowever, for maximum interoperability, it is RECOMMENDED that OpenAPI description authors explicitly set the dialect through `$schema` in such documents.\n\n##### Schema Object Examples\n\n###### Primitive Example\n\n```json\n{\n  \"type\": \"string\",\n  \"format\": \"email\"\n}\n```\n\n```yaml\ntype: string\nformat: email\n```\n\n###### Simple Model\n\n```json\n{\n  \"type\": \"object\",\n  \"required\": [\"name\"],\n  \"properties\": {\n    \"name\": {\n      \"type\": \"string\"\n    },\n    \"address\": {\n      \"$ref\": \"#/components/schemas/Address\"\n    },\n    \"age\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\",\n      \"minimum\": 0\n    }\n  }\n}\n```\n\n```yaml\ntype: object\nrequired:\n  - name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/components/schemas/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n###### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"$ref\": \"#/components/schemas/ComplexModel\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/components/schemas/ComplexModel'\n```\n\n###### Model with Annotated Enumeration\n\n```json\n{\n  \"oneOf\": [\n    {\n      \"const\": \"RGB\",\n      \"title\": \"Red, Green, Blue\",\n      \"description\": \"Specify colors with the red, green, and blue additive color model\"\n    },\n    {\n      \"const\": \"CMYK\",\n      \"title\": \"Cyan, Magenta, Yellow, Black\",\n      \"description\": \"Specify colors with the cyan, magenta, yellow, and black subtractive color model\"\n    }\n  ]\n}\n```\n\n```yaml\noneOf:\n  - const: RGB\n    title: Red, Green, Blue\n    description: Specify colors with the red, green, and blue additive color model\n  - const: CMYK\n    title: Cyan, Magenta, Yellow, Black\n    description: Specify colors with the cyan, magenta, yellow, and black subtractive color model\n```\n\n###### Model with Example\n\n```json\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"name\": {\n      \"type\": \"string\"\n    }\n  },\n  \"required\": [\"name\"],\n  \"examples\": [\n    {\n      \"name\": \"Puma\",\n      \"id\": 1\n    }\n  ]\n}\n```\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n  - name\nexamples:\n  - name: Puma\n    id: 1\n```\n\n###### Models with Composition\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"ErrorModel\": {\n        \"type\": \"object\",\n        \"required\": [\"message\", \"code\"],\n        \"properties\": {\n          \"message\": {\n            \"type\": \"string\"\n          },\n          \"code\": {\n            \"type\": \"integer\",\n            \"minimum\": 100,\n            \"maximum\": 600\n          }\n        }\n      },\n      \"ExtendedErrorModel\": {\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/ErrorModel\"\n          },\n          {\n            \"type\": \"object\",\n            \"required\": [\"rootCause\"],\n            \"properties\": {\n              \"rootCause\": {\n                \"type\": \"string\"\n              }\n            }\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    ErrorModel:\n      type: object\n      required:\n        - message\n        - code\n      properties:\n        message:\n          type: string\n        code:\n          type: integer\n          minimum: 100\n          maximum: 600\n    ExtendedErrorModel:\n      allOf:\n        - $ref: '#/components/schemas/ErrorModel'\n        - type: object\n          required:\n            - rootCause\n          properties:\n            rootCause:\n              type: string\n```\n\n###### Models with Polymorphism Support\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"Pet\": {\n        \"type\": \"object\",\n        \"discriminator\": {\n          \"propertyName\": \"petType\"\n        },\n        \"properties\": {\n          \"name\": {\n            \"type\": \"string\"\n          },\n          \"petType\": {\n            \"type\": \"string\"\n          }\n        },\n        \"required\": [\"name\", \"petType\"]\n      },\n      \"Cat\": {\n        \"description\": \"A representation of a cat. Note that `Cat` will be used as the discriminating value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"huntingSkill\": {\n                \"type\": \"string\",\n                \"description\": \"The measured skill for hunting\",\n                \"default\": \"lazy\",\n                \"enum\": [\"clueless\", \"lazy\", \"adventurous\", \"aggressive\"]\n              }\n            },\n            \"required\": [\"huntingSkill\"]\n          }\n        ]\n      },\n      \"Dog\": {\n        \"description\": \"A representation of a dog. Note that `Dog` will be used as the discriminating value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"packSize\": {\n                \"type\": \"integer\",\n                \"format\": \"int32\",\n                \"description\": \"the size of the pack the dog is from\",\n                \"default\": 0,\n                \"minimum\": 0\n              }\n            },\n            \"required\": [\"packSize\"]\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n      properties:\n        name:\n          type: string\n        petType:\n          type: string\n      required:\n        - name\n        - petType\n    Cat: # \"Cat\" will be used as the discriminating value\n      description: A representation of a cat\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          properties:\n            huntingSkill:\n              type: string\n              description: The measured skill for hunting\n              enum:\n                - clueless\n                - lazy\n                - adventurous\n                - aggressive\n          required:\n            - huntingSkill\n    Dog: # \"Dog\" will be used as the discriminating value\n      description: A representation of a dog\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          properties:\n            packSize:\n              type: integer\n              format: int32\n              description: the size of the pack the dog is from\n              default: 0\n              minimum: 0\n          required:\n            - packSize\n```\n\n###### Generic Data Structure Model\n\n```JSON\n{\n  \"components\": {\n    \"schemas\": {\n      \"genericArrayComponent\": {\n        \"$id\": \"fully_generic_array\",\n        \"type\": \"array\",\n        \"items\": {\n          \"$dynamicRef\": \"#generic-array\"\n        },\n        \"$defs\": {\n          \"allowAll\": {\n            \"$dynamicAnchor\": \"generic-array\"\n          }\n        }\n      },\n      \"numberArray\": {\n        \"$id\": \"array_of_numbers\",\n        \"$ref\": \"fully_generic_array\",\n        \"$defs\": {\n          \"numbersOnly\": {\n            \"$dynamicAnchor\": \"generic-array\",\n            \"type\": \"number\"\n          }\n        }\n      },\n      \"stringArray\": {\n        \"$id\": \"array_of_strings\",\n        \"$ref\": \"fully_generic_array\",\n        \"$defs\": {\n          \"stringsOnly\": {\n            \"$dynamicAnchor\": \"generic-array\",\n            \"type\": \"string\"\n          }\n        }\n      },\n      \"objWithTypedArray\": {\n        \"$id\": \"obj_with_typed_array\",\n        \"type\": \"object\",\n        \"required\": [\"dataType\", \"data\"],\n        \"properties\": {\n          \"dataType\": {\n            \"enum\": [\"string\", \"number\"]\n          }\n        },\n        \"oneOf\": [{\n          \"properties\": {\n            \"dataType\": {\"const\": \"string\"},\n            \"data\": {\"$ref\": \"array_of_strings\"}\n          }\n        }, {\n          \"properties\": {\n            \"dataType\": {\"const\": \"number\"},\n            \"data\": {\"$ref\": \"array_of_numbers\"}\n          }\n        }]\n      }\n    }\n  }\n}\n```\n\n```YAML\ncomponents:\n  schemas:\n    genericArrayComponent:\n      $id: fully_generic_array\n      type: array\n      items:\n        $dynamicRef: '#generic-array'\n      $defs:\n        allowAll:\n          $dynamicAnchor: generic-array\n    numberArray:\n      $id: array_of_numbers\n      $ref: fully_generic_array\n      $defs:\n        numbersOnly:\n          $dynamicAnchor: generic-array\n          type: number\n    stringArray:\n      $id: array_of_strings\n      $ref: fully_generic_array\n      $defs:\n        stringsOnly:\n          $dynamicAnchor: generic-array\n          type: string\n    objWithTypedArray:\n      $id: obj_with_typed_array\n      type: object\n      required:\n      - dataType\n      - data\n      properties:\n        dataType:\n          enum:\n          - string\n          - number\n      oneOf:\n      - properties:\n          dataType:\n            const: string\n          data:\n            $ref: array_of_strings\n      - properties:\n          dataType:\n            const: number\n          data:\n            $ref: array_of_numbers\n```\n\n#### Discriminator Object\n\nWhen request bodies or response payloads may be one of a number of different schemas, a Discriminator Object gives a hint about the expected schema of the document.\nThis hint can be used to aid in serialization, deserialization, and validation.\nThe Discriminator Object does this by implicitly or explicitly associating the possible values of a named property with alternative schemas.\n\nNote that `discriminator` MUST NOT change the validation outcome of the schema.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"property-name\"></a>propertyName | `string` | **REQUIRED**. The name of the property in the payload that will hold the discriminating value. This property SHOULD be required in the payload schema, as the behavior when the property is absent is undefined. |\n| <a name=\"discriminator-mapping\"></a> mapping | Map[`string`, `string`] | An object to hold mappings between payload values and schema names or URI references. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Conditions for Using the Discriminator Object\n\nThe Discriminator Object is legal only when using one of the composite keywords `oneOf`, `anyOf`, `allOf`.\n\nIn both the `oneOf` and `anyOf` use cases, where those keywords are adjacent to `discriminator`, all possible schemas MUST be listed explicitly.\n\nTo avoid redundancy, the discriminator MAY be added to a parent schema definition, and all schemas building on the parent schema via an `allOf` construct may be used as an alternate schema.\n\nThe `allOf` form of `discriminator` is _only_ useful for non-validation use cases; validation with the parent schema with this form of `discriminator` _does not_ perform a search for child schemas or use them in validation in any way.\nThis is because `discriminator` cannot change the validation outcome, and no standard JSON Schema keyword connects the parent schema to the child schemas.\n\nThe behavior of any configuration of `oneOf`, `anyOf`, `allOf` and `discriminator` that is not described above is undefined.\n\n##### Options for Mapping Values to Schemas\n\nThe value of the property named in `propertyName` is used as the name of the associated schema under the [Components Object](#components-object), _unless_ a `mapping` is present for that value.\nThe `mapping` entry maps a specific property value to either a different schema component name, or to a schema identified by a URI.\nWhen using implicit or explicit schema component names, inline `oneOf` or `anyOf` subschemas are not considered.\nThe behavior of a `mapping` value that is both a valid schema name and a valid relative URI reference is implementation-defined, but it is RECOMMENDED that it be treated as a schema name.\nTo ensure that an ambiguous value (e.g. `\"foo\"`) is treated as a relative URI reference by all implementations, authors MUST prefix it with the `\".\"` path segment (e.g. `\"./foo\"`).\n\nMapping keys MUST be string values, but tooling MAY convert response values to strings for comparison.\nHowever, the exact nature of such conversions are implementation-defined.\n\n##### Examples\n\nFor these examples, assume all schemas are in the [entry document](#openapi-description-structure) of the OAD; for handling of `discriminator` in referenced documents see [Resolving Implicit Connections](#resolving-implicit-connections).\n\nIn OAS 3.x, a response payload MAY be described to be exactly one of any number of types:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n```\n\nwhich means the payload _MUST_, by validation, match exactly one of the schemas described by `Cat`, `Dog`, or `Lizard`. Deserialization of a `oneOf` can be a costly operation, as it requires determining which schema matches the payload and thus should be used in deserialization. This problem also exists for `anyOf` schemas. A `discriminator` MAY be used as a \"hint\" to improve the efficiency of selection of the matching schema. The `discriminator` field cannot change the validation result of the `oneOf`, it can only help make the deserialization more efficient and provide better error messaging. We can specify the exact field that tells us which schema is expected to match the instance:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n  discriminator:\n    propertyName: petType\n```\n\nThe expectation now is that a property with name `petType` _MUST_ be present in the response payload, and the value will correspond to the name of a schema defined in the OpenAPI Description. Thus the response payload:\n\n```json\n{\n  \"id\": 12345,\n  \"petType\": \"Cat\"\n}\n```\n\nwill indicate that the `Cat` schema is expected to match this payload.\n\nIn scenarios where the value of the `discriminator` field does not match the schema name or implicit mapping is not possible, an optional `mapping` definition MAY be used:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n    - $ref: https://gigantic-server.com/schemas/Monster/schema.json\n  discriminator:\n    propertyName: petType\n    mapping:\n      dog: '#/components/schemas/Dog'\n      monster: https://gigantic-server.com/schemas/Monster/schema.json\n```\n\nHere the discriminating value of `dog` will map to the schema `#/components/schemas/Dog`, rather than the default (implicit) value of `#/components/schemas/dog`. If the discriminating value does not match an implicit or explicit mapping, no schema can be determined and validation SHOULD fail.\n\nWhen used in conjunction with the `anyOf` construct, the use of the discriminator can avoid ambiguity for serializers/deserializers where multiple schemas may satisfy a single payload.\n\nThis example shows the `allOf` usage, which avoids needing to reference all child schemas in the parent:\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n        - petType\n      properties:\n        petType:\n          type: string\n      discriminator:\n        propertyName: petType\n        mapping:\n          dog: Dog\n    Cat:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a `Cat`\n          properties:\n            name:\n              type: string\n    Dog:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a `Dog`\n          properties:\n            bark:\n              type: string\n    Lizard:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a `Lizard`\n          properties:\n            lovesRocks:\n              type: boolean\n```\n\nValidated against the `Pet` schema, a payload like this:\n\n```json\n{\n  \"petType\": \"Cat\",\n  \"name\": \"Misty\"\n}\n```\n\nwill indicate that the `#/components/schemas/Cat` schema is expected to match. Likewise this payload:\n\n```json\n{\n  \"petType\": \"dog\",\n  \"bark\": \"soft\"\n}\n```\n\nwill map to `#/components/schemas/Dog` because the `dog` entry in the `mapping` element maps to `Dog` which is the schema name for `#/components/schemas/Dog`.\n\n#### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\n\nWhen using arrays, XML element names are _not_ inferred (for singular/plural forms) and the `name` field SHOULD be used to add that information.\nSee examples for expected behavior.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"xml-name\"></a>name | `string` | Replaces the name of the element/attribute used for the described schema property. When defined within `items`, it will affect the name of the individual XML elements within the list. When defined alongside `type` being `\"array\"` (outside the `items`), it will affect the wrapping element if and only if `wrapped` is `true`. If `wrapped` is `false`, it will be ignored. |\n| <a name=\"xml-namespace\"></a>namespace | `string` | The URI of the namespace definition. Value MUST be in the form of a non-relative URI. |\n| <a name=\"xml-prefix\"></a>prefix | `string` | The prefix to be used for the [name](#xml-name). |\n| <a name=\"xml-attribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`. |\n| <a name=\"xml-wrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `\"array\"` (outside the `items`). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nThe `namespace` field is intended to match the syntax of [XML namespaces](https://www.w3.org/TR/xml-names11/), although there are a few caveats:\n\n* Versions 3.1.0, 3.0.3, and earlier of this specification erroneously used the term \"absolute URI\" instead of \"non-relative URI\", so authors using namespaces that include a fragment should check tooling support carefully.\n* XML allows but discourages relative URI-references, while this specification outright forbids them.\n* XML 1.1 allows IRIs ([RFC3987](https://datatracker.ietf.org/doc/html/rfc3987)) as namespaces, and specifies that namespaces are compared without any encoding or decoding, which means that IRIs encoded to meet this specification's URI syntax requirement cannot be compared to IRIs as-is.\n\n##### XML Object Examples\n\nEach of the following examples represent the value of the `properties` keyword in a [Schema Object](#schema-object) that is omitted for brevity.\nThe JSON and YAML representations of the `properties` value are followed by an example XML representation produced for the single property shown.\n\n###### No XML Element\n\nBasic string property:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n```\n\n```xml\n<animals>...</animals>\n```\n\nBasic string array property ([`wrapped`](#xml-wrapped) is `false` by default):\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n```\n\n```xml\n<animals>...</animals>\n<animals>...</animals>\n<animals>...</animals>\n```\n\n###### XML Name Replacement\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\",\n    \"xml\": {\n      \"name\": \"animal\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n  xml:\n    name: animal\n```\n\n```xml\n<animal>...</animal>\n```\n\n###### XML Attribute, Prefix and Namespace\n\nIn this example, a full model definition is shown.\n\n```json\n{\n  \"Person\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"id\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\",\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"name\": {\n        \"type\": \"string\",\n        \"xml\": {\n          \"namespace\": \"https://example.com/schema/sample\",\n          \"prefix\": \"sample\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nPerson:\n  type: object\n  properties:\n    id:\n      type: integer\n      format: int32\n      xml:\n        attribute: true\n    name:\n      type: string\n      xml:\n        namespace: https://example.com/schema/sample\n        prefix: sample\n```\n\n```xml\n<Person id=\"123\">\n    <sample:name xmlns:sample=\"https://example.com/schema/sample\">example</sample:name>\n</Person>\n```\n\n###### XML Arrays\n\nChanging the element names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nThe external `name` field has no effect on the XML:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nEven when the array is wrapped, if a name is not explicitly defined, the same name will be used both internally and externally:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animals>value</animals>\n  <animals>value</animals>\n</animals>\n```\n\nTo overcome the naming problem in the example above, the following definition can be used:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animal>value</animal>\n  <animal>value</animal>\n</animals>\n```\n\nAffecting both internal and external names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <animal>value</animal>\n  <animal>value</animal>\n</aliens>\n```\n\nIf we change the external element but not the internal ones:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <aliens>value</aliens>\n  <aliens>value</aliens>\n</aliens>\n```\n\n#### Security Scheme Object\n\nDefines a security scheme that can be used by the operations.\n\nSupported schemes are HTTP authentication, an API key (either as a header, a cookie parameter or as a query parameter), mutual TLS (use of a client certificate), OAuth2's common flows (implicit, password, client credentials and authorization code) as defined in [RFC6749](https://tools.ietf.org/html/rfc6749), and [[OpenID-Connect-Core]].\nPlease note that as of 2020, the implicit flow is about to be deprecated by [OAuth 2.0 Security Best Current Practice](https://tools.ietf.org/html/draft-ietf-oauth-security-topics). Recommended for most use cases is Authorization Code Grant flow with PKCE.\n\n##### Fixed Fields\n\n| Field Name | Type | Applies To | Description |\n| ---- | :----: | ---- | ---- |\n| <a name=\"security-scheme-type\"></a>type | `string` | Any | **REQUIRED**. The type of the security scheme. Valid values are `\"apiKey\"`, `\"http\"`, `\"mutualTLS\"`, `\"oauth2\"`, `\"openIdConnect\"`. |\n| <a name=\"security-scheme-description\"></a>description | `string` | Any | A description for security scheme. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"security-scheme-name\"></a>name | `string` | `apiKey` | **REQUIRED**. The name of the header, query or cookie parameter to be used. |\n| <a name=\"security-scheme-in\"></a>in | `string` | `apiKey` | **REQUIRED**. The location of the API key. Valid values are `\"query\"`, `\"header\"`, or `\"cookie\"`. |\n| <a name=\"security-scheme-scheme\"></a>scheme | `string` | `http` | **REQUIRED**. The name of the HTTP Authentication scheme to be used in the [Authorization header as defined in RFC7235](https://tools.ietf.org/html/rfc7235#section-5.1). The values used SHOULD be registered in the [IANA Authentication Scheme registry](https://www.iana.org/assignments/http-authschemes/http-authschemes.xhtml). The value is case-insensitive, as defined in [RFC7235](https://datatracker.ietf.org/doc/html/rfc7235#section-2.1). |\n| <a name=\"security-scheme-bearer-format\"></a>bearerFormat | `string` | `http` (`\"bearer\"`) | A hint to the client to identify how the bearer token is formatted. Bearer tokens are usually generated by an authorization server, so this information is primarily for documentation purposes. |\n| <a name=\"security-scheme-flows\"></a>flows | [OAuth Flows Object](#oauth-flows-object) | `oauth2` | **REQUIRED**. An object containing configuration information for the flow types supported. |\n| <a name=\"security-scheme-open-id-connect-url\"></a>openIdConnectUrl | `string` | `openIdConnect` | **REQUIRED**. [Well-known URL](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfig) to discover the [[OpenID-Connect-Discovery]] [provider metadata](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Security Scheme Object Examples\n\n###### Basic Authentication Example\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"basic\"\n}\n```\n\n```yaml\ntype: http\nscheme: basic\n```\n\n###### API Key Example\n\n```json\n{\n  \"type\": \"apiKey\",\n  \"name\": \"api-key\",\n  \"in\": \"header\"\n}\n```\n\n```yaml\ntype: apiKey\nname: api-key\nin: header\n```\n\n###### JWT Bearer Example\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"bearer\",\n  \"bearerFormat\": \"JWT\"\n}\n```\n\n```yaml\ntype: http\nscheme: bearer\nbearerFormat: JWT\n```\n\n###### MutualTLS Example\n\n```json\n{\n  \"type\": \"mutualTLS\",\n  \"description\": \"Cert must be signed by example.com CA\"\n}\n```\n\n```yaml\ntype: mutualTLS\ndescription: Cert must be signed by example.com CA\n```\n\n###### Implicit OAuth2 Example\n\n```json\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### OAuth Flows Object\n\nAllows configuration of the supported OAuth Flows.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"oauth-flows-implicit\"></a>implicit | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Implicit flow |\n| <a name=\"oauth-flows-password\"></a>password | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Resource Owner Password flow |\n| <a name=\"oauth-flows-client-credentials\"></a>clientCredentials | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Client Credentials flow. Previously called `application` in OpenAPI 2.0. |\n| <a name=\"oauth-flows-authorization-code\"></a>authorizationCode | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Authorization Code flow. Previously called `accessCode` in OpenAPI 2.0. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### OAuth Flow Object\n\nConfiguration details for a supported OAuth Flow\n\n##### Fixed Fields\n\n| Field Name | Type | Applies To | Description |\n| ---- | :----: | ---- | ---- |\n| <a name=\"oauth-flow-authorization-url\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"authorizationCode\"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-token-url\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"clientCredentials\"`, `\"authorizationCode\"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-refresh-url\"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-scopes\"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it. The map MAY be empty. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### OAuth Flow Object Example\n\n```JSON\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    },\n    \"authorizationCode\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"tokenUrl\": \"https://example.com/api/oauth/token\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n  authorizationCode:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    tokenUrl: https://example.com/api/oauth/token\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### Security Requirement Object\n\nLists the required security schemes to execute this operation.\nThe name used for each property MUST correspond to a security scheme declared in the [Security Schemes](#security-scheme-object) under the [Components Object](#components-object).\n\nA Security Requirement Object MAY refer to multiple security schemes in which case all schemes MUST be satisfied for a request to be authorized.\nThis enables support for scenarios where multiple query parameters or HTTP headers are required to convey security information.\n\nWhen the `security` field is defined on the [OpenAPI Object](#openapi-object) or [Operation Object](#operation-object) and contains multiple Security Requirement Objects, only one of the entries in the list needs to be satisfied to authorize the request.\nThis enables support for scenarios where the API allows multiple, independent security schemes.\n\nAn empty Security Requirement Object (`{}`) indicates anonymous access is supported.\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"security-requirements-name\"></a>{name} | [`string`] | Each name MUST correspond to a security scheme which is declared in the [Security Schemes](#security-scheme-object) under the [Components Object](#components-object). If the security scheme is of type `\"oauth2\"` or `\"openIdConnect\"`, then the value is a list of scope names required for the execution, and the list MAY be empty if authorization does not require a specified scope. For other security scheme types, the array MAY contain a list of role names which are required for the execution, but are not otherwise defined or exchanged in-band. |\n\n##### Security Requirement Object Examples\n\nSee also [Appendix F: Resolving Security Requirements in a Referenced Document](#appendix-f-resolving-security-requirements-in-a-referenced-document) for an example using Security Requirement Objects in multi-document OpenAPI Descriptions.\n\n###### Non-OAuth2 Security Requirement\n\n```json\n{\n  \"api_key\": []\n}\n```\n\n```yaml\napi_key: []\n```\n\n###### OAuth2 Security Requirement\n\n```json\n{\n  \"petstore_auth\": [\"write:pets\", \"read:pets\"]\n}\n```\n\n```yaml\npetstore_auth:\n  - write:pets\n  - read:pets\n```\n\n###### Optional OAuth2 Security\n\nOptional OAuth2 security as would be defined in an <a href=\"#openapi-object\">OpenAPI Object</a> or an <a href=\"#operation-object\">Operation Object</a>:\n\n```json\n{\n  \"security\": [\n    {},\n    {\n      \"petstore_auth\": [\"write:pets\", \"read:pets\"]\n    }\n  ]\n}\n```\n\n```yaml\nsecurity:\n  - {}\n  - petstore_auth:\n      - write:pets\n      - read:pets\n```\n\n### Specification Extensions\n\nWhile the OpenAPI Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are implemented as patterned fields that are always prefixed by `x-`.\n\n| Field Pattern | Type | Description |\n| ---- | :--: | ---- |\n| <a name=\"extension-properties\"></a>^x- | Any | Allows extensions to the OpenAPI Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. Field names beginning `x-oai-` and `x-oas-` are reserved for uses defined by the [OpenAPI Initiative](https://www.openapis.org/). The value can be any valid JSON value (`null`, a primitive, an array, or an object.) |\n\nThe OpenAPI Initiative maintains several [[OpenAPI-Registry|extension registries]], including registries for [individual extension keywords](https://spec.openapis.org/registry/extension/) and [extension keyword namespaces](https://spec.openapis.org/registry/namespace/).\n\nExtensions are one of the best ways to prove the viability of proposed additions to the specification.\nIt is therefore RECOMMENDED that implementations be designed for extensibility to support community experimentation.\n\nSupport for any one extension is OPTIONAL, and support for one extension does not imply support for others.\n\n### Security Filtering\n\nSome objects in the OpenAPI Specification MAY be declared and remain empty, or be completely removed, even though they are inherently the core of the API documentation.\n\nThe reasoning is to allow an additional layer of access control over the documentation.\nWhile not part of the specification itself, certain libraries MAY choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples of this:\n\n1. The [Paths Object](#paths-object) MAY be present but empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They would still have access to at least the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) MAY be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different from hiding the path itself from the [Paths Object](#paths-object), because the user will be aware of its existence. This allows the documentation provider to finely control what the viewer can see.\n\n## Security Considerations\n\n### OpenAPI Description Formats\n\nOpenAPI Descriptions use a combination of JSON, YAML, and JSON Schema, and therefore share their security considerations:\n\n* [JSON](https://www.iana.org/assignments/media-types/application/json)\n* [YAML](https://www.iana.org/assignments/media-types/application/yaml)\n* [JSON Schema Core](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-13)\n* [JSON Schema Validation](https://tools.ietf.org/html/draft-bhutton-json-schema-validation-00#section-10)\n\n### Tooling and Usage Scenarios\n\nIn addition, OpenAPI Descriptions are processed by a wide variety of tooling for numerous different purposes, such as client code generation, documentation generation, server side routing, and API testing. OpenAPI Description authors must consider the risks of the scenarios where the OpenAPI Description may be used.\n\n### Security Schemes\n\nAn OpenAPI Description describes the security schemes used to protect the resources it defines. The security schemes available offer varying degrees of protection. Factors such as the sensitivity of the data and the potential impact of a security breach should guide the selection of security schemes for the API resources. Some security schemes, such as basic auth and OAuth Implicit flow, are supported for compatibility with existing APIs. However, their inclusion in OpenAPI does not constitute an endorsement of their use, particularly for highly sensitive data or operations.\n\n### Handling External Resources\n\nOpenAPI Descriptions may contain references to external resources that may be dereferenced automatically by consuming tools. External resources may be hosted on different domains that may be untrusted.\n\n### Handling Reference Cycles\n\nReferences in an OpenAPI Description may cause a cycle. Tooling must detect and handle cycles to prevent resource exhaustion.\n\n### Markdown and HTML Sanitization\n\nCertain fields allow the use of Markdown which can contain HTML including script. It is the responsibility of tooling to appropriately sanitize the Markdown.\n\n## Appendix A: Revision History\n\n| Version | Date | Notes |\n| ---- | ---- | ---- |\n| 3.1.1 | 2024-10-24 | Patch release of the OpenAPI Specification 3.1.1 |\n| 3.1.0 | 2021-02-15 | Release of the OpenAPI Specification 3.1.0 |\n| 3.1.0-rc1 | 2020-10-08 | rc1 of the 3.1 specification |\n| 3.1.0-rc0 | 2020-06-18 | rc0 of the 3.1 specification |\n| 3.0.4 | 2024-10-24 | Patch release of the OpenAPI Specification 3.0.4 |\n| 3.0.3 | 2020-02-20 | Patch release of the OpenAPI Specification 3.0.3 |\n| 3.0.2 | 2018-10-08 | Patch release of the OpenAPI Specification 3.0.2 |\n| 3.0.1 | 2017-12-06 | Patch release of the OpenAPI Specification 3.0.1 |\n| 3.0.0 | 2017-07-26 | Release of the OpenAPI Specification 3.0.0 |\n| 3.0.0-rc2 | 2017-06-16 | rc2 of the 3.0 specification |\n| 3.0.0-rc1 | 2017-04-27 | rc1 of the 3.0 specification |\n| 3.0.0-rc0 | 2017-02-28 | Implementer's Draft of the 3.0 specification |\n| 2.0 | 2015-12-31 | Donation of Swagger 2.0 to the OpenAPI Initiative |\n| 2.0 | 2014-09-08 | Release of Swagger 2.0 |\n| 1.2 | 2014-03-14 | Initial release of the formal document. |\n| 1.1 | 2012-08-22 | Release of Swagger 1.1 |\n| 1.0 | 2011-08-10 | First release of the Swagger Specification |\n\n## Appendix B: Data Type Conversion\n\nSerializing typed data to plain text, which can occur in `text/plain` message bodies or `multipart` parts, as well as in the `application/x-www-form-urlencoded` format in either URL query strings or message bodies, involves significant implementation- or application-defined behavior.\n\n[Schema Objects](#schema-object) validate data based on the [JSON Schema data model](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.2.1), which only recognizes four primitive data types: strings (which are [only broadly interoperable as UTF-8](https://datatracker.ietf.org/doc/html/rfc7159#section-8.1)), numbers, booleans, and `null`.\nNotably, integers are not a distinct type from other numbers, with `type: \"integer\"` being a convenience defined mathematically, rather than based on the presence or absence of a decimal point in any string representation.\n\nThe [Parameter Object](#parameter-object), [Header Object](#header-object), and [Encoding Object](#encoding-object) offer features to control how to arrange values from array or object types.\nThey can also be used to control how strings are further encoded to avoid reserved or illegal characters.\nHowever, there is no general-purpose specification for converting schema-validated non-UTF-8 primitive data types (or entire arrays or objects) to strings.\n\nTwo cases do offer standards-based guidance:\n\n* [RFC3987](https://datatracker.ietf.org/doc/html/rfc3987#section-3.1) provides guidance for converting non-Unicode strings to UTF-8, particularly in the context of URIs (and by extension, the form media types which use the same encoding rules)\n* [RFC6570](https://www.rfc-editor.org/rfc/rfc6570#section-2.3) specifies which values, including but not limited to `null`, are considered _undefined_ and therefore treated specially in the expansion process when serializing based on that specification\n\nImplementations of RFC6570 often have their own conventions for converting non-string values, but these are implementation-specific and not defined by the RFC itself.\nThis is one reason for the OpenAPI Specification to leave these conversions as implementation-defined: It allows using RFC6570 implementations regardless of how they choose to perform the conversions.\n\nTo control the serialization of numbers, booleans, and `null` (or other values RFC6570 deems to be undefined) more precisely, schemas can be defined as `type: \"string\"` and constrained using `pattern`, `enum`, `format`, and other keywords to communicate how applications must pre-convert their data prior to schema validation.\nThe resulting strings would not require any further type conversion.\n\nThe `format` keyword can assist in serialization.\nSome formats (such as `date-time`) are unambiguous, while others (such as [`decimal`](https://spec.openapis.org/registry/format/decimal.html) in the [Format Registry](https://spec.openapis.org/registry/format/)) are less clear.\nHowever, care must be taken with `format` to ensure that the specific formats are supported by all relevant tools as unrecognized formats are ignored.\n\nRequiring input as pre-formatted, schema-validated strings also improves round-trip interoperability as not all programming languages and environments support the same data types.\n\n## Appendix C: Using RFC6570-Based Serialization\n\nSerialization is defined in terms of [RFC6570](https://www.rfc-editor.org/rfc/rfc6570) URI Templates in three scenarios:\n\n| Object | Condition |\n| ---- | ---- |\n| [Parameter Object](#parameter-object) | When `schema` is present |\n| [Header Object](#header-object) | When `schema` is present |\n| [Encoding Object](#encoding-object) | When encoding for `application/x-www-form-urlencoded` and any of `style`, `explode`, or `allowReserved` are used |\n\nImplementations of this specification MAY use an implementation of RFC6570 to perform variable expansion, however, some caveats apply.\n\nNote that when using `style: \"form\"` RFC6570 expansion to produce an `application/x-www-form-urlencoded` HTTP message body, it is necessary to remove the `?` prefix that is produced to satisfy the URI query string syntax.\n\nWhen using `style` and similar keywords to produce a `multipart/form-data` body, the query string names are placed in the `name` parameter of the `Content-Disposition` part header, and the values are placed in the corresponding part body; the `?`, `=`, and `&` characters are not used.\nNote that while [RFC7578](https://datatracker.ietf.org/doc/html/rfc7578) allows using [[RFC3986]] percent-encoding in \"file names\", it does not otherwise address the use of percent-encoding within the format.\nRFC7578 discusses character set and encoding issues for `multipart/form-data` in detail, and it is RECOMMENDED that OpenAPI Description authors read this guidance carefully before deciding to use RFC6570-based serialization with this media type.\n\nNote also that not all RFC6570 implementations support all four levels of operators, all of which are needed to fully support the OpenAPI Specification's usage.\nUsing an implementation with a lower level of support will require additional manual construction of URI Templates to work around the limitations.\n\n### Equivalences Between Fields and RFC6570 Operators\n\nCertain field values translate to RFC6570 [operators](https://datatracker.ietf.org/doc/html/rfc6570#section-2.2) (or lack thereof):\n\n| field | value | equivalent |\n| ---- | ---- | ---- |\n| style | `\"simple\"` | _n/a_ |\n| style | `\"matrix\"` | `;` prefix operator |\n| style | `\"label\"` | `.` prefix operator |\n| style | `\"form\"` | `?` prefix operator |\n| allowReserved | `false` | _n/a_ |\n| allowReserved | `true` | `+` prefix operator |\n| explode | `false` | _n/a_ |\n| explode | `true` | `*` modifier suffix |\n\nMultiple `style: \"form\"` parameters are equivalent to a single RFC6570 [variable list](https://www.rfc-editor.org/rfc/rfc6570#section-2.2) using the `?` prefix operator:\n\n```YAML\nparameters:\n- name: foo\n  in: query\n  schema:\n    type: object\n  explode: true\n- name: bar\n  in: query\n  schema:\n    type: string\n```\n\nThis example is equivalent to RFC6570's `{?foo*,bar}`, and **NOT** `{?foo*}{&bar}`. The latter is problematic because if `foo` is not defined, the result will be an invalid URI.\nThe `&` prefix operator has no equivalent in the Parameter Object.\n\nNote that RFC6570 does not specify behavior for compound values beyond the single level addressed by `explode`. The result of using objects or arrays where no behavior is clearly specified for them is implementation-defined.\n\n### Delimiters in Parameter Values\n\nDelimiters used by RFC6570 expansion, such as the `,` used to join arrays or object values with `style: \"simple\"`, are all automatically percent-encoded as long as `allowReserved` is `false`.\nNote that since RFC6570 does not define a way to parse variables based on a URI Template, users must take care to first split values by delimiter before percent-decoding values that might contain the delimiter character.\n\nWhen `allowReserved` is `true`, both percent-encoding (prior to joining values with a delimiter) and percent-decoding (after splitting on the delimiter) must be done manually at the correct time.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for additional guidance on handling delimiters for `style` values with no RFC6570 equivalent that already need to be percent-encoded when used as delimiters.\n\n### Non-RFC6570 Field Values and Combinations\n\nConfigurations with no direct [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570) equivalent SHOULD also be handled according to RFC6570.\nImplementations MAY create a properly delimited URI Template with variables for individual names and values using RFC6570 regular or reserved expansion (based on `allowReserved`).\n\nThis includes:\n\n* the styles `pipeDelimited`, `spaceDelimited`, and `deepObject`, which have no equivalents at all\n* the combination of the style `form` with `allowReserved: true`, which is not allowed because only one prefix operator can be used at a time\n* any parameter name that is not a legal RFC6570 variable name\n\nThe Parameter Object's `name` field has a much more permissive syntax than RFC6570 [variable name syntax](https://www.rfc-editor.org/rfc/rfc6570#section-2.3).\nA parameter name that includes characters outside of the allowed RFC6570 variable character set MUST be percent-encoded before it can be used in a URI Template.\n\n### Examples\n\nLet's say we want to use the following data in a form query string, where `formulas` is exploded, and `words` is not:\n\n```YAML\nformulas:\n  a: x+y\n  b: x/y\n  c: x^y\nwords:\n- math\n- is\n- fun\n```\n\n#### RFC6570-Equivalent Expansion\n\nThis array of Parameter Objects uses regular `style: \"form\"` expansion, fully supported by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570):\n\n```YAML\nparameters:\n- name: formulas\n  in: query\n  schema:\n    type: object\n    additionalProperties:\n      type: string\n  explode: true\n- name: words\n  in: query\n  schema:\n    type: array\n    items:\n      type: string\n```\n\nThis translates to the following URI Template:\n\n```uritemplate\n{?formulas*,words}\n```\n\nwhen expanded with the data given earlier, we get:\n\n```uri\n?a=x%2By&b=x%2Fy&c=x%5Ey&words=math,is,fun\n```\n\n#### Expansion with Non-RFC6570-Supported Options\n\nBut now let's say that (for some reason), we really want that `/` in the `b` formula to show up as-is in the query string, and we want our words to be space-separated like in a written phrase.\nTo do that, we'll add `allowReserved: true` to `formulas`, and change to `style: \"spaceDelimited\"` for `words`:\n\n```YAML\nparameters:\n- name: formulas\n  in: query\n  schema:\n    type: object\n    additionalProperties:\n      type: string\n  explode: true\n  allowReserved: true\n- name: words\n  in: query\n  style: spaceDelimited\n  explode: false\n  schema:\n    type: array\n    items:\n      type: string\n```\n\nWe can't combine the `?` and `+` RFC6570 [prefixes](https://datatracker.ietf.org/doc/html/rfc6570#section-2.4.1), and there's no way with RFC6570 to replace the `,` separator with a space character.\nSo we need to restructure the data to fit a manually constructed URI Template that passes all of the pieces through the right sort of expansion.\n\nHere is one such template, using a made-up convention of `words.0` for the first entry in the words value, `words.1` for the second, and `words.2` for the third:\n\n```uritemplate\n?a={+a}&b={+b}&c={+c}&words={words.0} {words.1} {words.2}\n```\n\nRFC6570 [mentions](https://www.rfc-editor.org/rfc/rfc6570.html#section-2.4.2) the use of `.` \"to indicate name hierarchy in substructures,\" but does not define any specific naming convention or behavior for it.\nSince the `.` usage is not automatic, we'll need to construct an appropriate input structure for this new template.\n\nWe'll also need to pre-process the values for `formulas` because while `/` and most other reserved characters are allowed in the query string by RFC3986, `[`, `]`, and `#` [are not](https://datatracker.ietf.org/doc/html/rfc3986#appendix-A), and `&`, `=`, and `+` all have [special behavior](https://www.rfc-editor.org/rfc/rfc1866#section-8.2.1) in the `application/x-www-form-urlencoded` format, which is what we are using in the query string.\n\nSetting `allowReserved: true` does _not_ make reserved characters that are not allowed in URIs allowed, it just allows them to be _passed through expansion unchanged._\nTherefore, any tooling still needs to percent-encode those characters because reserved expansion will not do it, but it _will_ leave the percent-encoded triples unchanged.\nSee also [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for further guidance on percent-encoding and form media types, including guidance on handling the delimiter characters for `spaceDelimited`, `pipeDelimited`, and `deepObject` in parameter names and values.\n\nSo here is our data structure that arranges the names and values to suit the template above, where values for `formulas` have `[]#&=+` pre-percent encoded (although only `+` appears in this example):\n\n```YAML\na: x%2By\nb: x/y\nc: x^y\nwords.0: math\nwords.1: is\nwords.2: fun\n```\n\nExpanding our manually assembled template with our restructured data yields the following query string:\n\n```uri\n?a=x%2By&b=x/y&c=x%5Ey&words=math%20is%20fun\n```\n\nThe `/` and the pre-percent-encoded `%2B` have been left alone, but the disallowed `^` character (inside a value) and space characters (in the template but outside of the expanded variables) were percent-encoded.\n\n#### Undefined Values and Manual URI Template Construction\n\nCare must be taken when manually constructing templates to handle the values that RFC6570 [considers to be _undefined_](https://datatracker.ietf.org/doc/html/rfc6570#section-2.3) correctly:\n\n```YAML\nformulas: {}\nwords:\n- hello\n- world\n```\n\nUsing this data with our original RFC6570-friendly URI Template, `{?formulas*,words}`, produces the following:\n\n```uri\n?words=hello,world\n```\n\nThis means that the manually constructed URI Template and restructured data need to leave out the `formulas` object entirely so that the `words` parameter is the first and only parameter in the query string.\n\nRestructured data:\n\n```YAML\nwords.0: hello\nwords.1: world\n```\n\nManually constructed URI Template:\n\n```uritemplate\n?words={words.0} {words.1}\n```\n\nResult:\n\n```uri\n?words=hello%20world\n```\n\n#### Illegal Variable Names as Parameter Names\n\nIn this example, the heart emoji is not legal in URI Template names (or URIs):\n\n```YAML\nparameters:\n- name: ❤️\n  in: query\n  schema:\n    type: string\n```\n\nWe can't just pass `❤️: \"love!\"` to an RFC6570 implementation.\nInstead, we have to pre-percent-encode the name (which is a six-octet UTF-8 sequence) in both the data and the URI Template:\n\n```YAML\n\"%E2%9D%A4%EF%B8%8F\": love!\n```\n\n```uritemplate\n{?%E2%9D%A4%EF%B8%8F}\n```\n\nThis will expand to the result:\n\n```uri\n?%E2%9D%A4%EF%B8%8F=love%21\n```\n\n## Appendix D: Serializing Headers and Cookies\n\n[RFC6570](https://www.rfc-editor.org/rfc/rfc6570)'s percent-encoding behavior is not always appropriate for `in: \"header\"` and `in: \"cookie\"` parameters.\nIn many cases, it is more appropriate to use `content` with a media type such as `text/plain` and require the application to assemble the correct string.\n\nFor both [RFC6265](https://www.rfc-editor.org/rfc/rfc6265) cookies and HTTP headers using the [RFC8941](https://www.rfc-editor.org/rfc/rfc8941) structured fields syntax, non-ASCII content is handled using base64 encoding (`contentEncoding: \"base64\"`).\nNote that the standard base64-encoding alphabet includes non-URL-safe characters that are percent-encoded by RFC6570 expansion; serializing values through both encodings is NOT RECOMMENDED.\nWhile `contentEncoding` also supports the `base64url` encoding, which is URL-safe, the header and cookie RFCs do not mention this encoding.\n\nMost HTTP headers predate the structured field syntax, and a comprehensive assessment of their syntax and encoding rules is well beyond the scope of this specification.\nWhile [RFC8187](https://www.rfc-editor.org/rfc/rfc8187) recommends percent-encoding HTTP (header or trailer) field parameters, these parameters appear after a `;` character.\nWith `style: \"simple\"`, that delimiter would itself be percent-encoded, violating the general HTTP field syntax.\n\nUsing `style: \"form\"` with `in: \"cookie\"` is ambiguous for a single value, and incorrect for multiple values.\nThis is true whether the multiple values are the result of using `explode: true` or not.\n\nThis style is specified to be equivalent to RFC6570 form expansion which includes the `?` character (see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more details), which is not part of the cookie syntax.\nHowever, examples of this style in past versions of this specification have not included the `?` prefix, suggesting that the comparison is not exact.\nBecause implementations that rely on an RFC6570 implementation and those that perform custom serialization based on the style example will produce different results, it is implementation-defined as to which of the two results is correct.\n\nFor multiple values, `style: \"form\"` is always incorrect as name=value pairs in cookies are delimited by `;` (a semicolon followed by a space character) rather than `&`.\n\n## Appendix E: Percent-Encoding and Form Media Types\n\n_**NOTE:** In this section, the `application/x-www-form-urlencoded` and `multipart/form-data` media types are abbreviated as `form-urlencoded` and `form-data`, respectively, for readability._\n\nPercent-encoding is used in URIs and media types that derive their syntax from URIs.\nThis process is concerned with three sets of characters, the names of which vary among specifications but are defined as follows for the purposes of this section:\n\n* _unreserved_ characters do not need to be percent-encoded; while it is safe to percent-encode them, doing so produces a URI that is [not normalized](https://datatracker.ietf.org/doc/html/rfc3986#section-6.2.2.2)\n* _reserved_ characters either have special behavior in the URI syntax (such as delimiting components) or are reserved for other specifications that need to define special behavior (e.g. `form-urlencoded` defines special behavior for `=`, `&`, and `+`)\n* _unsafe_ characters are known to cause problems when parsing URIs in certain environments\n\nUnless otherwise specified, this section uses RFC3986's definition of [reserved](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2) and [unreserved](https://datatracker.ietf.org/doc/html/rfc3986#section-2.3), and defines the unsafe set as all characters not included in either of those sets.\n\n### Percent-Encoding and `form-urlencoded`\n\nEach URI component (such as the query string) considers some of the reserved characters to be unsafe, either because they serve as delimiters between the components (e.g. `#`), or (in the case of `[` and `]`) were historically considered globally unsafe but were later given reserved status for limited purposes.\n\nReserved characters with no special meaning defined within a component can be left un-percent encoded.\nHowever, other specifications can define special meanings, requiring percent-encoding for those characters outside of the additional special meanings.\n\nThe `form-urlencoded` media type defines special meanings for `=` and `&` as delimiters, and `+` as the replacement for the space character (instead of its percent-encoded form of `%20`).\nThis means that while these three characters are reserved-but-allowed in query strings by RFC3986, they must be percent-encoded in `form-urlencoded` query strings except when used for their `form-urlencoded` purposes; see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for an example of handling `+` in form values.\n\n### Percent-Encoding and `form-data`\n\n[RFC7578](https://datatracker.ietf.org/doc/html/rfc7578#section-2) suggests RFC3986-based percent-encoding as a mechanism to keep text-based per-part header data such as file names within the ASCII character set.\nThis suggestion was not part of older (pre-2015) specifications for `form-data`, so care must be taken to ensure interoperability.\n\nThe `form-data` media type allows arbitrary text or binary data in its parts, so percent-encoding is not needed and is likely to cause interoperability problems unless the `Content-Type` of the part is defined to require it.\n\n### Generating and Validating URIs and `form-urlencoded` Strings\n\nURI percent encoding and the `form-urlencoded` media type have complex specification histories spanning multiple revisions and, in some cases, conflicting claims of ownership by different standards bodies.\nUnfortunately, these specifications each define slightly different percent-encoding rules, which need to be taken into account if the URIs or `form-urlencoded` message bodies will be subject to strict validation.\n(Note that many URI parsers do not perform validation by default.)\n\nThis specification normatively cites the following relevant standards:\n\n| Specification | Date | OAS Usage | Percent-Encoding | Notes |\n| ---- | ---- | ---- | ---- | ---- |\n| [RFC3986](https://www.rfc-editor.org/rfc/rfc3986) | 01/2005 | URI/URL syntax | [[RFC3986]] | obsoletes [[RFC1738]], [[RFC2396]] |\n| [RFC6570](https://www.rfc-editor.org/rfc/rfc6570) | 03/2012 | style-based serialization | [[RFC3986]] | does not use `+` for <code>form&#8209;urlencoded</code> |\n| [RFC1866](https://datatracker.ietf.org/doc/html/rfc1866#section-8.2.1) | 11/1995 | content-based serialization | [[RFC1738]] | obsoleted by [[HTML401]] [Section 17.13.4.1](https://www.w3.org/TR/html401/interact/forms.html#h-17.13.4.1), [[URL]] [Section 5](https://url.spec.whatwg.org/#urlencoded-serializing) |\n\nStyle-based serialization is used in the [Parameter Object](#parameter-object) when `schema` is present, and in the [Encoding Object](#encoding-object) when at least one of `style`, `explode`, or `allowReserved` is present.\nSee [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more details of RFC6570's two different approaches to percent-encoding, including an example involving `+`.\n\nContent-based serialization is defined by the [Media Type Object](#media-type-object), and used with the [Parameter Object](#parameter-object) when the `content` field is present, and with the [Encoding Object](#encoding-object) based on the `contentType` field when the fields `style`, `explode`, and `allowReserved` are absent.\nEach part is encoded based on the media type (e.g. `text/plain` or `application/json`), and must then be percent-encoded for use in a `form-urlencoded` string.\n\nNote that content-based serialization for `form-data` does not expect or require percent-encoding in the data, only in per-part header values.\n\n#### Interoperability with Historical Specifications\n\nIn most cases, generating query strings in strict compliance with [[RFC3986]] is sufficient to pass validation (including JSON Schema's `format: \"uri\"` and `format: \"uri-reference\"`), but some `form-urlencoded` implementations still expect the slightly more restrictive [[RFC1738]] rules to be used.\n\nSince all RFC1738-compliant URIs are compliant with RFC3986, applications needing to ensure historical interoperability SHOULD use RFC1738's rules.\n\n#### Interoperability with Web Browser Environments\n\nWHATWG is a [web browser-oriented](https://whatwg.org/faq#what-is-the-whatwg-working-on) standards group that has defined a \"URL Living Standard\" for parsing and serializing URLs in a browser context, including parsing and serializing `form-urlencoded` data.\nWHATWG's percent-encoding rules for query strings are different depending on whether the query string is [being treated as `form-urlencoded`](https://url.spec.whatwg.org/#application-x-www-form-urlencoded-percent-encode-set) (where it requires more percent-encoding than [[RFC1738]]) or [as part of the generic syntax](https://url.spec.whatwg.org/#query-percent-encode-set), where it allows characters that [[RFC3986]] forbids.\n\nImplementations needing maximum compatibility with web browsers SHOULD use WHATWG's `form-urlencoded` percent-encoding rules.\nHowever, they SHOULD NOT rely on WHATWG's less stringent generic query string rules, as the resulting URLs would fail RFC3986 validation, including JSON Schema's `format: uri` and `format: uri-reference`.\n\n### Decoding URIs and `form-urlencoded` Strings\n\nThe percent-decoding algorithm does not care which characters were or were not percent-decoded, which means that URIs percent-encoded according to any specification will be decoded correctly.\n\nSimilarly, all `form-urlencoded` decoding algorithms simply add `+`-for-space handling to the percent-decoding algorithm, and will work regardless of the encoding specification used.\n\nHowever, care must be taken to use `form-urlencoded` decoding if `+` represents a space, and to use regular percent-decoding if `+` represents itself as a literal value.\n\n### Percent-Encoding and Illegal or Reserved Delimiters\n\nThe `[`, `]`, `|`, and space characters, which are used as delimiters for the `deepObject`, `pipeDelimited`, and `spaceDelimited` styles, respectively, all MUST be percent-encoded to comply with [[RFC3986]].\nThis requires users to pre-encode the character(s) in some other way in parameter names and values to distinguish them from the delimiter usage when using one of these styles.\n\nThe space character is always illegal and encoded in some way by all implementations of all versions of the relevant standards.\nWhile one could use the `form-urlencoded` convention of `+` to distinguish spaces in parameter names and values from `spaceDelimited` delimiters encoded as `%20`, the specifications define the decoding as a single pass, making it impossible to distinguish the different usages in the decoded result.\n\nSome environments use `[`, `]`, and possibly `|` unencoded in query strings without apparent difficulties, and WHATWG's generic query string rules do not require percent-encoding them.\nCode that relies on leaving these delimiters unencoded, while using regular percent-encoding for them within names and values, is not guaranteed to be interoperable across all implementations.\n\nFor maximum interoperability, it is RECOMMENDED to either define and document an additional escape convention while percent-encoding the delimiters for these styles, or to avoid these styles entirely.\nThe exact method of additional encoding/escaping is left to the API designer, and is expected to be performed before serialization and encoding described in this specification, and reversed after this specification's encoding and serialization steps are reversed.\nThis keeps it outside of the processes governed by this specification.\n\n## Appendix F: Resolving Security Requirements in a Referenced Document\n\nThis appendix shows how to retrieve an HTTP-accessible multi-document OpenAPI Description (OAD) and resolve a [Security Requirement Object](#security-requirement-object) in the referenced (non-entry) document. See [Resolving Implicit Connections](#resolving-implicit-connections) for more information.\n\nFirst, the [entry document](#openapi-description-structure) is where parsing begins. It defines the `MySecurity` security scheme to be JWT-based, and it defines a Path Item as a reference to a component in another document:\n\n```HTTP\nGET /api/description/openapi HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+json\n```\n\n```json\n\"components\": {\n  \"securitySchemes\": {\n    \"MySecurity\": {\n      \"type\": \"http\",\n      \"scheme\": \"bearer\",\n      \"bearerFormat\": \"JWT\"\n    }\n  }\n},\n\"paths\": {\n  \"/foo\": {\n    \"$ref\": \"other#/components/pathItems/Foo\"\n  }\n}\n```\n\n```HTTP\nGET /api/description/openapi HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+yaml\n```\n\n```yaml\ncomponents:\n  securitySchemes:\n    MySecurity:\n      type: http\n      scheme: bearer\n      bearerFormat: JWT\npaths:\n  /foo:\n    $ref: 'other#/components/pathItems/Foo'\n```\n\nThis entry document references another document, `other`, without using a file extension. This gives the client the flexibility to choose an acceptable format on a resource-by-resource basis, assuming both representations are available:\n\n```HTTP\nGET /api/description/other HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+json\n```\n\n```json\n\"components\": {\n  \"securitySchemes\": {\n    \"MySecurity\": {\n      \"type\": \"http\",\n      \"scheme\": \"basic\"\n    }\n  },\n  \"pathItems\": {\n    \"Foo\": {\n      \"get\": {\n        \"security\": [\n          \"MySecurity\": []\n        ]\n      }\n    }\n  }\n}\n```\n\n```HTTP\nGET /api/description/other HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+yaml\n```\n\n```yaml\ncomponents:\n  securitySchemes:\n    MySecurity:\n      type: http\n      scheme: basic\n  pathItems:\n    Foo:\n      get:\n        security:\n          - MySecurity: []\n```\n\nIn the `other` document, the referenced path item has a Security Requirement for a Security Scheme, `MySecurity`. The same Security Scheme exists in the original entry document. As outlined in [Resolving Implicit Connections](#resolving-implicit-connections), `MySecurity` is resolved with an [implementation-defined behavior](#undefined-and-implementation-defined-behavior). However, documented in that section, it is RECOMMENDED that tools resolve component names from the [entry document](#openapi-description-structure). As with all implementation-defined behavior, it is important to check tool documentation to determine which behavior is supported.\n"
  },
  {
    "path": "versions/3.1.2-editors.md",
    "content": "# OpenAPI Specification Editors\n\n## Active\n\n* Henry Andrews [@handrews](https://github.com/handrews)\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Karen Etheridge [@karenetheridge](https://github.com/karenetheridge)\n* Lorna Mitchell [@lornajane](https://github.com/lornajane)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Miguel Quintero [@miqui](https://github.com/miqui)\n* Mike Kistler [@mikekistler](https://github.com/mikekistler)\n* Ralf Handl [@ralfhandl](https://github.com/ralfhandl)\n* Vincent Biret [@baywet](https://github.com/baywet)\n\n## Emeritus\n\n* Ron Ratovsky [@webron](https://github.com/webron)\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Mike Ralphson [@MikeRalphson](https://github.com/MikeRalphson)\n* Uri Sarid [@usarid](https://github.com/usarid)\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "versions/3.1.2.md",
    "content": "# OpenAPI Specification\n\n## Version 3.1.2\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"NOT RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [BCP 14](https://tools.ietf.org/html/bcp14) [RFC2119](https://tools.ietf.org/html/rfc2119) [RFC8174](https://tools.ietf.org/html/rfc8174) when, and only when, they appear in all capitals, as shown here.\n\nThis document is licensed under [The Apache License, Version 2.0](https://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introduction\n\nThe OpenAPI Specification (OAS) defines a standard, language-agnostic interface to HTTP APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined, a consumer can understand and interact with the remote service with a minimal amount of implementation logic.\n\nAn OpenAPI Description can then be used by documentation generation tools to display the API, code generation tools to generate servers and clients in various programming languages, testing tools, and many other use cases.\n\nFor examples of OpenAPI usage and additional documentation, please visit [[?OpenAPI-Learn]].\n\nFor extension registries and other specifications published by the OpenAPI Initiative, as well as the authoritative rendering of this specification, please visit [spec.openapis.org](https://spec.openapis.org/).\n\n## Definitions\n\n### OpenAPI Description\n\nAn OpenAPI Description (OAD) formally describes the surface of an API and its semantics. It is composed of an [entry document](#openapi-description-structure), which must be an OpenAPI Document, and any/all of its referenced documents. An OAD uses and conforms to the OpenAPI Specification, and MUST contain at least one [paths](#paths-object) field, [components](#oas-components) field, or [webhooks](#oas-webhooks) field.\n\n### OpenAPI Document\n\nAn OpenAPI Document is a single JSON or YAML document that conforms to the OpenAPI Specification. An OpenAPI Document compatible with OAS 3.\\*.\\* contains a required [`openapi`](#oas-version) field which designates the version of the OAS that it uses.\n\n### Schema\n\nA \"schema\" is a formal description of syntax and structure.\nThis document serves as the [schema](#schema) for the OpenAPI Specification format; a non-authoritative JSON Schema based on this document is also provided on [spec.openapis.org](https://spec.openapis.org) for informational purposes.\nThis specification also _uses_ schemas in the form of the [Schema Object](#schema-object).\n\n### Object\n\nWhen capitalized, the word \"Object\" refers to any of the Objects that are named by section headings in this document.\n\n### Path Templating\n\nPath templating refers to the usage of template expressions, delimited by curly braces (`{}`), to mark a section of a URL path as replaceable using path parameters.\n\nEach template expression in the path MUST correspond to a path parameter that is included in the [Path Item](#path-item-object) itself and/or in each of the Path Item's [Operations](#operation-object). An exception is if the path item is empty, for example due to ACL constraints, matching path parameters are not required.\n\nThe value for these path parameters MUST NOT contain any unescaped \"generic syntax\" characters described by [RFC3986](https://tools.ietf.org/html/rfc3986#section-3): forward slashes (`/`), question marks (`?`), or hashes (`#`).\nSee [URL Percent-Encoding](#url-percent-encoding) for additional guidance on escaping characters.\n\n### Media Types\n\nMedia type definitions are spread across several resources.\nThe media type definitions SHOULD be in compliance with [RFC6838](https://tools.ietf.org/html/rfc6838).\n\nSome examples of possible media type definitions:\n\n```text\n  text/plain; charset=utf-8\n  application/json\n  application/vnd.github+json\n  application/vnd.github.v3+json\n  application/vnd.github.v3.raw+json\n  application/vnd.github.v3.text+json\n  application/vnd.github.v3.html+json\n  application/vnd.github.v3.full+json\n  application/vnd.github.v3.diff\n  application/vnd.github.v3.patch\n```\n\n### HTTP Status Codes\n\nThe HTTP Status Codes are used to indicate the status of the executed operation.\nStatus codes SHOULD be selected from the available status codes registered in the [IANA Status Code Registry](https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n### Case Sensitivity\n\nAs most field names and values in the OpenAPI Specification are case-sensitive, this document endeavors to call out any case-insensitive names and values.\nHowever, the case sensitivity of field names and values that map directly to HTTP concepts follow the case sensitivity rules of HTTP, even if this document does not make a note of every concept.\n\n### Undefined and Implementation-Defined Behavior\n\nThis specification deems certain situations to have either _undefined_ or _implementation-defined_ behavior.\n\nBehavior described as _undefined_ is likely, at least in some circumstances, to result in outcomes that contradict the specification.\nThis description is used when detecting the contradiction is impossible or impractical.\nImplementations MAY support undefined scenarios for historical reasons, including ambiguous text in prior versions of the specification.\nThis support might produce correct outcomes in many cases, but relying on it is NOT RECOMMENDED as there is no guarantee that it will work across all tools or with future specification versions, even if those versions are otherwise strictly compatible with this one.\n\nBehavior described as _implementation-defined_ allows implementations to choose which of several different-but-compliant approaches to a requirement to implement.\nThis documents ambiguous requirements that API description authors are RECOMMENDED to avoid in order to maximize interoperability.\nUnlike undefined behavior, it is safe to rely on implementation-defined behavior if _and only if_ it can be guaranteed that all relevant tools support the same behavior.\n\n## Specification\n\n### Versions\n\nThe OpenAPI Specification is versioned using a `major`.`minor`.`patch` versioning scheme. The `major`.`minor` portion of the version string (for example `3.1`) SHALL designate the OAS feature set. _`.patch`_ versions address errors in, or provide clarifications to, this document, not the feature set. Tooling which supports OAS 3.1 SHOULD be compatible with all OAS 3.1.\\* versions. The patch version SHOULD NOT be considered by tooling, making no distinction between `3.1.0` and `3.1.1` for example.\n\nOccasionally, non-backwards compatible changes may be made in `minor` versions of the OAS where impact is believed to be low relative to the benefit provided.\n\n### Format\n\nAn OpenAPI Document that conforms to the OpenAPI Specification is itself a JSON object, which may be represented either in JSON or YAML format.\n\nFor example, if a field has an array value, the JSON array representation will be used:\n\n```json\n{\n  \"field\": [1, 2, 3]\n}\n```\n\nAll field names in the specification are **case sensitive**.\nThis includes all fields that are used as keys in a map, except where explicitly noted that keys are **case insensitive**.\n\nThe [schema](#schema) exposes two types of fields: _fixed fields_, which have a declared name, and _patterned fields_, which have a declared pattern for the field name.\n\nPatterned fields MUST have unique names within the containing object.\n\nIn order to preserve the ability to round-trip between YAML and JSON formats, YAML version [1.2](https://yaml.org/spec/1.2/spec.html) is RECOMMENDED along with some additional constraints:\n\n* Tags MUST be limited to those allowed by [YAML's JSON schema ruleset](https://yaml.org/spec/1.2/spec.html#id2803231), which defines a subset of the YAML syntax and is unrelated to [[JSON-Schema-2020-12|JSON Schema]].\n* Keys used in YAML maps MUST be limited to a scalar string, as defined by the [YAML Failsafe schema ruleset](https://yaml.org/spec/1.2/spec.html#id2802346).\n\n**Note:** While APIs may be described by OpenAPI Descriptions in either YAML or JSON format, the API request and response bodies and other content are not required to be JSON or YAML.\n\n### OpenAPI Description Structure\n\nAn OpenAPI Description (OAD) MAY be made up of a single JSON or YAML document or be divided into multiple, connected parts at the discretion of the author. In the latter case, [Reference Object](#reference-object), [Path Item Object](#path-item-object) and [Schema Object](#schema-object) `$ref` fields, as well as the [Link Object](#link-object) `operationRef` field, and the URI form of the [Discriminator Object](#discriminator-object) `mapping` field, are used to identify the referenced elements.\n\nIn a multi-document OAD, the document containing the OpenAPI Object where parsing begins is known as that OAD's **entry document**.\n\nIt is RECOMMENDED that the entry document of an OAD be named: `openapi.json` or `openapi.yaml`.\n\n#### Parsing Documents\n\nIn order to properly handle [Schema Objects](#schema-object), OAS 3.1 inherits the parsing requirements of [JSON Schema Specification Draft 2020-12](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-9), with appropriate modifications regarding base URIs as specified in [Relative References In URIs](#relative-references-in-api-description-uris).\n\nThis includes a requirement to parse complete documents before deeming a Schema Object reference to be unresolvable, in order to detect keywords that might provide the reference target or impact the determination of the appropriate base URI.\n\nImplementations MAY support complete-document parsing in any of the following ways:\n\n* Detecting OpenAPI or JSON Schema documents using media types\n* Detecting OpenAPI documents through the root `openapi` field\n* Detecting JSON Schema documents through detecting keywords or otherwise successfully parsing the document in accordance with the JSON Schema specification\n* Detecting a document containing a referenceable Object at its root based on the expected type of the reference\n* Allowing users to configure the type of documents that might be loaded due to a reference to a non-root Object\n\nImplementations that parse referenced fragments of OpenAPI content without regard for the content of the rest of the containing document will miss keywords that change the meaning and behavior of the reference target.\nIn particular, failing to take into account keywords that change the base URI introduces security risks by causing references to resolve to unintended URIs, with unpredictable results.\nWhile some implementations support this sort of parsing due to the requirements of past versions of this specification, in version 3.1, the result of parsing fragments in isolation is _undefined_ and likely to contradict the requirements of this specification.\n\nWhile it is possible to structure certain OpenAPI Descriptions to ensure that they will behave correctly when references are parsed as isolated fragments, depending on this is NOT RECOMMENDED.\nThis specification does not explicitly enumerate the conditions under which such behavior is safe and provides no guarantee for continued safety in any future versions of the OAS.\n\nA special case of parsing fragments of OAS content would be if such fragments are embedded in another format, referred to as an _embedding format_ with respect to the OAS.\nNote that the OAS itself is an embedding format with respect to JSON Schema, which is embedded as Schema Objects.\nIt is the responsibility of an embedding format to define how to parse embedded content, and OAS implementations that do not document support for an embedding format cannot be expected to parse embedded OAS content correctly.\n\n#### Structural Interoperability\n\nJSON or YAML objects within an OAD are interpreted as specific Objects (such as [Operation Objects](#operation-object), [Response Objects](#response-object), [Reference Objects](#reference-object), etc.) based on their context. Depending on how references are arranged, a given JSON or YAML object can be interpreted in multiple different contexts:\n\n* As the root object of the [entry document](#openapi-description-structure), which is always interpreted as an OpenAPI Object\n* As the Object type implied by its parent Object within the document\n* As a reference target, with the Object type matching the reference source's context\n\nIf the same JSON/YAML object is parsed multiple times and the respective contexts require it to be parsed as _different_ Object types, the resulting behavior is _implementation defined_, and MAY be treated as an error if detected. An example would be referencing an empty Schema Object under `#/components/schemas` where a Path Item Object is expected, as an empty object is valid for both types. For maximum interoperability, it is RECOMMENDED that OpenAPI Description authors avoid such scenarios.\n\n#### Resolving Implicit Connections\n\nSeveral features of this specification require resolution of non-URI-based connections to some other part of the OpenAPI Description (OAD).\n\nThese connections are unambiguously resolved in single-document OADs, but the resolution process in multi-document OADs is _implementation-defined_, within the constraints described in this section.\nIn some cases, an unambiguous URI-based alternative is available, and OAD authors are RECOMMENDED to always use the alternative:\n\n| Source | Target | Alternative |\n| ---- | ---- | ---- |\n| [Security Requirement Object](#security-requirement-object) `{name}` | [Security Scheme Object](#security-scheme-object) name under the [Components Object](#components-object) | _n/a_ |\n| [Discriminator Object](#discriminator-object) `mapping` _(implicit, or explicit name syntax)_ | [Schema Object](#schema-object) name under the Components Object | `mapping` _(explicit URI syntax)_ |\n| [Operation Object](#operation-object) `tags` | [Tag Object](#tag-object) `name` (in the [OpenAPI Object](#openapi-object)'s `tags` array) | _n/a_ |\n| [Link Object](#link-object) `operationId` | [Operation Object](#operation-object) `operationId` | `operationRef` |\n\nA fifth implicit connection involves appending the templated URL paths of the [Paths Object](#paths-object) to the appropriate [Server Object](#server-object)'s `url` field.\nThis is unambiguous because only the entry document's Paths Object contributes URLs to the described API.\n\nIt is RECOMMENDED to consider all Operation Objects from all parsed documents when resolving any Link Object `operationId`.\nThis requires parsing all referenced documents prior to determining an `operationId` to be unresolvable.\n\nThe implicit connections in the Security Requirement Object and Discriminator Object rely on the _component name_, which is the name of the property holding the component in the appropriately typed sub-object of the Components Object.\nFor example, the component name of the Schema Object at `#/components/schemas/Foo` is `Foo`.\nThe implicit connection of `tags` in the Operation Object uses the `name` field of Tag Objects, which (like the Components Object) are found under the root OpenAPI Object.\nThis means resolving component names and tag names both depend on starting from the correct OpenAPI Object.\n\nFor resolving component and tag name connections from a referenced (non-entry) document, it is RECOMMENDED that tools resolve from the entry document, rather than the current document.\nThis allows Security Scheme Objects and Tag Objects to be defined next to the API's deployment information (the top-level array of Server Objects), and treated as an interface for referenced documents to access.\n\nThe interface approach can also work for Discriminator Objects and Schema Objects, but it is also possible to keep the Discriminator Object's behavior within a single document using the relative URI-reference syntax of `mapping`.\n\nThere are no URI-based alternatives for the Security Requirement Object or for the Operation Object's `tags` field.\nThese limitations are expected to be addressed in a future release.\n\nSee [Appendix F: Resolving Security Requirements in a Referenced Document](#appendix-f-resolving-security-requirements-in-a-referenced-document) for an example of the possible resolutions, including which one is recommended by this section.\nThe behavior for Discriminator Object non-URI mappings and for the Operation Object's `tags` field operate on the same principles.\n\nNote that no aspect of implicit connection resolution changes how [URIs are resolved](#relative-references-in-api-description-uris), or restricts their possible targets.\n\n### Data Types\n\nData types in the OAS are based on the types defined by the [JSON Schema Validation Specification Draft 2020-12](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-6.1.1):\n\"null\", \"boolean\", \"object\", \"array\", \"number\", \"string\", or \"integer\".\nModels are defined using the [Schema Object](#schema-object), which is a superset of the JSON Schema Specification Draft 2020-12.\n\nJSON Schema keywords and `format` values operate on JSON \"instances\" which may be one of the six JSON data types, \"null\", \"boolean\", \"object\", \"array\", \"number\", or \"string\", with certain keywords and formats only applying to a specific type. For example, the `pattern` keyword and the `date-time` format only apply to strings, and treat any instance of the other five types as _automatically valid._ This means JSON Schema keywords and formats do **NOT** implicitly require the expected type. Use the `type` keyword to explicitly constrain the type.\n\nNote that the `type` keyword allows `\"integer\"` as a value for convenience, but keyword and format applicability does not recognize integers as being of a distinct JSON type from other numbers because [[RFC7159|JSON]] itself does not make that distinction. Since there is no distinct JSON integer type, JSON Schema defines integers mathematically. This means that both `1` and `1.0` are [equivalent](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.2.2), and are both considered to be integers.\n\n#### Data Type Format\n\nAs defined by the [JSON Schema Validation specification](https://tools.ietf.org/html/draft-bhutton-json-schema-validation-00#section-7.3), data types can have an optional modifier keyword: `format`. As described in that specification, `format` is treated as a non-validating annotation by default; the ability to validate `format` varies across implementations.\n\nThe OpenAPI Initiative also hosts a [Format Registry](https://spec.openapis.org/registry/format/) for formats defined by OAS users and other specifications. Support for any registered format is strictly OPTIONAL, and support for one registered format does not imply support for any others.\n\nTypes that are not accompanied by a `format` keyword follow the type definition in the JSON Schema. Tools that do not recognize a specific `format` MAY default back to the `type` alone, as if the `format` is not specified.\nFor the purpose of [JSON Schema validation](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-7.1), each format should specify the set of JSON data types for which it applies. In this registry, these types are shown in the \"JSON Data Type\" column.\n\nThe formats defined by the OAS are:\n\n| `format` | JSON Data Type | Comments |\n| ---- | ---- | ---- |\n| `int32` | number | signed 32 bits |\n| `int64` | number | signed 64 bits (a.k.a long) |\n| `float` | number | |\n| `double` | number | |\n| `password` | string | A hint to obscure the value. |\n\nAs noted under [Data Type](#data-types), both `type: number` and `type: integer` are considered to be numbers in the data model.\n\n#### Working with Binary Data\n\nThe OAS can describe either _raw_ or _encoded_ binary data.\n\n* **raw binary** is used where unencoded binary data is allowed, such as when sending a binary payload as the entire HTTP message body, or as part of a `multipart/*` payload that allows binary parts\n* **encoded binary** is used where binary data is embedded in a text-only format such as `application/json` or `application/x-www-form-urlencoded` (either as a message body or in the URL query string).\n\nIn the following table showing how to use Schema Object keywords for binary data, we use `image/png` as an example binary media type. Any binary media type, including `application/octet-stream`, is sufficient to indicate binary content.\n\n| Keyword | Raw | Encoded | Comments |\n| ---- | ---- | ---- | ---- |\n| `type` | _omit_ | `string` | raw binary is [outside of `type`](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.2.3) |\n| `contentMediaType` | `image/png` | `image/png` | can sometimes be omitted if redundant (see below) |\n| `contentEncoding` | _omit_ | `base64`&nbsp;or&nbsp;`base64url` | other encodings are [allowed](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-8.3) |\n\nNote that the encoding indicated by `contentEncoding`, which inflates the size of data in order to represent it as 7-bit ASCII text, is unrelated to HTTP's `Content-Encoding` header, which indicates whether and how a message body has been compressed and is applied after all content serialization described in this section has occurred. Since HTTP allows unencoded binary message bodies, there is no standardized HTTP header for indicating base64 or similar encoding of an entire message body.\n\nUsing a `contentEncoding` of `base64url` ensures that URL encoding (as required in the query string and in message bodies of type `application/x-www-form-urlencoded`) does not need to further encode any part of the already-encoded binary data.\n\nThe `contentMediaType` keyword is redundant if the media type is already set:\n\n* as the key for a [MediaType Object](#media-type-object)\n* in the `contentType` field of an [Encoding Object](#encoding-object)\n\nIf the [Schema Object](#schema-object) will be processed by a non-OAS-aware JSON Schema implementation, it may be useful to include `contentMediaType` even if it is redundant. However, if `contentMediaType` contradicts a relevant Media Type Object or Encoding Object, then `contentMediaType` SHALL be ignored.\n\nThe `maxLength` keyword MAY be used to set an expected upper bound on the length of a streaming payload. The keyword can be applied to either string data, including encoded binary data, or to unencoded binary data. For unencoded binary, the length is the number of octets.\n\n##### Migrating binary descriptions from OAS 3.0\n\nThe following table shows how to migrate from OAS 3.0 binary data descriptions, continuing to use `image/png` as the example binary media type:\n\n| OAS < 3.1 | OAS 3.1 | Comments |\n| ---- | ---- | ---- |\n| <code style=\"white-space:nowrap\">type: string</code><br /><code style=\"white-space:nowrap\">format: binary</code> | <code style=\"white-space:nowrap\">contentMediaType: image/png</code> | if redundant, can be omitted, often resulting in an empty [Schema Object](#schema-object) |\n| <code style=\"white-space:nowrap\">type: string</code><br /><code style=\"white-space:nowrap\">format: byte</code> | <code style=\"white-space:nowrap\">type: string</code><br /><code style=\"white-space:nowrap\">contentMediaType: image/png</code><br /><code style=\"white-space:nowrap\">contentEncoding: base64</code> | note that `base64url` can be used to avoid re-encoding the base64 string to be URL-safe |\n\n### Rich Text Formatting\n\nThroughout the specification `description` fields are noted as supporting CommonMark markdown formatting.\nWhere OpenAPI tooling renders rich text it MUST support, at a minimum, markdown syntax as described by [CommonMark 0.27](https://spec.commonmark.org/0.27/). Tooling MAY choose to ignore some CommonMark or extension features to address security concerns.\n\nWhile the framing of CommonMark 0.27 as a minimum requirement means that tooling MAY choose to implement extensions on top of it, note that any such extensions are by definition implementation-defined and will not be interoperable.\nOpenAPI Description authors SHOULD consider how text using such extensions will be rendered by tools that offer only the minimum support.\n\n### Relative References in API Description URIs\n\nURIs used as references within an OpenAPI Description, or to external documentation or other supplementary information such as a license, are resolved as _identifiers_, and described by this specification as **_URIs_**.\nAs noted under [Parsing Documents](#parsing-documents), this specification inherits JSON Schema Specification Draft 2020-12's requirements for [loading documents](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-9) and associating them with their expected URIs, which might not match their current location.\nThis feature is used both for working in development or test environments without having to change the URIs, and for working within restrictive network configurations or security policies.\n\nNote that some URI fields are named `url` for historical reasons, but the descriptive text for those fields uses the correct \"URI\" terminology.\n\nUnless specified otherwise, all fields that are URIs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\n\nRelative references in [Schema Objects](#schema-object), including any that appear as `$id` values, use the nearest parent `$id` as a Base URI, as described by [JSON Schema Specification Draft 2020-12](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-8.2).\n\nRelative URI references in other Objects, and in Schema Objects where no parent schema contains an `$id`, MUST be resolved using the referring document's base URI, which is determined in accordance with [[RFC3986]] [Section 5.1.2 – 5.1.4](https://tools.ietf.org/html/rfc3986#section-5.1.2).\nIn practice, this is usually the retrieval URI of the document, which MAY be determined based on either its current actual location or a user-supplied expected location.\n\nIf a URI contains a fragment identifier, then the fragment should be resolved per the fragment resolution mechanism of the referenced document. If the representation of the referenced document is JSON or YAML, then the fragment identifier SHOULD be interpreted as a JSON-Pointer as per [RFC6901](https://tools.ietf.org/html/rfc6901).\n\nRelative references in CommonMark hyperlinks are resolved in their rendered context, which might differ from the context of the API description.\n\n### Relative References in API URLs\n\nAPI endpoints are by definition accessed as locations, and are described by this specification as **_URLs_**.\n\nUnless specified otherwise, all fields that are URLs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\nUnless specified otherwise, relative references are resolved using the URLs defined in the [Server Object](#server-object) as a Base URL. Note that these themselves MAY be relative to the referring document.\n\n### Schema\n\nThis section describes the structure of the OpenAPI Description format.\nThis text is the only normative description of the format.\nA JSON Schema is hosted on [spec.openapis.org](https://spec.openapis.org) for informational purposes.\nIf the JSON Schema differs from this section, then this section MUST be considered authoritative.\n\nIn the following description, if a field is not explicitly **REQUIRED** or described with a MUST or SHALL, it can be considered OPTIONAL.\n\n#### OpenAPI Object\n\nThis is the root object of the [OpenAPI Description](#openapi-description).\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"oas-version\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [version number](#versions) of the OpenAPI Specification that the OpenAPI Document uses. The `openapi` field SHOULD be used by tooling to interpret the OpenAPI Document. This is _not_ related to the [`info.version`](#info-version) string, which is the version of the OpenAPI Document. |\n| <a name=\"oas-info\"></a>info | [Info Object](#info-object) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required. |\n| <a name=\"oas-json-schema-dialect\"></a> jsonSchemaDialect | `string` | The default value for the `$schema` keyword within [Schema Objects](#schema-object) contained within this OAS document. This MUST be in the form of a URI. |\n| <a name=\"oas-servers\"></a>servers | [[Server Object](#server-object)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` field is not provided, or is an empty array, the default value would be a [Server Object](#server-object) with a [url](#server-url) value of `/`. |\n| <a name=\"oas-paths\"></a>paths | [Paths Object](#paths-object) | The available paths and operations for the API. |\n| <a name=\"oas-webhooks\"></a>webhooks | Map[`string`, [Path Item Object](#path-item-object)] | The incoming webhooks that MAY be received as part of this API and that the API consumer MAY choose to implement. Closely related to the `callbacks` feature, this section describes requests initiated other than by an API call, for example by an out of band registration. The key name is a unique string to refer to each webhook, while the (optionally referenced) Path Item Object describes a request that may be initiated by the API provider and the expected responses. An [example](https://learn.openapis.org/examples/v3.1/webhook-example.html) is available. |\n| <a name=\"oas-components\"></a>components | [Components Object](#components-object) | An element to hold various Objects for the OpenAPI Description. |\n| <a name=\"oas-security\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative Security Requirement Objects that can be used. Only one of the Security Requirement Objects need to be satisfied to authorize a request. Individual operations can override this definition. The list can be incomplete, up to being empty or absent. To make security explicitly optional, an empty security requirement (`{}`) can be included in the array. |\n| <a name=\"oas-tags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the OpenAPI Description with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique. |\n| <a name=\"oas-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Info Object\n\nThe object provides metadata about the API.\nThe metadata MAY be used by the clients if needed, and MAY be presented in editing or documentation generation tools for convenience.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"info-title\"></a>title | `string` | **REQUIRED**. The title of the API. |\n| <a name=\"info-summary\"></a>summary | `string` | A short summary of the API. |\n| <a name=\"info-description\"></a>description | `string` | A description of the API. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"info-terms-of-service\"></a>termsOfService | `string` | A URI for the Terms of Service for the API. This MUST be in the form of a URI. |\n| <a name=\"info-contact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API. |\n| <a name=\"info-license\"></a>license | [License Object](#license-object) | The license information for the exposed API. |\n| <a name=\"info-version\"></a>version | `string` | **REQUIRED**. The version of the OpenAPI Document (which is distinct from the [OpenAPI Specification version](#oas-version) or the version of the API being described or the version of the OpenAPI Description). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Info Object Example\n\n```json\n{\n  \"title\": \"Example Pet Store App\",\n  \"summary\": \"A pet store manager.\",\n  \"description\": \"This is an example server for a pet store.\",\n  \"termsOfService\": \"https://example.com/terms/\",\n  \"contact\": {\n    \"name\": \"API Support\",\n    \"url\": \"https://www.example.com/support\",\n    \"email\": \"support@example.com\"\n  },\n  \"license\": {\n    \"name\": \"Apache 2.0\",\n    \"url\": \"https://www.apache.org/licenses/LICENSE-2.0.html\"\n  },\n  \"version\": \"1.0.1\"\n}\n```\n\n```yaml\ntitle: Example Pet Store App\nsummary: A pet store manager.\ndescription: This is an example server for a pet store.\ntermsOfService: https://example.com/terms/\ncontact:\n  name: API Support\n  url: https://www.example.com/support\n  email: support@example.com\nlicense:\n  name: Apache 2.0\n  url: https://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n#### Contact Object\n\nContact information for the exposed API.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"contact-name\"></a>name | `string` | The identifying name of the contact person/organization. |\n| <a name=\"contact-url\"></a>url | `string` | The URI for the contact information. This MUST be in the form of a URI. |\n| <a name=\"contact-email\"></a>email | `string` | The email address of the contact person/organization. This MUST be in the form of an email address. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Contact Object Example\n\n```json\n{\n  \"name\": \"API Support\",\n  \"url\": \"https://www.example.com/support\",\n  \"email\": \"support@example.com\"\n}\n```\n\n```yaml\nname: API Support\nurl: https://www.example.com/support\nemail: support@example.com\n```\n\n#### License Object\n\nLicense information for the exposed API.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"license-name\"></a>name | `string` | **REQUIRED**. The license name used for the API. |\n| <a name=\"license-identifier\"></a>identifier | `string` | An [SPDX](https://spdx.org/licenses/) license expression for the API. The `identifier` field is mutually exclusive of the `url` field. |\n| <a name=\"license-url\"></a>url | `string` | A URI for the license used for the API. This MUST be in the form of a URI. The `url` field is mutually exclusive of the `identifier` field. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### License Object Example\n\n```json\n{\n  \"name\": \"Apache 2.0\",\n  \"identifier\": \"Apache-2.0\"\n}\n```\n\n```yaml\nname: Apache 2.0\nidentifier: Apache-2.0\n```\n\n#### Server Object\n\nAn object representing a Server.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"server-url\"></a>url | `string` | **REQUIRED**. A URL to the target host. This URL supports Server Variables and MAY be relative, to indicate that the host location is relative to the location where the document containing the Server Object is being served. Query and fragment MUST NOT be part of this URL. Variable substitutions will be made when a variable is named in `{`braces`}`. |\n| <a name=\"server-description\"></a>description | `string` | An optional string describing the host designated by the URL. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"server-variables\"></a>variables | Map[`string`, [Server Variable Object](#server-variable-object)] | A map between a variable name and its value. The value is used for substitution in the server's URL template. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Server Object Example\n\nA single server would be described as:\n\n```json\n{\n  \"url\": \"https://development.gigantic-server.com/v1\",\n  \"description\": \"Development server\"\n}\n```\n\n```yaml\nurl: https://development.gigantic-server.com/v1\ndescription: Development server\n```\n\nThe following shows how multiple servers can be described, for example, at the OpenAPI Object's [`servers`](#oas-servers):\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://development.gigantic-server.com/v1\",\n      \"description\": \"Development server\"\n    },\n    {\n      \"url\": \"https://staging.gigantic-server.com/v1\",\n      \"description\": \"Staging server\"\n    },\n    {\n      \"url\": \"https://api.gigantic-server.com/v1\",\n      \"description\": \"Production server\"\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n  - url: https://development.gigantic-server.com/v1\n    description: Development server\n  - url: https://staging.gigantic-server.com/v1\n    description: Staging server\n  - url: https://api.gigantic-server.com/v1\n    description: Production server\n```\n\nThe following shows how variables can be used for a server configuration:\n\n```json\n{\n  \"servers\": [\n    {\n      \"url\": \"https://{username}.gigantic-server.com:{port}/{basePath}\",\n      \"description\": \"The production API server\",\n      \"variables\": {\n        \"username\": {\n          \"default\": \"demo\",\n          \"description\": \"A user-specific subdomain. Use `demo` for a free sandbox environment.\"\n        },\n        \"port\": {\n          \"enum\": [\"8443\", \"443\"],\n          \"default\": \"8443\"\n        },\n        \"basePath\": {\n          \"default\": \"v2\"\n        }\n      }\n    }\n  ]\n}\n```\n\n```yaml\nservers:\n  - url: https://{username}.gigantic-server.com:{port}/{basePath}\n    description: The production API server\n    variables:\n      username:\n        # note! no enum here means it is an open value\n        default: demo\n        description: A user-specific subdomain. Use `demo` for a free sandbox environment.\n      port:\n        enum:\n          - '8443'\n          - '443'\n        default: '8443'\n      basePath:\n        # open meaning there is the opportunity to use special base paths as assigned by the provider, default is \"v2\"\n        default: v2\n```\n\n#### Server Variable Object\n\nAn object representing a Server Variable for server URL template substitution.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"server-variable-enum\"></a>enum | [`string`] | An enumeration of string values to be used if the substitution options are from a limited set. The array MUST NOT be empty. |\n| <a name=\"server-variable-default\"></a>default | `string` | **REQUIRED**. The default value to use for substitution, which SHALL be sent if an alternate value is _not_ supplied. If the [`enum`](#server-variable-enum) is defined, the value MUST exist in the enum's values. Note that this behavior is different from the [Schema Object](#schema-object)'s `default` keyword, which documents the receiver's behavior rather than inserting the value into the data. |\n| <a name=\"server-variable-description\"></a>description | `string` | An optional description for the server variable. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Components Object\n\nHolds a set of reusable objects for different aspects of the OAS.\nAll objects defined within the Components Object will have no effect on the API unless they are explicitly referenced from outside the Components Object.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :---- | ---- |\n| <a name=\"components-schemas\"></a> schemas | Map[`string`, [Schema Object](#schema-object)] | An object to hold reusable [Schema Objects](#schema-object). |\n| <a name=\"components-responses\"></a> responses | Map[`string`, [Response Object](#response-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Response Objects](#response-object). |\n| <a name=\"components-parameters\"></a> parameters | Map[`string`, [Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Parameter Objects](#parameter-object). |\n| <a name=\"components-examples\"></a> examples | Map[`string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Example Objects](#example-object). |\n| <a name=\"components-request-bodies\"></a> requestBodies | Map[`string`, [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Request Body Objects](#request-body-object). |\n| <a name=\"components-headers\"></a> headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Header Objects](#header-object). |\n| <a name=\"components-security-schemes\"></a> securitySchemes | Map[`string`, [Security Scheme Object](#security-scheme-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Security Scheme Objects](#security-scheme-object). |\n| <a name=\"components-links\"></a> links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Link Objects](#link-object). |\n| <a name=\"components-callbacks\"></a> callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Callback Objects](#callback-object). |\n| <a name=\"components-path-items\"></a> pathItems | Map[`string`, [Path Item Object](#path-item-object)] | An object to hold reusable [Path Item Objects](#path-item-object). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nAll the fixed fields declared above are objects that MUST use keys that match the regular expression: `^[a-zA-Z0-9\\.\\-_]+$`.\n\nField Name Examples:\n\n```text\nUser\nUser_1\nUser_Name\nuser-name\nmy.org.User\n```\n\n##### Components Object Example\n\n```json\n\"components\": {\n  \"schemas\": {\n    \"GeneralError\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"code\": {\n          \"type\": \"integer\",\n          \"format\": \"int32\"\n        },\n        \"message\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Category\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    },\n    \"Tag\": {\n      \"type\": \"object\",\n      \"properties\": {\n        \"id\": {\n          \"type\": \"integer\",\n          \"format\": \"int64\"\n        },\n        \"name\": {\n          \"type\": \"string\"\n        }\n      }\n    }\n  },\n  \"parameters\": {\n    \"skipParam\": {\n      \"name\": \"skip\",\n      \"in\": \"query\",\n      \"description\": \"number of items to skip\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    },\n    \"limitParam\": {\n      \"name\": \"limit\",\n      \"in\": \"query\",\n      \"description\": \"max records to return\",\n      \"required\": true,\n      \"schema\" : {\n        \"type\": \"integer\",\n        \"format\": \"int32\"\n      }\n    }\n  },\n  \"responses\": {\n    \"NotFound\": {\n      \"description\": \"Entity not found.\"\n    },\n    \"IllegalInput\": {\n      \"description\": \"Illegal input for operation.\"\n    },\n    \"GeneralError\": {\n      \"description\": \"General Error\",\n      \"content\": {\n        \"application/json\": {\n          \"schema\": {\n            \"$ref\": \"#/components/schemas/GeneralError\"\n          }\n        }\n      }\n    }\n  },\n  \"securitySchemes\": {\n    \"api_key\": {\n      \"type\": \"apiKey\",\n      \"name\": \"api-key\",\n      \"in\": \"header\"\n    },\n    \"petstore_auth\": {\n      \"type\": \"oauth2\",\n      \"flows\": {\n        \"implicit\": {\n          \"authorizationUrl\": \"https://example.org/api/oauth/dialog\",\n          \"scopes\": {\n            \"write:pets\": \"modify pets in your account\",\n            \"read:pets\": \"read your pets\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    GeneralError:\n      type: object\n      properties:\n        code:\n          type: integer\n          format: int32\n        message:\n          type: string\n    Category:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n    Tag:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n  parameters:\n    skipParam:\n      name: skip\n      in: query\n      description: number of items to skip\n      required: true\n      schema:\n        type: integer\n        format: int32\n    limitParam:\n      name: limit\n      in: query\n      description: max records to return\n      required: true\n      schema:\n        type: integer\n        format: int32\n  responses:\n    NotFound:\n      description: Entity not found.\n    IllegalInput:\n      description: Illegal input for operation.\n    GeneralError:\n      description: General Error\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/GeneralError'\n  securitySchemes:\n    api_key:\n      type: apiKey\n      name: api-key\n      in: header\n    petstore_auth:\n      type: oauth2\n      flows:\n        implicit:\n          authorizationUrl: https://example.org/api/oauth/dialog\n          scopes:\n            write:pets: modify pets in your account\n            read:pets: read your pets\n```\n\n#### Paths Object\n\nHolds the relative paths to the individual endpoints and their operations.\nThe path is appended to the URL from the [Server Object](#server-object) in order to construct the full URL. The Paths Object MAY be empty, due to [Access Control List (ACL) constraints](#security-filtering).\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"paths-path\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a forward slash (`/`). The path is **appended** (no relative URL resolution) to the expanded URL from the [Server Object](#server-object)'s `url` field in order to construct the full URL. [Path templating](#path-templating) is allowed. When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical. In case of ambiguous matching, it's up to the tooling to decide which one to use. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Templating Matching\n\nAssuming the following paths, the concrete definition, `/pets/mine`, will be matched first if used:\n\n```text\n  /pets/{petId}\n  /pets/mine\n```\n\nThe following paths are considered identical and invalid:\n\n```text\n  /pets/{petId}\n  /pets/{name}\n```\n\nThe following may lead to ambiguous resolution:\n\n```text\n  /{entity}/me\n  /books/{id}\n```\n\n##### Paths Object Example\n\n```json\n{\n  \"/pets\": {\n    \"get\": {\n      \"description\": \"Returns all pets from the system that the user has access to\",\n      \"responses\": {\n        \"200\": {\n          \"description\": \"A list of pets.\",\n          \"content\": {\n            \"application/json\": {\n              \"schema\": {\n                \"type\": \"array\",\n                \"items\": {\n                  \"$ref\": \"#/components/schemas/pet\"\n                }\n              }\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    responses:\n      '200':\n        description: A list of pets.\n        content:\n          application/json:\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/pet'\n```\n\n#### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item MAY be empty, due to [ACL constraints](#security-filtering).\nThe path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"path-item-ref\"></a>$ref | `string` | Allows for a referenced definition of this path item. The value MUST be in the form of a URI, and the referenced structure MUST be in the form of a [Path Item Object](#path-item-object). In case a Path Item Object field appears both in the defined object and the referenced object, the behavior is undefined. See the rules for resolving [Relative References](#relative-references-in-api-description-uris). <br><br>_**Note:** The behavior of `$ref` with adjacent properties is likely to change in future versions of this specification to bring it into closer alignment with the behavior of the [Reference Object](#reference-object)._ |\n| <a name=\"path-item-summary\"></a>summary | `string` | An optional string summary, intended to apply to all operations in this path. |\n| <a name=\"path-item-description\"></a>description | `string` | An optional string description, intended to apply to all operations in this path. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"path-item-get\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path. |\n| <a name=\"path-item-put\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path. |\n| <a name=\"path-item-post\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path. |\n| <a name=\"path-item-delete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path. |\n| <a name=\"path-item-options\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path. |\n| <a name=\"path-item-head\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path. |\n| <a name=\"path-item-patch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path. |\n| <a name=\"path-item-trace\"></a>trace | [Operation Object](#operation-object) | A definition of a TRACE operation on this path. |\n| <a name=\"path-item-servers\"></a>servers | [[Server Object](#server-object)] | An alternative `servers` array to service all operations in this path. If a `servers` array is specified at the [OpenAPI Object](#oas-servers) level, it will be overridden by this value. |\n| <a name=\"path-item-parameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in). The list can use the [Reference Object](#reference-object) to link to parameters that are defined in the [OpenAPI Object's `components.parameters`](#components-parameters). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Path Item Object Example\n\n```json\n{\n  \"get\": {\n    \"description\": \"Returns pets based on ID\",\n    \"summary\": \"Find pets by ID\",\n    \"operationId\": \"getPetsById\",\n    \"responses\": {\n      \"200\": {\n        \"description\": \"pet response\",\n        \"content\": {\n          \"*/*\": {\n            \"schema\": {\n              \"type\": \"array\",\n              \"items\": {\n                \"$ref\": \"#/components/schemas/Pet\"\n              }\n            }\n          }\n        }\n      },\n      \"default\": {\n        \"description\": \"error payload\",\n        \"content\": {\n          \"text/html\": {\n            \"schema\": {\n              \"$ref\": \"#/components/schemas/ErrorModel\"\n            }\n          }\n        }\n      }\n    }\n  },\n  \"parameters\": [\n    {\n      \"name\": \"id\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet to use\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"type\": \"string\"\n        }\n      },\n      \"style\": \"simple\"\n    }\n  ]\n}\n```\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  responses:\n    '200':\n      description: pet response\n      content:\n        '*/*':\n          schema:\n            type: array\n            items:\n              $ref: '#/components/schemas/Pet'\n    default:\n      description: error payload\n      content:\n        text/html:\n          schema:\n            $ref: '#/components/schemas/ErrorModel'\nparameters:\n  - name: id\n    in: path\n    description: ID of pet to use\n    required: true\n    schema:\n      type: array\n      items:\n        type: string\n    style: simple\n```\n\n#### Operation Object\n\nDescribes a single API operation on a path.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"operation-tags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier. |\n| <a name=\"operation-summary\"></a>summary | `string` | A short summary of what the operation does. |\n| <a name=\"operation-description\"></a>description | `string` | A verbose explanation of the operation behavior. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"operation-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation. |\n| <a name=\"operation-id\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. The operationId value is **case-sensitive**. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is RECOMMENDED to follow common programming naming conventions. |\n| <a name=\"operation-parameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined at the [Path Item](#path-item-parameters), the new definition will override it but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in). The list can use the [Reference Object](#reference-object) to link to parameters that are defined in the [OpenAPI Object's `components.parameters`](#components-parameters). |\n| <a name=\"operation-request-body\"></a>requestBody | [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object) | The request body applicable for this operation. The `requestBody` is fully supported in HTTP methods where the HTTP 1.1 specification [RFC7231](https://tools.ietf.org/html/rfc7231#section-4.3.1) has explicitly defined semantics for request bodies. In other cases where the HTTP spec is vague (such as [GET](https://tools.ietf.org/html/rfc7231#section-4.3.1), [HEAD](https://tools.ietf.org/html/rfc7231#section-4.3.2) and [DELETE](https://tools.ietf.org/html/rfc7231#section-4.3.5)), `requestBody` is permitted but does not have well-defined semantics and SHOULD be avoided if possible. |\n| <a name=\"operation-responses\"></a>responses | [Responses Object](#responses-object) | The list of possible responses as they are returned from executing this operation. |\n| <a name=\"operation-callbacks\"></a>callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | A map of possible out-of band callbacks related to the parent operation. The key is a unique identifier for the Callback Object. Each value in the map is a [Callback Object](#callback-object) that describes a request that may be initiated by the API provider and the expected responses. |\n| <a name=\"operation-deprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Consumers SHOULD refrain from usage of the declared operation. Default value is `false`. |\n| <a name=\"operation-security\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used for this operation. The list of values includes alternative Security Requirement Objects that can be used. Only one of the Security Requirement Objects need to be satisfied to authorize a request. To make security optional, an empty security requirement (`{}`) can be included in the array. This definition overrides any declared top-level [`security`](#oas-security). To remove a top-level security declaration, an empty array can be used. |\n| <a name=\"operation-servers\"></a>servers | [[Server Object](#server-object)] | An alternative `servers` array to service this operation. If a `servers` array is specified at the [Path Item Object](#path-item-servers) or [OpenAPI Object](#oas-servers) level, it will be overridden by this value. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Operation Object Example\n\n```json\n{\n  \"tags\": [\"pet\"],\n  \"summary\": \"Updates a pet in the store with form data\",\n  \"operationId\": \"updatePetWithForm\",\n  \"parameters\": [\n    {\n      \"name\": \"petId\",\n      \"in\": \"path\",\n      \"description\": \"ID of pet that needs to be updated\",\n      \"required\": true,\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  ],\n  \"requestBody\": {\n    \"content\": {\n      \"application/x-www-form-urlencoded\": {\n        \"schema\": {\n          \"type\": \"object\",\n          \"properties\": {\n            \"name\": {\n              \"description\": \"Updated name of the pet\",\n              \"type\": \"string\"\n            },\n            \"status\": {\n              \"description\": \"Updated status of the pet\",\n              \"type\": \"string\"\n            }\n          },\n          \"required\": [\"status\"]\n        }\n      }\n    }\n  },\n  \"responses\": {\n    \"200\": {\n      \"description\": \"Pet updated.\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    },\n    \"405\": {\n      \"description\": \"Method Not Allowed\",\n      \"content\": {\n        \"application/json\": {},\n        \"application/xml\": {}\n      }\n    }\n  },\n  \"security\": [\n    {\n      \"petstore_auth\": [\"write:pets\", \"read:pets\"]\n    }\n  ]\n}\n```\n\n```yaml\ntags:\n  - pet\nsummary: Updates a pet in the store with form data\noperationId: updatePetWithForm\nparameters:\n  - name: petId\n    in: path\n    description: ID of pet that needs to be updated\n    required: true\n    schema:\n      type: string\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          name:\n            description: Updated name of the pet\n            type: string\n          status:\n            description: Updated status of the pet\n            type: string\n        required:\n          - status\nresponses:\n  '200':\n    description: Pet updated.\n    content:\n      application/json: {}\n      application/xml: {}\n  '405':\n    description: Method Not Allowed\n    content:\n      application/json: {}\n      application/xml: {}\nsecurity:\n  - petstore_auth:\n      - write:pets\n      - read:pets\n```\n\n#### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"external-doc-description\"></a>description | `string` | A description of the target documentation. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"external-doc-url\"></a>url | `string` | **REQUIRED**. The URI for the target documentation. This MUST be in the form of a URI. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### External Documentation Object Example\n\n```json\n{\n  \"description\": \"Find more info here\",\n  \"url\": \"https://example.com\"\n}\n```\n\n```yaml\ndescription: Find more info here\nurl: https://example.com\n```\n\n#### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in).\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns, including interactions with the `application/x-www-form-urlencoded` query string format.\n\n##### Parameter Locations\n\nThere are four possible parameter locations specified by the `in` field:\n\n* path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`.\n* header - Custom headers that are expected as part of the request. Note that [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2) states header names are case insensitive.\n* cookie - Used to pass a specific cookie value to the API.\n\n##### Fixed Fields\n\nThe rules for serialization of the parameter are specified in one of two ways.\nParameter Objects MUST include either a `content` field or a `schema` field, but not both.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of converting values of various types to string representations.\n\n###### Common Fixed Fields\n\nThese fields MAY be used with either `content` or `schema`.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-name\"></a>name | `string` | **REQUIRED**. The name of the parameter. Parameter names are _case sensitive_. <ul><li>If [`in`](#parameter-in) is `\"path\"`, the `name` field MUST correspond to a template expression occurring within the [path](#paths-path) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>If [`in`](#parameter-in) is `\"header\"` and the `name` field is `\"Accept\"`, `\"Content-Type\"` or `\"Authorization\"`, the parameter definition SHALL be ignored.<li>For all other cases, the `name` corresponds to the parameter name used by the [`in`](#parameter-in) field.</ul> |\n| <a name=\"parameter-in\"></a>in | `string` | **REQUIRED**. The location of the parameter. Possible values are `\"query\"`, `\"header\"`, `\"path\"` or `\"cookie\"`. |\n| <a name=\"parameter-description\"></a>description | `string` | A brief description of the parameter. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"parameter-required\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the [parameter location](#parameter-in) is `\"path\"`, this field is **REQUIRED** and its value MUST be `true`. Otherwise, the field MAY be included and its default value is `false`. |\n| <a name=\"parameter-deprecated\"></a> deprecated | `boolean` | Specifies that a parameter is deprecated and SHOULD be transitioned out of usage. Default value is `false`. |\n| <a name=\"parameter-allow-empty-value\"></a> allowEmptyValue | `boolean` | If `true`, clients MAY pass a zero-length string value in place of parameters that would otherwise be omitted entirely, which the server SHOULD interpret as the parameter being unused. Default value is `false`. If [`style`](#parameter-style) is used, and if [behavior is _n/a_ (cannot be serialized)](#style-examples), the value of `allowEmptyValue` SHALL be ignored. Interactions between this field and the parameter's [Schema Object](#schema-object) are implementation-defined. This field is valid only for `query` parameters. Use of this field is NOT RECOMMENDED, and it is likely to be removed in a later revision. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nNote that while `\"Cookie\"` as a `name` is not forbidden if `in` is `\"header\"`, the effect of defining a cookie parameter that way is undefined; use `in: \"cookie\"` instead.\n\n###### Fixed Fields for use with `schema`\n\nFor simpler scenarios, a [`schema`](#parameter-schema) and [`style`](#parameter-style) can describe the structure and syntax of the parameter.\nWhen `example` or `examples` are provided in conjunction with the `schema` field, the example SHOULD match the specified schema and follow the prescribed serialization strategy for the parameter.\nThe `example` and `examples` fields are mutually exclusive, and if either is present it SHALL _override_ any `example` in the schema.\n\nWhen serializing `in: \"header\"` parameters with `schema`, URI percent-encoding MUST NOT be applied; if using an RFC6570 implementation that automatically applies it, it MUST be removed before use.\nImplementations MUST pass header values through unchanged rather than attempting to automatically quote header values, as the quoting rules vary too widely among different headers; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for guidance on quoting and escaping.\n\nSerializing with `schema` is NOT RECOMMENDED for `in: \"cookie\"` parameters; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for details.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-style\"></a>style | `string` | Describes how the parameter value will be serialized depending on the type of the parameter value. Default values (based on value of `in`): for `\"query\"` - `\"form\"`; for `\"path\"` - `\"simple\"`; for `\"header\"` - `\"simple\"`; for `\"cookie\"` - `\"form\"`. |\n| <a name=\"parameter-explode\"></a>explode | `boolean` | When this is true, parameter values of type `array` or `object` generate separate parameters for each value of the array or key-value pair of the map. For other types of parameters this field has no effect. When [`style`](#parameter-style) is `\"form\"`, the default value is `true`. For all other styles, the default value is `false`. Note that despite `false` being the default for `deepObject`, the combination of `false` with `deepObject` is undefined. |\n| <a name=\"parameter-allow-reserved\"></a>allowReserved | `boolean` | When this is true, parameter values are serialized using reserved expansion, as defined by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570#section-3.2.3), which allows [RFC3986's reserved character set](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2), as well as percent-encoded triples, to pass through unchanged, while still percent-encoding all other disallowed characters (including `%` outside of percent-encoded triples). Applications are still responsible for percent-encoding reserved characters that are [not allowed in the query string](https://datatracker.ietf.org/doc/html/rfc3986#section-3.4) (`[`, `]`, `#`), or have a special meaning in `application/x-www-form-urlencoded` (`-`, `&`, `+`); see [URL Percent-Encoding](#url-percent-encoding) for details. This field only applies to parameters with an `in` value of `query`. The default value is `false`. |\n| <a name=\"parameter-schema\"></a>schema | [Schema Object](#schema-object) | The schema defining the type used for the parameter. |\n| <a name=\"parameter-example\"></a>example | Any | Example of the parameter's potential value; see [Working With Examples](#working-with-examples). |\n| <a name=\"parameter-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the parameter's potential value; see [Working With Examples](#working-with-examples). |\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\n###### Fixed Fields for use with `content`\n\nFor more complex scenarios, the [`content`](#parameter-content) field can define the media type and schema of the parameter, as well as give examples of its use.\nUsing `content` with a `text/plain` media type is RECOMMENDED for `in: \"cookie\"` parameters where the `schema` strategy's percent-encoding and/or delimiter rules are not appropriate.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the parameter. The key is the media type and the value describes it. The map MUST only contain one entry. |\n\n##### Style Values\n\nIn order to support common ways of serializing simple parameters, a set of `style` values are defined.\n\n| `style` | [`type`](#data-types) | `in` | Comments |\n| ---- | ---- | ---- | ---- |\n| matrix | `primitive`, `array`, `object` | `path` | Path-style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.7) |\n| label | `primitive`, `array`, `object` | `path` | Label style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.5) |\n| simple | `primitive`, `array`, `object` | `path`, `header` | Simple style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.2). This option replaces `collectionFormat` with a `csv` value from OpenAPI 2.0. |\n| form | `primitive`, `array`, `object` | `query`, `cookie` | Form style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.8). This option replaces `collectionFormat` with a `csv` (when `explode` is false) or `multi` (when `explode` is true) value from OpenAPI 2.0. |\n| spaceDelimited | `array`, `object` | `query` | Space separated array values or object properties and values. This option replaces `collectionFormat` equal to `ssv` from OpenAPI 2.0. |\n| pipeDelimited | `array`, `object` | `query` | Pipe separated array values or object properties and values. This option replaces `collectionFormat` equal to `pipes` from OpenAPI 2.0. |\n| deepObject | `object` | `query` | Allows objects with scalar properties to be represented using form parameters. The representation of array or object properties is not defined. |\n\n##### URL Percent-Encoding\n\nAll API URLs MUST successfully parse and percent-decode using [[RFC3986]] rules.\n\nContent in the `application/x-www-form-urlencoded` format, including query strings produced by [Parameter Objects](#parameter-object) with `in: \"query\"`, MUST also successfully parse and percent-decode using [[RFC1866]] rules, including treating non-percent-encoded `+` as an escaped space character.\n\nThese requirements are specified in terms of percent-_decoding_ rules, which are consistently tolerant across different versions of the various standards that apply to URIs.\n\nPercent-_encoding_ is performed in several places:\n\n* By [[RFC6570]] implementations (or simulations thereof; see [Appendix C](#appendix-c-using-rfc6570-based-serialization))\n* By the Parameter or [Encoding](#encoding-object) Objects when incorporating a value serialized with a [Media Type Object](#media-type-object) for a media type that does not already incorporate URI percent-encoding\n* By the user, prior to passing data through RFC6570's reserved expansion process\n\nWhen percent-encoding, the safest approach is to percent-encode all characters not in RFC3986's \"unreserved\" set, and for `form-urlencoded` to also percent-encode the tilde character (`~`) to align with the historical requirements of [[RFC1738]], which is cited by RFC1866.\nThis approach is used in examples in this specification.\n\nFor `form-urlencoded`, while the encoding algorithm given by RFC1866 requires escaping the space character as `+`, percent-encoding it as `%20` also meets the above requirements.\nExamples in this specification will prefer `%20` when using RFC6570's default (non-reserved) form-style expansion, and `+` otherwise.\n\nReserved characters MUST NOT be percent-encoded when being used for reserved purposes such as `&=+` for `form-urlencoded` or `,` for delimiting non-exploded array and object values in RFC6570 expansions.\nThe result of inserting non-percent-encoded delimiters into data using manual percent-encoding, including via RFC6570's reserved expansion rules, is undefined and will likely prevent implementations from parsing the results back into the correct data structures.\nIn some cases, such as inserting `/` into path parameter values, doing so is [explicitly forbidden](#path-templating) by this specification.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a thorough discussion of percent-encoding options, compatibility, and OAS-defined delimiters that are not allowed by RFC3986, and [Appendix C](#appendix-c-using-rfc6570-based-serialization) for guidance on using RFC6570 implementations.\n\n##### Serialization and Examples\n\nThe rules in this section apply to both the Parameter and [Header](#header-object) Objects, both of which use the same mechanisms.\n\nWhen showing serialized examples using the `example` field or [Example Objects](#example-object), in most cases the value to show is just the value, with all relevant percent-encoding or other encoding/escaping applied, and also including any delimiters produced by the `style` and `explode` configuration.\n\nIn cases where the name is an inherent part of constructing the serialization, such as the `name=value` pairs produced by `style: \"form\"` or the combination of `style: \"simple\", explode: true`, the name and any delimiter between the name and value MUST be included.\n\nThe `matrix` and `label` styles produce a leading delimiter which is always a valid part of the serialization and MUST be included.\nThe RFC6570 operators corresponding to `style: \"form\"` produce a leading delimiter of either `?` or `&` depending on the exact syntax used.\nAs the suitability of either delimiter depends on where in the query string the parameter occurs, as well as whether it is in a URI or in `application/x-www-form-urlencoded` content, this leading delimiter MUST NOT be included in examples of individual parameters or media type documents.\nFor `in: \"cookie\", style: \"form\"`, neither the `&` nor `?` delimiters are ever correct; see [Appendix D: Serializing Headers and Cookies](#appendix-d-serializing-headers-and-cookies) for more details.\n\nFor headers, the header name MUST NOT be included as part of the serialization, as it is never part of the RFC6570-derived result.\nHowever, names produced by `style: \"simple\", explode: \"true\"` are included as they appear within the header value, not as separate headers.\n\nThe following section illustrates these rules.\n\n##### Style Examples\n\nAssume a parameter named `color` has one of the following values:\n\n```js\n   string -> \"blue\"\n   array -> [\"blue\", \"black\", \"brown\"]\n   object -> { \"R\": 100, \"G\": 200, \"B\": 150 }\n```\n\nThe following table shows serialized examples, as would be shown with the `example` or `examples` keywords, of the different serializations for each value.\n\n* The value _empty_ denotes the empty string, and is unrelated to the `allowEmptyValue` field.\n* The behavior of combinations marked _n/a_ is undefined.\n* The `undefined` column replaces the `empty` column in previous versions of this specification in order to better align with [RFC6570](https://www.rfc-editor.org/rfc/rfc6570.html#section-2.3) terminology, which describes certain values including but not limited to `null` as \"undefined\" values with special handling; notably, the empty string is _not_ undefined.\n* For `form` and the non-RFC6570 query string styles `spaceDelimited`, `pipeDelimited`, and `deepObject`, see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more information on constructing query strings from multiple parameters, and [Appendix D](#appendix-d-serializing-headers-and-cookies) for warnings regarding `form` and cookie parameters.\n* The examples are percent-encoded as explained in the [URL Percent-Encoding](#url-percent-encoding) section above; see [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a thorough discussion of percent-encoding concerns, including why unencoded `|` (`%7C`), `[` (`%5B`), and `]` (`%5D`) seem to work in some environments despite not being compliant.\n\n| [`style`](#style-values) | `explode` | `undefined` | `string` | `array` | `object` |\n| ---- | ---- | ---- | ---- | ---- | ---- |\n| matrix | false | ;color | ;color=blue | ;color=blue,black,brown | ;color=R,100,G,200,B,150 |\n| matrix | true | ;color | ;color=blue | ;color=blue;color=black;color=brown | ;R=100;G=200;B=150 |\n| label | false | . | .blue | .blue,black,brown | .R,100,G,200,B,150 |\n| label | true | . | .blue | .blue.black.brown | .R=100.G=200.B=150 |\n| simple | false | _empty_ | blue | blue,black,brown | R,100,G,200,B,150 |\n| simple | true | _empty_ | blue | blue,black,brown | R=100,G=200,B=150 |\n| form | false | <span style=\"white-space: nowrap;\">color=</span> | <span style=\"white-space: nowrap;\">color=blue</span> | <span style=\"white-space: nowrap;\">color=blue,black,brown</span> | <span style=\"white-space: nowrap;\">color=R,100,G,200,B,150</span> |\n| form | true | <span style=\"white-space: nowrap;\">color=</span> | <span style=\"white-space: nowrap;\">color=blue</span> | <span style=\"white-space: nowrap;\">color=blue&color=black&color=brown</span> | <span style=\"white-space: nowrap;\">R=100&G=200&B=150</span> |\n| spaceDelimited</span> | false | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">color=blue%20black%20brown</span> | <span style=\"white-space: nowrap;\">color=R%20100%20G%20200%20B%20150</span> |\n| spaceDelimited | true | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| pipeDelimited | false | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">color=blue%7Cblack%7Cbrown</span> | <span style=\"white-space: nowrap;\">color=R%7C100%7CG%7C200%7CB%7C150</span> |\n| pipeDelimited | true | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| deepObject | false | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| deepObject | true | _n/a_ | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">color%5BR%5D=100&color%5BG%5D=200&color%5BB%5D=150</span> |\n\n##### Parameter Object Examples\n\nA header parameter with an array of 64-bit integer numbers:\n\n```json\n{\n  \"name\": \"token\",\n  \"in\": \"header\",\n  \"description\": \"token to be passed as a header\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    }\n  },\n  \"style\": \"simple\"\n}\n```\n\n```yaml\nname: token\nin: header\ndescription: token to be passed as a header\nrequired: true\nschema:\n  type: array\n  items:\n    type: integer\n    format: int64\nstyle: simple\n```\n\nA path parameter of a string value:\n\n```json\n{\n  \"name\": \"username\",\n  \"in\": \"path\",\n  \"description\": \"username to fetch\",\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\nschema:\n  type: string\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter:\n\n```json\n{\n  \"name\": \"id\",\n  \"in\": \"query\",\n  \"description\": \"ID of the object to fetch\",\n  \"required\": false,\n  \"schema\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  },\n  \"style\": \"form\",\n  \"explode\": true\n}\n```\n\n```yaml\nname: id\nin: query\ndescription: ID of the object to fetch\nrequired: false\nschema:\n  type: array\n  items:\n    type: string\nstyle: form\nexplode: true\n```\n\nA free-form query parameter, allowing undefined parameters of a specific type:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"freeForm\",\n  \"schema\": {\n    \"type\": \"object\",\n    \"additionalProperties\": {\n      \"type\": \"integer\"\n    }\n  },\n  \"style\": \"form\"\n}\n```\n\n```yaml\nin: query\nname: freeForm\nschema:\n  type: object\n  additionalProperties:\n    type: integer\nstyle: form\n```\n\nA complex parameter using `content` to define serialization:\n\n```json\n{\n  \"in\": \"query\",\n  \"name\": \"coordinates\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"object\",\n        \"required\": [\"lat\", \"long\"],\n        \"properties\": {\n          \"lat\": {\n            \"type\": \"number\"\n          },\n          \"long\": {\n            \"type\": \"number\"\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\nin: query\nname: coordinates\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n        - lat\n        - long\n      properties:\n        lat:\n          type: number\n        long:\n          type: number\n```\n\n#### Request Body Object\n\nDescribes a single request body.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"request-body-description\"></a>description | `string` | A brief description of the request body. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"request-body-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | **REQUIRED**. The content of the request body. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it. The map SHOULD have at least one entry; if it does not, the behavior is implementation-defined. For requests that match multiple keys, only the most specific key is applicable. e.g. `\"text/plain\"` overrides `\"text/*\"` |\n| <a name=\"request-body-required\"></a>required | `boolean` | Determines if the request body is required in the request. Defaults to `false`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Request Body Examples\n\nA request body with a referenced schema definition.\n\n```json\n{\n  \"description\": \"user to add to the system\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User Example\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.json\"\n        }\n      }\n    },\n    \"application/xml\": {\n      \"schema\": {\n        \"$ref\": \"#/components/schemas/User\"\n      },\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User example in XML\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.xml\"\n        }\n      }\n    },\n    \"text/plain\": {\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User example in Plain text\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.txt\"\n        }\n      }\n    },\n    \"*/*\": {\n      \"examples\": {\n        \"user\": {\n          \"summary\": \"User example in other format\",\n          \"externalValue\": \"https://foo.bar/examples/user-example.whatever\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: user to add to the system\ncontent:\n  application/json:\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User example\n        externalValue: https://foo.bar/examples/user-example.json\n  application/xml:\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User example in XML\n        externalValue: https://foo.bar/examples/user-example.xml\n  text/plain:\n    examples:\n      user:\n        summary: User example in plain text\n        externalValue: https://foo.bar/examples/user-example.txt\n  '*/*':\n    examples:\n      user:\n        summary: User example in other format\n        externalValue: https://foo.bar/examples/user-example.whatever\n```\n\n#### Media Type Object\n\nEach Media Type Object provides schema and examples for the media type identified by its key.\n\nWhen `example` or `examples` are provided, the example SHOULD match the specified schema and be in the correct format as specified by the media type and its encoding.\nThe `example` and `examples` fields are mutually exclusive, and if either is present it SHALL _override_ any `example` in the schema.\nSee [Working With Examples](#working-with-examples) for further guidance regarding the different ways of specifying examples, including non-JSON/YAML values.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"media-type-schema\"></a>schema | [Schema Object](#schema-object) | The schema defining the content of the request, response, parameter, or header. |\n| <a name=\"media-type-example\"></a>example | Any | Example of the media type; see [Working With Examples](#working-with-examples). |\n| <a name=\"media-type-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type; see [Working With Examples](#working-with-examples). |\n| <a name=\"media-type-encoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | A map between a property name and its encoding information. The key, being the property name, MUST exist in the schema as a property. The `encoding` field SHALL only apply to [Request Body Objects](#request-body-object), and only when the media type is `multipart` or `application/x-www-form-urlencoded`. If no Encoding Object is provided for a property, the behavior is determined by the default values documented for the Encoding Object. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Media Type Examples\n\n```json\n{\n  \"application/json\": {\n    \"schema\": {\n      \"$ref\": \"#/components/schemas/Pet\"\n    },\n    \"examples\": {\n      \"cat\": {\n        \"summary\": \"An example of a cat\",\n        \"value\": {\n          \"name\": \"Fluffy\",\n          \"petType\": \"Cat\",\n          \"color\": \"White\",\n          \"gender\": \"male\",\n          \"breed\": \"Persian\"\n        }\n      },\n      \"dog\": {\n        \"summary\": \"An example of a dog with a cat's name\",\n        \"value\": {\n          \"name\": \"Puma\",\n          \"petType\": \"Dog\",\n          \"color\": \"Black\",\n          \"gender\": \"Female\",\n          \"breed\": \"Mixed\"\n        }\n      },\n      \"frog\": {\n        \"$ref\": \"#/components/examples/frog-example\"\n      }\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    $ref: '#/components/schemas/Pet'\n  examples:\n    cat:\n      summary: An example of a cat\n      value:\n        name: Fluffy\n        petType: Cat\n        color: White\n        gender: male\n        breed: Persian\n    dog:\n      summary: An example of a dog with a cat's name\n      value:\n        name: Puma\n        petType: Dog\n        color: Black\n        gender: Female\n        breed: Mixed\n    frog:\n      $ref: '#/components/examples/frog-example'\n```\n\n##### Considerations for File Uploads\n\nIn contrast to OpenAPI 2.0, `file` input/output content in OAS 3.x is described with the same semantics as any other schema type.\n\nIn contrast to OAS 3.0, the `format` keyword has no effect on the content-encoding of the schema in OAS 3.1. Instead, JSON Schema's `contentEncoding` and `contentMediaType` keywords are used. See [Working With Binary Data](#working-with-binary-data) for how to model various scenarios with these keywords, and how to migrate from the previous `format` usage.\n\nExamples:\n\nContent transferred in binary (octet-stream) MAY omit `schema`:\n\n```yaml\n# a PNG image as a binary file:\ncontent:\n  image/png: {}\n```\n\n```yaml\n# an arbitrary binary file:\ncontent:\n  application/octet-stream: {}\n```\n\n```yaml\n# arbitrary JSON without constraints beyond being syntactically valid:\ncontent:\n  application/json: {}\n```\n\nThese examples apply to either input payloads of file uploads or response payloads.\n\nA `requestBody` for submitting a file in a `POST` operation may look like the following example:\n\n```yaml\nrequestBody:\n  content:\n    application/octet-stream: {}\n```\n\nIn addition, specific media types MAY be specified:\n\n```yaml\n# multiple, specific media types may be specified:\nrequestBody:\n  content:\n    # a binary file of type png or jpeg\n    image/jpeg: {}\n    image/png: {}\n```\n\nTo upload multiple files, a `multipart` media type MUST be used as shown under [Example: Multipart Form with Multiple Files](#example-multipart-form-with-multiple-files).\n\n##### Support for x-www-form-urlencoded Request Bodies\n\nSee [Encoding the `x-www-form-urlencoded` Media Type](#encoding-the-x-www-form-urlencoded-media-type) for guidance and examples, both with and without the `encoding` field.\n\n##### Special Considerations for `multipart` Content\n\nSee [Encoding `multipart` Media Types](#encoding-multipart-media-types) for further guidance and examples, both with and without the `encoding` field.\n\n#### Encoding Object\n\nA single encoding definition applied to a single schema property.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of converting values of various types to string representations.\n\nProperties are correlated with `multipart` parts using the [`name` parameter](https://www.rfc-editor.org/rfc/rfc7578#section-4.2) of `Content-Disposition: form-data`, and with `application/x-www-form-urlencoded` using the query string parameter names.\nIn both cases, their order is implementation-defined.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n##### Fixed Fields\n\n###### Common Fixed Fields\n\nThese fields MAY be used either with or without the RFC6570-style serialization fields defined in the next section below.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"encoding-content-type\"></a>contentType | `string` | The `Content-Type` for encoding a specific property. The value is a comma-separated list, each element of which is either a specific media type (e.g. `image/png`) or a wildcard media type (e.g. `image/*`). Default value depends on the property type as shown in the table below. |\n| <a name=\"encoding-headers\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | A map allowing additional information to be provided as headers. `Content-Type` is described separately and SHALL be ignored in this section. This field SHALL be ignored if the request body media type is not a `multipart`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nThe default values for `contentType` are as follows, where an _n/a_ in the `contentEncoding` column means that the presence or value of `contentEncoding` is irrelevant:\n\n| `type` | `contentEncoding` | Default `contentType` |\n| ---- | ---- | ---- |\n| [_absent_](#working-with-binary-data) | _n/a_ | `application/octet-stream` |\n| `string` | _present_ | `application/octet-stream` |\n| `string` | _absent_ | `text/plain` |\n| `number`, `integer`, or `boolean` | _n/a_ | `text/plain` |\n| `object` | _n/a_ | `application/json` |\n| `array` | _n/a_ | according to the `type` of the `items` schema |\n\nDetermining how to handle a `type` value of `null` depends on how `null` values are being serialized.\nIf `null` values are entirely omitted, then the `contentType` is irrelevant.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of data type conversion options.\n\n###### Fixed Fields for RFC6570-style Serialization\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"encoding-style\"></a>style | `string` | Describes how a specific property value will be serialized depending on its type. See [Parameter Object](#parameter-object) for details on the [`style`](#parameter-style) field. The behavior follows the same values as `query` parameters, including the default value of `\"form\"` which applies only when `contentType` is _not_ being used due to one or both of `explode` or `allowReserved` being explicitly specified. Note that the initial `?` used in query strings is not used in `application/x-www-form-urlencoded` message bodies, and MUST be removed (if using an RFC6570 implementation) or simply not added (if constructing the string manually). This field SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encoding-content-type) (implicit or explicit) SHALL be ignored. |\n| <a name=\"encoding-explode\"></a>explode | `boolean` | When this is true, property values of type `array` or `object` generate separate parameters for each value of the array, or key-value-pair of the map. For other types of properties this field has no effect. When [`style`](#encoding-style) is `\"form\"`, the default value is `true`. For all other styles, the default value is `false`. Note that despite `false` being the default for `deepObject`, the combination of `false` with `deepObject` is undefined. This field SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encoding-content-type) (implicit or explicit) SHALL be ignored. |\n| <a name=\"encoding-allow-reserved\"></a>allowReserved | `boolean` | When this is true, parameter values are serialized using reserved expansion, as defined by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570#section-3.2.3), which allows [RFC3986's reserved character set](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2), as well as percent-encoded triples, to pass through unchanged, while still percent-encoding all other disallowed characters (including `%` outside of percent-encoded triples). Applications are still responsible for percent-encoding reserved characters that are [not allowed in the query string](https://datatracker.ietf.org/doc/html/rfc3986#section-3.4) (`[`, `]`, `#`), or have a special meaning in `application/x-www-form-urlencoded` (`-`, `&`, `+`); see [URL Percent-Encoding](#url-percent-encoding) for details. The default value is `false`. This field SHALL be ignored if the request body media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encoding-content-type) (implicit or explicit) SHALL be ignored. |\n\nWhen using RFC6570-style serialization for `multipart/form-data`, URI percent-encoding MUST NOT be applied, and the value of `allowReserved` has no effect.\nSee also [Appendix C: Using RFC6570 Implementations](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\nNote that the presence of at least one of `style`, `explode`, or `allowReserved` with an explicit value is equivalent to using `schema` with `in: \"query\"` Parameter Objects.\nThe absence of all three of those fields is the equivalent of using `content`, but with the media type specified in `contentType` rather than through a Media Type Object.\n\n##### Encoding the `x-www-form-urlencoded` Media Type\n\nTo submit content using form url encoding via [RFC1866](https://tools.ietf.org/html/rfc1866), use the `application/x-www-form-urlencoded` media type in the [Media Type Object](#media-type-object) under the [Request Body Object](#request-body-object).\nThis configuration means that the request body MUST be encoded per [RFC1866](https://tools.ietf.org/html/rfc1866) when passed to the server, after any complex objects have been serialized to a string representation.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n###### Example: URL Encoded Form with JSON Values\n\nWhen there is no [`encoding`](#media-type-encoding) field, the serialization strategy is based on the Encoding Object's default values:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            # complex types are stringified to support RFC 1866\n            type: object\n            properties: {}\n```\n\nWith this example, consider an `id` of `f81d4fae-7dec-11d0-a765-00a0c91e6bf6` and a US-style address (with ZIP+4) as follows:\n\n```json\n{\n  \"streetAddress\": \"123 Example Dr.\",\n  \"city\": \"Somewhere\",\n  \"state\": \"CA\",\n  \"zip\": \"99999+1234\"\n}\n```\n\nAssuming the most compact representation of the JSON value (with unnecessary whitespace removed), we would expect to see the following request body, where space characters have been replaced with `+` and `+`, `\"`, `:`, `,`, `{`, and `}` have been percent-encoded to `%2B`, `%22`, `%3A`, `%2C`, `%7B`, and `%7D`, respectively:\n\n```uri\nid=f81d4fae-7dec-11d0-a765-00a0c91e6bf6&address=%7B%22streetAddress%22%3A%22123+Example+Dr.%22%2C%22city%22%3A%22Somewhere%22%2C%22state%22%3A%22CA%22%2C%22zip%22%3A%2299999%2B1234%22%7D\n```\n\nNote that the `id` keyword is treated as `text/plain` per the [Encoding Object](#encoding-object)'s default behavior, and is serialized as-is.\nIf it were treated as `application/json`, then the serialized value would be a JSON string including quotation marks, which would be percent-encoded as `%22`.\n\nHere is the `id` parameter (without `address`) serialized as `application/json` instead of `text/plain`, and then encoded per RFC1866:\n\n```uri\nid=%22f81d4fae-7dec-11d0-a765-00a0c91e6bf6%22\n```\n\n###### Example: URL Encoded Form with Binary Values\n\nNote that `application/x-www-form-urlencoded` is a text format, which requires base64-encoding any binary data:\n\n```YAML\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          name:\n            type: string\n          icon:\n            # The default content type with `contentEncoding` present\n            # is \"application/octet-stream\", so we need to set the correct\n            # image media type(s) in the Encoding Object.\n            type: string\n            contentEncoding: base64url\n  encoding:\n    icon:\n      contentType: image/png, image/jpeg\n```\n\nGiven a name of `example` and a solid red 2x2-pixel PNG for `icon`, this\nwould produce a request body of:\n\n```uri\nname=example&icon=iVBORw0KGgoAAAANSUhEUgAAAAIAAAACCAIAAAD91JpzAAAABGdBTUEAALGPC_xhBQAAADhlWElmTU0AKgAAAAgAAYdpAAQAAAABAAAAGgAAAAAAAqACAAQAAAABAAAAAqADAAQAAAABAAAAAgAAAADO0J6QAAAAEElEQVQIHWP8zwACTGCSAQANHQEDqtPptQAAAABJRU5ErkJggg%3D%3D\n```\n\nNote that the `=` padding characters at the end need to be percent-encoded, even with the \"URL safe\" `contentEncoding: base64url`.\nSome base64-decoding implementations may be able to use the string without the padding per [RFC4648](https://datatracker.ietf.org/doc/html/rfc4648#section-3.2).\nHowever, this is not guaranteed, so it may be more interoperable to keep the padding and rely on percent-decoding.\n\n##### Encoding `multipart` Media Types\n\nIt is common to use `multipart/form-data` as a `Content-Type` when transferring forms as request bodies. In contrast to OpenAPI 2.0, a `schema` is REQUIRED to define the input parameters to the operation when using `multipart` content. This supports complex structures as well as supporting mechanisms for multiple file uploads.\n\nThe `form-data` disposition and its `name` parameter are mandatory for `multipart/form-data` ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.2)).\nArray properties are handled by applying the same `name` to multiple parts, as is recommended by [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.3) for supplying multiple values per form field.\nSee [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-5) for guidance regarding non-ASCII part names.\n\nVarious other `multipart` types, most notable `multipart/mixed` ([RFC2046](https://www.rfc-editor.org/rfc/rfc2046.html#section-5.1.3)) neither require nor forbid specific `Content-Disposition` values, which means care must be taken to ensure that any values used are supported by all relevant software.\nIt is not currently possible to correlate schema properties with unnamed, ordered parts in media types such as `multipart/mixed`, but implementations MAY choose to support such types when `Content-Disposition: form-data` is used with a `name` parameter.\n\nNote that there are significant restrictions on what headers can be used with `multipart` media types in general ([RFC2046](https://www.rfc-editor.org/rfc/rfc2046.html#section-5.1)) and `multi-part/form-data` in particular ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.8)).\n\nNote also that `Content-Transfer-Encoding` is deprecated for `multipart/form-data` ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.7)) where binary data is supported, as it is in HTTP.\n\nUsing `contentEncoding` for a multipart field is equivalent to specifying an [Encoding Object](#encoding-object) with a `headers` field containing `Content-Transfer-Encoding` with a schema that requires the value used in `contentEncoding`.\nIf `contentEncoding` is used for a multipart field that has an Encoding Object with a `headers` field containing `Content-Transfer-Encoding` with a schema that disallows the value from `contentEncoding`, the result is undefined for serialization and parsing.\n\nNote that as stated in [Working with Binary Data](#working-with-binary-data), if the Encoding Object's `contentType`, whether set explicitly or implicitly through its default value rules, disagrees with the `contentMediaType` in a Schema Object, the `contentMediaType` SHALL be ignored.\nBecause of this, and because the Encoding Object's `contentType` defaulting rules do not take the Schema Object's`contentMediaType` into account, the use of `contentMediaType` with an Encoding Object is NOT RECOMMENDED.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n###### Example: Basic Multipart Form\n\nWhen the `encoding` field is _not_ used, the encoding is determined by the Encoding Object's defaults:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          # default content type for a string without `contentEncoding`\n          # is \"text/plain\"\n          id:\n            type: string\n            format: uuid\n\n          # default content type for a schema without `type`\n          # is \"application/octet-stream\"\n          profileImage: {}\n\n          # default content type for arrays is based on the type\n          # in the `items` subschema, which is an object here,\n          # so the default content type for each item is \"application/json\"\n          addresses:\n            type: array\n            items:\n              $ref: '#/components/schemas/Address'\n```\n\n###### Example: Multipart Form with Encoding Objects\n\nUsing `encoding`, we can set more specific types for binary data, or non-JSON formats for complex values.\nWe can also describe headers for each part:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          # No Encoding Object, so use default \"text/plain\"\n          id:\n            type: string\n            format: uuid\n\n          # Encoding Object overrides the default \"application/json\" content type\n          # for each item in the array with \"application/xml; charset=utf-8\"\n          addresses:\n            description: addresses in XML format\n            type: array\n            items:\n              $ref: '#/components/schemas/Address'\n\n          # Encoding Object accepts only PNG or JPEG, and also describes\n          # a custom header for just this part in the multipart format\n          profileImage: {}\n\n      encoding:\n        addresses:\n          contentType: application/xml; charset=utf-8\n        profileImage:\n          contentType: image/png, image/jpeg\n          headers:\n            X-Rate-Limit-Limit:\n              description: The number of allowed requests in the current period\n              schema:\n                type: integer\n```\n\n###### Example: Multipart Form with Multiple Files\n\nIn accordance with [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.3), multiple files for a single form field are uploaded using the same name (`file` in this example) for each file's part:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        properties:\n          # The property name `file` will be used for all files.\n          file:\n            type: array\n            items: {}\n```\n\nAs seen in the [Encoding Object's `contentType` field documentation](#encoding-content-type), the empty schema for `items` indicates a media type of `application/octet-stream`.\n\n#### Responses Object\n\nA container for the expected responses of an operation.\nThe container maps a HTTP response code to the expected response.\n\nThe documentation is not necessarily expected to cover all possible HTTP response codes because they may not be known in advance.\nHowever, documentation is expected to cover a successful operation response and any known errors.\n\nThe `default` MAY be used as a default Response Object for all HTTP codes\nthat are not covered individually by the Responses Object.\n\nThe Responses Object MUST contain at least one response code, and if only one\nresponse code is provided it SHOULD be the response for a successful operation\ncall.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"responses-default\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. Use this field to cover undeclared responses. |\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"responses-code\"></a>[HTTP Status Code](#http-status-codes) | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name, but only one property per code, to describe the expected response for that HTTP status code. This field MUST be enclosed in quotation marks (for example, \"200\") for compatibility between JSON and YAML. To define a range of response codes, this field MAY contain the uppercase wildcard character `X`. For example, `2XX` represents all response codes between `200` and `299`. Only the following range definitions are allowed: `1XX`, `2XX`, `3XX`, `4XX`, and `5XX`. If a response is defined using an explicit code, the explicit code definition takes precedence over the range definition for that code. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Responses Object Example\n\nA 200 response for a successful operation and a default response for others (implying an error):\n\n```json\n{\n  \"200\": {\n    \"description\": \"a pet to be returned\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/Pet\"\n        }\n      }\n    }\n  },\n  \"default\": {\n    \"description\": \"Unexpected error\",\n    \"content\": {\n      \"application/json\": {\n        \"schema\": {\n          \"$ref\": \"#/components/schemas/ErrorModel\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\n'200':\n  description: a pet to be returned\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/Pet'\ndefault:\n  description: Unexpected error\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/ErrorModel'\n```\n\n#### Response Object\n\nDescribes a single response from an API operation, including design-time, static\n`links` to operations based on the response.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"response-description\"></a>description | `string` | **REQUIRED**. A description of the response. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"response-headers\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | Maps a header name to its definition. [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2) states header names are case insensitive. If a response header is defined with the name `\"Content-Type\"`, it SHALL be ignored. |\n| <a name=\"response-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing descriptions of potential response payloads. The key is a media type or [media type range](https://tools.ietf.org/html/rfc7231#appendix-D) and the value describes it. For responses that match multiple keys, only the most specific key is applicable. e.g. `\"text/plain\"` overrides `\"text/*\"` |\n| <a name=\"response-links\"></a>links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | A map of operations links that can be followed from the response. The key of the map is a short name for the link, following the naming constraints of the names for [Component Objects](#components-object). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Response Object Examples\n\nResponse of an array of a complex type:\n\n```json\n{\n  \"description\": \"A complex object array response\",\n  \"content\": {\n    \"application/json\": {\n      \"schema\": {\n        \"type\": \"array\",\n        \"items\": {\n          \"$ref\": \"#/components/schemas/VeryComplexType\"\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A complex object array response\ncontent:\n  application/json:\n    schema:\n      type: array\n      items:\n        $ref: '#/components/schemas/VeryComplexType'\n```\n\nResponse with a string type:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n```\n\nPlain text response with headers:\n\n```json\n{\n  \"description\": \"A simple string response\",\n  \"content\": {\n    \"text/plain\": {\n      \"schema\": {\n        \"type\": \"string\"\n      },\n      \"example\": \"whoa!\"\n    }\n  },\n  \"headers\": {\n    \"X-Rate-Limit-Limit\": {\n      \"description\": \"The number of allowed requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Remaining\": {\n      \"description\": \"The number of remaining requests in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    },\n    \"X-Rate-Limit-Reset\": {\n      \"description\": \"The number of seconds left in the current period\",\n      \"schema\": {\n        \"type\": \"integer\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n    example: 'whoa!'\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    schema:\n      type: integer\n```\n\nResponse with no return value:\n\n```json\n{\n  \"description\": \"object created\"\n}\n```\n\n```yaml\ndescription: object created\n```\n\n#### Callback Object\n\nA map of possible out-of band callbacks related to the parent operation.\nEach value in the map is a [Path Item Object](#path-item-object) that describes a set of requests that may be initiated by the API provider and the expected responses.\nThe key value used to identify the Path Item Object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n\nTo describe incoming requests from the API provider independent from another API call, use the [`webhooks`](#oas-webhooks) field.\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"callback-expression\"></a>{expression} | [Path Item Object](#path-item-object) | A Path Item Object used to define a callback request and expected responses. A [complete example](https://learn.openapis.org/examples/v3.0/callback-example.html) is available. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Key Expression\n\nThe key that identifies the [Path Item Object](#path-item-object) is a [runtime expression](#runtime-expressions) that can be evaluated in the context of a runtime HTTP request/response to identify the URL to be used for the callback request.\nA simple example might be `$request.body#/url`.\nHowever, using a [runtime expression](#runtime-expressions) the complete HTTP message can be accessed.\nThis includes accessing any part of a body that a JSON Pointer [RFC6901](https://tools.ietf.org/html/rfc6901) can reference.\n\nFor example, given the following HTTP request:\n\n```http\nPOST /subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning HTTP/1.1\nHost: example.org\nContent-Type: application/json\nContent-Length: 188\n\n{\n  \"failedUrl\": \"https://clientdomain.com/failed\",\n  \"successUrls\": [\n    \"https://clientdomain.com/fast\",\n    \"https://clientdomain.com/medium\",\n    \"https://clientdomain.com/slow\"\n  ]\n}\n```\n\nresulting in:\n\n```http\n201 Created\nLocation: https://example.org/subscription/1\n```\n\nThe following examples show how the various expressions evaluate, assuming the callback operation has a path parameter named `eventType` and a query parameter named `queryUrl`.\n\n| Expression | Value |\n| ---- | :---- |\n| $url | <https://example.org/subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning> |\n| $method | POST |\n| $request.path.eventType | myevent |\n| $request.query.queryUrl | <https://clientdomain.com/stillrunning> |\n| $request.header.content-type | application/json |\n| $request.body#/failedUrl | <https://clientdomain.com/failed> |\n| $request.body#/successUrls/1 | <https://clientdomain.com/medium> |\n| $response.header.Location | <https://example.org/subscription/1> |\n\n##### Callback Object Examples\n\nThe following example uses the user provided `queryUrl` query string parameter to define the callback URL. This is similar to a [webhook](#oas-webhooks), but differs in that the callback only occurs because of the initial request that sent the `queryUrl`.\n\n```yaml\nmyCallback:\n  '{$request.query.queryUrl}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\nThe following example shows a callback where the server is hard-coded, but the query string parameters are populated from the `id` and `email` property in the request body.\n\n```yaml\ntransactionCallback:\n  'http://notificationServer.com?transactionId={$request.body#/id}&email={$request.body#/email}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\n#### Example Object\n\nAn object grouping an internal or external example value with basic `summary` and `description` metadata.\nThis object is typically used in fields named `examples` (plural), and is a [referenceable](#reference-object) alternative to older `example` (singular) fields that do not support referencing or metadata.\n\nExamples allow demonstration of the usage of properties, parameters and objects within OpenAPI.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"example-summary\"></a>summary | `string` | Short description for the example. |\n| <a name=\"example-description\"></a>description | `string` | Long description for the example. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"example-value\"></a>value | Any | Embedded literal example. The `value` field and `externalValue` field are mutually exclusive. To represent examples of media types that cannot naturally represented in JSON or YAML, use a string value to contain the example, escaping where necessary. |\n| <a name=\"example-external-value\"></a>externalValue | `string` | A URI that identifies the literal example. This provides the capability to reference examples that cannot easily be included in JSON or YAML documents. The `value` field and `externalValue` field are mutually exclusive. See the rules for resolving [Relative References](#relative-references-in-api-description-uris). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nIn all cases, the example value SHOULD be compatible with the schema of its associated value.\nTooling implementations MAY choose to validate compatibility automatically, and reject the example value(s) if incompatible.\n\n##### Working with Examples\n\nExample Objects can be used in [Parameter Objects](#parameter-object), [Header Objects](#header-object), and [Media Type Objects](#media-type-object).\nIn all three Objects, this is done through the `examples` (plural) field.\nHowever, there are several other ways to provide examples: The `example` (singular) field that is mutually exclusive with `examples` in all three Objects, and two keywords (the deprecated singular `example` and the current plural `examples`, which takes an array of examples) in the [Schema Object](#schema-object) that appears in the `schema` field of all three Objects.\nEach of these fields has slightly different considerations.\n\nThe Schema Object's fields are used to show example values without regard to how they might be formatted as parameters or within media type representations.\nThe `examples` array is part of JSON Schema and is the preferred way to include examples in the Schema Object, while `example` is retained purely for compatibility with older versions of the OpenAPI Specification.\n\nThe mutually exclusive fields in the Parameter, Header, or Media Type Objects are used to show example values which SHOULD both match the schema and be formatted as they would appear as a serialized parameter, serialized header, or within a media type representation.\nThe exact serialization and encoding is determined by various fields in the Parameter Object, Header Object, or in the Media Type Object's [Encoding Object](#encoding-object).\nBecause examples using these fields represent the final serialized form of the data, they SHALL _override_ any `example` in the corresponding Schema Object.\n\nThe singular `example` field in the Parameter, Header, or Media Type Object is concise and convenient for simple examples, but does not offer any other advantages over using Example Objects under `examples`.\n\nSome examples cannot be represented directly in JSON or YAML.\nFor all three ways of providing examples, these can be shown as string values with any escaping necessary to make the string valid in the JSON or YAML format of documents that comprise the OpenAPI Description.\nWith the Example Object, such values can alternatively be handled through the `externalValue` field.\n\n##### Example Object Examples\n\nIn a request body:\n\n```yaml\nrequestBody:\n  content:\n    'application/json':\n      schema:\n        $ref: '#/components/schemas/Address'\n      examples:\n        foo:\n          summary: A foo example\n          value:\n            foo: bar\n        bar:\n          summary: A bar example\n          value:\n            bar: baz\n    application/xml:\n      examples:\n        xmlExample:\n          summary: This is an example in XML\n          externalValue: https://example.org/examples/address-example.xml\n    text/plain:\n      examples:\n        textExample:\n          summary: This is a text example\n          externalValue: https://foo.bar/examples/address-example.txt\n```\n\nIn a parameter:\n\n```yaml\nparameters:\n  - name: zipCode\n    in: query\n    schema:\n      type: string\n      format: zip-code\n    examples:\n      zip-example:\n        $ref: '#/components/examples/zip-example'\n```\n\nIn a response:\n\n```yaml\nresponses:\n  '200':\n    description: your car appointment has been booked\n    content:\n      application/json:\n        schema:\n          $ref: '#/components/schemas/SuccessResponse'\n        examples:\n          confirmation-success:\n            $ref: '#/components/examples/confirmation-success'\n```\n\nTwo different uses of JSON strings:\n\nFirst, a request or response body that is just a JSON string (not an object containing a string):\n\n```json\n\"application/json\": {\n  \"schema\": {\n    \"type\": \"string\"\n  },\n  \"examples\": {\n    \"jsonBody\": {\n      \"description\": \"A body of just the JSON string \\\"json\\\"\",\n      \"value\": \"json\"\n    }\n  }\n}\n```\n\n```yaml\napplication/json:\n  schema:\n    type: string\n  examples:\n    jsonBody:\n      description: 'A body of just the JSON string \"json\"'\n      value: json\n```\n\nIn the above example, we can just show the JSON string (or any JSON value) as-is, rather than stuffing a serialized JSON value into a JSON string, which would have looked like `\"\\\"json\\\"\"`.\n\nIn contrast, a JSON string encoded inside of a URL-style form body:\n\n```json\n\"application/x-www-form-urlencoded\": {\n  \"schema\": {\n    \"type\": \"object\",\n    \"properties\": {\n      \"jsonValue\": {\n        \"type\": \"string\"\n      }\n    }\n  },\n  \"encoding\": {\n    \"jsonValue\": {\n      \"contentType\": \"application/json\"\n    }\n  },\n  \"examples\": {\n    \"jsonFormValue\": {\n      \"description\": \"The JSON string \\\"json\\\" as a form value\",\n      \"value\": \"jsonValue=%22json%22\"\n    }\n  }\n}\n```\n\n```yaml\napplication/x-www-form-urlencoded:\n  schema:\n    type: object\n    properties:\n      jsonValue:\n        type: string\n  encoding:\n    jsonValue:\n      contentType: application/json\n  examples:\n    jsonFormValue:\n      description: 'The JSON string \"json\" as a form value'\n      value: jsonValue=%22json%22\n```\n\nIn this example, the JSON string had to be serialized before encoding it into the URL form value, so the example includes the quotation marks that are part of the JSON serialization, which are then URL percent-encoded.\n\n#### Link Object\n\nThe Link Object represents a possible design-time link for a response.\nThe presence of a link does not guarantee the caller's ability to successfully invoke it, rather it provides a known relationship and traversal mechanism between responses and other operations.\n\nUnlike _dynamic_ links (i.e. links provided **in** the response payload), the OAS linking mechanism does not require link information in the runtime response.\n\nFor computing links and providing instructions to execute them, a [runtime expression](#runtime-expressions) is used for accessing values in an operation and using them as parameters while invoking the linked operation.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"link-operation-ref\"></a>operationRef | `string` | A URI reference to an OAS operation. This field is mutually exclusive of the `operationId` field, and MUST point to an [Operation Object](#operation-object). Relative `operationRef` values MAY be used to locate an existing [Operation Object](#operation-object) in the OpenAPI Description. |\n| <a name=\"link-operation-id\"></a>operationId | `string` | The name of an _existing_, resolvable OAS operation, as defined with a unique `operationId`. This field is mutually exclusive of the `operationRef` field. |\n| <a name=\"link-parameters\"></a>parameters | Map[`string`, Any \\| [{expression}](#runtime-expressions)] | A map representing parameters to pass to an operation as specified with `operationId` or identified via `operationRef`. The key is the parameter name to be used (optionally qualified with the parameter location, e.g. `path.id` for an `id` parameter in the path), whereas the value can be a constant or an expression to be evaluated and passed to the linked operation. |\n| <a name=\"link-request-body\"></a>requestBody | Any \\| [{expression}](#runtime-expressions) | A literal value or [{expression}](#runtime-expressions) to use as a request body when calling the target operation. |\n| <a name=\"link-description\"></a>description | `string` | A description of the link. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"link-server\"></a>server | [Server Object](#server-object) | A server object to be used by the target operation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nA linked operation MUST be identified using either an `operationRef` or `operationId`.\nThe identified or referenced operation MUST be unique, and in the case of an `operationId`, it MUST be resolved within the scope of the OpenAPI Description (OAD).\nBecause of the potential for name clashes, the `operationRef` syntax is preferred for multi-document OADs.\nHowever, because use of an operation depends on its URL path template in the [Paths Object](#paths-object), operations from any [Path Item Object](#path-item-object) that is referenced multiple times within the OAD cannot be resolved unambiguously.\nIn such ambiguous cases, the resulting behavior is implementation-defined and MAY result in an error.\n\nNote that it is not possible to provide a constant value to `parameters` that matches the syntax of a runtime expression.\nIt is possible to have ambiguous parameter names, e.g. `name: \"id\", in: \"path\"` and `name: \"path.id\", in: \"query\"`; this is NOT RECOMMENDED and the behavior is implementation-defined, however implementations SHOULD prefer the qualified interpretation (`path.id` as a path parameter), as the names can always be qualified to disambiguate them (e.g. using `query.path.id` for the query parameter).\n\n##### Examples\n\nComputing a link from a request operation where the `$request.path.id` is used to pass a request parameter to the linked operation.\n\n```yaml\npaths:\n  /users/{id}:\n    parameters:\n      - name: id\n        in: path\n        required: true\n        description: the user identifier, as userId\n        schema:\n          type: string\n    get:\n      responses:\n        '200':\n          description: the user being returned\n          content:\n            application/json:\n              schema:\n                type: object\n                properties:\n                  uuid: # the unique user id\n                    type: string\n                    format: uuid\n          links:\n            address:\n              # the target link operationId\n              operationId: getUserAddress\n              parameters:\n                # use the value of the request path parameter named \"id\"\n                userid: $request.path.id\n  # the path item of the linked operation\n  /users/{userid}/address:\n    parameters:\n      - name: userid\n        in: path\n        required: true\n        description: the user identifier, as userId\n        schema:\n          type: string\n    # linked operation\n    get:\n      operationId: getUserAddress\n      responses:\n        '200':\n          description: the user's address\n```\n\nWhen a runtime expression fails to evaluate, no parameter value is passed to the target operation.\n\nValues from the response body can be used to drive a linked operation.\n\n```yaml\nlinks:\n  address:\n    operationId: getUserAddressByUUID\n    parameters:\n      # use the value of the `uuid` field in the response body\n      userUuid: $response.body#/uuid\n```\n\nClients follow all links at their discretion.\nNeither permissions nor the capability to make a successful call to that link is guaranteed\nsolely by the existence of a relationship.\n\n###### `operationRef` Examples\n\nAs the `operationId` is an optional field in an [Operation Object](#operation-object), references MAY instead be made through a URI-reference with `operationRef`.\nNote that both of these examples reference operations that can be identified via the [Paths Object](#paths-object) to ensure that the operation's path template is unambiguous.\n\nA relative URI-reference `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    operationRef: '#/paths/~12.0~1repositories~1%7Busername%7D/get'\n    parameters:\n      username: $response.body#/username\n```\n\nA non-relative URI `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    operationRef: https://na2.gigantic-server.com/#/paths/~12.0~1repositories~1%7Busername%7D/get\n    parameters:\n      username: $response.body#/username\n```\n\nNote that in the use of `operationRef` the _escaped forward-slash_ (`~1`) is necessary when\nusing JSON Pointer in URI fragments, and it is necessary to URL-encode `{` and `}` as `%7B` and `%7D`, respectively.\nThe unescaped, percent-decoded path template in the above examples would be `/2.0/repositories/{username}`.\n\n##### Runtime Expressions\n\nRuntime expressions allow defining values based on information that will only be available within the HTTP message in an actual API call.\nThis mechanism is used by [Link Objects](#link-object) and [Callback Objects](#callback-object).\n\nThe runtime expression is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```abnf\n    expression = \"$url\" / \"$method\" / \"$statusCode\" / \"$request.\" source / \"$response.\" source\n    source     = header-reference / query-reference / path-reference / body-reference\n    header-reference = \"header.\" token\n    query-reference  = \"query.\" name\n    path-reference   = \"path.\" name\n    body-reference   = \"body\" [\"#\" json-pointer ]\n    json-pointer    = *( \"/\" reference-token )\n    reference-token = *( unescaped / escaped )\n    unescaped       = %x00-2E / %x30-7D / %x7F-10FFFF\n                    ; %x2F ('/') and %x7E ('~') are excluded from 'unescaped'\n    escaped         = \"~\" ( \"0\" / \"1\" )\n                    ; representing '~' and '/', respectively\n    name = *char\n    token = 1*tchar\n    tchar = \"!\" / \"#\" / \"$\" / \"%\" / \"&\" / \"'\" / \"*\" / \"+\" / \"-\" / \".\"\n          / \"^\" / \"_\" / \"`\" / \"|\" / \"~\" / DIGIT / ALPHA\n```\n\nHere, `json-pointer` is taken from [RFC6901](https://tools.ietf.org/html/rfc6901), `char` from [RFC7159](https://tools.ietf.org/html/rfc7159#section-7) and `token` from [RFC7230](https://tools.ietf.org/html/rfc7230#section-3.2.6).\n\nThe `name` identifier is case-sensitive, whereas `token` is not.\n\nThe table below provides examples of runtime expressions and examples of their use in a value:\n\n###### Example Expressions\n\n| Source Location | example expression | notes |\n| ---- | :---- | :---- |\n| HTTP Method | `$method` | The allowable values for the `$method` will be those for the HTTP operation. |\n| Requested media type | `$request.header.accept` | |\n| Request parameter | `$request.path.id` | Request parameters MUST be declared in the `parameters` section of the parent operation or they cannot be evaluated. This includes request headers. |\n| Request body property | `$request.body#/user/uuid` | In operations which accept payloads, references may be made to portions of the `requestBody` or the entire body. |\n| Request URL | `$url` | |\n| Response value | `$response.body#/status` | In operations which return payloads, references may be made to portions of the response body or the entire body. |\n| Response header | `$response.header.Server` | Single header values only are available |\n\nRuntime expressions preserve the type of the referenced value.\nExpressions can be embedded into string values by surrounding the expression with `{}` curly braces.\n\n#### Header Object\n\nDescribes a single header for [HTTP responses](#response-headers) and for [individual parts in `multipart` representations](#encoding-headers); see the relevant [Response Object](#response-object) and [Encoding Object](#encoding-object) documentation for restrictions on which headers can be described.\n\nThe Header Object follows the structure of the [Parameter Object](#parameter-object), including determining its serialization strategy based on whether `schema` or `content` is present, with the following changes:\n\n1. `name` MUST NOT be specified, it is given in the corresponding `headers` map.\n1. `in` MUST NOT be specified, it is implicitly in `header`.\n1. All traits that are affected by the location MUST be applicable to a location of `header` (for example, [`style`](#parameter-style)). This means that `allowEmptyValue` and `allowReserved` MUST NOT be used, and `style`, if used, MUST be limited to `\"simple\"`.\n\n##### Fixed Fields\n\n###### Common Fixed Fields\n\nThese fields MAY be used with either `content` or `schema`.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-description\"></a>description | `string` | A brief description of the header. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"header-required\"></a>required | `boolean` | Determines whether this header is mandatory. The default value is `false`. |\n| <a name=\"header-deprecated\"></a> deprecated | `boolean` | Specifies that the header is deprecated and SHOULD be transitioned out of usage. Default value is `false`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n###### Fixed Fields for use with `schema`\n\nFor simpler scenarios, a [`schema`](#header-schema) and [`style`](#header-style) can describe the structure and syntax of the header.\nWhen `example` or `examples` are provided in conjunction with the `schema` field, the example MUST follow the prescribed serialization strategy for the header.\n\nWhen serializing headers with `schema`, URI percent-encoding MUST NOT be applied; if using an RFC6570 implementation that automatically applies it, it MUST be removed before use.\nImplementations MUST pass header values through unchanged rather than attempting to automatically quote header values, as the quoting rules vary too widely among different headers; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for guidance on quoting and escaping.\n\nWhen `example` or `examples` are provided in conjunction with the `schema` field, the example SHOULD match the specified schema and follow the prescribed serialization strategy for the header.\nThe `example` and `examples` fields are mutually exclusive, and if either is present it SHALL _override_ any `example` in the schema.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-style\"></a>style | `string` | Describes how the header value will be serialized. The default (and only legal value for headers) is `\"simple\"`. |\n| <a name=\"header-explode\"></a>explode | `boolean` | When this is true, header values of type `array` or `object` generate a single header whose value is a comma-separated list of the array items or key-value pairs of the map, see [Style Examples](#style-examples). For other data types this field has no effect. The default value is `false`. |\n| <a name=\"header-schema\"></a>schema | [Schema Object](#schema-object) | The schema defining the type used for the header. |\n| <a name=\"header-example\"></a>example | Any | Example of the header's potential value; see [Working With Examples](#working-with-examples). |\n| <a name=\"header-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the header's potential value; see [Working With Examples](#working-with-examples). |\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\n###### Fixed Fields for use with `content`\n\nFor more complex scenarios, the [`content`](#header-content) field can define the media type and schema of the header, as well as give examples of its use.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object)] | A map containing the representations for the header. The key is the media type and the value describes it. The map MUST only contain one entry. |\n\n##### Header Object Example\n\nA simple header of type `integer`:\n\n```json\n\"X-Rate-Limit-Limit\": {\n  \"description\": \"The number of allowed requests in the current period\",\n  \"schema\": {\n    \"type\": \"integer\"\n  }\n}\n```\n\n```yaml\nX-Rate-Limit-Limit:\n  description: The number of allowed requests in the current period\n  schema:\n    type: integer\n```\n\nRequiring that a strong `ETag` header (with a value starting with `\"` rather than `W/`) is present.\n\n```json\n\"ETag\": {\n  \"required\": true,\n  \"schema\": {\n    \"type\": \"string\",\n    \"pattern\": \"^\\\"\"\n  }\n}\n```\n\n```yaml\nETag:\n  required: true\n  schema:\n    type: string\n    pattern: ^\"\n```\n\n#### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nIt is not mandatory to have a Tag Object per tag defined in the Operation Object instances.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"tag-name\"></a>name | `string` | **REQUIRED**. The name of the tag. |\n| <a name=\"tag-description\"></a>description | `string` | A description for the tag. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"tag-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Tag Object Example\n\n```json\n{\n  \"name\": \"pet\",\n  \"description\": \"Pets operations\"\n}\n```\n\n```yaml\nname: pet\ndescription: Pets operations\n```\n\n#### Reference Object\n\nA simple object to allow referencing other components in the OpenAPI Description, internally and externally.\n\nThe `$ref` string value contains a URI [RFC3986](https://tools.ietf.org/html/rfc3986), which identifies the value being referenced.\n\nSee the rules for resolving [Relative References](#relative-references-in-api-description-uris).\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"reference-ref\"></a>$ref | `string` | **REQUIRED**. The reference identifier. This MUST be in the form of a URI. |\n| <a name=\"reference-summary\"></a>summary | `string` | A short summary which by default SHOULD override that of the referenced component. If the referenced object-type does not allow a `summary` field, then this field has no effect. |\n| <a name=\"reference-description\"></a>description | `string` | A description which by default SHOULD override that of the referenced component. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. If the referenced object-type does not allow a `description` field, then this field has no effect. |\n\nThis object cannot be extended with additional properties, and any properties added SHALL be ignored.\n\nNote that this restriction on additional properties is a difference between Reference Objects and [Schema Objects](#schema-object) that contain a `$ref` keyword.\n\n##### Reference Object Example\n\n```json\n{\n  \"$ref\": \"#/components/schemas/Pet\"\n}\n```\n\n```yaml\n$ref: '#/components/schemas/Pet'\n```\n\n##### Relative Schema Document Example\n\n```json\n{\n  \"$ref\": \"Pet.json\"\n}\n```\n\n```yaml\n$ref: Pet.yaml\n```\n\n##### Relative Documents with Embedded Schema Example\n\n```json\n{\n  \"$ref\": \"definitions.json#/Pet\"\n}\n```\n\n```yaml\n$ref: definitions.yaml#/Pet\n```\n\n#### Schema Object\n\nThe Schema Object allows the definition of input and output data types.\nThese types can be objects, but also primitives and arrays. This object is a superset of the [JSON Schema Specification Draft 2020-12](https://tools.ietf.org/html/draft-bhutton-json-schema-00). The empty schema (which allows any instance to validate) MAY be represented by the boolean value `true` and a schema which allows no instance to validate MAY be represented by the boolean value `false`.\n\nFor more information about the keywords, see [JSON Schema Core](https://tools.ietf.org/html/draft-bhutton-json-schema-00) and [JSON Schema Validation](https://tools.ietf.org/html/draft-bhutton-json-schema-validation-00).\n\nUnless stated otherwise, the keyword definitions follow those of JSON Schema and do not add any additional semantics; this includes keywords such as `$schema`, `$id`, `$ref`, and `$dynamicRef` being URIs rather than URLs.\nWhere JSON Schema indicates that behavior is defined by the application (e.g. for annotations), OAS also defers the definition of semantics to the application consuming the OpenAPI document.\n\n##### JSON Schema Keywords\n\nThe OpenAPI Schema Object [dialect](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-4.3.3) is defined as requiring the [OAS base vocabulary](#base-vocabulary), in addition to the vocabularies as specified in the JSON Schema Specification Draft 2020-12 [general purpose meta-schema](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-8).\n\nThe OpenAPI Schema Object dialect for this version of the specification is identified by the URI `https://spec.openapis.org/oas/3.1/dialect/base` (the <a name=\"dialect-schema-id\"></a>\"OAS dialect schema id\").\n\nThe following keywords are taken from the JSON Schema specification but their definitions have been extended by the OAS:\n\n* description - [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n* format - See [Data Type Formats](#data-type-format) for further details. While relying on JSON Schema's defined formats, the OAS offers a few additional predefined formats.\n\nIn addition to the JSON Schema keywords comprising the OAS dialect, the Schema Object supports keywords from any other vocabularies, or entirely arbitrary properties.\n\nJSON Schema implementations MAY choose to treat keywords defined by the OpenAPI Specification's base vocabulary as [unknown keywords](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.3.1), due to its inclusion in the OAS dialect with a [`$vocabulary`](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-8.1.2) value of `false`.\n<a name=\"base-vocabulary\"></a>The OAS base vocabulary is comprised of the following keywords:\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"schema-discriminator\"></a>discriminator | [Discriminator Object](#discriminator-object) | Adds support for polymorphism. The discriminator is used to determine which of a set of schemas a payload is expected to satisfy. See [Composition and Inheritance](#composition-and-inheritance-polymorphism) for more details. |\n| <a name=\"schema-xml\"></a>xml | [XML Object](#xml-object) | This MAY be used only on property schemas. It has no effect on root schemas. Adds additional metadata to describe the XML representation of this property. |\n| <a name=\"schema-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema. |\n| <a name=\"schema-example\"></a>example | Any | A free-form field to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary.<br><br>**Deprecated:** The `example` field has been deprecated in favor of the JSON Schema `examples` keyword. Use of `example` is discouraged, and later versions of this specification may remove it. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions), though as noted, additional properties MAY omit the `x-` prefix within this object.\n\n##### Extended Validation with Annotations\n\nJSON Schema Draft 2020-12 supports [collecting annotations](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-7.7.1), including [treating unrecognized keywords as annotations](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-6.5).\nOAS implementations MAY use such annotations, including [extensions](https://spec.openapis.org/registry/extension/) not recognized as part of a declared JSON Schema vocabulary, as the basis for further validation.\nNote that JSON Schema Draft 2020-12 does not require an `x-` prefix for extensions.\n\n###### Non-validating constraint keywords\n\nThe [`format` keyword (when using default format-annotation vocabulary)](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-7.2.1) and the [`contentMediaType`, `contentEncoding`, and `contentSchema` keywords](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-8.2) define constraints on the data, but are treated as annotations instead of being validated directly.\nExtended validation is one way that these constraints MAY be enforced.\n\n###### Validating `readOnly` and `writeOnly`\n\nThe `readOnly` and `writeOnly` keywords are annotations, as JSON Schema is not aware of how the data it is validating is being used.\nValidation of these keywords MAY be done by checking the annotation, the read or write direction, and (if relevant) the current value of the field.\n[JSON Schema Validation Draft 2020-12 §9.4](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-validation-00#section-9.4) defines the expectations of these keywords, including that a resource (described as the \"owning authority\") MAY either ignore a `readOnly` field or treat it as an error.\n\nFields that are both required and read-only are an example of when it is beneficial to ignore a `readOnly: true` constraint in a PUT, particularly if the value has not been changed.\nThis allows correctly requiring the field on a GET and still using the same representation and schema with PUT.\nEven when read-only fields are not required, stripping them is burdensome for clients, particularly when the JSON data is complex or deeply nested.\n\nNote that the behavior of `readOnly` in particular differs from that specified by version 3.0 of this specification.\n\n##### Data Modeling Techniques\n\n###### Composition and Inheritance (Polymorphism)\n\nThe OpenAPI Specification allows combining and extending model definitions using the `allOf` keyword of JSON Schema, in effect offering model composition.\n`allOf` takes an array of object definitions that are validated _independently_ but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models.\nTo support polymorphism, the OpenAPI Specification adds the [`discriminator`](#schema-discriminator) field.\nWhen used, the `discriminator` indicates the name of the property that hints which schema definition is expected to validate the structure of the model.\nAs such, the `discriminator` field MUST be a required field.\nThere are two ways to define the value of a discriminator for an inheriting instance.\n\n* Use the schema name.\n* [Override the schema name](#discriminator-mapping) by overriding the property with a new value. If a new value exists, this takes precedence over the schema name.\n\n###### Generic (Template) Data Structures\n\nImplementations MAY support defining generic or template data structures using JSON Schema's dynamic referencing feature:\n\n* `$dynamicAnchor` identifies a set of possible schemas (including a default placeholder schema) to which a `$dynamicRef` can resolve\n* `$dynamicRef` resolves to the first matching `$dynamicAnchor` encountered on its path from the schema entry point to the reference, as described in the JSON Schema specification\n\nAn example is included in the \"Schema Object Examples\" section below, and further information can be found on the Learn OpenAPI site's [\"Dynamic References\"](https://learn.openapis.org/referencing/dynamic.html) page.\n\n###### Annotated Enumerations\n\nThe Schema Object's `enum` keyword does not allow associating descriptions or other information with individual values.\n\nImplementations MAY support recognizing a `oneOf` or `anyOf` where each subschema in the keyword's array consists of a `const` keyword and annotations such as `title` or `description` as an enumerated type with additional information. The exact behavior of this pattern beyond what is required by JSON Schema is implementation-defined.\n\n###### XML Modeling\n\nThe [xml](#schema-xml) field allows extra definitions when translating the JSON definition to XML.\nThe [XML Object](#xml-object) contains additional information about the available options.\n\n##### Specifying Schema Dialects\n\nIt is important for tooling to be able to determine which dialect or meta-schema any given resource wishes to be processed with: JSON Schema Core, JSON Schema Validation, OpenAPI Schema dialect, or some custom meta-schema.\n\nThe `$schema` keyword MAY be present in any Schema Object that is a [schema resource root](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.3.5), and if present MUST be used to determine which dialect should be used when processing the schema. This allows use of Schema Objects which comply with other drafts of JSON Schema than the default Draft 2020-12 support. Tooling MUST support the <a href=\"#dialect-schema-id\">OAS dialect schema id</a>, and MAY support additional values of `$schema`.\n\nTo allow use of a different default `$schema` value for all Schema Objects contained within an OAS document, a `jsonSchemaDialect` value may be set within the <a href=\"#openapi-object\">OpenAPI Object</a>. If this default is not set, then the OAS dialect schema id MUST be used for these Schema Objects. The value of `$schema` within a resource root Schema Object always overrides any default.\n\nFor standalone JSON Schema documents that do not set `$schema`, or for Schema Objects in OpenAPI description documents that are _not_ [complete documents](#openapi-description-structure), the dialect SHOULD be assumed to be the OAS dialect.\nHowever, for maximum interoperability, it is RECOMMENDED that OpenAPI description authors explicitly set the dialect through `$schema` in such documents.\n\n##### Schema Object Examples\n\n###### Primitive Example\n\n```json\n{\n  \"type\": \"string\",\n  \"format\": \"email\"\n}\n```\n\n```yaml\ntype: string\nformat: email\n```\n\n###### Simple Model\n\n```json\n{\n  \"type\": \"object\",\n  \"required\": [\"name\"],\n  \"properties\": {\n    \"name\": {\n      \"type\": \"string\"\n    },\n    \"address\": {\n      \"$ref\": \"#/components/schemas/Address\"\n    },\n    \"age\": {\n      \"type\": \"integer\",\n      \"format\": \"int32\",\n      \"minimum\": 0\n    }\n  }\n}\n```\n\n```yaml\ntype: object\nrequired:\n  - name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/components/schemas/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n###### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```json\n{\n  \"type\": \"object\",\n  \"additionalProperties\": {\n    \"$ref\": \"#/components/schemas/ComplexModel\"\n  }\n}\n```\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/components/schemas/ComplexModel'\n```\n\n###### Model with Annotated Enumeration\n\n```json\n{\n  \"oneOf\": [\n    {\n      \"const\": \"RGB\",\n      \"title\": \"Red, Green, Blue\",\n      \"description\": \"Specify colors with the red, green, and blue additive color model\"\n    },\n    {\n      \"const\": \"CMYK\",\n      \"title\": \"Cyan, Magenta, Yellow, Black\",\n      \"description\": \"Specify colors with the cyan, magenta, yellow, and black subtractive color model\"\n    }\n  ]\n}\n```\n\n```yaml\noneOf:\n  - const: RGB\n    title: Red, Green, Blue\n    description: Specify colors with the red, green, and blue additive color model\n  - const: CMYK\n    title: Cyan, Magenta, Yellow, Black\n    description: Specify colors with the cyan, magenta, yellow, and black subtractive color model\n```\n\n###### Model with Example\n\n```json\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"id\": {\n      \"type\": \"integer\",\n      \"format\": \"int64\"\n    },\n    \"name\": {\n      \"type\": \"string\"\n    }\n  },\n  \"required\": [\"name\"],\n  \"examples\": [\n    {\n      \"name\": \"Puma\",\n      \"id\": 1\n    }\n  ]\n}\n```\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n  - name\nexamples:\n  - name: Puma\n    id: 1\n```\n\n###### Models with Composition\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"ErrorModel\": {\n        \"type\": \"object\",\n        \"required\": [\"message\", \"code\"],\n        \"properties\": {\n          \"message\": {\n            \"type\": \"string\"\n          },\n          \"code\": {\n            \"type\": \"integer\",\n            \"minimum\": 100,\n            \"maximum\": 600\n          }\n        }\n      },\n      \"ExtendedErrorModel\": {\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/ErrorModel\"\n          },\n          {\n            \"type\": \"object\",\n            \"required\": [\"rootCause\"],\n            \"properties\": {\n              \"rootCause\": {\n                \"type\": \"string\"\n              }\n            }\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    ErrorModel:\n      type: object\n      required:\n        - message\n        - code\n      properties:\n        message:\n          type: string\n        code:\n          type: integer\n          minimum: 100\n          maximum: 600\n    ExtendedErrorModel:\n      allOf:\n        - $ref: '#/components/schemas/ErrorModel'\n        - type: object\n          required:\n            - rootCause\n          properties:\n            rootCause:\n              type: string\n```\n\n###### Models with Polymorphism Support\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"Pet\": {\n        \"type\": \"object\",\n        \"discriminator\": {\n          \"propertyName\": \"petType\"\n        },\n        \"properties\": {\n          \"name\": {\n            \"type\": \"string\"\n          },\n          \"petType\": {\n            \"type\": \"string\"\n          }\n        },\n        \"required\": [\"name\", \"petType\"]\n      },\n      \"Cat\": {\n        \"description\": \"A representation of a cat. Note that `Cat` will be used as the discriminating value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"huntingSkill\": {\n                \"type\": \"string\",\n                \"description\": \"The measured skill for hunting\",\n                \"default\": \"lazy\",\n                \"enum\": [\"clueless\", \"lazy\", \"adventurous\", \"aggressive\"]\n              }\n            },\n            \"required\": [\"huntingSkill\"]\n          }\n        ]\n      },\n      \"Dog\": {\n        \"description\": \"A representation of a dog. Note that `Dog` will be used as the discriminating value.\",\n        \"allOf\": [\n          {\n            \"$ref\": \"#/components/schemas/Pet\"\n          },\n          {\n            \"type\": \"object\",\n            \"properties\": {\n              \"packSize\": {\n                \"type\": \"integer\",\n                \"format\": \"int32\",\n                \"description\": \"the size of the pack the dog is from\",\n                \"default\": 0,\n                \"minimum\": 0\n              }\n            },\n            \"required\": [\"packSize\"]\n          }\n        ]\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n      properties:\n        name:\n          type: string\n        petType:\n          type: string\n      required:\n        - name\n        - petType\n    Cat: # \"Cat\" will be used as the discriminating value\n      description: A representation of a cat\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          properties:\n            huntingSkill:\n              type: string\n              description: The measured skill for hunting\n              enum:\n                - clueless\n                - lazy\n                - adventurous\n                - aggressive\n          required:\n            - huntingSkill\n    Dog: # \"Dog\" will be used as the discriminating value\n      description: A representation of a dog\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          properties:\n            packSize:\n              type: integer\n              format: int32\n              description: the size of the pack the dog is from\n              default: 0\n              minimum: 0\n          required:\n            - packSize\n```\n\n###### Generic Data Structure Model\n\n```JSON\n{\n  \"components\": {\n    \"schemas\": {\n      \"genericArrayComponent\": {\n        \"$id\": \"fully_generic_array\",\n        \"type\": \"array\",\n        \"items\": {\n          \"$dynamicRef\": \"#generic-array\"\n        },\n        \"$defs\": {\n          \"allowAll\": {\n            \"$dynamicAnchor\": \"generic-array\"\n          }\n        }\n      },\n      \"numberArray\": {\n        \"$id\": \"array_of_numbers\",\n        \"$ref\": \"fully_generic_array\",\n        \"$defs\": {\n          \"numbersOnly\": {\n            \"$dynamicAnchor\": \"generic-array\",\n            \"type\": \"number\"\n          }\n        }\n      },\n      \"stringArray\": {\n        \"$id\": \"array_of_strings\",\n        \"$ref\": \"fully_generic_array\",\n        \"$defs\": {\n          \"stringsOnly\": {\n            \"$dynamicAnchor\": \"generic-array\",\n            \"type\": \"string\"\n          }\n        }\n      },\n      \"objWithTypedArray\": {\n        \"$id\": \"obj_with_typed_array\",\n        \"type\": \"object\",\n        \"required\": [\"dataType\", \"data\"],\n        \"properties\": {\n          \"dataType\": {\n            \"enum\": [\"string\", \"number\"]\n          }\n        },\n        \"oneOf\": [{\n          \"properties\": {\n            \"dataType\": {\"const\": \"string\"},\n            \"data\": {\"$ref\": \"array_of_strings\"}\n          }\n        }, {\n          \"properties\": {\n            \"dataType\": {\"const\": \"number\"},\n            \"data\": {\"$ref\": \"array_of_numbers\"}\n          }\n        }]\n      }\n    }\n  }\n}\n```\n\n```YAML\ncomponents:\n  schemas:\n    genericArrayComponent:\n      $id: fully_generic_array\n      type: array\n      items:\n        $dynamicRef: '#generic-array'\n      $defs:\n        allowAll:\n          $dynamicAnchor: generic-array\n    numberArray:\n      $id: array_of_numbers\n      $ref: fully_generic_array\n      $defs:\n        numbersOnly:\n          $dynamicAnchor: generic-array\n          type: number\n    stringArray:\n      $id: array_of_strings\n      $ref: fully_generic_array\n      $defs:\n        stringsOnly:\n          $dynamicAnchor: generic-array\n          type: string\n    objWithTypedArray:\n      $id: obj_with_typed_array\n      type: object\n      required:\n      - dataType\n      - data\n      properties:\n        dataType:\n          enum:\n          - string\n          - number\n      oneOf:\n      - properties:\n          dataType:\n            const: string\n          data:\n            $ref: array_of_strings\n      - properties:\n          dataType:\n            const: number\n          data:\n            $ref: array_of_numbers\n```\n\n#### Discriminator Object\n\nWhen request bodies or response payloads may be one of a number of different schemas, a Discriminator Object gives a hint about the expected schema of the document.\nThis hint can be used to aid in serialization, deserialization, and validation.\nThe Discriminator Object does this by implicitly or explicitly associating the possible values of a named property with alternative schemas.\n\nNote that `discriminator` MUST NOT change the validation outcome of the schema.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"property-name\"></a>propertyName | `string` | **REQUIRED**. The name of the property in the payload that will hold the discriminating value. This property SHOULD be required in the payload schema, as the behavior when the property is absent is undefined. |\n| <a name=\"discriminator-mapping\"></a> mapping | Map[`string`, `string`] | An object to hold mappings between payload values and schema names or URI references. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Conditions for Using the Discriminator Object\n\nThe Discriminator Object is legal only when using one of the composite keywords `oneOf`, `anyOf`, `allOf`.\n\nIn both the `oneOf` and `anyOf` use cases, where those keywords are adjacent to `discriminator`, all possible schemas MUST be listed explicitly.\n\nTo avoid redundancy, the discriminator MAY be added to a parent schema definition, and all schemas building on the parent schema via an `allOf` construct may be used as an alternate schema.\n\nThe `allOf` form of `discriminator` is _only_ useful for non-validation use cases; validation with the parent schema with this form of `discriminator` _does not_ perform a search for child schemas or use them in validation in any way.\nThis is because `discriminator` cannot change the validation outcome, and no standard JSON Schema keyword connects the parent schema to the child schemas.\n\nThe behavior of any configuration of `oneOf`, `anyOf`, `allOf` and `discriminator` that is not described above is undefined.\n\n##### Options for Mapping Values to Schemas\n\nThe value of the property named in `propertyName` is used as the name of the associated schema under the [Components Object](#components-object), _unless_ a `mapping` is present for that value.\nThe `mapping` entry maps a specific property value to either a different schema component name, or to a schema identified by a URI.\nWhen using implicit or explicit schema component names, inline `oneOf` or `anyOf` subschemas are not considered.\nThe behavior of a `mapping` value that is both a valid schema name and a valid relative URI reference is implementation-defined, but it is RECOMMENDED that it be treated as a schema name.\nTo ensure that an ambiguous value (e.g. `\"foo\"`) is treated as a relative URI reference by all implementations, authors MUST prefix it with the `\".\"` path segment (e.g. `\"./foo\"`).\n\nMapping keys MUST be string values, but tooling MAY convert response values to strings for comparison.\nHowever, the exact nature of such conversions are implementation-defined.\n\n##### Examples\n\nFor these examples, assume all schemas are in the [entry document](#openapi-description-structure) of the OAD; for handling of `discriminator` in referenced documents see [Resolving Implicit Connections](#resolving-implicit-connections).\n\nIn OAS 3.x, a response payload MAY be described to be exactly one of any number of types:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n```\n\nwhich means the payload _MUST_, by validation, match exactly one of the schemas described by `Cat`, `Dog`, or `Lizard`. Deserialization of a `oneOf` can be a costly operation, as it requires determining which schema matches the payload and thus should be used in deserialization. This problem also exists for `anyOf` schemas. A `discriminator` MAY be used as a \"hint\" to improve the efficiency of selection of the matching schema. The `discriminator` field cannot change the validation result of the `oneOf`, it can only help make the deserialization more efficient and provide better error messaging. We can specify the exact field that tells us which schema is expected to match the instance:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n  discriminator:\n    propertyName: petType\n```\n\nThe expectation now is that a property with name `petType` _MUST_ be present in the response payload, and the value will correspond to the name of a schema defined in the OpenAPI Description. Thus the response payload:\n\n```json\n{\n  \"id\": 12345,\n  \"petType\": \"Cat\"\n}\n```\n\nwill indicate that the `Cat` schema is expected to match this payload.\n\nIn scenarios where the value of the `discriminator` field does not match the schema name or implicit mapping is not possible, an optional `mapping` definition MAY be used:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n    - $ref: https://gigantic-server.com/schemas/Monster/schema.json\n  discriminator:\n    propertyName: petType\n    mapping:\n      dog: '#/components/schemas/Dog'\n      monster: https://gigantic-server.com/schemas/Monster/schema.json\n```\n\nHere the discriminating value of `dog` will map to the schema `#/components/schemas/Dog`, rather than the default (implicit) value of `#/components/schemas/dog`. If the discriminating value does not match an implicit or explicit mapping, no schema can be determined and validation SHOULD fail.\n\nWhen used in conjunction with the `anyOf` construct, the use of the discriminator can avoid ambiguity for serializers/deserializers where multiple schemas may satisfy a single payload.\n\nThis example shows the `allOf` usage, which avoids needing to reference all child schemas in the parent:\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n        - petType\n      properties:\n        petType:\n          type: string\n      discriminator:\n        propertyName: petType\n        mapping:\n          dog: Dog\n    Cat:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a \"Cat\"\n          properties:\n            name:\n              type: string\n    Dog:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a \"Dog\"\n          properties:\n            bark:\n              type: string\n    Lizard:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a \"Lizard\"\n          properties:\n            lovesRocks:\n              type: boolean\n```\n\nValidated against the `Pet` schema, a payload like this:\n\n```json\n{\n  \"petType\": \"Cat\",\n  \"name\": \"Misty\"\n}\n```\n\nwill indicate that the `#/components/schemas/Cat` schema is expected to match. Likewise this payload:\n\n```json\n{\n  \"petType\": \"dog\",\n  \"bark\": \"soft\"\n}\n```\n\nwill map to `#/components/schemas/Dog` because the `dog` entry in the `mapping` element maps to `Dog` which is the schema name for `#/components/schemas/Dog`.\n\n#### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\n\nWhen using arrays, XML element names are _not_ inferred (for singular/plural forms) and the `name` field SHOULD be used to add that information.\nSee examples for expected behavior.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"xml-name\"></a>name | `string` | Replaces the inferred name of the element/attribute used for the described schema property. For the root schema object of a [schema component](#components-schemas), the inferred name is the name of the component; for other schemas the name is inferred from the parent property name.  When defined within `items`, it will affect the name of the individual XML elements within the list. When defined alongside `type` being `\"array\"` (outside the `items`), it will affect the wrapping element if and only if `wrapped` is `true`. If `wrapped` is `false`, it will be ignored. |\n| <a name=\"xml-namespace\"></a>namespace | `string` | The URI of the namespace definition. Value MUST be in the form of a non-relative URI. |\n| <a name=\"xml-prefix\"></a>prefix | `string` | The prefix to be used for the [name](#xml-name). |\n| <a name=\"xml-attribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`. |\n| <a name=\"xml-wrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `\"array\"` (outside the `items`). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Namespace Limitations\n\nThe `namespace` field is intended to match the syntax of [XML namespaces](https://www.w3.org/TR/xml-names11/), although there are a few caveats:\n\n* Versions 3.1.0, 3.0.3, and earlier of this specification erroneously used the term \"absolute URI\" instead of \"non-relative URI\", so authors using namespaces that include a fragment should check tooling support carefully.\n* XML allows but discourages relative URI-references, while this specification outright forbids them.\n* XML 1.1 allows IRIs ([RFC3987](https://datatracker.ietf.org/doc/html/rfc3987)) as namespaces, and specifies that namespaces are compared without any encoding or decoding, which means that IRIs encoded to meet this specification's URI syntax requirement cannot be compared to IRIs as-is.\n\n##### Handling `null` Values\n\nXML does not, by default, have a concept equivalent to `null`, and to preserve compatibility with version 3.1.1 and earlier of this specification, the behavior of serializing `null` values is implementation-defined.\n\nHowever, implementations SHOULD handle `null` values as follows:\n\n* For elements, produce an empty element with an `xsi:nil=\"true\"` attribute.\n* For attributes, omit the attribute.\n\nNote that for attributes, this makes either a `null` value or a missing property serialize to an omitted attribute.\nAs the Schema Object validates the in-memory representation, this allows handling the combination of `null` and a required property.\nHowever, because there is no distinct way to represent `null` as an attribute, it is RECOMMENDED to make attribute properties optional rather than use `null`.\n\nTo ensure correct round-trip behavior, when parsing an element that omits an attribute, implementations SHOULD set the corresponding property to `null` if the schema allows for that value (e.g. `type: [\"number\", \"null\"]`), and omit the property otherwise (e.g.`type: \"number\"`).\n\n##### XML Object Examples\n\nEach of the following examples represent the value of the `properties` keyword in a [Schema Object](#schema-object) that is omitted for brevity.\nThe JSON and YAML representations of the `properties` value are followed by an example XML representation produced for the single property shown.\n\n###### No XML Element\n\nBasic string property:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\"\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n```\n\n```xml\n<animals>...</animals>\n```\n\nBasic string array property ([`wrapped`](#xml-wrapped) is `false` by default):\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n```\n\n```xml\n<animals>...</animals>\n<animals>...</animals>\n<animals>...</animals>\n```\n\n###### XML Name Replacement\n\n```json\n{\n  \"animals\": {\n    \"type\": \"string\",\n    \"xml\": {\n      \"name\": \"animal\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: string\n  xml:\n    name: animal\n```\n\n```xml\n<animal>...</animal>\n```\n\n###### XML Attribute, Prefix and Namespace\n\nIn this example, a full [schema component](#components-schemas) definition is shown.\nNote that the name of the root XML element comes from the component name.\n\n```json\n{\n  \"components\": {\n    \"schemas\": {\n      \"Person\": {\n        \"type\": \"object\",\n        \"properties\": {\n          \"id\": {\n            \"type\": \"integer\",\n            \"format\": \"int32\",\n            \"xml\": {\n              \"attribute\": true\n            }\n          },\n          \"name\": {\n            \"type\": \"string\",\n            \"xml\": {\n              \"namespace\": \"https://example.com/schema/sample\",\n              \"prefix\": \"sample\"\n            }\n          }\n        }\n      }\n    }\n  }\n}\n```\n\n```yaml\ncomponents:\n  schemas:\n    Person:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int32\n          xml:\n            attribute: true\n        name:\n          type: string\n          xml:\n            namespace: https://example.com/schema/sample\n            prefix: sample\n```\n\n```xml\n<Person id=\"123\">\n    <sample:name xmlns:sample=\"https://example.com/schema/sample\">example</sample:name>\n</Person>\n```\n\n###### XML Arrays\n\nChanging the element names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nThe external `name` field has no effect on the XML:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\"\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n```\n\n```xml\n<animal>value</animal>\n<animal>value</animal>\n```\n\nEven when the array is wrapped, if a name is not explicitly defined, the same name will be used both internally and externally:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animals>value</animals>\n  <animals>value</animals>\n</animals>\n```\n\nTo overcome the naming problem in the example above, the following definition can be used:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    wrapped: true\n```\n\n```xml\n<animals>\n  <animal>value</animal>\n  <animal>value</animal>\n</animals>\n```\n\nAffecting both internal and external names:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\",\n      \"xml\": {\n        \"name\": \"animal\"\n      }\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n    xml:\n      name: animal\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <animal>value</animal>\n  <animal>value</animal>\n</aliens>\n```\n\nIf we change the external element but not the internal ones:\n\n```json\n{\n  \"animals\": {\n    \"type\": \"array\",\n    \"items\": {\n      \"type\": \"string\"\n    },\n    \"xml\": {\n      \"name\": \"aliens\",\n      \"wrapped\": true\n    }\n  }\n}\n```\n\n```yaml\nanimals:\n  type: array\n  items:\n    type: string\n  xml:\n    name: aliens\n    wrapped: true\n```\n\n```xml\n<aliens>\n  <aliens>value</aliens>\n  <aliens>value</aliens>\n</aliens>\n```\n\n###### XML With `null` Values\n\nRecall that the schema validates the in-memory data, not the XML document itself.\n\n```json\n{\n  \"product\": {\n    \"type\": \"object\",\n    \"required\": [\"count\", \"description\", \"related\"],\n    \"properties\": {\n      \"count\": {\n        \"type\": [\"number\", \"null\"],\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"rating\": {\n        \"type\": \"string\",\n        \"xml\": {\n          \"attribute\": true\n        }\n      },\n      \"description\": {\n        \"type\": \"string\"\n      },\n      \"related\": {\n        \"type\": [\"object\", \"null\"]\n      }\n    }\n  }\n}\n```\n\n```yaml\nproduct:\n  type: object\n  required:\n  - count\n  - description\n  - related\n  properties:\n    count:\n      type:\n      - number\n      - \"null\"\n      xml:\n        attribute: true\n    rating:\n      type: string\n      xml:\n        attribute: true\n    description:\n      type: string\n    related:\n      type:\n      - object\n      - \"null\"\n```\n\n```xml\n<product>\n  <description>Thing</description>\n  <related xsi:nil=\"true\" />\n</product>\n```\n\nThe above XML example corresponds to the following in-memory instance:\n\n```json\n{\n  \"product\": {\n    \"count\": null,\n    \"description\": \"Thing\",\n    \"related\": null\n  }\n}\n```\n\n#### Security Scheme Object\n\nDefines a security scheme that can be used by the operations.\n\nSupported schemes are HTTP authentication, an API key (either as a header, a cookie parameter or as a query parameter), mutual TLS (use of a client certificate), OAuth2's common flows (implicit, password, client credentials and authorization code) as defined in [RFC6749](https://tools.ietf.org/html/rfc6749), and [[OpenID-Connect-Core]].\nPlease note that as of 2020, the implicit flow is about to be deprecated by [OAuth 2.0 Security Best Current Practice](https://tools.ietf.org/html/draft-ietf-oauth-security-topics). Recommended for most use cases is Authorization Code Grant flow with PKCE.\n\n##### Fixed Fields\n\n| Field Name | Type | Applies To | Description |\n| ---- | :----: | ---- | ---- |\n| <a name=\"security-scheme-type\"></a>type | `string` | Any | **REQUIRED**. The type of the security scheme. Valid values are `\"apiKey\"`, `\"http\"`, `\"mutualTLS\"`, `\"oauth2\"`, `\"openIdConnect\"`. |\n| <a name=\"security-scheme-description\"></a>description | `string` | Any | A description for security scheme. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"security-scheme-name\"></a>name | `string` | `apiKey` | **REQUIRED**. The name of the header, query or cookie parameter to be used. |\n| <a name=\"security-scheme-in\"></a>in | `string` | `apiKey` | **REQUIRED**. The location of the API key. Valid values are `\"query\"`, `\"header\"`, or `\"cookie\"`. |\n| <a name=\"security-scheme-scheme\"></a>scheme | `string` | `http` | **REQUIRED**. The name of the HTTP Authentication scheme to be used in the [Authorization header as defined in RFC7235](https://tools.ietf.org/html/rfc7235#section-5.1). The values used SHOULD be registered in the [IANA Authentication Scheme registry](https://www.iana.org/assignments/http-authschemes/http-authschemes.xhtml). The value is case-insensitive, as defined in [RFC7235](https://datatracker.ietf.org/doc/html/rfc7235#section-2.1). |\n| <a name=\"security-scheme-bearer-format\"></a>bearerFormat | `string` | `http` (`\"bearer\"`) | A hint to the client to identify how the bearer token is formatted. Bearer tokens are usually generated by an authorization server, so this information is primarily for documentation purposes. |\n| <a name=\"security-scheme-flows\"></a>flows | [OAuth Flows Object](#oauth-flows-object) | `oauth2` | **REQUIRED**. An object containing configuration information for the flow types supported. |\n| <a name=\"security-scheme-open-id-connect-url\"></a>openIdConnectUrl | `string` | `openIdConnect` | **REQUIRED**. [Well-known URL](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfig) to discover the [[OpenID-Connect-Discovery]] [provider metadata](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Security Scheme Object Examples\n\n###### Basic Authentication Example\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"basic\"\n}\n```\n\n```yaml\ntype: http\nscheme: basic\n```\n\n###### API Key Example\n\n```json\n{\n  \"type\": \"apiKey\",\n  \"name\": \"api-key\",\n  \"in\": \"header\"\n}\n```\n\n```yaml\ntype: apiKey\nname: api-key\nin: header\n```\n\n###### JWT Bearer Example\n\n```json\n{\n  \"type\": \"http\",\n  \"scheme\": \"bearer\",\n  \"bearerFormat\": \"JWT\"\n}\n```\n\n```yaml\ntype: http\nscheme: bearer\nbearerFormat: JWT\n```\n\n###### MutualTLS Example\n\n```json\n{\n  \"type\": \"mutualTLS\",\n  \"description\": \"Cert must be signed by example.com CA\"\n}\n```\n\n```yaml\ntype: mutualTLS\ndescription: Cert must be signed by example.com CA\n```\n\n###### Implicit OAuth2 Example\n\n```json\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### OAuth Flows Object\n\nAllows configuration of the supported OAuth Flows.\n\n##### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"oauth-flows-implicit\"></a>implicit | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Implicit flow |\n| <a name=\"oauth-flows-password\"></a>password | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Resource Owner Password flow |\n| <a name=\"oauth-flows-client-credentials\"></a>clientCredentials | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Client Credentials flow. Previously called `application` in OpenAPI 2.0. |\n| <a name=\"oauth-flows-authorization-code\"></a>authorizationCode | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Authorization Code flow. Previously called `accessCode` in OpenAPI 2.0. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### OAuth Flow Object\n\nConfiguration details for a supported OAuth Flow\n\n##### Fixed Fields\n\n| Field Name | Type | Applies To | Description |\n| ---- | :----: | ---- | ---- |\n| <a name=\"oauth-flow-authorization-url\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"authorizationCode\"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-token-url\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"clientCredentials\"`, `\"authorizationCode\"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-refresh-url\"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-scopes\"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it. The map MAY be empty. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### OAuth Flow Object Example\n\n```JSON\n{\n  \"type\": \"oauth2\",\n  \"flows\": {\n    \"implicit\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    },\n    \"authorizationCode\": {\n      \"authorizationUrl\": \"https://example.com/api/oauth/dialog\",\n      \"tokenUrl\": \"https://example.com/api/oauth/token\",\n      \"scopes\": {\n        \"write:pets\": \"modify pets in your account\",\n        \"read:pets\": \"read your pets\"\n      }\n    }\n  }\n}\n```\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n  authorizationCode:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    tokenUrl: https://example.com/api/oauth/token\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n#### Security Requirement Object\n\nLists the required security schemes to execute this operation.\nThe name used for each property MUST correspond to a security scheme declared in the [Security Schemes](#components-security-schemes) under the [Components Object](#components-object).\n\nA Security Requirement Object MAY refer to multiple security schemes in which case all schemes MUST be satisfied for a request to be authorized.\nThis enables support for scenarios where multiple query parameters or HTTP headers are required to convey security information.\n\nWhen the `security` field is defined on the [OpenAPI Object](#openapi-object) or [Operation Object](#operation-object) and contains multiple Security Requirement Objects, only one of the entries in the list needs to be satisfied to authorize the request.\nThis enables support for scenarios where the API allows multiple, independent security schemes.\n\nAn empty Security Requirement Object (`{}`) indicates anonymous access is supported.\n\n##### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"security-requirements-name\"></a>{name} | [`string`] | Each name MUST correspond to a security scheme which is declared in the [Security Schemes](#components-security-schemes) under the [Components Object](#components-object). If the security scheme is of type `\"oauth2\"` or `\"openIdConnect\"`, then the value is a list of scope names required for the execution, and the list MAY be empty if authorization does not require a specified scope. For other security scheme types, the array MAY contain a list of role names which are required for the execution, but are not otherwise defined or exchanged in-band. |\n\n##### Security Requirement Object Examples\n\nSee also [Appendix F: Resolving Security Requirements in a Referenced Document](#appendix-f-resolving-security-requirements-in-a-referenced-document) for an example using Security Requirement Objects in multi-document OpenAPI Descriptions.\n\n###### Non-OAuth2 Security Requirement\n\n```json\n{\n  \"api_key\": []\n}\n```\n\n```yaml\napi_key: []\n```\n\n###### OAuth2 Security Requirement\n\n```json\n{\n  \"petstore_auth\": [\"write:pets\", \"read:pets\"]\n}\n```\n\n```yaml\npetstore_auth:\n  - write:pets\n  - read:pets\n```\n\n###### Optional OAuth2 Security\n\nOptional OAuth2 security as would be defined in an <a href=\"#openapi-object\">OpenAPI Object</a> or an <a href=\"#operation-object\">Operation Object</a>:\n\n```json\n{\n  \"security\": [\n    {},\n    {\n      \"petstore_auth\": [\"write:pets\", \"read:pets\"]\n    }\n  ]\n}\n```\n\n```yaml\nsecurity:\n  - {}\n  - petstore_auth:\n      - write:pets\n      - read:pets\n```\n\n### Specification Extensions\n\nWhile the OpenAPI Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are implemented as patterned fields that are always prefixed by `x-`.\n\n| Field Pattern | Type | Description |\n| ---- | :--: | ---- |\n| <a name=\"extension-properties\"></a>^x- | Any | Allows extensions to the OpenAPI Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. Field names beginning `x-oai-` and `x-oas-` are reserved for uses defined by the [OpenAPI Initiative](https://www.openapis.org/). The value can be any valid JSON value (`null`, a primitive, an array, or an object.) |\n\nThe OpenAPI Initiative maintains several [[OpenAPI-Registry|extension registries]], including registries for [individual extension keywords](https://spec.openapis.org/registry/extension/) and [extension keyword namespaces](https://spec.openapis.org/registry/namespace/).\n\nExtensions are one of the best ways to prove the viability of proposed additions to the specification.\nIt is therefore RECOMMENDED that implementations be designed for extensibility to support community experimentation.\n\nSupport for any one extension is OPTIONAL, and support for one extension does not imply support for others.\n\n### Security Filtering\n\nSome objects in the OpenAPI Specification MAY be declared and remain empty, or be completely removed, even though they are inherently the core of the API documentation.\n\nThe reasoning is to allow an additional layer of access control over the documentation.\nWhile not part of the specification itself, certain libraries MAY choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples of this:\n\n1. The [Paths Object](#paths-object) MAY be present but empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They would still have access to at least the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) MAY be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different from hiding the path itself from the [Paths Object](#paths-object), because the user will be aware of its existence. This allows the documentation provider to finely control what the viewer can see.\n\n## Security Considerations\n\n### OpenAPI Description Formats\n\nOpenAPI Descriptions use a combination of JSON, YAML, and JSON Schema, and therefore share their security considerations:\n\n* [JSON](https://www.iana.org/assignments/media-types/application/json)\n* [YAML](https://www.iana.org/assignments/media-types/application/yaml)\n* [JSON Schema Core](https://tools.ietf.org/html/draft-bhutton-json-schema-00#section-13)\n* [JSON Schema Validation](https://tools.ietf.org/html/draft-bhutton-json-schema-validation-00#section-10)\n\n### Tooling and Usage Scenarios\n\nIn addition, OpenAPI Descriptions are processed by a wide variety of tooling for numerous different purposes, such as client code generation, documentation generation, server side routing, and API testing. OpenAPI Description authors must consider the risks of the scenarios where the OpenAPI Description may be used.\n\n### Security Schemes\n\nAn OpenAPI Description describes the security schemes used to protect the resources it defines. The security schemes available offer varying degrees of protection. Factors such as the sensitivity of the data and the potential impact of a security breach should guide the selection of security schemes for the API resources. Some security schemes, such as basic auth and OAuth Implicit flow, are supported for compatibility with existing APIs. However, their inclusion in OpenAPI does not constitute an endorsement of their use, particularly for highly sensitive data or operations.\n\n### Handling External Resources\n\nOpenAPI Descriptions may contain references to external resources that may be dereferenced automatically by consuming tools. External resources may be hosted on different domains that may be untrusted.\n\n### Handling Reference Cycles\n\nReferences in an OpenAPI Description may cause a cycle. Tooling must detect and handle cycles to prevent resource exhaustion.\n\n### Markdown and HTML Sanitization\n\nCertain fields allow the use of Markdown which can contain HTML including script. It is the responsibility of tooling to appropriately sanitize the Markdown.\n\n## Appendix A: Revision History\n\n| Version | Date | Notes |\n| ---- | ---- | ---- |\n| 3.1.2 | 2025-09-19 | Patch release of the OpenAPI Specification 3.1.2 |\n| 3.1.1 | 2024-10-24 | Patch release of the OpenAPI Specification 3.1.1 |\n| 3.1.0 | 2021-02-15 | Release of the OpenAPI Specification 3.1.0 |\n| 3.1.0-rc1 | 2020-10-08 | rc1 of the 3.1 specification |\n| 3.1.0-rc0 | 2020-06-18 | rc0 of the 3.1 specification |\n| 3.0.4 | 2024-10-24 | Patch release of the OpenAPI Specification 3.0.4 |\n| 3.0.3 | 2020-02-20 | Patch release of the OpenAPI Specification 3.0.3 |\n| 3.0.2 | 2018-10-08 | Patch release of the OpenAPI Specification 3.0.2 |\n| 3.0.1 | 2017-12-06 | Patch release of the OpenAPI Specification 3.0.1 |\n| 3.0.0 | 2017-07-26 | Release of the OpenAPI Specification 3.0.0 |\n| 3.0.0-rc2 | 2017-06-16 | rc2 of the 3.0 specification |\n| 3.0.0-rc1 | 2017-04-27 | rc1 of the 3.0 specification |\n| 3.0.0-rc0 | 2017-02-28 | Implementer's Draft of the 3.0 specification |\n| 2.0 | 2015-12-31 | Donation of Swagger 2.0 to the OpenAPI Initiative |\n| 2.0 | 2014-09-08 | Release of Swagger 2.0 |\n| 1.2 | 2014-03-14 | Initial release of the formal document. |\n| 1.1 | 2012-08-22 | Release of Swagger 1.1 |\n| 1.0 | 2011-08-10 | First release of the Swagger Specification |\n\n## Appendix B: Data Type Conversion\n\nSerializing typed data to plain text, which can occur in `text/plain` message bodies or `multipart` parts, as well as in the `application/x-www-form-urlencoded` format in either URL query strings or message bodies, involves significant implementation- or application-defined behavior.\n\n[Schema Objects](#schema-object) validate data based on the [JSON Schema data model](https://datatracker.ietf.org/doc/html/draft-bhutton-json-schema-00#section-4.2.1), which only recognizes four primitive data types: strings (which are [only broadly interoperable as UTF-8](https://datatracker.ietf.org/doc/html/rfc7159#section-8.1)), numbers, booleans, and `null`.\nNotably, integers are not a distinct type from other numbers, with `type: \"integer\"` being a convenience defined mathematically, rather than based on the presence or absence of a decimal point in any string representation.\n\nThe [Parameter Object](#parameter-object), [Header Object](#header-object), and [Encoding Object](#encoding-object) offer features to control how to arrange values from array or object types.\nThey can also be used to control how strings are further encoded to avoid reserved or illegal characters.\nHowever, there is no general-purpose specification for converting schema-validated non-UTF-8 primitive data types (or entire arrays or objects) to strings.\n\nTwo cases do offer standards-based guidance:\n\n* [RFC3987](https://datatracker.ietf.org/doc/html/rfc3987#section-3.1) provides guidance for converting non-Unicode strings to UTF-8, particularly in the context of URIs (and by extension, the form media types which use the same encoding rules)\n* [RFC6570](https://www.rfc-editor.org/rfc/rfc6570#section-2.3) specifies which values, including but not limited to `null`, are considered _undefined_ and therefore treated specially in the expansion process when serializing based on that specification\n\nImplementations of RFC6570 often have their own conventions for converting non-string values, but these are implementation-specific and not defined by the RFC itself.\nThis is one reason for the OpenAPI Specification to leave these conversions as implementation-defined: It allows using RFC6570 implementations regardless of how they choose to perform the conversions.\n\nTo control the serialization of numbers, booleans, and `null` (or other values RFC6570 deems to be undefined) more precisely, schemas can be defined as `type: \"string\"` and constrained using `pattern`, `enum`, `format`, and other keywords to communicate how applications must pre-convert their data prior to schema validation.\nThe resulting strings would not require any further type conversion.\n\nThe `format` keyword can assist in serialization.\nSome formats (such as `date-time`) are unambiguous, while others (such as [`decimal`](https://spec.openapis.org/registry/format/decimal.html) in the [Format Registry](https://spec.openapis.org/registry/format/)) are less clear.\nHowever, care must be taken with `format` to ensure that the specific formats are supported by all relevant tools as unrecognized formats are ignored.\n\nRequiring input as pre-formatted, schema-validated strings also improves round-trip interoperability as not all programming languages and environments support the same data types.\n\n## Appendix C: Using RFC6570-Based Serialization\n\nSerialization is defined in terms of [RFC6570](https://www.rfc-editor.org/rfc/rfc6570) URI Templates in three scenarios:\n\n| Object | Condition |\n| ---- | ---- |\n| [Parameter Object](#parameter-object) | When `schema` is present |\n| [Header Object](#header-object) | When `schema` is present |\n| [Encoding Object](#encoding-object) | When encoding for `application/x-www-form-urlencoded` and any of `style`, `explode`, or `allowReserved` are used |\n\nImplementations of this specification MAY use an implementation of RFC6570 to perform variable expansion, however, some caveats apply.\n\nNote that when using `style: \"form\"` RFC6570 expansion to produce an `application/x-www-form-urlencoded` HTTP message body, it is necessary to remove the `?` prefix that is produced to satisfy the URI query string syntax.\n\nWhen using `style` and similar keywords to produce a `multipart/form-data` body, the query string names are placed in the `name` parameter of the `Content-Disposition` part header, and the values are placed in the corresponding part body; the `?`, `=`, and `&` characters are not used, and URI percent encoding is not applied, regardless of the value of `allowReserved`.\nNote that while [RFC7578](https://datatracker.ietf.org/doc/html/rfc7578) allows using [[RFC3986]] percent-encoding in \"file names\", it does not otherwise address the use of percent-encoding within the format.\nUsers are expected to provide names and data with any escaping necessary for conformance with RFC7578 already applied.\n\nNote also that not all RFC6570 implementations support all four levels of operators, all of which are needed to fully support the OpenAPI Specification's usage.\nUsing an implementation with a lower level of support will require additional manual construction of URI Templates to work around the limitations.\n\n### Equivalences Between Fields and RFC6570 Operators\n\nCertain field values translate to RFC6570 [operators](https://datatracker.ietf.org/doc/html/rfc6570#section-2.2) (or lack thereof):\n\n| field | value | equivalent |\n| ---- | ---- | ---- |\n| style | `\"simple\"` | _n/a_ |\n| style | `\"matrix\"` | `;` prefix operator |\n| style | `\"label\"` | `.` prefix operator |\n| style | `\"form\"` | `?` prefix operator |\n| allowReserved | `false` | _n/a_ |\n| allowReserved | `true` | `+` prefix operator |\n| explode | `false` | _n/a_ |\n| explode | `true` | `*` modifier suffix |\n\nMultiple `style: \"form\"` parameters are equivalent to a single RFC6570 [variable list](https://www.rfc-editor.org/rfc/rfc6570#section-2.2) using the `?` prefix operator:\n\n```YAML\nparameters:\n- name: foo\n  in: query\n  schema:\n    type: object\n  explode: true\n- name: bar\n  in: query\n  schema:\n    type: string\n```\n\nThis example is equivalent to RFC6570's `{?foo*,bar}`, and **NOT** `{?foo*}{&bar}`. The latter is problematic because if `foo` is not defined, the result will be an invalid URI.\nThe `&` prefix operator has no equivalent in the Parameter Object.\n\nNote that RFC6570 does not specify behavior for compound values beyond the single level addressed by `explode`. The result of using objects or arrays where no behavior is clearly specified for them is implementation-defined.\n\n### Delimiters in Parameter Values\n\nDelimiters used by RFC6570 expansion, such as the `,` used to join arrays or object values with `style: \"simple\"`, are all automatically percent-encoded as long as `allowReserved` is `false`.\nNote that since RFC6570 does not define a way to parse variables based on a URI Template, users must take care to first split values by delimiter before percent-decoding values that might contain the delimiter character.\n\nWhen `allowReserved` is `true`, both percent-encoding (prior to joining values with a delimiter) and percent-decoding (after splitting on the delimiter) must be done manually at the correct time.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for additional guidance on handling delimiters for `style` values with no RFC6570 equivalent that already need to be percent-encoded when used as delimiters.\n\n### Non-RFC6570 Field Values and Combinations\n\nConfigurations with no direct [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570) equivalent SHOULD also be handled according to RFC6570.\nImplementations MAY create a properly delimited URI Template with variables for individual names and values using RFC6570 regular or reserved expansion (based on `allowReserved`).\n\nThis includes:\n\n* the styles `pipeDelimited`, `spaceDelimited`, and `deepObject`, which have no equivalents at all\n* the combination of the style `form` with `allowReserved: true`, which is not allowed because only one prefix operator can be used at a time\n* any parameter name that is not a legal RFC6570 variable name\n\nThe Parameter Object's `name` field has a much more permissive syntax than RFC6570 [variable name syntax](https://www.rfc-editor.org/rfc/rfc6570#section-2.3).\nA parameter name that includes characters outside of the allowed RFC6570 variable character set MUST be percent-encoded before it can be used in a URI Template.\n\n### Examples\n\nLet's say we want to use the following data in a form query string, where `formulas` is exploded, and `words` is not:\n\n```YAML\nformulas:\n  a: x+y\n  b: x/y\n  c: x^y\nwords:\n- math\n- is\n- fun\n```\n\n#### RFC6570-Equivalent Expansion\n\nThis array of Parameter Objects uses regular `style: \"form\"` expansion, fully supported by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570):\n\n```YAML\nparameters:\n- name: formulas\n  in: query\n  schema:\n    type: object\n    additionalProperties:\n      type: string\n  explode: true\n- name: words\n  in: query\n  schema:\n    type: array\n    items:\n      type: string\n```\n\nThis translates to the following URI Template:\n\n```uritemplate\n{?formulas*,words}\n```\n\nwhen expanded with the data given earlier, we get:\n\n```uri\n?a=x%2By&b=x%2Fy&c=x%5Ey&words=math,is,fun\n```\n\n#### Expansion with Non-RFC6570-Supported Options\n\nBut now let's say that (for some reason), we really want that `/` in the `b` formula to show up as-is in the query string, and we want our words to be space-separated like in a written phrase.\nTo do that, we'll add `allowReserved: true` to `formulas`, and change to `style: \"spaceDelimited\"` for `words`:\n\n```YAML\nparameters:\n- name: formulas\n  in: query\n  schema:\n    type: object\n    additionalProperties:\n      type: string\n  explode: true\n  allowReserved: true\n- name: words\n  in: query\n  style: spaceDelimited\n  explode: false\n  schema:\n    type: array\n    items:\n      type: string\n```\n\nWe can't combine the `?` and `+` RFC6570 [prefixes](https://datatracker.ietf.org/doc/html/rfc6570#section-2.4.1), and there's no way with RFC6570 to replace the `,` separator with a space character.\nSo we need to restructure the data to fit a manually constructed URI Template that passes all of the pieces through the right sort of expansion.\n\nHere is one such template, using a made-up convention of `words.0` for the first entry in the words value, `words.1` for the second, and `words.2` for the third:\n\n```uritemplate\n?a={+a}&b={+b}&c={+c}&words={words.0} {words.1} {words.2}\n```\n\nRFC6570 [mentions](https://www.rfc-editor.org/rfc/rfc6570.html#section-2.4.2) the use of `.` \"to indicate name hierarchy in substructures,\" but does not define any specific naming convention or behavior for it.\nSince the `.` usage is not automatic, we'll need to construct an appropriate input structure for this new template.\n\nWe'll also need to pre-process the values for `formulas` because while `/` and most other reserved characters are allowed in the query string by RFC3986, `[`, `]`, and `#` [are not](https://datatracker.ietf.org/doc/html/rfc3986#appendix-A), and `&`, `=`, and `+` all have [special behavior](https://www.rfc-editor.org/rfc/rfc1866#section-8.2.1) in the `application/x-www-form-urlencoded` format, which is what we are using in the query string.\n\nSetting `allowReserved: true` does _not_ make reserved characters that are not allowed in URIs allowed, it just allows them to be _passed through expansion unchanged_, for example because some other specification has defined a particular meaning for them.\n\nTherefore, users still need to percent-encode any reserved characters that are _not_ being passed through due to a special meaning because reserved expansion does not know which reserved characters are being used, and which should still be percent-encoded.\nHowever, reserved expansion, unlike regular expansion,  _will_ leave the pre-percent-encoded triples unchanged.\nSee also [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for further guidance on percent-encoding and form media types, including guidance on handling the delimiter characters for `spaceDelimited`, `pipeDelimited`, and `deepObject` in parameter names and values.\n\nSo here is our data structure that arranges the names and values to suit the template above, where values for `formulas` have `[]#&=+` pre-percent encoded (although only `+` appears in this example):\n\n```YAML\na: x%2By\nb: x/y\nc: x^y\nwords.0: math\nwords.1: is\nwords.2: fun\n```\n\nExpanding our manually assembled template with our restructured data yields the following query string:\n\n```uri\n?a=x%2By&b=x/y&c=x%5Ey&words=math%20is%20fun\n```\n\nThe `/` and the pre-percent-encoded `%2B` have been left alone, but the disallowed `^` character (inside a value) and space characters (in the template but outside of the expanded variables) were percent-encoded.\n\n#### Undefined Values and Manual URI Template Construction\n\nCare must be taken when manually constructing templates to handle the values that RFC6570 [considers to be _undefined_](https://datatracker.ietf.org/doc/html/rfc6570#section-2.3) correctly:\n\n```YAML\nformulas: {}\nwords:\n- hello\n- world\n```\n\nUsing this data with our original RFC6570-friendly URI Template, `{?formulas*,words}`, produces the following:\n\n```uri\n?words=hello,world\n```\n\nThis means that the manually constructed URI Template and restructured data need to leave out the `formulas` object entirely so that the `words` parameter is the first and only parameter in the query string.\n\nRestructured data:\n\n```YAML\nwords.0: hello\nwords.1: world\n```\n\nManually constructed URI Template:\n\n```uritemplate\n?words={words.0} {words.1}\n```\n\nResult:\n\n```uri\n?words=hello%20world\n```\n\n#### Illegal Variable Names as Parameter Names\n\nIn this example, the heart emoji is not legal in URI Template names (or URIs):\n\n```YAML\nparameters:\n- name: ❤️\n  in: query\n  schema:\n    type: string\n```\n\nWe can't just pass `❤️: \"love!\"` to an RFC6570 implementation.\nInstead, we have to pre-percent-encode the name (which is a six-octet UTF-8 sequence) in both the data and the URI Template:\n\n```YAML\n\"%E2%9D%A4%EF%B8%8F\": love!\n```\n\n```uritemplate\n{?%E2%9D%A4%EF%B8%8F}\n```\n\nThis will expand to the result:\n\n```uri\n?%E2%9D%A4%EF%B8%8F=love%21\n```\n\n## Appendix D: Serializing Headers and Cookies\n\nHTTP headers have inconsistent rules regarding what characters are allowed, and how some or all disallowed characters can be escaped and included.\nWhile the `quoted-string` ABNF rule given in [[RFC7230]] [Section 3.2.6](https://httpwg.org/specs/rfc7230.html#field.components) is the most common escaping solution, it is not sufficiently universal to apply automatically.\nFor example, a strong `ETag` looks like `\"foo\"` (with quotes, regardless of the contents), and a weak `ETag` looks like `W/\"foo\"` (note that only part of the value is quoted); the contents of the quotes for this header are also not escaped in the way `quoted-string` contents are.\n\nFor this reason, any data being passed to a header by way of a [Parameter](#parameter-object) or [Header](#header-object) Object needs to be quoted and escaped prior to passing it to the OAS implementation, and the parsed header values are expected to contain the quotes and escapes.\n\n### Percent-Encoding and Cookies\n\n_**Note:** OAS v3.0.4 and v3.1.1 applied the advice in this section to avoid RFC6570-style serialization to both headers and cookies.\nHowever, further research has indicated that percent-encoding was never intended to apply to headers, so this section has been corrected to apply only to cookies._\n\n[RFC6570](https://www.rfc-editor.org/rfc/rfc6570)'s percent-encoding behavior is not always appropriate for `in: \"cookie\"` parameters.\nIn many cases, it is more appropriate to use `content` with a media type such as `text/plain` and require the application to assemble the correct string.\n\n[RFC6265](https://www.rfc-editor.org/rfc/rfc6265) recommends (but does not strictly required) base64 encoding (`contentEncoding: \"base64\"`) if \"arbitrary data\" will be stored in a cookie.\nNote that the standard base64-encoding alphabet includes non-URL-safe characters that are percent-encoded by RFC6570 expansion; serializing values through both encodings is NOT RECOMMENDED.\nWhile `contentEncoding` also supports the `base64url` encoding, which is URL-safe, the header and cookie RFCs do not mention this encoding.\n\nUsing `style: \"form\"` with `in: \"cookie\"` via an RFC6570 implementation requires stripping the `?` prefix, as when producing `application/x-www-form-urlencoded` message bodies.\n\nFor multiple values, `style: \"form\"` is always incorrect, even if no characters are subject to percent-encoding, as name=value pairs in cookies are delimited by a semicolon followed by a space character rather than `&`.\n\n## Appendix E: Percent-Encoding and Form Media Types\n\n_**NOTE:** In this section, the `application/x-www-form-urlencoded` and `multipart/form-data` media types are abbreviated as `form-urlencoded` and `form-data`, respectively, for readability._\n\nPercent-encoding is used in URIs and media types that derive their syntax from URIs.\nThe fundamental rules of percent-encoding are:\n\n* The set of characters that MUST be encoded varies depending on which version of which specification you use, and (for URIs) in which part of the URI the character appears.\n* The way an unencoded `+` character is decoded depends on whether you are using `application/x-www-form-urlencoded` rules or more general URI rules; this is the only time where choice of decoding algorithm can change the outcome.\n* Encoding more characters than necessary is always safe in terms of the decoding process, but may produce non-normalized URIs.\n* In practice, some systems tolerate or even expect unencoded characters that some or all percent-encoding specifications require to be encoded; this can cause interoperability issues with more strictly compliant implementations.\n\nThe rest of this appendix provides more detailed guidance based on the above rules.\n\n### Percent-Encoding Character Classes\n\nThis process is concerned with three classes of characters, the names of which vary among specifications but are defined as follows for the purposes of this section:\n\n* _unreserved_ characters do not need to be percent-encoded; while it is safe to percent-encode them, doing so produces a URI that is [not normalized](https://datatracker.ietf.org/doc/html/rfc3986#section-6.2.2.2)\n* _reserved_ characters either have special behavior in the URI syntax (such as delimiting components) or are reserved for other specifications that need to define special behavior (e.g. `form-urlencoded` defines special behavior for `=`, `&`, and `+`)\n* _unsafe_ characters are known to cause problems when parsing URIs in certain environments\n\nUnless otherwise specified, this section uses RFC3986's definition of [reserved](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2) and [unreserved](https://datatracker.ietf.org/doc/html/rfc3986#section-2.3), and defines the unsafe set as all characters not included in either of those sets.\n\n### Percent-Encoding and `form-urlencoded`\n\nEach URI component (such as the query string) considers some of the reserved characters to be unsafe, either because they serve as delimiters between the components (e.g. `#`), or (in the case of `[` and `]`) were historically considered globally unsafe but were later given reserved status for limited purposes.\n\nReserved characters with no special meaning defined within a component can be left un-percent encoded.\nHowever, other specifications can define special meanings, requiring percent-encoding for those characters outside of the additional special meanings.\n\nThe `form-urlencoded` media type defines special meanings for `=` and `&` as delimiters, and `+` as the replacement for the space character (instead of its percent-encoded form of `%20`).\nThis means that while these three characters are reserved-but-allowed in query strings by RFC3986, they must be percent-encoded in `form-urlencoded` query strings except when used for their `form-urlencoded` purposes; see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for an example of handling `+` in form values.\n\n### Percent-Encoding and `form-data`\n\n[RFC7578](https://datatracker.ietf.org/doc/html/rfc7578#section-2) suggests RFC3986-based percent-encoding as a mechanism to keep text-based per-part header data such as file names within the ASCII character set.\nThis suggestion was not part of older (pre-2015) specifications for `form-data`, so care must be taken to ensure interoperability.\nUsers wishing to use percent-encoding in this way MUST provide the data in percent-encoded form, as percent-encoding is not automatically applied for this media type regardless of which Encoding Object fields are used.\n\nThe `form-data` media type allows arbitrary text or binary data in its parts, so percent-encoding or similar escaping is not needed in general.\n\n### Generating and Validating URIs and `form-urlencoded` Strings\n\nURI percent encoding and the `form-urlencoded` media type have complex specification histories spanning multiple revisions and, in some cases, conflicting claims of ownership by different standards bodies.\nUnfortunately, these specifications each define slightly different percent-encoding rules, which need to be taken into account if the URIs or `form-urlencoded` message bodies will be subject to strict validation.\n(Note that many URI parsers do not perform validation by default, if at all.)\n\nThis specification normatively cites the following relevant standards:\n\n| Specification | Date | OAS Usage | Percent-Encoding | Notes |\n| ---- | ---- | ---- | ---- | ---- |\n| [RFC3986](https://www.rfc-editor.org/rfc/rfc3986) | 01/2005 | URI/URL syntax | [[RFC3986]] | obsoletes [[RFC1738]], [[RFC2396]] |\n| [RFC6570](https://www.rfc-editor.org/rfc/rfc6570) | 03/2012 | style-based serialization | [[RFC3986]] | does not use `+` for <code>form&#8209;urlencoded</code> |\n| [RFC1866](https://datatracker.ietf.org/doc/html/rfc1866#section-8.2.1) | 11/1995 | content-based serialization | [[RFC1738]] | obsoleted by [[HTML401]] [Section 17.13.4.1](https://www.w3.org/TR/html401/interact/forms.html#h-17.13.4.1), [[URL]] [Section 5](https://url.spec.whatwg.org/#urlencoded-serializing) |\n\nStyle-based serialization with percent-encoding is used in the [Parameter Object](#parameter-object) when `schema` is present, and in the [Encoding Object](#encoding-object) when at least one of `style`, `explode`, or `allowReserved` is present.\nSee [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more details of RFC6570's two different approaches to percent-encoding, including an example involving `+`.\n\nContent-based serialization is defined by the [Media Type Object](#media-type-object), and used with the [Parameter Object](#parameter-object) and [Header Object](#header-object) when the `content` field is present, and with the [Encoding Object](#encoding-object) based on the `contentType` field when the fields `style`, `explode`, and `allowReserved` are absent.\nEach part is encoded based on the media type (e.g. `text/plain` or `application/json`), and must then be percent-encoded for use in a `form-urlencoded` string unless the media type already incorporates URI percent-encoding.\n\n#### Interoperability with Historical Specifications\n\nIn most cases, generating query strings in strict compliance with [[RFC3986]] is sufficient to pass validation (including JSON Schema's `format: \"uri\"` and `format: \"uri-reference\"` when `format` validation is enabled), but some `form-urlencoded` implementations still expect the slightly more restrictive [[RFC1738]] rules to be used.\n\nSince all RFC1738-compliant URIs are compliant with RFC3986, applications needing to ensure historical interoperability SHOULD use RFC1738's rules.\n\n#### Interoperability with Web Browser Environments\n\nWHATWG is a [web browser-oriented](https://whatwg.org/faq#what-is-the-whatwg-working-on) standards group that has defined a \"URL Living Standard\" for parsing and serializing URLs in a browser context, including parsing and serializing `form-urlencoded` data.\nWHATWG's percent-encoding rules for query strings are different depending on whether the query string is [being treated as `form-urlencoded`](https://url.spec.whatwg.org/#application-x-www-form-urlencoded-percent-encode-set) (where it requires more percent-encoding than [[RFC1738]]) or [as part of the generic syntax](https://url.spec.whatwg.org/#query-percent-encode-set), where it allows characters that [[RFC3986]] forbids.\n\nImplementations needing maximum compatibility with web browsers SHOULD use WHATWG's `form-urlencoded` percent-encoding rules.\nHowever, they SHOULD NOT rely on WHATWG's less stringent generic query string rules, as the resulting URLs would fail RFC3986 validation, including JSON Schema's `format: uri` and `format: uri-reference` (when `format` validation is endabled).\n\n### Decoding URIs and `form-urlencoded` Strings\n\nThe percent-decoding algorithm does not care which characters were or were not percent-decoded, which means that URIs percent-encoded according to any specification will be decoded correctly.\n\nSimilarly, all `form-urlencoded` decoding algorithms simply add `+`-for-space handling to the percent-decoding algorithm, and will work regardless of the encoding specification used.\n\nHowever, care must be taken to use `form-urlencoded` decoding if `+` represents a space, and to use regular percent-decoding if `+` represents itself as a literal value.\n\n### Percent-Encoding and Illegal or Reserved Delimiters\n\nThe `[`, `]`, `|`, and space characters, which are used as delimiters for the `deepObject`, `pipeDelimited`, and `spaceDelimited` styles, respectively, all MUST be percent-encoded to comply with [[RFC3986]].\nThis requires users to pre-encode the character(s) in some other way in parameter names and values to distinguish them from the delimiter usage when using one of these styles.\n\nThe space character is always illegal and encoded in some way by all implementations of all versions of the relevant standards.\nWhile one could use the `form-urlencoded` convention of `+` to distinguish spaces in parameter names and values from `spaceDelimited` delimiters encoded as `%20`, the specifications define the decoding as a single pass, making it impossible to distinguish the different usages in the decoded result unless a non-standard parsing algorithm is used that separates based on one delimiter before decoding the other.\nAny such non-standard parsing approach will not be interoperable across all tools.\n\nSome environments use `[`, `]`, and possibly `|` unencoded in query strings without apparent difficulties.\nWHATWG's generic query string rules do not require percent-encoding them in non-`form-urlencoded` query strings, although it also excludes them from the set of valid URL Unicode code points.\nCode that relies on leaving these delimiters unencoded, while using regular percent-encoding for them within names and values, is not guaranteed to be interoperable across all implementations.\n\nFor maximum interoperability, it is RECOMMENDED to either define and document an additional escape convention while percent-encoding the delimiters for these styles, or to avoid these styles entirely.\nThe exact method of additional encoding/escaping is left to the API designer, and is expected to be performed before serialization and encoding described in this specification, and reversed after this specification's encoding and serialization steps are reversed.\nThis keeps it outside of the processes governed by this specification.\n\n## Appendix F: Resolving Security Requirements in a Referenced Document\n\nThis appendix shows how to retrieve an HTTP-accessible multi-document OpenAPI Description (OAD) and resolve a [Security Requirement Object](#security-requirement-object) in the referenced (non-entry) document. See [Resolving Implicit Connections](#resolving-implicit-connections) for more information.\n\nFirst, the [entry document](#openapi-description-structure) is where parsing begins. It defines the `MySecurity` security scheme to be JWT-based, and it defines a Path Item as a reference to a component in another document:\n\n```HTTP\nGET /api/description/openapi HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+json\n```\n\n```json\n\"components\": {\n  \"securitySchemes\": {\n    \"MySecurity\": {\n      \"type\": \"http\",\n      \"scheme\": \"bearer\",\n      \"bearerFormat\": \"JWT\"\n    }\n  }\n},\n\"paths\": {\n  \"/foo\": {\n    \"$ref\": \"other#/components/pathItems/Foo\"\n  }\n}\n```\n\n```HTTP\nGET /api/description/openapi HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+yaml\n```\n\n```yaml\ncomponents:\n  securitySchemes:\n    MySecurity:\n      type: http\n      scheme: bearer\n      bearerFormat: JWT\npaths:\n  /foo:\n    $ref: 'other#/components/pathItems/Foo'\n```\n\nThis entry document references another document, `other`, without using a file extension. This gives the client the flexibility to choose an acceptable format on a resource-by-resource basis, assuming both representations are available:\n\n```HTTP\nGET /api/description/other HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+json\n```\n\n```json\n\"components\": {\n  \"securitySchemes\": {\n    \"MySecurity\": {\n      \"type\": \"http\",\n      \"scheme\": \"basic\"\n    }\n  },\n  \"pathItems\": {\n    \"Foo\": {\n      \"get\": {\n        \"security\": [\n          \"MySecurity\": []\n        ]\n      }\n    }\n  }\n}\n```\n\n```HTTP\nGET /api/description/other HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+yaml\n```\n\n```yaml\ncomponents:\n  securitySchemes:\n    MySecurity:\n      type: http\n      scheme: basic\n  pathItems:\n    Foo:\n      get:\n        security:\n          - MySecurity: []\n```\n\nIn the `other` document, the referenced path item has a Security Requirement for a Security Scheme, `MySecurity`. The same Security Scheme exists in the original entry document. As outlined in [Resolving Implicit Connections](#resolving-implicit-connections), `MySecurity` is resolved with an [implementation-defined behavior](#undefined-and-implementation-defined-behavior). However, documented in that section, it is RECOMMENDED that tools resolve component names from the [entry document](#openapi-description-structure). As with all implementation-defined behavior, it is important to check tool documentation to determine which behavior is supported.\n"
  },
  {
    "path": "versions/3.2.0-editors.md",
    "content": "# OpenAPI Specification Editors\n\n## Active\n\n* Henry Andrews [@handrews](https://github.com/handrews)\n* Jeremy Whitlock [@whitlockjc](https://github.com/whitlockjc)\n* Karen Etheridge [@karenetheridge](https://github.com/karenetheridge)\n* Lorna Mitchell [@lornajane](https://github.com/lornajane)\n* Marsh Gardiner [@earth2marsh](https://github.com/earth2marsh)\n* Miguel Quintero [@miqui](https://github.com/miqui)\n* Mike Kistler [@mikekistler](https://github.com/mikekistler)\n* Ralf Handl [@ralfhandl](https://github.com/ralfhandl)\n* Vincent Biret [@baywet](https://github.com/baywet)\n\n## Emeritus\n\n* Ron Ratovsky [@webron](https://github.com/webron)\n* Darrel Miller [@darrelmiller](https://github.com/darrelmiller)\n* Mike Ralphson [@MikeRalphson](https://github.com/MikeRalphson)\n* Uri Sarid [@usarid](https://github.com/usarid)\n* Jason Harmon [@jharmn](https://github.com/jharmn)\n* Tony Tam [@fehguy](https://github.com/fehguy)\n"
  },
  {
    "path": "versions/3.2.0.md",
    "content": "# OpenAPI Specification\n\n## Version 3.2.0\n\nThe key words \"MUST\", \"MUST NOT\", \"REQUIRED\", \"SHALL\", \"SHALL NOT\", \"SHOULD\", \"SHOULD NOT\", \"RECOMMENDED\", \"NOT RECOMMENDED\", \"MAY\", and \"OPTIONAL\" in this document are to be interpreted as described in [BCP 14](https://tools.ietf.org/html/bcp14) [RFC2119](https://tools.ietf.org/html/rfc2119) [RFC8174](https://tools.ietf.org/html/rfc8174) when, and only when, they appear in all capitals, as shown here.\n\nThis document is licensed under [The Apache License, Version 2.0](https://www.apache.org/licenses/LICENSE-2.0.html).\n\n## Introduction\n\nThe OpenAPI Specification (OAS) defines a standard, language-agnostic interface to HTTP APIs which allows both humans and computers to discover and understand the capabilities of the service without access to source code, documentation, or through network traffic inspection. When properly defined, a consumer can understand and interact with the remote service by [parsing and serializing](#parsing-and-serializing) HTTP messages to and from a [data model](#data-types) with a minimal amount of implementation logic.\n\nAn [OpenAPI Description](#openapi-description-structure) (OAD) can then be used by documentation generation tools to display the API, code generation tools to generate servers and clients in various programming languages, testing tools, and many other use cases.\n\nFor examples of OpenAPI usage and additional documentation, please visit [[?OpenAPI-Learn]].\n\nFor extension registries and other specifications published by the OpenAPI Initiative, as well as the authoritative rendering of this specification, please visit [spec.openapis.org](https://spec.openapis.org/).\n\n### Versions and Deprecation\n\nThe OpenAPI Specification is versioned using a `major`.`minor`.`patch` versioning scheme. The `major`.`minor` portion of the version string (for example `3.1`) SHALL designate the OAS feature set. _`.patch`_ versions address errors in, or provide clarifications to, this document, not the feature set. Tooling which supports OAS 3.1 SHOULD be compatible with all OAS 3.1.\\* versions. The patch version SHOULD NOT be considered by tooling, making no distinction between `3.1.0` and `3.1.1` for example.\n\nCertain fields or features may be marked **Deprecated**.\nThese fields and features remain part of the specification and can be used like any other field or feature.\nHowever, OpenAPI Description authors should use newer fields and features documented to replace the deprecated ones whenever possible.\n\nAt this time, such elements are expected to remain part of the OAS until the next major version, although a future minor version of this specification may define a policy for later removal of deprecated elements.\n\nOccasionally, non-backwards compatible changes may be made in `minor` versions of the OAS where impact is believed to be low relative to the benefit provided.\n\n### Undefined and Implementation-Defined Behavior\n\nThis specification deems certain situations to have either _undefined_ or _implementation-defined_ behavior.\n\nBehavior described as _undefined_ is likely, at least in some circumstances, to result in outcomes that contradict the specification.\nThis description is used when detecting the contradiction is impossible or impractical.\nImplementations MAY support undefined scenarios for historical reasons, including ambiguous text in prior versions of the specification.\nThis support might produce correct outcomes in many cases, but relying on it is NOT RECOMMENDED as there is no guarantee that it will work across all tools or with future specification versions, even if those versions are otherwise strictly compatible with this one.\n\nBehavior described as _implementation-defined_ allows implementations to choose which of several different-but-compliant approaches to a requirement to implement.\nThis documents ambiguous requirements that API description authors are RECOMMENDED to avoid in order to maximize interoperability.\nUnlike undefined behavior, it is safe to rely on implementation-defined behavior if _and only if_ it can be guaranteed that all relevant tools support the same behavior.\n\n## Format\n\nAn OpenAPI document that conforms to the OpenAPI Specification is itself a JSON object, which may be represented either in [[RFC8259|JSON]] or [[YAML|YAML]] format.\nExamples in this specification will be shown in YAML for brevity.\n\nAll field names in the specification are **case-sensitive**.\nThis includes all fields that are used as keys in a map, except where explicitly noted that keys are **case-insensitive**.\n\nOAS [Objects](#objects-and-fields) expose two types of fields: _fixed fields_, which have a declared name, and _patterned fields_, which have a declared pattern for the field name.\n\nPatterned fields MUST have unique names within the containing object.\n\n**Note:** While APIs may be described by OpenAPI Descriptions in either YAML or JSON format, the API request and response bodies and other content are not required to be JSON or YAML.\n\n### JSON and YAML Compatibility\n\nIn order to preserve the ability to round-trip between YAML and JSON formats, YAML version [1.2](https://yaml.org/spec/1.2/spec.html) is RECOMMENDED along with the additional constraints listed in [[!RFC9512]] [Section 3.4](https://www.rfc-editor.org/rfc/rfc9512.html#name-yaml-and-json).\n\nThe recommendation in previous versions of this specification to restrict YAML to its \"JSON\" [schema ruleset](https://yaml.org/spec/1.2/spec.html#id2803231) allowed for the inclusion of certain values that (despite the name) cannot be represented in JSON.\nOAD authors SHOULD NOT rely on any such JSON-incompatible YAML values.\n\n### Case Sensitivity\n\nAs most field names and values in the OpenAPI Specification are case-sensitive, this document endeavors to call out any case-insensitive names and values.\nHowever, the case sensitivity of field names and values that map directly to HTTP concepts follow the case sensitivity rules of HTTP, even if this document does not make a note of every concept.\n\n### Rich Text Formatting\n\nThroughout the specification `description` fields are noted as supporting CommonMark markdown formatting.\nWhere OpenAPI tooling renders rich text it MUST support, at a minimum, markdown syntax as described by [CommonMark 0.27](https://spec.commonmark.org/0.27/). Tooling MAY choose to ignore some CommonMark or extension features to address security concerns.\n\nWhile the framing of CommonMark 0.27 as a minimum requirement means that tooling MAY choose to implement extensions on top of it, note that any such extensions are by definition implementation-defined and will not be interoperable.\nOpenAPI Description authors SHOULD consider how text using such extensions will be rendered by tools that offer only the minimum support.\n\n## Objects and Fields\n\nThis section describes the structure of the OpenAPI Description format.\nThis text is the only normative description of the format.\nA JSON Schema is hosted on [spec.openapis.org](https://spec.openapis.org) for informational purposes.\nIf the JSON Schema differs from this section, then this section MUST be considered authoritative.\n\nIn the following description, if a field is not explicitly **REQUIRED** or described with a MUST or SHALL, it can be considered OPTIONAL.\n\n### OpenAPI Object\n\nThis is the root object of the [OpenAPI Description](#openapi-description-structure).\n\n#### Fixed Fields\n\nIn addition to the required fields, at least one of the `components`, `paths`, or `webhooks` fields MUST be present.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"oas-version\"></a>openapi | `string` | **REQUIRED**. This string MUST be the [version number](#versions-and-deprecation) of the OpenAPI Specification that the OpenAPI document uses. The `openapi` field SHOULD be used by tooling to interpret the OpenAPI document. This is _not_ related to the [`info.version`](#info-version) string, which describes the OpenAPI document's version. |\n| <a name=\"oas-self\"></a>$self | `string` | This string MUST be in the form of a URI reference as defined by [[RFC3986]] [Section 4.1](https://www.rfc-editor.org/rfc/rfc3986#section-4.1). The `$self` field provides the self-assigned URI of this document, which also serves as its base URI in accordance with [[RFC3986]] [Section 5.1.1](https://www.rfc-editor.org/rfc/rfc3986#section-5.1.1). Implementations MUST support identifying the targets of [API description URIs](#relative-references-in-api-description-uris) using the URI defined by this field when it is present. See [Establishing the Base URI](#establishing-the-base-uri) for the base URI behavior when `$self` is absent or relative, and see [Appendix F](#appendix-f-examples-of-base-uri-determination-and-reference-resolution) for examples of using `$self` to resolve references. |\n| <a name=\"oas-info\"></a>info | [Info Object](#info-object) | **REQUIRED**. Provides metadata about the API. The metadata MAY be used by tooling as required. |\n| <a name=\"oas-json-schema-dialect\"></a> jsonSchemaDialect | `string` | The default value for the `$schema` keyword within [Schema Objects](#schema-object) contained within this OAS document. This MUST be in the form of a URI. |\n| <a name=\"oas-servers\"></a>servers | [[Server Object](#server-object)] | An array of Server Objects, which provide connectivity information to a target server. If the `servers` field is not provided, or is an empty array, the default value would be an array consisting of a single [Server Object](#server-object) with a [url](#server-url) value of `/`. |\n| <a name=\"oas-paths\"></a>paths | [Paths Object](#paths-object) | The available paths and operations for the API. |\n| <a name=\"oas-webhooks\"></a>webhooks | Map[`string`, [Path Item Object](#path-item-object)] | The incoming webhooks that MAY be received as part of this API and that the API consumer MAY choose to implement. Closely related to the `callbacks` feature, this section describes requests initiated other than by an API call, for example by an out of band registration. The key name is a unique string to refer to each webhook, while the (optionally referenced) Path Item Object describes a request that may be initiated by the API provider and the expected responses. An [example](https://learn.openapis.org/examples/v3.1/webhook-example.html) is available. |\n| <a name=\"oas-components\"></a>components | [Components Object](#components-object) | An element to hold various Objects for the OpenAPI Description. |\n| <a name=\"oas-security\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used across the API. The list of values includes alternative Security Requirement Objects that can be used. Only one of the Security Requirement Objects need to be satisfied to authorize a request. Individual operations can override this definition. The list can be incomplete, up to being empty or absent. To make security explicitly optional, an empty security requirement (`{}`) can be included in the array. |\n| <a name=\"oas-tags\"></a>tags | [[Tag Object](#tag-object)] | A list of tags used by the OpenAPI Description with additional metadata. The order of the tags can be used to reflect on their order by the parsing tools. Not all tags that are used by the [Operation Object](#operation-object) must be declared. The tags that are not declared MAY be organized randomly or based on the tools' logic. Each tag name in the list MUST be unique. |\n| <a name=\"oas-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nTo ensure interoperability, references MUST use the target document's `$self` URI if the `$self` field is present.\nImplementations MAY choose to support referencing by other URIs such as the retrieval URI even when `$self` is present, however this behavior is not interoperable and relying on it is NOT RECOMMENDED.\n\n#### OpenAPI Description Structure\n\nAn **OpenAPI Description** (**OAD**) formally describes the surface of an API and its semantics.\nAn OAD MAY be made up of a single document, or be distributed across multiple documents that are connected by various fields using [URI references](#relative-references-in-api-description-uris) and [implicit connections](#resolving-implicit-connections).\n\nIn order for parsing behavior to be well-defined, all documents in an OAD MUST have either an OpenAPI Object or a Schema Object at the root, and MUST be parsed as complete documents, as described in the next section.\n\nDocuments with a different Object at the root, or that mix OAD content with other content, MAY be supported, but will have implementation-defined or, potentially, undefined behavior as described in [Appendix G: Parsing and Resolution Guidance](#appendix-g-parsing-and-resolution-guidance).\nThroughout this specification, documents are assumed to have either an OpenAPI Object or Schema Object at the root unless otherwise specified.\n\nIn a multi-document OAD, the document containing the OpenAPI Object where parsing begins is known as that OAD's **entry document**.\nIt is RECOMMENDED that the entry document of an OAD be named `openapi.json` or `openapi.yaml`.\n\nAn OpenAPI Object MAY be embedded in another format, called the **embedding format**, just as JSON Schema is embedded in the OAS in the form of Schema Objects.\nIt is the responsibility of an embedding format to define how to parse embedded content, and OAS implementations that do not document support for an embedding format cannot be expected to parse embedded OAS content correctly.\n\n##### Parsing Documents\n\nEach document in an OAD MUST be fully parsed in order to locate possible reference targets.\nThis includes the parsing requirements of [JSON Schema Specification Draft 2020-12](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-9), with appropriate modifications regarding base URIs as specified in [Relative References In URIs](#relative-references-in-api-description-uris).\nReference targets are defined by fields including the OpenAPI Object's [`$self`](#oas-self) field and the [Schema Object's](#schema-object) `$id`, `$anchor`, and `$dynamicAnchor` keywords.\n\nImplementations MUST NOT treat a reference as unresolvable before completely parsing all documents provided to the implementation as possible parts of the OAD.\n\nIf only the referenced part of the document is parsed when resolving a reference, the resulting behavior can be implementation-defined or undefined; see [Warnings Regarding Fragmentary Parsing](#warnings-regarding-fragmentary-parsing) in [Appendix G](#appendix-g-parsing-and-resolution-guidance) for details.\n\n##### Relative References in API Description URIs\n\nURIs used as references within an OpenAPI Description, or to external documentation or other supplementary information such as a license, are resolved as _identifiers_, and described by this specification as **_URIs_**, in contrast with [API URLs](#relative-references-in-api-urls).\nNote that some URI fields are named `url` for historical reasons, but the descriptive text for those fields uses the correct \"URI\" terminology.\n\nAs noted under [Parsing Documents](#parsing-documents), several fields can be used to associate an OpenAPI document or a Schema Object with a URI, which might not match the document's or schema's location.\nThis allows the same references to be used in different deployment environments, including local filesystems or networks restricted by security policies or connectivity limitations.\n\nUnless specified otherwise, all fields that are URIs MAY be relative references as defined by [[RFC3986]] [Section 4.2](https://tools.ietf.org/html/rfc3986#section-4.2).\n\n###### Establishing the Base URI\n\nRelative URI references are resolved using the appropriate base URI, which MUST be determined in accordance with [[RFC3986]] [Section 5.1.1 – 5.1.4](https://tools.ietf.org/html/rfc3986#section-5.1.1) and, for Schema objects, [JSON Schema draft 2020-12 Section 8.2](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-8.2), as illustrated by the examples in [Appendix F: Examples of Base URI Determination and Reference Resolution](#appendix-f-examples-of-base-uri-determination-and-reference-resolution).\n\nIf `$self` is a relative URI reference, it is resolved against the next possible base URI source ([[RFC3986]] [Section 5.1.2 – 5.1.4](https://tools.ietf.org/html/rfc3986#section-5.1.2)) before being used for the resolution of other relative URI references.\n\nThe most common base URI source that is used in the event of a missing or relative `$self` (in the [OpenAPI Object](#openapi-object)) and (for [Schema Object](#schema-object)) `$id` is the retrieval URI.\nImplementations MAY support document retrieval, although see the [Security Considerations](#security-considerations) sections for additional guidance.\nEven if retrieval is supported, it may be impossible due to network configuration or server unavailability (including the server hosting an older version while a new version is in development), or undesirable due to performance impacts.\nTherefore, all implementations SHOULD allow users to provide documents with their intended retrieval URIs so that references can be resolved as if retrievals were performed.\n\n###### Resolving URI fragments\n\nIf a URI contains a fragment identifier, then the fragment should be resolved per the fragment resolution mechanism of the referenced document. If the representation of the referenced document is JSON or YAML, then the fragment identifier SHOULD be interpreted as a JSON Pointer as per [RFC6901](https://tools.ietf.org/html/rfc6901).\n\n###### Relative URI References in CommonMark Fields\n\nRelative references in CommonMark hyperlinks are resolved in their rendered context, which might differ from the context of the API description.\n\n##### Resolving Implicit Connections\n\nSeveral features of this specification require resolution of non-URI-based connections to some other part of the OpenAPI Description (OAD).\n\nThese connections are unambiguously resolved in single-document OADs, but the resolution process in multi-document OADs is _implementation-defined_, within the constraints described in this section.\nIn some cases, an unambiguous URI-based alternative is available, and OAD authors are RECOMMENDED to use the alternative to maximize interoperability.\n\nFor resolving [Components Object](#components-object) and [Tag Object](#tag-object) names from a referenced (non-entry) document, it is RECOMMENDED that tools resolve from the entry document, rather than the current document.\nFor resolving an [Operation Object](#operation-object) based on an `operationId`, it is RECOMMENDED to consider all Operation Objects from all parsed documents.\n\nNote that no aspect of implicit connection resolution changes how [URIs are resolved](#relative-references-in-api-description-uris), or restricts their possible targets.\n\nSee [Appendix G: Parsing and Resolution Guidance](#appendix-g-parsing-and-resolution-guidance) for more details, including a list of Objects and fields using implicit connections.\n\n### Info Object\n\nThe object provides metadata about the API.\nThe metadata MAY be used by the clients if needed, and MAY be presented in editing or documentation generation tools for convenience.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"info-title\"></a>title | `string` | **REQUIRED**. The title of the API. |\n| <a name=\"info-summary\"></a>summary | `string` | A short summary of the API. |\n| <a name=\"info-description\"></a>description | `string` | A description of the API. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"info-terms-of-service\"></a>termsOfService | `string` | A URI for the Terms of Service for the API. This MUST be in the form of a URI. |\n| <a name=\"info-contact\"></a>contact | [Contact Object](#contact-object) | The contact information for the exposed API. |\n| <a name=\"info-license\"></a>license | [License Object](#license-object) | The license information for the exposed API. |\n| <a name=\"info-version\"></a>version | `string` | **REQUIRED**. The version of the OpenAPI document (which is distinct from the [OpenAPI Specification version](#oas-version) or the version of the API being described or the version of the OpenAPI Description). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Info Object Example\n\n```yaml\ntitle: Example Pet Store App\nsummary: A pet store manager.\ndescription: This is an example server for a pet store.\ntermsOfService: https://example.com/terms/\ncontact:\n  name: API Support\n  url: https://www.example.com/support\n  email: support@example.com\nlicense:\n  name: Apache 2.0\n  url: https://www.apache.org/licenses/LICENSE-2.0.html\nversion: 1.0.1\n```\n\n### Contact Object\n\nContact information for the exposed API.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"contact-name\"></a>name | `string` | The identifying name of the contact person/organization. |\n| <a name=\"contact-url\"></a>url | `string` | The URI for the contact information. This MUST be in the form of a URI. |\n| <a name=\"contact-email\"></a>email | `string` | The email address of the contact person/organization. This MUST be in the form of an email address. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Contact Object Example\n\n```yaml\nname: API Support\nurl: https://www.example.com/support\nemail: support@example.com\n```\n\n### License Object\n\nLicense information for the exposed API.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"license-name\"></a>name | `string` | **REQUIRED**. The license name used for the API. |\n| <a name=\"license-identifier\"></a>identifier | `string` | An [SPDX](https://spdx.org/licenses/) license expression for the API. The `identifier` field is mutually exclusive of the `url` field. |\n| <a name=\"license-url\"></a>url | `string` | A URI for the license used for the API. This MUST be in the form of a URI. The `url` field is mutually exclusive of the `identifier` field. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### License Object Example\n\n```yaml\nname: Apache 2.0\nidentifier: Apache-2.0\n```\n\n### Server Object\n\nAn object representing a Server.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"server-url\"></a>url | `string` | **REQUIRED**. A URL to the target host. This URL supports Server Variables and MAY be relative, to indicate that the host location is relative to the location where the document containing the Server Object is being served. Query and fragment MUST NOT be part of this URL. Variable substitutions will be made when a variable is named in `{`braces`}`. |\n| <a name=\"server-description\"></a>description | `string` | An optional string describing the host designated by the URL. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"server-name\"></a>name | `string` | An optional unique string to refer to the host designated by the URL. |\n| <a name=\"server-variables\"></a>variables | Map[`string`, [Server Variable Object](#server-variable-object)] | A map between a variable name and its value. The value is used for substitution in the server's URL template. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Relative References in API URLs\n\nAPI endpoints are by definition accessed as locations, and are described by this specification as **_URLs_**.\n\nUnless specified otherwise, all fields that are URLs MAY be relative references as defined by [RFC3986](https://tools.ietf.org/html/rfc3986#section-4.2).\n\nBecause the API is a distinct entity from the OpenAPI document, RFC3986's base URI rules for the OpenAPI document do not apply.\nUnless specified otherwise, relative references are resolved using the URLs defined in the [Server Object](#server-object) as a base URL. Note that these themselves MAY be relative to the referring document.\n\n##### Examples of API Base URL Determination\n\nAssume a retrieval URI of `https://device1.example.com` for the following OpenAPI document:\n\n```yaml\nopenapi: 3.2.0\n$self: https://apidescriptions.example.com/foo\ninfo:\n  title: Example API\n  version: 1.0\nservers:\n- url: .\n  description: The production API on this device\n- url: ./test\n  description: The test API on this device\n```\n\nFor API URLs the `$self` field, which identifies the OpenAPI document, is ignored and the retrieval URI is used instead. This produces a normalized production URL of `https://device1.example.com`, and a normalized test URL of `https://device1.example.com/test`.\n\n#### Server Object Example\n\nA single server would be described as:\n\n```yaml\nurl: https://development.gigantic-server.com/v1\ndescription: Development server\nname: dev\n```\n\nThe following shows how multiple servers can be described, for example, at the OpenAPI Object's [`servers`](#oas-servers):\n\n```yaml\nservers:\n  - url: https://development.gigantic-server.com/v1\n    description: Development server\n    name: dev\n  - url: https://staging.gigantic-server.com/v1\n    description: Staging server\n    name: staging\n  - url: https://api.gigantic-server.com/v1\n    description: Production server\n    name: prod\n```\n\nThe following shows how variables can be used for a server configuration:\n\n```yaml\nservers:\n  - url: https://{username}.gigantic-server.com:{port}/{basePath}\n    description: The production API server\n    name: prod\n    variables:\n      username:\n        # note! no enum here means it is an open value\n        default: demo\n        description: A user-specific subdomain. Use `demo` for a free sandbox environment.\n      port:\n        enum:\n          - '8443'\n          - '443'\n        default: '8443'\n      basePath:\n        # open meaning there is the opportunity to use special base paths as assigned by the provider, default is \"v2\"\n        default: v2\n```\n\n### Server Variable Object\n\nAn object representing a Server Variable for server URL template substitution.\n\nThe server URL templating is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax.\n\n```abnf\nserver-url-template  = 1*( literals / server-variable )\nserver-variable      = \"{\" server-variable-name \"}\"\nserver-variable-name = 1*( %x00-7A / %x7C / %x7E-10FFFF ) ; every Unicode character except { and }\n\nliterals       = 1*( %x21 / %x23-24 / %x26-3B / %x3D / %x3F-5B\n               / %x5D / %x5F / %x61-7A / %x7E / ucschar / iprivate\n               / pct-encoded)\n                    ; any Unicode character except: CTL, SP,\n                    ;  DQUOTE, \"%\" (aside from pct-encoded),\n                    ;  \"<\", \">\", \"\\\", \"^\", \"`\", \"{\", \"|\", \"}\"\npct-encoded    =  \"%\" HEXDIG HEXDIG\nucschar        =  %xA0-D7FF / %xF900-FDCF / %xFDF0-FFEF\n               /  %x10000-1FFFD / %x20000-2FFFD / %x30000-3FFFD\n               /  %x40000-4FFFD / %x50000-5FFFD / %x60000-6FFFD\n               /  %x70000-7FFFD / %x80000-8FFFD / %x90000-9FFFD\n               /  %xA0000-AFFFD / %xB0000-BFFFD / %xC0000-CFFFD\n               /  %xD0000-DFFFD / %xE1000-EFFFD\niprivate       =  %xE000-F8FF / %xF0000-FFFFD / %x100000-10FFFD\n```\n\nHere, `literals`, `pct-encoded`, `ucschar` and `iprivate` definitions are taken from [RFC 6570](https://www.rfc-editor.org/rfc/rfc6570), incorporating the corrections specified in [Errata 6937](https://www.rfc-editor.org/errata/eid6937) for `literals`.\n\nEach server variable MUST NOT appear more than once in the URL template.\n\nSee the [Paths Object](#paths-object) for guidance on constructing full request URLs.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"server-variable-enum\"></a>enum | [`string`] | An enumeration of string values to be used if the substitution options are from a limited set. The array MUST NOT be empty. |\n| <a name=\"server-variable-default\"></a>default | `string` | **REQUIRED**. The default value to use for substitution, which SHALL be sent if an alternate value is _not_ supplied. If the [`enum`](#server-variable-enum) is defined, the value MUST exist in the enum's values. Note that this behavior is different from the [Schema Object](#schema-object)'s `default` keyword, which documents the receiver's behavior rather than inserting the value into the data. |\n| <a name=\"server-variable-description\"></a>description | `string` | An optional description for the server variable. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n### Components Object\n\nHolds a set of reusable objects for different aspects of the OAS.\nAll objects defined within the Components Object will have no effect on the API unless they are explicitly referenced from outside the Components Object.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :---- | ---- |\n| <a name=\"components-schemas\"></a> schemas | Map[`string`, [Schema Object](#schema-object)] | An object to hold reusable [Schema Objects](#schema-object). |\n| <a name=\"components-responses\"></a> responses | Map[`string`, [Response Object](#response-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Response Objects](#response-object). |\n| <a name=\"components-parameters\"></a> parameters | Map[`string`, [Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Parameter Objects](#parameter-object). |\n| <a name=\"components-examples\"></a> examples | Map[`string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Example Objects](#example-object). |\n| <a name=\"components-request-bodies\"></a> requestBodies | Map[`string`, [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Request Body Objects](#request-body-object). |\n| <a name=\"components-headers\"></a> headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Header Objects](#header-object). |\n| <a name=\"components-security-schemes\"></a> securitySchemes | Map[`string`, [Security Scheme Object](#security-scheme-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Security Scheme Objects](#security-scheme-object). |\n| <a name=\"components-links\"></a> links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Link Objects](#link-object). |\n| <a name=\"components-callbacks\"></a> callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Callback Objects](#callback-object). |\n| <a name=\"components-path-items\"></a> pathItems | Map[`string`, [Path Item Object](#path-item-object)] | An object to hold reusable [Path Item Objects](#path-item-object). |\n| <a name=\"components-media-types\"></a> mediaTypes | Map[`string`, [Media Type Object](#media-type-object) \\| [Reference Object](#reference-object)] | An object to hold reusable [Media Type Objects](#media-type-object). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nAll the fixed fields declared above are objects that MUST use keys that match the regular expression: `^[a-zA-Z0-9\\.\\-_]+$`.\n\nField Name Examples:\n\n```text\nUser\nUser_1\nUser_Name\nuser-name\nmy.org.User\n```\n\n#### Components Object Example\n\n```yaml\ncomponents:\n  schemas:\n    GeneralError:\n      type: object\n      properties:\n        code:\n          type: integer\n          format: int32\n        message:\n          type: string\n    Category:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n    Tag:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int64\n        name:\n          type: string\n  parameters:\n    skipParam:\n      name: skip\n      in: query\n      description: number of items to skip\n      required: true\n      schema:\n        type: integer\n        format: int32\n    limitParam:\n      name: limit\n      in: query\n      description: max records to return\n      required: true\n      schema:\n        type: integer\n        format: int32\n  responses:\n    NotFound:\n      description: Entity not found.\n    IllegalInput:\n      description: Illegal input for operation.\n    GeneralError:\n      description: General Error\n      content:\n        application/json:\n          schema:\n            $ref: '#/components/schemas/GeneralError'\n  securitySchemes:\n    api_key:\n      type: apiKey\n      name: api-key\n      in: header\n    petstore_auth:\n      type: oauth2\n      flows:\n        implicit:\n          authorizationUrl: https://example.org/api/oauth/dialog\n          scopes:\n            write:pets: modify pets in your account\n            read:pets: read your pets\n```\n\n### Paths Object\n\nHolds the relative paths to the individual endpoints and their operations.\nThe path is appended to the URL from the [Server Object](#server-object) in order to construct the full URL. The Paths Object MAY be empty, due to [Access Control List (ACL) constraints](#security-filtering).\n\n#### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"paths-path\"></a>/{path} | [Path Item Object](#path-item-object) | A relative path to an individual endpoint. The field name MUST begin with a forward slash (`/`). The URL from the [Server Object](#server-object)'s `url` field, resolved and with template variables substituted, has the path **appended** (no relative URL resolution) to it in order to construct the full URL. [Path templating](#path-templating) is allowed. When matching URLs, concrete (non-templated) paths would be matched before their templated counterparts. Templated paths with the same hierarchy but different templated names MUST NOT exist as they are identical. In case of ambiguous matching, it's up to the tooling to decide which one to use. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Path Templating\n\nPath templating refers to the usage of template expressions, delimited by curly braces (`{}`), to mark a section of a URL path as replaceable using path parameters.\n\nEach template expression in the path MUST correspond to a path parameter that is included in the [Path Item](#path-item-object) itself and/or in each of the Path Item's [Operations](#operation-object). An exception is if the path item is empty, for example due to ACL constraints, matching path parameters are not required.\n\nThe value for these path parameters MUST NOT contain any unescaped \"generic syntax\" characters described by [RFC3986](https://tools.ietf.org/html/rfc3986#section-3): forward slashes (`/`), question marks (`?`), or hashes (`#`).\nSee [URL Percent-Encoding](#url-percent-encoding) for additional guidance on escaping characters.\n\nThe path templating is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```abnf\npath-template                  = \"/\" *( path-segment \"/\" ) [ path-segment ]\npath-segment                   = 1*( path-literal / template-expression )\npath-literal                   = 1*pchar\ntemplate-expression            = \"{\" template-expression-param-name \"}\"\ntemplate-expression-param-name = 1*( %x00-7A / %x7C / %x7E-10FFFF ) ; every Unicode character except { and }\n\npchar               = unreserved / pct-encoded / sub-delims / \":\" / \"@\"\nunreserved          = ALPHA / DIGIT / \"-\" / \".\" / \"_\" / \"~\"\npct-encoded         = \"%\" HEXDIG HEXDIG\nsub-delims          = \"!\" / \"$\" / \"&\" / \"'\" / \"(\" / \")\"\n                    / \"*\" / \"+\" / \",\" / \";\" / \"=\"\n```\n\nHere, `pchar`, `unreserved`, `pct-encoded` and `sub-delims` definitions are taken from [RFC 3986](https://tools.ietf.org/html/rfc3986). The `path-template` is directly derived from [RFC 3986, section 3.3](https://datatracker.ietf.org/doc/html/rfc3986#section-3.3).\n\nEach template expression MUST NOT appear more than once in a single path template.\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\n##### Path Templating Matching\n\nAssuming the following paths, the concrete definition, `/pets/mine`, will be matched first if used:\n\n```text\n  /pets/{petId}\n  /pets/mine\n```\n\nThe following paths are considered identical and invalid:\n\n```text\n  /pets/{petId}\n  /pets/{name}\n```\n\nThe following may lead to ambiguous resolution:\n\n```text\n  /{entity}/me\n  /books/{id}\n```\n\n#### Paths Object Example\n\n```yaml\n/pets:\n  get:\n    description: Returns all pets from the system that the user has access to\n    responses:\n      '200':\n        description: A list of pets.\n        content:\n          application/json:\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/pet'\n```\n\n### Path Item Object\n\nDescribes the operations available on a single path.\nA Path Item MAY be empty, due to [ACL constraints](#security-filtering).\nThe path itself is still exposed to the documentation viewer but they will not know which operations and parameters are available.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"path-item-ref\"></a>$ref | `string` | Allows for a referenced definition of this path item. The value MUST be in the form of a URI, and the referenced structure MUST be in the form of a [Path Item Object](#path-item-object). In case a Path Item Object field appears both in the defined object and the referenced object, the behavior is undefined. See the rules for resolving [Relative References](#relative-references-in-api-description-uris). <br><br>_**Note:** The behavior of `$ref` with adjacent properties is likely to change in future versions of this specification to bring it into closer alignment with the behavior of the [Reference Object](#reference-object)._ |\n| <a name=\"path-item-summary\"></a>summary | `string` | An optional string summary, intended to apply to all operations in this path. |\n| <a name=\"path-item-description\"></a>description | `string` | An optional string description, intended to apply to all operations in this path. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"path-item-get\"></a>get | [Operation Object](#operation-object) | A definition of a GET operation on this path. |\n| <a name=\"path-item-put\"></a>put | [Operation Object](#operation-object) | A definition of a PUT operation on this path. |\n| <a name=\"path-item-post\"></a>post | [Operation Object](#operation-object) | A definition of a POST operation on this path. |\n| <a name=\"path-item-delete\"></a>delete | [Operation Object](#operation-object) | A definition of a DELETE operation on this path. |\n| <a name=\"path-item-options\"></a>options | [Operation Object](#operation-object) | A definition of a OPTIONS operation on this path. |\n| <a name=\"path-item-head\"></a>head | [Operation Object](#operation-object) | A definition of a HEAD operation on this path. |\n| <a name=\"path-item-patch\"></a>patch | [Operation Object](#operation-object) | A definition of a PATCH operation on this path. |\n| <a name=\"path-item-trace\"></a>trace | [Operation Object](#operation-object) | A definition of a TRACE operation on this path. |\n| <a name=\"path-item-query\"></a>query | [Operation Object](#operation-object) | A definition of a QUERY operation, as defined in the most recent IETF draft ([draft-ietf-httpbis-safe-method-w-body-08](https://www.ietf.org/archive/id/draft-ietf-httpbis-safe-method-w-body-11.html) as of this writing) or its RFC successor, on this path. |\n| <a name=\"path-item-additional-operations\"></a>additionalOperations | Map[`string`, [Operation Object](#operation-object)] | A map of additional operations on this path. The map key is the HTTP method with the same capitalization that is to be sent in the request. This map MUST NOT contain any entry for the methods that can be defined by other fixed fields with Operation Object values (e.g. no `POST` entry, as the `post` field is used for this method). |\n| <a name=\"path-item-servers\"></a>servers | [[Server Object](#server-object)] | An alternative `servers` array to service all operations in this path. If a `servers` array is specified at the [OpenAPI Object](#oas-servers) level, it will be overridden by this value. |\n| <a name=\"path-item-parameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for all the operations described under this path. These parameters can be overridden at the operation level, but cannot be removed there. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in). The list can use the [Reference Object](#reference-object) to link to parameters that are defined in the [OpenAPI Object's `components.parameters`](#components-parameters). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Path Item Object Example\n\n```yaml\nget:\n  description: Returns pets based on ID\n  summary: Find pets by ID\n  operationId: getPetsById\n  responses:\n    '200':\n      description: pet response\n      content:\n        '*/*':\n          schema:\n            type: array\n            items:\n              $ref: '#/components/schemas/Pet'\n    default:\n      description: error payload\n      content:\n        text/html:\n          schema:\n            $ref: '#/components/schemas/ErrorModel'\nparameters:\n  - name: id\n    in: path\n    description: ID of pet to use\n    required: true\n    schema:\n      type: array\n      items:\n        type: string\n    style: simple\nadditionalOperations:\n  COPY:\n    description: Copies pet information based on ID\n    summary: Copies pets by ID\n    operationId: copyPetsById\n    responses:\n      '200':\n        description: pet response\n        content:\n          '*/*':\n            schema:\n              type: array\n              items:\n                $ref: '#/components/schemas/Pet'\n      default:\n        description: error payload\n        content:\n          text/html:\n            schema:\n              $ref: '#/components/schemas/ErrorModel'\n```\n\n### Operation Object\n\nDescribes a single API operation on a path.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"operation-tags\"></a>tags | [`string`] | A list of tags for API documentation control. Tags can be used for logical grouping of operations by resources or any other qualifier. |\n| <a name=\"operation-summary\"></a>summary | `string` | A short summary of what the operation does. |\n| <a name=\"operation-description\"></a>description | `string` | A verbose explanation of the operation behavior. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"operation-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this operation. |\n| <a name=\"operation-id\"></a>operationId | `string` | Unique string used to identify the operation. The id MUST be unique among all operations described in the API. The operationId value is **case-sensitive**. Tools and libraries MAY use the operationId to uniquely identify an operation, therefore, it is RECOMMENDED to follow common programming naming conventions. |\n| <a name=\"operation-parameters\"></a>parameters | [[Parameter Object](#parameter-object) \\| [Reference Object](#reference-object)] | A list of parameters that are applicable for this operation. If a parameter is already defined at the [Path Item](#path-item-parameters), the new definition will override it but can never remove it. The list MUST NOT include duplicated parameters. A unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in). The list can use the [Reference Object](#reference-object) to link to parameters that are defined in the [OpenAPI Object's `components.parameters`](#components-parameters). |\n| <a name=\"operation-request-body\"></a>requestBody | [Request Body Object](#request-body-object) \\| [Reference Object](#reference-object) | The request body applicable for this operation. The `requestBody` is fully supported in HTTP methods where the HTTP specification [RFC9110](https://www.rfc-editor.org/rfc/rfc9110.html#section-9.3) has explicitly defined semantics for request bodies. In other cases where the HTTP spec discourages message content (such as [GET](https://www.rfc-editor.org/rfc/rfc9110.html#section-9.3.1) and [DELETE](https://www.rfc-editor.org/rfc/rfc9110.html#section-9.3.5)), `requestBody` is permitted but does not have well-defined semantics and SHOULD be avoided if possible. |\n| <a name=\"operation-responses\"></a>responses | [Responses Object](#responses-object) | The list of possible responses as they are returned from executing this operation. |\n| <a name=\"operation-callbacks\"></a>callbacks | Map[`string`, [Callback Object](#callback-object) \\| [Reference Object](#reference-object)] | A map of possible out-of band callbacks related to the parent operation. The key is a unique identifier for the Callback Object. Each value in the map is a [Callback Object](#callback-object) that describes a request that may be initiated by the API provider and the expected responses. |\n| <a name=\"operation-deprecated\"></a>deprecated | `boolean` | Declares this operation to be deprecated. Consumers SHOULD refrain from usage of the declared operation. Default value is `false`. |\n| <a name=\"operation-security\"></a>security | [[Security Requirement Object](#security-requirement-object)] | A declaration of which security mechanisms can be used for this operation. The list of values includes alternative Security Requirement Objects that can be used. Only one of the Security Requirement Objects need to be satisfied to authorize a request. To make security optional, an empty security requirement (`{}`) can be included in the array. This definition overrides any declared top-level [`security`](#oas-security). To remove a top-level security declaration, an empty array can be used. |\n| <a name=\"operation-servers\"></a>servers | [[Server Object](#server-object)] | An alternative `servers` array to service this operation. If a `servers` array is specified at the [Path Item Object](#path-item-servers) or [OpenAPI Object](#oas-servers) level, it will be overridden by this value. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Operation Object Example\n\n```yaml\ntags:\n  - pet\nsummary: Updates a pet in the store with form data\noperationId: updatePetWithForm\nparameters:\n  - name: petId\n    in: path\n    description: ID of pet that needs to be updated\n    required: true\n    schema:\n      type: string\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          name:\n            description: Updated name of the pet\n            type: string\n          status:\n            description: Updated status of the pet\n            type: string\n        required:\n          - status\nresponses:\n  '200':\n    description: Pet updated.\n    content:\n      application/json: {}\n      application/xml: {}\n  '405':\n    description: Method Not Allowed\n    content:\n      application/json: {}\n      application/xml: {}\nsecurity:\n  - petstore_auth:\n      - write:pets\n      - read:pets\n```\n\n### External Documentation Object\n\nAllows referencing an external resource for extended documentation.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"external-doc-description\"></a>description | `string` | A description of the target documentation. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"external-doc-url\"></a>url | `string` | **REQUIRED**. The URI for the target documentation. This MUST be in the form of a URI. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### External Documentation Object Example\n\n```yaml\ndescription: Find more info here\nurl: https://example.com\n```\n\n### Parameter Object\n\nDescribes a single operation parameter.\n\nA unique parameter is defined by a combination of a [name](#parameter-name) and [location](#parameter-in).\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns, including interactions with the `application/x-www-form-urlencoded` query string format.\n\n#### Parameter Locations\n\nThere are five possible parameter locations specified by the `in` field:\n\n* path - Used together with [Path Templating](#path-templating), where the parameter value is actually part of the operation's URL. This does not include the host or base path of the API. For example, in `/items/{itemId}`, the path parameter is `itemId`.\n* query - Parameters that are appended to the URL. For example, in `/items?id=###`, the query parameter is `id`; MUST NOT appear in the same operation (or in the operation's path-item) as an `in: \"querystring\"` parameter.\n* querystring - A parameter that treats the entire URL query string as a value which MUST be specified using the `content` field, most often with media type `application/x-www-form-urlencoded` using [Encoding Objects](#encoding-object) in the same way as with request bodies of that media type; MUST NOT appear more than once, and MUST NOT appear in the same operation (or in the operation's path-item) as any `in: \"query\"` parameters.\n* header - Custom headers that are expected as part of the request. Note that [RFC9110](https://www.rfc-editor.org/rfc/rfc9110.html#section-5.1) states header names are case-insensitive.\n* cookie - Used to pass a specific cookie value to the API.\n\n#### Fixed Fields\n\nThe rules for serialization of the parameter are specified in one of two ways.\nParameter Objects MUST include either a `content` field or a `schema` field, but not both.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of converting values of various types to string representations.\n\n##### Common Fixed Fields\n\nThese fields MAY be used with either `content` or `schema`.\n\nThe `example` and `examples` fields are mutually exclusive; see [Working with Examples](#working-with-examples) for guidance on validation requirements.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-name\"></a>name | `string` | **REQUIRED**. The name of the parameter. Parameter names are _case-sensitive_. <ul><li>If [`in`](#parameter-in) is `\"path\"`, the `name` field MUST correspond to a single template expression occurring within the [path](#paths-path) field in the [Paths Object](#paths-object). See [Path Templating](#path-templating) for further information.<li>If [`in`](#parameter-in) is `\"header\"` and the `name` field is `\"Accept\"`, `\"Content-Type\"` or `\"Authorization\"`, the parameter definition SHALL be ignored.<li>If `in` is `\"querystring\"`, or for [certain combinations](#style-examples) of [`style`](#parameter-style) and [`explode`](#parameter-explode), the value of `name` is not used in the parameter serialization.<li>For all other cases, the `name` corresponds to the parameter name used by the [`in`](#parameter-in) field.</ul> |\n| <a name=\"parameter-in\"></a>in | `string` | **REQUIRED**. The location of the parameter. Possible values are `\"query\"`, `\"querystring\"`, `\"header\"`, `\"path\"` or `\"cookie\"`. |\n| <a name=\"parameter-description\"></a>description | `string` | A brief description of the parameter. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"parameter-required\"></a>required | `boolean` | Determines whether this parameter is mandatory. If the [parameter location](#parameter-in) is `\"path\"`, this field is **REQUIRED** and its value MUST be `true`. Otherwise, the field MAY be included and its default value is `false`. |\n| <a name=\"parameter-deprecated\"></a> deprecated | `boolean` | Specifies that a parameter is deprecated and SHOULD be transitioned out of usage. Default value is `false`. |\n| <a name=\"parameter-allow-empty-value\"></a> allowEmptyValue | `boolean` | If `true`, clients MAY pass a zero-length string value in place of parameters that would otherwise be omitted entirely, which the server SHOULD interpret as the parameter being unused. Default value is `false`. If [`style`](#parameter-style) is used, and if [behavior is _n/a_ (cannot be serialized)](#style-examples), the value of `allowEmptyValue` SHALL be ignored. Interactions between this field and the parameter's [Schema Object](#schema-object) are implementation-defined. This field is valid only for `query` parameters. <br><br>**Deprecated:** Use of this field is NOT RECOMMENDED, and it is likely to be removed in a later revision. |\n| <a name=\"parameter-example\"></a>example | Any | Example of the parameter's potential value; see [Working With Examples](#working-with-examples). |\n| <a name=\"parameter-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the parameter's potential value; see [Working With Examples](#working-with-examples). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nNote that while `\"Cookie\"` as a `name` is not forbidden if `in` is `\"header\"`, the effect of defining a cookie parameter that way is undefined; use `in: \"cookie\"` instead.\n\n##### Fixed Fields for use with `schema`\n\nFor simpler scenarios, a [`schema`](#parameter-schema) and [`style`](#parameter-style) can describe the structure and syntax of the parameter.\n\nThese fields MUST NOT be used with `in: \"querystring\"`.\n\nCare is needed for parameters with `schema` that have `in: \"header\"` or `in: \"cookie\", style: \"cookie\"`:\n\n* When serializing these values, URI percent-encoding MUST NOT be applied.\n* When parsing these parameters, any apparent percent-encoding MUST NOT be decoded.\n* If using an RFC6570 implementation that automatically performs encoding or decoding steps, the steps MUST be undone before use.\n\nIn these cases, implementations MUST pass values through unchanged rather than attempting to quote or escape them, as the quoting rules for headers and escaping conventions for cookies vary too widely to be performed automatically; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for guidance on quoting and escaping.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-style\"></a>style | `string` | Describes how the parameter value will be serialized depending on the type of the parameter value. Default values (based on value of `in`): for `\"query\"` - `\"form\"`; for `\"path\"` - `\"simple\"`; for `\"header\"` - `\"simple\"`; for `\"cookie\"` - `\"form\"` (for compatibility reasons; note that `style: \"cookie\"` SHOULD be used with `in: \"cookie\"`; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for details). |\n| <a name=\"parameter-explode\"></a>explode | `boolean` | When this is true, parameter values of type `array` or `object` generate separate parameters for each value of the array or key-value pair of the map. For other types of parameters, or when [`style`](#parameter-style) is `\"deepObject\"`, this field has no effect. When `style` is `\"form\"` or `\"cookie\"`, the default value is `true`. For all other styles, the default value is `false`. |\n| <a name=\"parameter-allow-reserved\"></a>allowReserved | `boolean` | When this is true, parameter values are serialized using reserved expansion, as defined by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570#section-3.2.3), which allows [RFC3986's reserved character set](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2), as well as percent-encoded triples, to pass through unchanged, while still percent-encoding all other disallowed characters (including `%` outside of percent-encoded triples). Applications are still responsible for percent-encoding reserved characters that are not allowed by the rules of the `in` destination or media type, or are [not allowed in the path by this specification](#path-templating); see [URL Percent-Encoding](#url-percent-encoding) for details. The default value is `false`. This field only applies to `in` and `style` values that automatically percent-encode. |\n| <a name=\"parameter-schema\"></a>schema | [Schema Object](#schema-object) | The schema defining the type used for the parameter. |\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\n##### Fixed Fields for use with `content`\n\nFor more complex scenarios, the [`content`](#parameter-content) field can define the media type and schema of the parameter, as well as give examples of its use.\n\nFor use with `in: \"querystring\"` and `application/x-www-form-urlencoded`, see [Encoding the `x-www-form-urlencoded` Media Type](#encoding-the-x-www-form-urlencoded-media-type).\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"parameter-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object) \\| [Reference Object](#reference-object)] | A map containing the representations for the parameter. The key is the media type and the value describes it. The map MUST only contain one entry. |\n\n#### Style Values\n\nIn order to support common ways of serializing simple parameters, a set of `style` values are defined. Combinations not represented in this table are not permitted.\n\n| `style` | [`type`](#data-types) | `in` | Comments |\n| ---- | ---- | ---- | ---- |\n| `matrix` | primitive, `array`, `object` | `path` | Path-style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.7) |\n| `label` | primitive, `array`, `object` | `path` | Label style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.5) |\n| `simple` | primitive, `array`, `object` | `path`, `header` | Simple style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.2). This option replaces `collectionFormat` with a `csv` value from OpenAPI 2.0. |\n| `form` | primitive, `array`, `object` | `query`, `cookie` | Form style parameters defined by [RFC6570](https://tools.ietf.org/html/rfc6570#section-3.2.8). This option replaces `collectionFormat` with a `csv` (when `explode` is false) or `multi` (when `explode` is true) value from OpenAPI 2.0. |\n| `spaceDelimited` | `array`, `object` | `query` | Space separated array values or object properties and values. This option replaces `collectionFormat` equal to `ssv` from OpenAPI 2.0. |\n| `pipeDelimited` | `array`, `object` | `query` | Pipe separated array values or object properties and values. This option replaces `collectionFormat` equal to `pipes` from OpenAPI 2.0. |\n| `deepObject` | `object` | `query` | Allows objects with scalar properties to be represented using form parameters. The representation of array or object properties is not defined (but see [Extending Support for Querystring Formats](#extending-support-for-querystring-formats) for alternatives). |\n| `cookie` | primitive, `array`, `object` | `cookie` | Analogous to `form`, but following [[RFC6265]] `Cookie` syntax rules, meaning that name-value pairs are separated by a semicolon followed by a single space (e.g. `n1=v1; n2=v2`), and no percent-encoding or other escaping is applied; data values that require any sort of escaping MUST be provided in escaped form. |\n\n#### URL Percent-Encoding\n\nAll API URLs MUST successfully parse and percent-decode using [[RFC3986]] rules.\n\nContent in the `application/x-www-form-urlencoded` format, including query strings produced by [Parameter Objects](#parameter-object) with `in: \"query\"`, MUST also successfully parse and percent-decode using [[WHATWG-URL]] rules, including treating non-percent-encoded `+` as an escaped space character.\n\nThese requirements are specified in terms of percent-_decoding_ rules, which are consistently tolerant across different versions of the various standards that apply to URIs.\n\nPercent-_encoding_ is performed in several places:\n\n* By [[RFC6570]] implementations (or simulations thereof; see [Appendix C](#appendix-c-using-rfc6570-based-serialization))\n* By the Parameter or [Encoding](#encoding-object) Objects when incorporating a value serialized with a [Media Type Object](#media-type-object) for a media type that does not already incorporate URI percent-encoding\n* By the user, prior to passing data through RFC6570's reserved expansion process\n\nWhen percent-encoding, the safest approach is to percent-encode all characters not in RFC3986's \"unreserved\" set, and for `form-urlencoded` to also percent-encode the tilde character (`~`) to align with historical requirements that are traced back to [[?RFC1738]], the URI RFC at the time `form-urlencoded` was created.\nThis approach is used in examples in this specification.\n\nFor `form-urlencoded`, while the encoding algorithm given by [[WHATWG-URL]] requires escaping the space character as `+`, percent-encoding it as `%20` also meets the above requirements.\nExamples in this specification will prefer `%20` when using RFC6570's default (non-reserved) form-style expansion, and `+` otherwise.\n\nReserved characters MUST NOT be percent-encoded when being used for reserved purposes such as `&=+` for `form-urlencoded` or `,` for delimiting non-exploded array and object values in RFC6570 expansions.\nThe result of inserting non-percent-encoded delimiters into data using manual percent-encoding, including via RFC6570's reserved expansion rules, is undefined and will likely prevent implementations from parsing the results back into the correct data structures.\nIn some cases, such as inserting `/` into path parameter values, doing so is [explicitly forbidden](#path-templating) by this specification.\n\nSee also:\n\n* [Appendix C](#appendix-c-using-rfc6570-based-serialization) for guidance on using or simulating/extending RFC6570 implementations.\n* [Appendix D](#appendix-d-serializing-headers-and-cookies) for guidance on percent-encoding and cookies, as well as other escaping approaches for headers and cookies.\n* [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a thorough discussion of percent-encoding options, compatibility, and handling OAS-defined delimiters that are not allowed by RFC3986.\n\n#### Serialization and Examples\n\nThe rules in this section apply to both the Parameter and [Header](#header-object) Objects, both of which use the same mechanisms.\n\nWhen showing serialized examples, such as with the [Example Object's](#example-object) `serializedValue` or `externalValue` fields, in most cases the value to show is just the value, with all relevant percent-encoding or other encoding/escaping applied, and also including any delimiters produced by the `style` and `explode` configuration.\n\nIn cases where the name is an inherent part of constructing the serialization, such as the `name=value` pairs produced by `style: \"form\"` or the combination of `style: \"simple\", explode: true`, the name and any delimiter between the name and value MUST be included.\n\nThe `matrix` and `label` styles produce a leading delimiter which is always a valid part of the serialization and MUST be included.\nThe RFC6570 operators corresponding to `style: \"form\"` produce a leading delimiter of either `?` or `&` depending on the exact syntax used.\nAs the suitability of either delimiter depends on where in the query string the parameter occurs, as well as whether it is in a URI or in `application/x-www-form-urlencoded` content, this leading delimiter MUST NOT be included in examples of individual parameters or media type documents.\nFor `in: \"cookie\", style: \"form\"`, neither the `&` nor `?` delimiters are ever correct; see [Appendix D: Serializing Headers and Cookies](#appendix-d-serializing-headers-and-cookies) for more details.\n\nFor headers, the header name MUST NOT be included as part of the serialization, as it is never part of the RFC6570-derived result.\nHowever, names produced by `style: \"simple\", explode: \"true\"` are included as they appear within the header value, not as separate headers.\nSee the [Header Object](#header-object) for special rules for showing examples of the `Set-Cookie` response header, which violates the normal rules for multiple header values.\n\n#### Style Examples\n\nAssume a parameter named `color` has one of the following values, where the value to the right of the `->` is what would be shown in the `dataValue` field of an Example Object:\n\n```js\n   string -> \"blue\"\n   array -> [\"blue\", \"black\", \"brown\"]\n   object -> { \"R\": 100, \"G\": 200, \"B\": 150 }\n```\n\nThe following table shows serialized examples, as would be shown with the `serializedValue` field of an Example Object, of the different serializations for each value.\n\n* The value _empty_ denotes the empty string, and is unrelated to the `allowEmptyValue` field.\n* The behavior of combinations marked _n/a_ is undefined.\n* The `undefined` column replaces the `empty` column in previous versions of this specification in order to better align with [RFC6570](https://www.rfc-editor.org/rfc/rfc6570.html#section-2.3) terminology, which describes certain values including but not limited to `null` as \"undefined\" values with special handling; notably, the empty string is _not_ undefined.\n* For `form` and the non-RFC6570 query string styles `spaceDelimited`, `pipeDelimited`, and `deepObject`, see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more information on constructing query strings from multiple parameters, and [Appendix D](#appendix-d-serializing-headers-and-cookies) for warnings regarding `form` and `cookie` parameters.\n* The examples are percent-encoded as explained in the [URL Percent-Encoding](#url-percent-encoding) section above; see [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a thorough discussion of percent-encoding concerns, including why unencoded `|` (`%7C`), `[` (`%5B`), and `]` (`%5D`) seem to work in some environments despite not being compliant.\n\n| [`style`](#style-values) | `explode` | `undefined` | `string` | `array` | `object` |\n| ---- | ---- | ---- | ---- | ---- | ---- |\n| matrix | false | ;color | ;color=blue | ;color=blue,black,brown | ;color=R,100,G,200,B,150 |\n| matrix | true | ;color | ;color=blue | ;color=blue;color=black;color=brown | ;R=100;G=200;B=150 |\n| label | false | . | .blue | .blue,black,brown | .R,100,G,200,B,150 |\n| label | true | . | .blue | .blue.black.brown | .R=100.G=200.B=150 |\n| simple | false | _empty_ | blue | blue,black,brown | R,100,G,200,B,150 |\n| simple | true | _empty_ | blue | blue,black,brown | R=100,G=200,B=150 |\n| form | false | <span style=\"white-space: nowrap;\">color=</span> | <span style=\"white-space: nowrap;\">color=blue</span> | <span style=\"white-space: nowrap;\">color=blue,black,brown</span> | <span style=\"white-space: nowrap;\">color=R,100,G,200,B,150</span> |\n| form | true | <span style=\"white-space: nowrap;\">color=</span> | <span style=\"white-space: nowrap;\">color=blue</span> | <span style=\"white-space: nowrap;\">color=blue&color=black&color=brown</span> | <span style=\"white-space: nowrap;\">R=100&G=200&B=150</span> |\n| spaceDelimited</span> | false | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">color=blue%20black%20brown</span> | <span style=\"white-space: nowrap;\">color=R%20100%20G%20200%20B%20150</span> |\n| spaceDelimited | true | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| pipeDelimited | false | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">color=blue%7Cblack%7Cbrown</span> | <span style=\"white-space: nowrap;\">color=R%7C100%7CG%7C200%7CB%7C150</span> |\n| pipeDelimited | true | _n/a_ | _n/a_ | _n/a_ | _n/a_ |\n| deepObject | _n/a_ | _n/a_ | _n/a_ | _n/a_ | <span style=\"white-space: nowrap;\">color%5BR%5D=100&color%5BG%5D=200&color%5BB%5D=150</span> |\n| cookie | false | <span style=\"white-space: nowrap;\">color=</span> | <span style=\"white-space: nowrap;\">color=blue</span> | <span style=\"white-space: nowrap;\">color=blue,black,brown</span> | <span style=\"white-space: nowrap;\">color=R,100,G,200,B,150</span> |\n| cookie | true | <span style=\"white-space: nowrap;\">color=</span> | <span style=\"white-space: nowrap;\">color=blue</span> | <span style=\"white-space: nowrap;\">color=blue; color=black; color=brown</span> | <span style=\"white-space: nowrap;\">R=100; G=200; B=150</span> |\n\n#### Extending Support for Querystring Formats\n\nMany frameworks define query string syntax for complex values, such as appending array indices to parameter names or indicating multiple levels of of nested objects, which go well beyond the capabilities of the `deepObject` style.\n\nAs these are not standards, and often contradict each other, the OAS does not attempt to support them directly.\nTwo avenues are available for supporting such formats with `in: \"querystring\"`:\n\n* Use `content` and `text/plain` with a schema of `type: \"string\"` and define the format outside of OpenAPI.  While this requires more work to document and construct or parse the format, which is seen as a plain string from the OpenAPI perspective, it provides the easiest flexible option\n* Define a media type (which need not necessarily be [IANA-registered](https://www.rfc-editor.org/rfc/rfc6838.html)) and a process for mapping in-memory data to the serialized  media type.  To increase the likelihood of support across multiple tools, submit a registration for the media type and process to the OpenAPI Initiative's [Media Type Registry](#openapi-media-type-registry).\n\n#### Parameter Object Examples\n\nA header parameter with an array of 64-bit integer numbers:\n\n```yaml\nname: X-Token\nin: header\ndescription: token to be passed as a header\nrequired: true\nschema:\n  type: array\n  items:\n    type: integer\n    format: int64\nstyle: simple\nexamples:\n  Tokens:\n    dataValue:\n      - 12345678\n      - 90099\n    serializedValue: \"12345678,90099\"\n```\n\n\nA cookie parameter with an exploded object (the default for `style: \"cookie\"`):\n\n```yaml\nname: cookie\nin: cookie\nstyle: cookie\nschema:\n  type: object\n  properties:\n    greeting:\n      type: string\n    code:\n      type: integer\n      minimum: 0\nexamples:\n  Object:\n    description: |\n        Note that the comma (,) has been pre-percent-encoded\n        to \"%2C\" in the data, as it is forbidden in\n        cookie values.  However, the exclamation point (!)\n        is legal in cookies, so it can be left unencoded.\n    dataValue:\n      greeting: Hello%2C world!\n      code: 42\n    serializedValue: \"greeting=Hello%2C world!; code=42\"\n```\n\nA cookie parameter relying on the percent-encoding behavior of the default `style: \"form\"`:\n\n```yaml\nname: greeting\nin: cookie\nschema:\n  type: string\nexamples:\n  Greeting:\n    description: |\n      Note that in this approach, RFC6570's percent-encoding\n      process applies, so unsafe characters are not\n      pre-percent-encoded.  This results in all non-URL-safe\n      characters, rather than just the one non-cookie-safe\n      character, getting percent-encoded.\n    dataValue: Hello, world!\n    serializedValue: \"greeting=Hello%2C%20world%21\"\n```\n\nA path parameter of a string value:\n\n```yaml\nname: username\nin: path\ndescription: username to fetch\nrequired: true\nschema:\n  type: string\nexamples:\n  \"Edsger Dijkstra\":\n    dataValue: edijkstra\n    serializedValue: edijkstra\n  Diṅnāga:\n    dataValue: diṅnāga\n    serializedValue: di%E1%B9%85n%C4%81ga\n  Al-Khwarizmi:\n    dataValue: \"الخوارزميّ\"\n    serializedValue: \"%D8%A7%D9%84%D8%AE%D9%88%D8%A7%D8%B1%D8%B2%D9%85%D9%8A%D9%91\"\n```\n\nAn optional query parameter of a string value, allowing multiple values by repeating the query parameter\n(Note that we use `\"%20\"` in place of `\" \"` (space) because that is how RFC6570 handles it; for guidance on using `+` to represent the space character, see [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for more guidance on these escaping options):\n\n```yaml\nname: thing\nin: query\nrequired: false\nschema:\n  type: array\n  items:\n    type: string\nstyle: form\nexplode: true\nexamples:\n  ObjectList:\n    dataValue:\n      - one thing\n      - another thing\n    serializedValue: \"thing=one%20thing&thing=another%20thing\"\n```\n\nA free-form query parameter, allowing arbitrary parameters of `type: \"integer\"`:\n\n```yaml\nin: query\nname: freeForm\nschema:\n  type: object\n  additionalProperties:\n    type: integer\nstyle: form\nexamples:\n  Pagination:\n    dataValue:\n      page: 4\n      pageSize: 50\n    serializeValue: page=4&pageSize=50\n```\n\nA complex parameter using `content` to define serialization, with multiple levels and types of examples shown to make the example usage options clear — note that `dataValue` is the same at both levels and does not need to be shown in both places in normal usage, but `serializedValue` is different:\n\n```yaml\nin: query\nname: coordinates\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n        - lat\n        - long\n      properties:\n        lat:\n          type: number\n        long:\n          type: number\n    examples:\n      dataValue:\n        lat: 10\n        long: 60\n      serializedValue: '{\"lat\":10,\"long\":60}'\nexamples:\n  dataValue:\n    lat: 10\n    long: 60\n  serializedValue: coordinates=%7B%22lat%22%3A10%2C%22long%22%3A60%7D\n```\n\nA querystring parameter using regular form encoding, but managed with a Media Type Object.\nThis shows spaces being handled per the `application/x-www-form-urlencoded` media type rules (encode as `+`) rather than the RFC6570 process (encode as `%20`); see [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for further guidance on this distinction.\nExamples are shown at both the media type and parameter level to emphasize that, since `application/x-www-form-urlencoded` is suitable for use in query strings by definition, no further encoding or escaping is applied to the serialized media type value:\n\n```yaml\nin: querystring\ncontent:\n  application/x-www-form-urlencoded:\n    schema:\n      type: object\n      properties:\n        foo:\n          type: string\n        bar:\n          type: boolean\n    examples:\n      spacesAndPluses:\n        description: Note handling of spaces and \"+\" per media type.\n        dataValue:\n          foo: a + b\n          bar: true\n        serializedValue: foo=a+%2B+b&bar=true\nexamples:\n  spacesAndPluses:\n    description: |\n      Note that no additional percent encoding is done, as this\n      media type is URI query string-ready by definition.\n    dataValue:\n      foo: a + b\n      bar: true\n    serializedValue: foo=a+%2B+b&bar=true\n```\n\nA querystring parameter that uses JSON for the entire string (not as a single query parameter value).\nThe `dataValue` field is shown at both levels to fully illustrate both ways of providing an example.\nAs seen below, this is redundant and need not be done in practice:\n\n```yaml\nin: querystring\nname: json\ncontent:\n  application/json:\n    schema:\n      type: object\n      properties:\n        numbers:\n          type: array\n          items:\n            type: integer\n        flag:\n          type: [boolean, \"null\"]\n    examples:\n      TwoNoFlag:\n        description: Serialize with minimized whitespace\n        dataValue:\n          numbers:\n            - 1\n            - 2\n          flag: null\n        serializedValue: '{\"numbers\":[1,2],\"flag\":null}'\nexamples:\n  TwoNoFlag:\n    dataValue:\n      numbers:\n        - 1\n        - 2\n      flag: null\n    serializedValue: \"%7B%22numbers%22%3A%5B1%2C2%5D%2C%22flag%22%3Anull%7D\"\n```\n\nAssuming a path of `/foo`, a server of `https://example.com`, the full URL incorporating the value from `serializedValue` would be:\n\n```uri\nhttps://example.com/foo?%7B%22numbers%22%3A%5B1%2C2%5D%2C%22flag%22%3Anull%7D\n```\n\nA querystring parameter that uses [[?RFC9535|JSONPath]].\nNote that in this example we not only do not repeat `dataValue`, but we use the shorthand `example` because the `application/jsonpath` value is a string that, at the media type level, is serialized as-is:\n\n```yaml\nin: querystring\nname: selector\ncontent:\n  application/jsonpath:\n    schema:\n      type: string\n    example: $.a.b[1:1]\nexamples:\n  Selector:\n    serializedValue: \"%24.a.b%5B1%3A1%5D\"\n```\n\nAs there is not, as of this writing, a [registered](#openapi-media-type-registry) mapping between the JSON Schema data model and JSONPath, the details of the string's allowed structure would need to be conveyed either in a human-readable `description` field, or through a mechanism outside of the OpenAPI Description, such as a JSON Schema for the data structure to be queried.\n\nAssuming a path of `/foo` and a server of `https://example.com`, the full URL incorporating the value from `serializedValue` would be:\n\n```uri\nhttps://example.com/foo?%24.a.b%5B1%3A1%5D\n```\n\n### Request Body Object\n\nDescribes a single request body.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"request-body-description\"></a>description | `string` | A brief description of the request body. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"request-body-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object) \\| [Reference Object](#reference-object)] | **REQUIRED**. The content of the request body. The key is a media type or [media type range](https://www.rfc-editor.org/rfc/rfc9110.html#appendix-A) and the value describes it. The map SHOULD have at least one entry; if it does not, the behavior is implementation-defined. For requests that match multiple keys, only the most specific key is applicable. e.g. `\"text/plain\"` overrides `\"text/*\"` |\n| <a name=\"request-body-required\"></a>required | `boolean` | Determines if the request body is required in the request. Defaults to `false`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Request Body Examples\n\nA request body with a referenced schema definition.\n\n```yaml\ndescription: user to add to the system\ncontent:\n  application/json:\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User example\n        externalValue: https://foo.bar/examples/user-example.json\n  application/xml:\n    schema:\n      $ref: '#/components/schemas/User'\n    examples:\n      user:\n        summary: User example in XML\n        externalValue: https://foo.bar/examples/user-example.xml\n  text/plain:\n    examples:\n      user:\n        summary: User example in plain text\n        externalValue: https://foo.bar/examples/user-example.txt\n  '*/*':\n    examples:\n      user:\n        summary: User example in other format\n        externalValue: https://foo.bar/examples/user-example.whatever\n```\n\n### Media Type Object\n\nEach Media Type Object describes content structured in accordance with the media type identified by its key.\nMultiple Media Type Objects can be used to describe content that can appear in any of several different media types.\n\nWhen `example` or `examples` are provided, the example SHOULD match the specified schema and be in the correct format as specified by the media type and its encoding.\nThe `example` and `examples` fields are mutually exclusive.\nSee [Working With Examples](#working-with-examples) for further guidance regarding the different ways of specifying examples, including non-JSON/YAML values.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"media-type-schema\"></a>schema | [Schema Object](#schema-object) | A schema describing the complete content of the request, response, parameter, or header. |\n| <a name=\"media-type-item-schema\"></a>itemSchema | [Schema Object](#schema-object) | A schema describing each item within a [sequential media type](#sequential-media-types). |\n| <a name=\"media-type-example\"></a>example | Any | Example of the media type; see [Working With Examples](#working-with-examples). |\n| <a name=\"media-type-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the media type; see [Working With Examples](#working-with-examples). |\n| <a name=\"media-type-encoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | A map between a property name and its encoding information, as defined under [Encoding By Name](#encoding-by-name).  The `encoding` field SHALL only apply when the media type is `multipart` or `application/x-www-form-urlencoded`. If no Encoding Object is provided for a property, the behavior is determined by the default values documented for the Encoding Object. This field MUST NOT be present if `prefixEncoding` or `itemEncoding` are present. |\n| <a name=\"media-type-prefix-encoding\"></a>prefixEncoding | [[Encoding Object](#encoding-object)] | An array of positional encoding information, as defined under [Encoding By Position](#encoding-by-position).  The `prefixEncoding` field SHALL only apply when the media type is `multipart`. If no Encoding Object is provided for a property, the behavior is determined by the default values documented for the Encoding Object. This field MUST NOT be present if `encoding` is present. |\n| <a name=\"media-type-item-encoding\"></a>itemEncoding | [Encoding Object](#encoding-object) | A single Encoding Object that provides encoding information for multiple array items, as defined under [Encoding By Position](#encoding-by-position). The `itemEncoding` field SHALL only apply when the media type is `multipart`. If no Encoding Object is provided for a property, the behavior is determined by the default values documented for the Encoding Object. This field MUST NOT be present if `encoding` is present. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Media Types\n\nMedia types are publicly registered with the [IANA media types registry](https://www.iana.org/assignments/media-types/media-types.xhtml), through process documented in [[?RFC6838]].\n\nAPIs also sometimes define private media types such as GitHub's `application/vnd.github.v3+json`, which are not registered, and other media types such as `application/schema+json` become widely used before an intended registration.\n\nSee [Parsing and Serializing](#parsing-and-serializing) under the [Schema Object](#schema-object) for guidance on using schemas with a variety of media types.\n\n##### OpenAPI Media Type Registry\n\nThe OpenAPI Initiative maintains a [Media Type Registry](https://spec.openapis.org/registry/media-type/) summarizing media type support expected by this specification and providing an index to which sections address which media types.\nIt also links to IANA registrations (where they exist) and to the most notable specification document(s) related to each media type.\nAny additional media types added to this registry as extensions or for later versions of this or other OpenAPI specifications MAY be supported by implementations of this version of the OAS.\n\n#### Complete vs Streaming Content\n\nThe `schema` field MUST be applied to the complete content, as defined by the media type and the context ([Request Body Object](#request-body-object), [Response Object](#response-object), [Parameter Object](#parameter-object), or [Header Object](#header-object).\nBecause this requires loading the content into memory in its entirety, it poses a challenge for streamed content.\nUse cases where clients are intended to choose when to stop reading are particularly challenging as there is no well-defined end to the stream.\n\n##### Sequential Media Types\n\nWithin this specification, a _sequential media type_ is defined as any media type that consists of a repeating structure, without any sort of header, footer, envelope, or other metadata in addition to the sequence.\n\nSome examples of sequential media types (including some that are not IANA-registered but are in common use) are:\n\n```text\n  application/jsonl\n  application/x-ndjson\n  application/json-seq\n  application/geo+json-seq\n  text/event-stream\n  multipart/mixed\n```\n\nIn the first three above, the repeating structure is any [JSON value](https://tools.ietf.org/html/rfc8259#section-3).\nThe fourth repeats `application/geo+json`-structured values, while `text/event-stream` repeats a custom text format related to Server-Sent Events.\nThe final media type listed above, `multipart/mixed`, provides an ordered list of documents of any media type, and is sometimes streamed.\nNote that while `multipart` formats technically allow a preamble and an epilogue, the RFC directs that they are to be ignored, making them effectively comments, and this specification does not model them.\n\nImplementations MUST support mapping sequential media types into the JSON Schema data model by treating them as if the values were in an array in the same order.\n\nSee [Complete vs Streaming Content](#complete-vs-streaming-content) for more information on handling sequential media types in a streaming context, including special considerations for `text/event-stream` content.\nFor `multipart` types, see also [Encoding By Position](#encoding-by-position).\n\n###### Streaming Sequential Media Types\n\nThe `itemSchema` field is provided to support streaming use cases for sequential media types, with `itemEncoding` as a corresponding encoding mechanism for streaming [positional `multipart` media types](#encoding-by-position).\n\nUnlike `schema`, which is applied to the complete content (treated as an array as described in the [sequential media types](#sequential-media-types) section), `itemSchema` MUST be applied to each item in the stream independently, which supports processing each item as it is read from the stream.\n\nBoth `schema` and `itemSchema` MAY be used in the same Media Type Object.\nHowever, doing so is unlikely to have significant advantages over using the `items` keyword within the `schema` field.\n\n##### Binary Streams\n\nThe `maxLength` keyword MAY be used to set an expected upper bound on the length of a streaming payload that consists of either string data, including encoded binary data, or unencoded binary data.\nFor unencoded binary data, the length is the number of octets.\nFor this use case, `maxLength` MAY be implemented outside of regular JSON Schema evaluation as JSON Schema does not directly apply to binary data, and an encoded binary stream may be impractical to store in memory in its entirety.\n\n#### Special Considerations for Server-Sent Events\n\nFor `text/event-stream`, implementations MUST work with event data after it has been parsed according to the [`text/event-stream` specification](https://html.spec.whatwg.org/multipage/server-sent-events.html#parsing-an-event-stream), including all guidance on ignoring certain fields (including comments) and/or values, and on combining values split across multiple lines.\n\nField value types MUST be handled as specified by the `text/event-stream` specification (e.g. the `retry` field value is modeled as a JSON number that is expected to be of JSON Schema `type: integer`), and fields not given an explicit value type MUST be handled as strings.\n\nSome users of `text/event-stream` use a format such as JSON for field values, particularly the `data` field.\nUse JSON Schema's keywords for working with the [contents of string-encoded data](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#name-a-vocabulary-for-the-conten), particularly `contentMediaType` and `contentSchema`, to describe and validate such fields with more detail than string-related validation keywords such as `pattern` can support.\nNote that `contentSchema` is [not automatically validated by default](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#name-implementation-requirements-2) (see also the [Non-validating constraint keywords](#non-validating-constraint-keywords) section of this specification).\n\nThe following Schema Object is a generic schema for the `text/event-stream` media type as documented by the [[?HTML]] specification as of the time of this writing:\n\n```yaml\ntype: object\nrequired:\n- data\nproperties:\n  data:\n    type: string\n  event:\n    type: string\n  id:\n    type: string\n  retry:\n    type: integer\n    minimum: 0\n```\n\n#### Encoding Usage and Restrictions\n\nThese encoding fields define how to map each [Encoding Object](#encoding-object) to a specific value in the data.\nEach field has its own set of media types with which it can be used; for all other media types all three fields SHALL be ignored.\n\n##### Encoding By Name\n\nThe behavior of the `encoding` field is designed to support web forms, and is therefore only defined for media types structured as name-value pairs that allow repeat values, most notably `application/x-www-form-urlencoded` and `multipart/form-data`.\n\nTo use the `encoding` field, each key under the field MUST exist as a property; `encoding` entries with no corresponding property SHALL be ignored.\nArray properties MUST be handled by applying the given Encoding Object to produce one encoded value per array item, each with the same `name`, as is recommended by [[!RFC7578]] [Section 4.3](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.3) for supplying multiple values per form field.\nFor all other value types for both top-level non-array properties and for values, including array values, within a top-level array, the Encoding Object MUST be applied to the entire value.\nThe order of these name-value pairs in the target media type is implementation-defined.\n\nFor `application/x-www-form-urlencoded`, the encoding keys MUST map to parameter names, with the values produced according to the rules of the [Encoding Object](#encoding-object).\nSee [Encoding the `x-www-form-urlencoded` Media Type](#encoding-the-x-www-form-urlencoded-media-type) for guidance and examples, both with and without the `encoding` field.\n\nFor `multipart`, the encoding keys MUST map to the [`name` parameter](https://www.rfc-editor.org/rfc/rfc7578#section-4.2) of the `Content-Disposition: form-data` header of each part, as is defined for `multipart/form-data` in [[!RFC7578]].\nSee [[!RFC7578]] [Section 5](https://www.rfc-editor.org/rfc/rfc7578.html#section-5) for guidance regarding non-ASCII part names.\n\nSee [Encoding `multipart` Media Types](#encoding-multipart-media-types) for further guidance and examples, both with and without the `encoding` field.\n\n##### Encoding By Position\n\nMost `multipart` media types, including `multipart/mixed` which defines the underlying rules for parsing all `multipart` types, do not have named parts.\nData for these media types are modeled as an array, with one item per part, in order.\n\nTo use the `prefixEncoding` and/or `itemEncoding` fields, either `itemSchema` or an array `schema` MUST be present.\nThese fields are analogous to the `prefixItems` and `items` JSON Schema keywords, with `prefixEncoding` (if present) providing an array of Encoding Objects that are each applied to the value at the same position in the data array, and `itemEncoding` applying its single Encoding Object to all remaining items in the array.\nAs with `prefixItems`, it is _not_ an error if the instance array is shorter than the `prefixEncoding` array; the additional Encoding Objects SHALL be ignored.\n\nThe `itemEncoding` field can also be used with `itemSchema` to support streaming `multipart` content.\n\n##### Additional Encoding Approaches\n\nThe `prefixEncoding` field can be used with any `multipart` content to require a fixed part order.\nThis includes `multipart/form-data`, for which the Encoding Object's `headers` field MUST be used to provide the `Content-Disposition` and part name, as no property names exist to provide the names automatically.\n\nPrior versions of this specification advised using the [`name` parameter](https://www.rfc-editor.org/rfc/rfc7578#section-4.2) of the `Content-Disposition: form-data` header of each part with `multipart` media types other than `multipart/form-data` in order to work around the limitations of the `encoding` field.\nImplementations MAY choose to support this workaround, but as this usage is not common, implementations of non-`form-data` `multipart` media types are unlikely to support it.\n\n#### Media Type Examples\n\nFor form-related and `multipart` media type examples, see the [Encoding Object](#encoding-object).\n\n##### JSON\n\nNote that since this example is written in YAML, the Example Object's `value` field can be formatted as YAML due to the trivial conversion to JSON.\nThis avoids needing to embed JSON as a string.\n\n```yaml\napplication/json:\n  schema:\n    $ref: '#/components/schemas/Pet'\n  examples:\n    cat:\n      summary: An example of a cat\n      value:\n        name: Fluffy\n        petType: Cat\n        color: White\n        gender: male\n        breed: Persian\n    dog:\n      summary: An example of a dog with a cat's name\n      value:\n        name: Puma\n        petType: Dog\n        color: Black\n        gender: Female\n        breed: Mixed\n    frog:\n      $ref: '#/components/examples/frog-example'\n```\n\nAlternatively, since all JSON is valid YAML, the example value can use JSON syntax within a YAML document:\n\n```yaml\napplication/json:\n  schema:\n    $ref: '#/components/schemas/Pet'\n  examples:\n    cat:\n      summary: An example of a cat\n      value: {\n        \"name\": \"Fluffy\",\n        \"petType\": \"Cat\",\n        \"color\": \"White\",\n        \"gender\": \"male\",\n        \"breed\": \"Persian\"\n      }\n    dog:\n      summary: An example of a dog with a cat's name\n      value: {\n        \"name\": \"Puma\",\n        \"petType\": \"Dog\",\n        \"color\": \"Black\",\n        \"gender\": \"Female\",\n        \"breed\": \"Mixed\"\n      }\n    frog:\n      $ref: '#/components/examples/frog-example'\n```\n\n##### Sequential JSON\n\nFor any [sequential media type](#sequential-media-types) where the items in the sequence are JSON values, no conversion of each value is required.\nJSON Text Sequences ([[?RFC7464]] `application/json-seq` and [[?RFC8091]] the `+json-seq` structured suffix), [JSON Lines](https://jsonlines.org/) (`application/jsonl`), and [NDJSON](https://github.com/ndjson/ndjson-spec) (`application/x-ndjson`) are all in this category.\nNote that the media types for JSON Lines and NDJSON are not registered with the IANA, but are in common use.\n\nThe following example shows Media Type Objects for both streaming log entries and returning a fixed-length set in response to a query.\nThis shows the relationship between `schema` and `itemSchema`, and when to use each even though the `examples` field is the same either way.\n\n```yaml\ncomponents:\n  schemas:\n    LogEntry:\n      type: object\n      properties:\n        timestamp:\n          type: string\n          format: date-time\n        level:\n          type: integer\n          minimum: 0\n        message:\n          type: string\n    Log:\n      type: array\n      items:\n        $ref: \"#/components/schemas/LogEntry\"\n      maxItems: 100\n  examples:\n    LogJSONSeq:\n      summary: Log entries in application/json-seq\n      # JSON Text Sequences require an unprintable character\n      # that cannot be escaped in a YAML string, and therefore\n      # must be placed in an external document shown below\n      externalValue: examples/log.json-seq\n    LogJSONPerLine:\n      summary: Log entries in application/jsonl or application/x-ndjson\n      description: JSONL and NDJSON are identical for this example\n      # Note that the value must be written as a string with newlines,\n      # as JSONL and NDJSON are not valid YAML\n      value: |\n        {\"timestamp\": \"1985-04-12T23:20:50.52Z\", \"level\": 1, \"message\": \"Hi!\"}\n        {\"timestamp\": \"1985-04-12T23:20:51.37Z\", \"level\": 1, \"message\": \"Bye!\"}\n  responses:\n    LogStream:\n      description: |\n        A stream of JSON-format log messages that can be read\n        for as long as the application is running, and is available\n        in any of the sequential JSON media types.\n      content:\n        application/json-seq:\n          itemSchema:\n            $ref: \"#/components/schemas/LogEntry\"\n          examples:\n            JSON-SEQ:\n              $ref: \"#/components/examples/LogJSONSeq\"\n        application/jsonl:\n          itemSchema:\n            $ref: \"#/components/schemas/LogEntry\"\n          examples:\n            JSONL:\n              $ref: \"#/components/examples/LogJSONPerLine\"\n        application/x-ndjson:\n          itemSchema:\n            $ref: \"#/components/schemas/LogEntry\"\n          examples:\n            NDJSON:\n              $ref: \"#/components/examples/LogJSONPerLine\"\n    LogExcerpt:\n      description: |\n        A response consisting of no more than 100 log records,\n        generally as a result of a query of the historical log,\n        available in any of the sequential JSON media types.\n      content:\n        application/json-seq:\n          schema:\n            $ref: \"#/components/schemas/Log\"\n          examples:\n            JSON-SEQ:\n              $ref: \"#/components/examples/LogJSONSeq\"\n        application/jsonl:\n          schema:\n            $ref: \"#/components/schemas/Log\"\n          examples:\n            JSONL:\n              $ref: \"#/components/examples/LogJSONPerLine\"\n        application/x-ndjson:\n          schema:\n            $ref: \"#/components/schemas/Log\"\n          examples:\n            NDJSON:\n              $ref: \"#/components/examples/LogJSONPerLine\"\n```\n\nOur `application/json-seq` example has to be an external document because of the use of both newlines and of the unprintable Record Separator (`0x1E`) character, which cannot be escaped in YAML block literals:\n\n```jsonseq\n0x1E{\n  \"timestamp\": \"1985-04-12T23:20:50.52Z\",\n  \"level\": 1,\n  \"message\": \"Hi!\"\n}\n0x1E{\n  \"timestamp\": \"1985-04-12T23:20:51.37Z\",\n  \"level\": 1,\n  \"message\": \"Bye!\"\n}\n```\n\n##### Server-Sent Event Streams\n\nFor this example, assume that the generic event schema provided in the [Special Considerations for Server-Sent Events](#special-considerations-for-server-sent-events) section is available at `#/components/schemas/Event`:\n\n```yaml\ndescription: A request body to add a stream of typed data.\nrequired: true\ncontent:\n  text/event-stream:\n    itemSchema:\n      $ref: \"#/components/schemas/Event\"\n      required: [event]\n      oneOf:\n      - properties:\n          event:\n            const: addString\n      - properties:\n          event:\n            const: addInt64\n          data:\n            $comment: |\n              Since the `data` field is a string,\n              we need a format to signal that it\n              should be handled as a 64-bit integer.\n            format: int64\n      - properties:\n          event:\n            const: addJson\n          data:\n            $comment: |\n              These content fields indicate\n              that the string value should\n              be parsed and validated as a\n              JSON document (since JSON is not\n              a binary format, `contentEncoding`\n              is not needed)\n            contentMediaType: application/json\n            contentSchema:\n              type: object\n              required: [foo]\n              properties:\n                foo:\n                  type: integer\n```\n\nThe following `text/event-stream` document is an example of a valid request body for the above example:\n\n```eventstream\nevent: addString\ndata: This data is formatted\ndata: across two lines\nretry: 5\n\nevent: addInt64\ndata: 1234.5678\nunknownField: this is ignored\n\n: This is a comment\nevent: addJSON\ndata: {\"foo\": 42}\n```\n\nTo more clearly see how this stream is handled, the following is the equivalent JSON Lines document, which shows how the numeric and JSON data are handled as strings, and how unknown fields and comments are ignored and not passed to schema validation:\n\n```jsonl\n{\"event\": \"addString\", \"data\": \"This data is formatted\\nacross two lines\", \"retry\": 5}\n{\"event\": \"addInt64\", \"data\": \"1234.5678\"}\n{\"event\": \"addJSON\", \"data\": \"{\\\"foo\\\": 42}\"}\n```\n\n#### Considerations for File Uploads\n\nIn contrast to OpenAPI 2.0, `file` input/output content in OAS 3.x is described with the same semantics as any other schema type.\n\nIn contrast to OAS 3.0, the `format` keyword has no effect on the content-encoding of the schema in OAS 3.1. Instead, JSON Schema's `contentEncoding` and `contentMediaType` keywords are used. See [Working With Binary Data](#working-with-binary-data) for how to model various scenarios with these keywords, and how to migrate from the previous `format` usage.\n\nExamples:\n\nContent transferred in binary (octet-stream) MAY omit `schema`:\n\n```yaml\n# a PNG image as a binary file:\ncontent:\n  image/png: {}\n```\n\n```yaml\n# an arbitrary binary file:\ncontent:\n  application/octet-stream: {}\n```\n\n```yaml\n# arbitrary JSON without constraints beyond being syntactically valid:\ncontent:\n  application/json: {}\n```\n\nThese examples apply to either input payloads of file uploads or response payloads.\n\nA `requestBody` for submitting a file in a `POST` operation may look like the following example:\n\n```yaml\nrequestBody:\n  content:\n    application/octet-stream: {}\n```\n\nIn addition, specific media types MAY be specified:\n\n```yaml\n# multiple, specific media types may be specified:\nrequestBody:\n  content:\n    # a binary file of type png or jpeg\n    image/jpeg: {}\n    image/png: {}\n```\n\nTo upload multiple files, a `multipart` media type MUST be used as shown under [Example: Multipart Form with Multiple Files](#example-multipart-form-with-multiple-files).\n\n### Encoding Object\n\nA single encoding definition applied to a single value, with the mapping of Encoding Objects to values determined by the [Media Type Object](#media-type-object) as described under [Encoding Usage and Restrictions](#encoding-usage-and-restrictions).\n\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of converting values of various types to string representations.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n#### Fixed Fields\n\n##### Common Fixed Fields\n\nThese fields MAY be used either with or without the RFC6570-style serialization fields defined in the next section below.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"encoding-content-type\"></a>contentType | `string` | The `Content-Type` for encoding a specific property. The value is a comma-separated list, each element of which is either a specific media type (e.g. `image/png`) or a wildcard media type (e.g. `image/*`). The default value depends on the type as shown in the table below. |\n| <a name=\"encoding-headers\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | A map allowing additional information to be provided as headers. `Content-Type` is described separately and SHALL be ignored in this section. This field SHALL be ignored if the media type is not a `multipart`. |\n| <a name=\"encoding-encoding\"></a>encoding | Map[`string`, [Encoding Object](#encoding-object)] | Applies nested Encoding Objects in the same manner as the [Media Type Object](#media-type-object)'s `encoding` field. |\n| <a name=\"encoding-prefix-encoding\"></a>prefixEncoding | [[Encoding Object](#encoding-object)] | Applies nested Encoding Objects in the same manner as the [Media Type Object](#media-type-object)'s `prefixEncoding` field. |\n| <a name=\"encoding-item-encoding\"></a>itemEncoding | [Encoding Object](#encoding-object) | Applies nested Encoding Objects in the same manner as the [Media Type Object](#media-type-object)'s `itemEncoding` field. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nThe default values for `contentType` are as follows, where an _n/a_ in the `contentEncoding` column means that the presence or value of `contentEncoding` is irrelevant.\nThis table is based on the value to which the Encoding Object is being applied as defined under [Encoding Usage and Restrictions](#encoding-usage-and-restrictions).\nNote that in the case of [Encoding By Name](#encoding-by-name), this value is the array item for properties of type `\"array\"`, and the entire value for all other types.\nTherefore the `array` row in this table applies only to array values inside of a top-level array when encoding by name.\n\n| `type` | `contentEncoding` | Default `contentType` |\n| ---- | ---- | ---- |\n| [_absent_](#working-with-binary-data) | _n/a_ | `application/octet-stream` |\n| `string` | _present_ | `application/octet-stream` |\n| `string` | _absent_ | `text/plain` |\n| `number`, `integer`, or `boolean` | _n/a_ | `text/plain` |\n| `object` | _n/a_ | `application/json` |\n| `array` | _n/a_ | `application/json` |\n\nDetermining how to handle a `type` value of `null` depends on how `null` values are being serialized.\nIf `null` values are entirely omitted, then the `contentType` is irrelevant.\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of data type conversion options.\n\n##### Fixed Fields for RFC6570-style Serialization\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"encoding-style\"></a>style | `string` | Describes how a specific property value will be serialized depending on its type. See [Parameter Object](#parameter-object) for details on the [`style`](#parameter-style) field. The behavior follows the same values as `query` parameters, including the default value of `\"form\"` which applies only when `contentType` is _not_ being used due to one or both of `explode` or `allowReserved` being explicitly specified. Note that the initial `?` used in query strings is not used in `application/x-www-form-urlencoded` message bodies, and MUST be removed (if using an RFC6570 implementation) or simply not added (if constructing the string manually). This field SHALL be ignored if the media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encoding-content-type) (implicit or explicit) SHALL be ignored. |\n| <a name=\"encoding-explode\"></a>explode | `boolean` | When this is true, property values of type `array` or `object` generate separate parameters for each value of the array, or key-value-pair of the map. For other types of properties, or when [`style`](#encoding-style) is `\"deepObject\"`, this field has no effect. When `style` is `\"form\"`, the default value is `true`. For all other styles, the default value is `false`. This field SHALL be ignored if the media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encoding-content-type) (implicit or explicit) SHALL be ignored. |\n| <a name=\"encoding-allow-reserved\"></a>allowReserved | `boolean` | When this is true, parameter values are serialized using reserved expansion, as defined by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570#section-3.2.3), which allows [RFC3986's reserved character set](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2), as well as percent-encoded triples, to pass through unchanged, while still percent-encoding all other disallowed characters (including `%` outside of percent-encoded triples). Applications are still responsible for percent-encoding reserved characters that are not allowed in the target media type; see [URL Percent-Encoding](#url-percent-encoding) for details. The default value is `false`. This field SHALL be ignored if the media type is not `application/x-www-form-urlencoded` or `multipart/form-data`. If a value is explicitly defined, then the value of [`contentType`](#encoding-content-type) (implicit or explicit) SHALL be ignored. |\n\nWhen using RFC6570-style serialization for `multipart/form-data`, URI percent-encoding MUST NOT be applied, and the value of `allowReserved` has no effect.\nSee also [Appendix C: Using RFC6570 Implementations](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\nNote that the presence of at least one of `style`, `explode`, or `allowReserved` with an explicit value is equivalent to using `schema` with `in: \"query\"` Parameter Objects.\nThe absence of all three of those fields is the equivalent of using `content`, but with the media type specified in `contentType` rather than through a Media Type Object.\n\n#### Nested Encoding\n\nNested formats requiring encoding, most notably nested `multipart/mixed`, can be supported with this Object's `encoding`, `prefixEncoding`, and / or `itemEncoding` fields.\nImplementations MUST support one level of nesting, and MAY support additional levels.\n\n#### Encoding the `x-www-form-urlencoded` Media Type\n\nTo work with content using form url encoding via [[WHATWG-URL]], use the `application/x-www-form-urlencoded` media type in the [Media Type Object](#media-type-object).\nThis configuration means that the content MUST be percent-encoded per [[WHATWG-URL]]'s rules for that media type, after any complex objects have been serialized to a string representation.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n##### Example: URL Encoded Form with JSON Values\n\nWhen there is no [`encoding`](#media-type-encoding) field, the serialization strategy is based on the Encoding Object's default values:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          id:\n            type: string\n            format: uuid\n          address:\n            type: object\n            properties: {}\n```\n\nWith this example, consider an `id` of `f81d4fae-7dec-11d0-a765-00a0c91e6bf6` and a US-style address (with ZIP+4) as follows:\n\n```json\n{\n  \"streetAddress\": \"123 Example Dr.\",\n  \"city\": \"Somewhere\",\n  \"state\": \"CA\",\n  \"zip\": \"99999+1234\"\n}\n```\n\nAssuming the most compact representation of the JSON value (with unnecessary whitespace removed), we would expect to see the following request body, where space characters have been replaced with `+` and `+`, `\"`, `:`, `,`, `{`, and `}` have been percent-encoded to `%2B`, `%22`, `%3A`, `%2C`, `%7B`, and `%7D`, respectively:\n\n```uri\nid=f81d4fae-7dec-11d0-a765-00a0c91e6bf6&address=%7B%22streetAddress%22%3A%22123+Example+Dr.%22%2C%22city%22%3A%22Somewhere%22%2C%22state%22%3A%22CA%22%2C%22zip%22%3A%2299999%2B1234%22%7D\n```\n\nNote that the `id` keyword is treated as `text/plain` per the [Encoding Object](#encoding-object)'s default behavior, and is serialized as-is.\nIf it were treated as `application/json`, then the serialized value would be a JSON string including quotation marks, which would be percent-encoded as `%22`.\n\nHere is the `id` parameter (without `address`) serialized as `application/json` instead of `text/plain`, and then encoded per [[WHATWG-URL]]'s `form-urlencoded` rules:\n\n```uri\nid=%22f81d4fae-7dec-11d0-a765-00a0c91e6bf6%22\n```\n\n##### Example: URL Encoded Form with Binary Values\n\nNote that `application/x-www-form-urlencoded` is a text format, which requires base64-encoding any binary data:\n\n```yaml\nrequestBody:\n  content:\n    application/x-www-form-urlencoded:\n      schema:\n        type: object\n        properties:\n          name:\n            type: string\n          icon:\n            # The default content type with `contentEncoding` present\n            # is `application/octet-stream`, so we need to set the correct\n            # image media type(s) in the Encoding Object.\n            type: string\n            contentEncoding: base64url\n  encoding:\n    icon:\n      contentType: image/png, image/jpeg\n```\n\nGiven a name of `example` and a solid red 2x2-pixel PNG for `icon`, this\nwould produce a request body of:\n\n```uri\nname=example&icon=iVBORw0KGgoAAAANSUhEUgAAAAIAAAACCAIAAAD91JpzAAAABGdBTUEAALGPC_xhBQAAADhlWElmTU0AKgAAAAgAAYdpAAQAAAABAAAAGgAAAAAAAqACAAQAAAABAAAAAqADAAQAAAABAAAAAgAAAADO0J6QAAAAEElEQVQIHWP8zwACTGCSAQANHQEDqtPptQAAAABJRU5ErkJggg%3D%3D\n```\n\nNote that the `=` padding characters at the end need to be percent-encoded, even with the \"URL safe\" `contentEncoding: base64url`.\nSome base64-decoding implementations may be able to use the string without the padding per [RFC4648](https://datatracker.ietf.org/doc/html/rfc4648#section-3.2).\nHowever, this is not guaranteed, so it may be more interoperable to keep the padding and rely on percent-decoding.\n\n#### Encoding `multipart` Media Types\n\nSee [Encoding Usage and Restrictions](#encoding-usage-and-restrictions) for guidance on correlating schema properties with parts.\n\nNote that there are significant restrictions on what headers can be used with `multipart` media types in general ([RFC2046](https://www.rfc-editor.org/rfc/rfc2046.html#section-5.1)) and `multi-part/form-data` in particular ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.8)).\n\n##### Handling Multiple `contentType` Values\n\nWhen multiple values are provided for `contentType`, parsing remains straightforward as the part's actual `Content-Type` is included in the document.\n\nFor encoding and serialization, implementations MUST provide a mechanism for applications to indicate which media type is intended.\nImplementations MAY choose to offer media type sniffing ([[SNIFF]]) as an alternative, but this MUST NOT be the default behavior due to the security risks inherent in the process.\n\n##### `Content-Transfer-Encoding` and `contentEncoding`\n\nUsing `contentEncoding` for a multipart field is equivalent to specifying an [Encoding Object](#encoding-object) with a `headers` field containing `Content-Transfer-Encoding` with a schema that requires the value used in `contentEncoding`.\nIf `contentEncoding` is used for a multipart field that has an Encoding Object with a `headers` field containing `Content-Transfer-Encoding` with a schema that disallows the value from `contentEncoding`, the result is undefined for serialization and parsing.\n\nNote that as stated in [Working with Binary Data](#working-with-binary-data), if the Encoding Object's `contentType`, whether set explicitly or implicitly through its default value rules, disagrees with the `contentMediaType` in a Schema Object, the `contentMediaType` SHALL be ignored.\nBecause of this, and because the Encoding Object's `contentType` defaulting rules do not take the Schema Object's`contentMediaType` into account, the use of `contentMediaType` with an Encoding Object is NOT RECOMMENDED.\n\nNote also that `Content-Transfer-Encoding` is deprecated for `multipart/form-data` ([RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.7)) where binary data is supported, as it is in HTTP.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for a detailed examination of percent-encoding concerns for form media types.\n\n##### Example: Basic Multipart Form\n\nWhen the `encoding` field is _not_ used, the encoding is determined by the Encoding Object's defaults:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          # default content type for a string without `contentEncoding`\n          # is `text/plain`\n          id:\n            type: string\n            format: uuid\n\n          # default content type for a schema without `type`\n          # is `application/octet-stream`\n          profileImage: {}\n\n          # for arrays, the `encoding` field applies the Encoding Object\n          # to each item individually and determines the default content type\n          # based on the type in the `items` subschema, which in this example\n          # is an object, so the default content type for each item is\n          # `application/json`\n          addresses:\n            type: array\n            items:\n              $ref: '#/components/schemas/Address'\n```\n\n##### Example: Multipart Form with Encoding Objects\n\nUsing `encoding`, we can set more specific types for binary data, or non-JSON formats for complex values.\nWe can also describe headers for each part:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        type: object\n        properties:\n          # No Encoding Object, so use default `text/plain`\n          id:\n            type: string\n            format: uuid\n\n          # Encoding Object overrides the default `application/json` content type\n          # for each item in the array with `application/xml; charset=utf-8`\n          addresses:\n            description: addresses in XML format\n            type: array\n            items:\n              $ref: '#/components/schemas/Address'\n\n          # Encoding Object accepts only PNG or JPEG, and also describes\n          # a custom header for just this part in the multipart format\n          profileImage: {}\n\n      encoding:\n        addresses:\n          contentType: application/xml; charset=utf-8\n        profileImage:\n          contentType: image/png, image/jpeg\n          headers:\n            X-Rate-Limit-Limit:\n              description: The number of allowed requests in the current period\n              schema:\n                type: integer\n```\n\n##### Example: Multipart Form with Multiple Files\n\nIn accordance with [RFC7578](https://www.rfc-editor.org/rfc/rfc7578.html#section-4.3), multiple files for a single form field are uploaded using the same name (`file` in this example) for each file's part:\n\n```yaml\nrequestBody:\n  content:\n    multipart/form-data:\n      schema:\n        properties:\n          # The property name `file` will be used for all files.\n          file:\n            type: array\n            items: {}\n```\n\nAs seen in the [Encoding Object's `contentType` field documentation](#encoding-content-type), the empty schema for `items` indicates a media type of `application/octet-stream`.\n\n##### Example: Ordered, Unnamed Multipart\n\nA `multipart/mixed` payload consisting of a JSON metadata document followed by an image which the metadata describes:\n\n```yaml\nmultipart/mixed:\n  schema:\n    type: array\n    prefixItems:\n    - # default content type for objects\n      # is `application/json`\n      type: object\n      properties:\n        author:\n          type: string\n        created:\n          type: string\n          format: datetime\n        copyright:\n          type: string\n        license:\n          type: string\n    - # default content type for a schema without `type`\n      # is `application/octet-stream`, which we need\n      # to override.\n      {}\n  prefixEncoding:\n  - # Encoding Object defaults are correct for JSON\n    {}\n  - contentType: image/*\n```\n\n##### Example: Ordered Multipart With Required Header\n\nAs described in [[?RFC2557]], a set of resources making up a web page can be sent in a `multipart/related` payload, preserving links from the `text/html` document to subsidiary resources such as scripts, style sheets, and images by defining a `Content-Location` header for each page.\nThe first part is used as the root resource (unless using `Content-ID`, which RFC2557 advises against and is forbidden in this example), so we use `prefixItems` and `prefixEncoding` to define that it must be an HTML resource, and then allow any of several different types of resources in any order to follow.\n\nThe `Content-Location` header is defined using `content: {text/plain: {...}}` to avoid percent-encoding its URI value; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for further details.\n\n```yaml\ncomponents:\n  headers:\n    RFC2557NoContentId:\n      description: Use Content-Location instead of Content-ID\n      schema: false\n    RFC2557ContentLocation:\n      required: true\n      content:\n        text/plain:\n          schema:\n            $comment: Use a full URI (not a relative reference)\n            type: string\n            format: uri\n  requestBodies:\n    RFC2557:\n      content:\n        multipart/related; type=text/html:\n          schema:\n            prefixItems:\n            - type: string\n            items:\n              anyOf:\n              - type: string\n              - $comment: To allow binary, this must always pass\n          prefixEncoding:\n          - contentType: text/html\n            headers:\n              Content-ID:\n                $ref: '#/components/headers/RFC2557NoContentId'\n              Content-Location:\n                $ref: '#/components/headers/RFC2557ContentLocation'\n          itemEncoding:\n            contentType: text/css,text/javascript,image/*\n            headers:\n              Content-ID:\n                $ref: '#/components/headers/RFC2557NoContentId'\n              Content-Location:\n                $ref: '#/components/headers/RFC2557ContentLocation'\n```\n\n##### Example: Streaming Multipart\n\nThis example assumes a device that takes large sets of pictures and streams them to the caller.\nUnlike the previous example, we use `itemSchema` here because the expectation is that each image is processed as it arrives (or in small batches), since we know that buffering the entire stream will take too much memory.\n\n```yaml\nmultipart/mixed:\n  itemSchema:\n    $comment: A single data image from the device\n  itemEncoding:\n    contentType: image/jpg\n```\n\n##### Example: Streaming Byte Ranges\n\nFor `multipart/byteranges` [[RFC9110]] [Section 14.6](https://www.rfc-editor.org/rfc/rfc9110.html#section-14.6), a `Content-Range` header is required:\n\nSee [Appendix D](#appendix-d-serializing-headers-and-cookies) for an explanation of why `content: {text/plain: {...}}` is used to describe the header value.\n\n```yaml\nmultipart/byteranges:\n  itemSchema:\n    $comment: A single range of bytes from a video\n  itemEncoding:\n    contentType: video/mp4\n    headers:\n      Content-Range:\n        required: true\n        content:\n          text/plain:\n            schema:\n              # The `pattern` regular expression that would\n              # be included in practice is omitted for simplicity\n              type: string\n```\n\n##### Example: Nested `multipart/mixed`\n\nThis defines a two-part `multipart/mixed` where the first part is a JSON array and the second part is a nested `multipart/mixed` document.\nThe nested parts are XML, plain text, and a PNG image.\n\n```yaml\nmultipart/mixed:\n  schema:\n    type: array\n    prefixItems:\n    - type: array\n    - type: array\n      prefixItems:\n      - type: object\n      - type: string\n      - {}\n  prefixEncoding:\n    - {} # Accept the default application/json\n    - contentType: multipart/mixed\n      prefixEncoding:\n      - contentType: application/xml\n      - {} # Accept the default text/plain\n      - contentType: image/png\n```\n\n### Responses Object\n\nA container for the expected responses of an operation.\nThe container maps a HTTP response code to the expected response.\n\nThe documentation is not necessarily expected to cover all possible HTTP response codes because they may not be known in advance.\nHowever, documentation is expected to cover a successful operation response and any known errors.\n\nThe `default` MAY be used as a default Response Object for all HTTP codes\nthat are not covered individually by the Responses Object.\n\nThe Responses Object MUST contain at least one response code, and if only one\nresponse code is provided it SHOULD be the response for a successful operation\ncall.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"responses-default\"></a>default | [Response Object](#response-object) \\| [Reference Object](#reference-object) | The documentation of responses other than the ones declared for specific HTTP response codes. Use this field to cover undeclared responses. |\n\n#### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"responses-code\"></a>[HTTP Status Code](#http-status-codes) | [Response Object](#response-object) \\| [Reference Object](#reference-object) | Any [HTTP status code](#http-status-codes) can be used as the property name, but only one property per code, to describe the expected response for that HTTP status code. This field MUST be enclosed in quotation marks (for example, \"200\") for compatibility between JSON and YAML. To define a range of response codes, this field MAY contain the uppercase wildcard character `X`. For example, `2XX` represents all response codes between `200` and `299`. Only the following range definitions are allowed: `1XX`, `2XX`, `3XX`, `4XX`, and `5XX`. If a response is defined using an explicit code, the explicit code definition takes precedence over the range definition for that code. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### HTTP Status Codes\n\nThe HTTP Status Codes are used to indicate the status of the executed operation.\nStatus codes SHOULD be selected from the available status codes registered in the [IANA Status Code Registry](https://www.iana.org/assignments/http-status-codes/http-status-codes.xhtml).\n\n#### Responses Object Example\n\nA 200 response for a successful operation and a default response for others (implying an error):\n\n```yaml\n'200':\n  description: a pet to be returned\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/Pet'\ndefault:\n  description: Unexpected error\n  content:\n    application/json:\n      schema:\n        $ref: '#/components/schemas/ErrorModel'\n```\n\n### Response Object\n\nDescribes a single response from an API operation, including design-time, static\n`links` to operations based on the response.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"response-summary\"></a>summary | `string` | A short summary of the meaning of the response. |\n| <a name=\"response-description\"></a>description | `string` | A description of the response. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"response-headers\"></a>headers | Map[`string`, [Header Object](#header-object) \\| [Reference Object](#reference-object)] | Maps a header name to its definition. [RFC9110](https://www.rfc-editor.org/rfc/rfc9110.html#section-5.1) states header names are case-insensitive. If a response header is defined with the name `\"Content-Type\"`, it SHALL be ignored. |\n| <a name=\"response-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object) \\| [Reference Object](#reference-object)] | A map containing descriptions of potential response payloads. The key is a media type or [media type range](https://www.rfc-editor.org/rfc/rfc9110.html#appendix-A) and the value describes it. For responses that match multiple keys, only the most specific key is applicable. e.g. `\"text/plain\"` overrides `\"text/*\"` |\n| <a name=\"response-links\"></a>links | Map[`string`, [Link Object](#link-object) \\| [Reference Object](#reference-object)] | A map of operations links that can be followed from the response. The key of the map is a short name for the link, following the naming constraints of the names for [Component Objects](#components-object). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Response Object Examples\n\nResponse of an array of a complex type:\n\n```yaml\ndescription: A complex object array response\ncontent:\n  application/json:\n    schema:\n      type: array\n      items:\n        $ref: '#/components/schemas/VeryComplexType'\n```\n\nResponse with a string type:\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n```\n\nPlain text response with headers:\n\n```yaml\ndescription: A simple string response\ncontent:\n  text/plain:\n    schema:\n      type: string\n    example: 'whoa!'\nheaders:\n  X-Rate-Limit-Limit:\n    description: The number of allowed requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Remaining:\n    description: The number of remaining requests in the current period\n    schema:\n      type: integer\n  X-Rate-Limit-Reset:\n    description: The number of seconds left in the current period\n    schema:\n      type: integer\n```\n\nResponse with no return value:\n\n```yaml\ndescription: object created\n```\n\n### Callback Object\n\nA map of possible out-of band callbacks related to the parent operation.\nEach value in the map is a [Path Item Object](#path-item-object) that describes a set of requests that may be initiated by the API provider and the expected responses.\nThe key value used to identify the Path Item Object is an expression, evaluated at runtime, that identifies a URL to use for the callback operation.\n\nTo describe incoming requests from the API provider independent from another API call, use the [`webhooks`](#oas-webhooks) field.\n\n#### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"callback-expression\"></a>{expression} | [Path Item Object](#path-item-object) | A Path Item Object used to define a callback request and expected responses. A [complete example](https://learn.openapis.org/examples/v3.0/callback-example.html) is available. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Key Expression\n\nThe key that identifies the [Path Item Object](#path-item-object) is a [runtime expression](#runtime-expressions) that can be evaluated in the context of a runtime HTTP request/response to identify the URL to be used for the callback request.\nA simple example might be `$request.body#/url`.\nHowever, using a [runtime expression](#runtime-expressions) the complete HTTP message can be accessed.\nThis includes accessing any part of a body that a JSON Pointer [RFC6901](https://tools.ietf.org/html/rfc6901) can reference.\n\nFor example, given the following HTTP request:\n\n```http\nPOST /subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning HTTP/1.1\nHost: example.org\nContent-Type: application/json\nContent-Length: 188\n\n{\n  \"failedUrl\": \"https://clientdomain.com/failed\",\n  \"successUrls\": [\n    \"https://clientdomain.com/fast\",\n    \"https://clientdomain.com/medium\",\n    \"https://clientdomain.com/slow\"\n  ]\n}\n```\n\nresulting in:\n\n```http\n201 Created\nLocation: https://example.org/subscription/1\n```\n\nThe following examples show how the various expressions evaluate, assuming the callback operation has a path parameter named `eventType` and a query parameter named `queryUrl`.\n\n| Expression | Value |\n| ---- | :---- |\n| $url | <https://example.org/subscribe/myevent?queryUrl=https://clientdomain.com/stillrunning> |\n| $method | POST |\n| $request.path.eventType | myevent |\n| $request.query.queryUrl | <https://clientdomain.com/stillrunning> |\n| $request.header.content-type | application/json |\n| $request.body#/failedUrl | <https://clientdomain.com/failed> |\n| $request.body#/successUrls/1 | <https://clientdomain.com/medium> |\n| $response.header.Location | <https://example.org/subscription/1> |\n\n#### Callback Object Examples\n\nThe following example uses the user provided `queryUrl` query string parameter to define the callback URL. This is similar to a [webhook](#oas-webhooks), but differs in that the callback only occurs because of the initial request that sent the `queryUrl`.\n\n```yaml\nmyCallback:\n  '{$request.query.queryUrl}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\nThe following example shows a callback where the server is hard-coded, but the query string parameters are populated from the `id` and `email` property in the request body.\n\n```yaml\ntransactionCallback:\n  'http://notificationServer.com?transactionId={$request.body#/id}&email={$request.body#/email}':\n    post:\n      requestBody:\n        description: Callback payload\n        content:\n          application/json:\n            schema:\n              $ref: '#/components/schemas/SomePayload'\n      responses:\n        '200':\n          description: callback successfully processed\n```\n\n### Example Object\n\nAn object grouping an internal or external example value with basic `summary` and `description` metadata.\nThe examples can show either data suitable for schema validation, or serialized data as required by the containing [Media Type Object](#media-type-object), [Parameter Object](#parameter-object), or [Header Object](#header-object).\nThis object is typically used in fields named `examples` (plural), and is a [referenceable](#reference-object) alternative to older `example` (singular) fields that do not support referencing or metadata.\nThe various fields and types of examples are explained in more detail under [Working With Examples](#working-with-examples).\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"example-summary\"></a>summary | `string` | Short description for the example. |\n| <a name=\"example-description\"></a>description | `string` | Long description for the example. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"example-data-value\"></a>dataValue | Any | An example of the data structure that MUST be valid according to the relevant [Schema Object](#schema-object).  If this field is present, `value` MUST be absent. |\n| <a name=\"example-serialized-value\"></a>serializedValue | `string` | An example of the serialized form of the value, including encoding and escaping as described under [Validating Examples](#validating-examples).  If `dataValue` is present, then this field SHOULD contain the serialization of the given data.  Otherwise, it SHOULD be the valid serialization of a data value that itself MUST be valid as described for `dataValue`.  This field SHOULD NOT be used if the serialization format is JSON, as the data form is easier to work with. If this field is present, `value`, and `externalValue` MUST be absent. |\n| <a name=\"example-external-value\"></a>externalValue | `string` | A URI that identifies the serialized example in a separate document, allowing for values not easily or readably expressed as a Unicode string.  If `dataValue` is present, then this field SHOULD identify a serialization of the given data.  Otherwise, the value SHOULD be the valid serialization of a data value that itself MUST be valid as described for `dataValue`. If this field is present, `serializedValue` and `value` MUST be absent. See also the rules for resolving [Relative References](#relative-references-in-api-description-uris). |\n| <a name=\"example-value\"></a>value | Any | Embedded literal example. The `value` field and `externalValue` field are mutually exclusive. To represent examples of media types that cannot naturally be represented in JSON or YAML, use a string value to contain the example, escaping where necessary.<br><br>**Deprecated for non-JSON serialization targets:** Use `dataValue` and/or `serializedValue`, which both have unambiguous syntax and semantics, instead. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nIn all cases, the example value SHOULD be compatible with the schema of its associated value.\nTooling implementations MAY choose to validate compatibility automatically, and reject the example value(s) if incompatible.\nSee [Validating Examples](#validating-examples) for the exact meaning of \"compatible\" for each field in this Object.\n\n#### Working with Examples\n\nExample Objects can be used in [Parameter Objects](#parameter-object), [Header Objects](#header-object), and [Media Type Objects](#media-type-object).\nIn all three Objects, this is done through the `examples` (plural) field.\nHowever, there are several other ways to provide examples: The `example` (singular) field that is mutually exclusive with `examples` in all three Objects, and two keywords (the deprecated singular `example` and the current plural `examples`, which takes an array of examples) in the [Schema Object](#schema-object) that appears in the `schema` field of all three Objects.\nWe will refer to the singular `example` field in the Parameter, Header, or Media Type Object, which has the same behavior as a single Example Object with only the `value` field, as the \"shorthand `example`\" field.\nEach of these fields has slightly different considerations.\n\n##### JSON-Compatible and `value`-Safe Examples\n\nThe `value` and the shorthand `example` field are intended to have the same _semantics_ as `serializedValue` (or `externalValue`), while allowing a more convenient _syntax_ when there is no difference between a JSON (or [JSON-compatible YAML](#format)) representation and the final serialized form.\nWhen using this syntax for `application/json` or any `+json` media type, these fields effectively behave like `dataValue`, as the serialization is trivial, and they are safe to use.\n\nFor data that consists of a single string, and a serialization target such as `text/plain` where the string is guaranteed to be serialized without any further escaping, these fields are also safe to use.\n\nFor other serialization targets, the ambiguity of the phrase \"naturally be represented in JSON or YAML,\" as well as past errors in the parameter style examples table, have resulted in inconsistencies in the support and usage of these fields.\nIn practice, this has resulted in the `value` and shorthand `example` fields having implementation-defined behavior for non-JSON targets; OAD authors SHOULD use other fields to ensure interoperability.\n\n##### Choosing Which Field(s) to Use\n\nKeeping in mind the caveats from the previous section, and that the shorthand `example` can be used in place of `value` if there is only one Example Object involved, use the following guidelines to determine which field to use.\n\nTo show an example as it would be validated by a Schema Object:\n\n* Use the Schema Object's `examples` array (from JSON Schema draft 2020-12) if the intent is to keep the example with the validating schema.\n  * Use the Schema Object's `example` (singular) only if compatibility with OAS v3.0 or earlier is required.\n* Use the Example Object's `dataValue` field if the intent is to associate the example with an example of its serialization, or if it is desirable to maintain it separately from the schema.\n  * Use the Example Object's `value` field only if compatibility with OAS v3.1 or earlier is needed and the value can be \"naturally represented in JSON or YAML\" without any changes (such as percent-encoding) between the validation-ready value and the serialized representation.\n\nTo show an example as it would be serialized in order to construct an HTTP/1.1 message:\n\n* Use the Example Object's `serializedValue` if the serialization can be represented as a valid Unicode string, and there is no need to demonstrate the exact character encoding to be used.\n  * Use the string form of `value` only if compatibility with OAS v3.1 or earlier is needed.\n* Use the Example Object's `externalValue` for all other values, or if it is desirable to maintain the example separately from the OpenAPI document.\n\nThe `serializedValue` and `externalValue` fields both MUST show the serialized form of the data.\nFor Media Type Objects, this is a document of the appropriate media type, with any Encoding Object effects applied.\nFor Parameter and Header Objects using `schema` and `style` rather than a Media Type Object, see [Style Examples](#style-examples) for what constitutes a serialized value.\n\n##### Criteria for `serializedExample`\n\nA serialization can be represented as a valid Unicode string in `serializedValue` if any of the following are true of the serialization:\n\n* It is for a media type that supports a `charset` parameter that indicates any Unicode encoding (UTF-8, UTF-16, etc.), or any valid subset of such an encoding, such as US-ASCII.\n* It is for a format (such as URIs or HTTP fields) or character-based media type that requires or defaults to a Unicode encoding, or any valid subset of such an encoding, such as US-ASCII, and this is not overridden by `charset`.\n* It is for a compound format where all parts meet at least one of the above criteria, e.g. a `multipart/mixed` media type with parts that are `application/json` (a media type that defaults to UTF-8) and `application/xml; charset=utf-8` (a media type with an explicit `charset` parameter).\n\nIn all of these cases, the conversion from the character set of the OAD (presumed to be UTF-8 as the only interoperable character set for JSON, and therefore also for JSON-compatible YAML as noted in [[RFC9512]] [Section 3.4](https://www.rfc-editor.org/rfc/rfc9512.html#section-3.4)) first to Unicode code points and then to the actual serialization character set is well-defined.\n\nFor `externalValue`, if the character set is neither explicitly stated nor determined by the format or media type specification, implementations SHOULD assume UTF-8.\n\n##### Validating Examples\n\nTooling implementations MAY choose to validate compatibility automatically, and reject the example value(s) if incompatible.\nFor examples that are in schema-ready data form, this is straightforward.\n\nWith serialized examples, some formats allow multiple possible valid representations of the same data, including in scenarios noted in [Appendix B](#appendix-b-data-type-conversion).\nIn some cases, parsing the serialized example and validating the resulting data can eliminate the ambiguity, but in a few cases parsing is also ambiguous.\nTherefore, OAD authors are cautioned that validation of certain serialized examples is by necessity a best-effort feature.\n\n#### Example Object Examples\n\n##### JSON Examples\n\nWhen writing in YAML, JSON syntax can be used for `dataValue` (as shown in the `noRating` example) but is not required.\nWhile this example shows the behavior of both `dataValue` and `serializedValue` for JSON (in the 'withRating` example), in most cases only the data form is needed.\n\n```yaml\ncontent:\n  application/json:\n    schema:\n      type: object\n      required:\n      - author\n      - title\n      properties:\n        author:\n          type: string\n        title:\n          type: string\n        rating:\n          type: number\n          minimum: 1\n          maximum: 5\n          multipleOf: 0.5\n    examples:\n      noRating:\n        summary: A not-yet-rated work\n        dataValue:\n          author: A. Writer\n          title: The Newest Book\n      withRating:\n        summary: A work with an average rating of 4.5 stars\n        dataValue:\n          author: A. Writer\n          title: An Older Book\n          rating: 4.5\n        serializedValue: |\n          {\n            \"author\": \"A. Writer\",\n            \"title\": \"An Older Book\",\n            \"rating\": 4.5\n          }\n```\n\n##### Binary Examples\n\nFully binary data is shown using `externalValue`:\n\n```yaml\ncontent:\n  image/png:\n    schema: {}\n    examples:\n      Red:\n        externalValue: ./examples/2-by-2-red-pixels.png\n```\n\n##### Boolean Query Parameter Examples\n\nSince there is no standard for serializing boolean values (as discussed in [Appendix B](#appendix-b-data-type-conversion)), this example uses `dataValue` and `serializedValue` to show how booleans are serialized for this particular parameter:\n\n```yaml\nname: flag\nin: query\nrequired: true\nschema:\n  type: boolean\nexamples:\n  \"true\":\n    dataValue: true\n    serializedValue: flag=true\n  \"false\":\n    dataValue: false\n    serializedValue: flag=false\n```\n\n### Link Object\n\nThe Link Object represents a possible design-time link for a response.\nThe presence of a link does not guarantee the caller's ability to successfully invoke it, rather it provides a known relationship and traversal mechanism between responses and other operations.\n\nUnlike _dynamic_ links (i.e. links provided **in** the response payload), the OAS linking mechanism does not require link information in the runtime response.\n\nFor computing links and providing instructions to execute them, a [runtime expression](#runtime-expressions) is used for accessing values in an operation and using them as parameters while invoking the linked operation.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"link-operation-ref\"></a>operationRef | `string` | A URI reference to an OAS operation. This field is mutually exclusive of the `operationId` field, and MUST point to an [Operation Object](#operation-object). Relative `operationRef` values MAY be used to locate an existing [Operation Object](#operation-object) in the OpenAPI Description. |\n| <a name=\"link-operation-id\"></a>operationId | `string` | The name of an _existing_, resolvable OAS operation, as defined with a unique `operationId`. This field is mutually exclusive of the `operationRef` field. |\n| <a name=\"link-parameters\"></a>parameters | Map[`string`, Any \\| [{expression}](#runtime-expressions)] | A map representing parameters to pass to an operation as specified with `operationId` or identified via `operationRef`. The key is the parameter name to be used (optionally qualified with the parameter location, e.g. `path.id` for an `id` parameter in the path), whereas the value can be a constant or an expression to be evaluated and passed to the linked operation. |\n| <a name=\"link-request-body\"></a>requestBody | Any \\| [{expression}](#runtime-expressions) | A literal value or [{expression}](#runtime-expressions) to use as a request body when calling the target operation. |\n| <a name=\"link-description\"></a>description | `string` | A description of the link. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"link-server\"></a>server | [Server Object](#server-object) | A server object to be used by the target operation. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\nA linked operation MUST be identified using either an `operationRef` or `operationId`.\nThe identified or referenced operation MUST be unique, and in the case of an `operationId`, it MUST be resolved within the scope of the OpenAPI Description (OAD).\nBecause of the potential for name clashes, the `operationRef` syntax is preferred for multi-document OADs.\nHowever, because use of an operation depends on its URL path template in the [Paths Object](#paths-object), operations from any [Path Item Object](#path-item-object) that is referenced multiple times within the OAD cannot be resolved unambiguously.\nIn such ambiguous cases, the resulting behavior is implementation-defined and MAY result in an error.\n\nNote that it is not possible to provide a constant value to `parameters` that matches the syntax of a runtime expression.\nIt is possible to have ambiguous parameter names, e.g. `name: \"id\", in: \"path\"` and `name: \"path.id\", in: \"query\"`; this is NOT RECOMMENDED and the behavior is implementation-defined, however implementations SHOULD prefer the qualified interpretation (`path.id` as a path parameter), as the names can always be qualified to disambiguate them (e.g. using `query.path.id` for the query parameter).\n\n#### Examples\n\nComputing a link from a request operation where the `$request.path.id` is used to pass a request parameter to the linked operation.\n\n```yaml\npaths:\n  /users/{id}:\n    parameters:\n      - name: id\n        in: path\n        required: true\n        description: the user identifier, as userId\n        schema:\n          type: string\n    get:\n      responses:\n        '200':\n          description: the user being returned\n          content:\n            application/json:\n              schema:\n                type: object\n                properties:\n                  uuid: # the unique user id\n                    type: string\n                    format: uuid\n          links:\n            address:\n              # the target link operationId\n              operationId: getUserAddress\n              parameters:\n                # get the `id` field from the request path parameter named \"id\"\n                userid: $request.path.id\n  # the path item of the linked operation\n  /users/{userid}/address:\n    parameters:\n      - name: userid\n        in: path\n        required: true\n        description: the user identifier, as userId\n        schema:\n          type: string\n    # linked operation\n    get:\n      operationId: getUserAddress\n      responses:\n        '200':\n          description: the user's address\n```\n\nWhen a runtime expression fails to evaluate, no parameter value is passed to the target operation.\n\nValues from the response body can be used to drive a linked operation.\n\n```yaml\nlinks:\n  address:\n    operationId: getUserAddressByUUID\n    parameters:\n      # get the `uuid` field from the `uuid` field in the response body\n      userUuid: $response.body#/uuid\n```\n\nClients follow all links at their discretion.\nNeither permissions nor the capability to make a successful call to that link is guaranteed\nsolely by the existence of a relationship.\n\n##### `operationRef` Examples\n\nAs the `operationId` is an optional field in an [Operation Object](#operation-object), references MAY instead be made through a URI reference with `operationRef`.\nNote that both of these examples reference operations that can be identified via the [Paths Object](#paths-object) to ensure that the operation's path template is unambiguous.\n\nA relative URI reference `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: '#/paths/~12.0~1repositories~1%7Busername%7D/get'\n    parameters:\n      username: $response.body#/username\n```\n\nA non-relative URI `operationRef`:\n\n```yaml\nlinks:\n  UserRepositories:\n    # returns array of '#/components/schemas/repository'\n    operationRef: https://na2.gigantic-server.com/#/paths/~12.0~1repositories~1%7Busername%7D/get\n    parameters:\n      username: $response.body#/username\n```\n\nNote that in the use of `operationRef` the _escaped forward-slash_ (`~1`) is necessary when\nusing JSON Pointer in URI fragments, and it is necessary to URL-encode `{` and `}` as `%7B` and `%7D`, respectively.\nThe unescaped, percent-decoded path template in the above examples would be `/2.0/repositories/{username}`.\n\n#### Runtime Expressions\n\nRuntime expressions allow defining values based on information that will only be available within the HTTP message in an actual API call.\nThis mechanism is used by [Link Objects](#link-object) and [Callback Objects](#callback-object).\n\nThe runtime expression is defined by the following [ABNF](https://tools.ietf.org/html/rfc5234) syntax\n\n```abnf\n    expression = \"$url\" / \"$method\" / \"$statusCode\" / \"$request.\" source / \"$response.\" source\n    source     = header-reference / query-reference / path-reference / body-reference\n    header-reference = \"header.\" token\n    query-reference  = \"query.\" name\n    path-reference   = \"path.\" name\n    body-reference   = \"body\" [\"#\" json-pointer ]\n    json-pointer    = *( \"/\" reference-token )\n    reference-token = *( unescaped / escaped )\n    unescaped       = %x00-2E / %x30-7D / %x7F-10FFFF\n                    ; %x2F ('/') and %x7E ('~') are excluded from 'unescaped'\n    escaped         = \"~\" ( \"0\" / \"1\" )\n                    ; representing '~' and '/', respectively\n    name = *char\n    token = 1*tchar\n    tchar = \"!\" / \"#\" / \"$\" / \"%\" / \"&\" / \"'\" / \"*\" / \"+\" / \"-\" / \".\"\n          / \"^\" / \"_\" / \"`\" / \"|\" / \"~\" / DIGIT / ALPHA\n```\n\nHere, `json-pointer` is taken from [RFC6901](https://tools.ietf.org/html/rfc6901), `char` from [RFC8259](https://tools.ietf.org/html/rfc8259#section-7) and `token` from [RFC9110](https://www.rfc-editor.org/rfc/rfc9110.html#section-5.6.2).\n\nThe `name` identifier is case-sensitive, whereas `token` is not.\n\nThe table below provides examples of runtime expressions and examples of their use in a value:\n\n##### Example Expressions\n\n| Source Location | example expression | notes |\n| ---- | :---- | :---- |\n| HTTP Method | `$method` | The allowable values for the `$method` will be those for the HTTP operation. |\n| Requested media type | `$request.header.accept` | |\n| Request parameter | `$request.path.id` | Request parameters MUST be declared in the `parameters` section of the parent operation or they cannot be evaluated. This includes request headers. |\n| Request body property | `$request.body#/user/uuid` | In operations which accept payloads, references may be made to portions of the `requestBody` or the entire body. |\n| Request URL | `$url` | |\n| Response value | `$response.body#/status` | In operations which return payloads, references may be made to portions of the response body or the entire body. |\n| Response header | `$response.header.Server` | Single header values only are available |\n\nRuntime expressions preserve the type of the referenced value.\nExpressions can be embedded into string values by surrounding the expression with `{}` curly braces.\n\n### Header Object\n\nDescribes a single header for [HTTP responses](#response-headers) and for [individual parts in `multipart` representations](#encoding-headers); see the relevant [Response Object](#response-object) and [Encoding Object](#encoding-object) documentation for restrictions on which headers can be described.\n\nThe Header Object follows the structure of the [Parameter Object](#parameter-object), including determining its serialization strategy based on whether `schema` or `content` is present, with the following changes:\n\n1. `name` MUST NOT be specified, it is given in the corresponding `headers` map.\n1. `in` MUST NOT be specified, it is implicitly in `header`.\n1. All traits that are affected by the location MUST be applicable to a location of `header` (for example, [`style`](#parameter-style)). This means that `allowEmptyValue` MUST NOT be used, and `style`, if used, MUST be limited to `\"simple\"`.\n\n#### Fixed Fields\n\n##### Common Fixed Fields\n\nThese fields MAY be used with either `content` or `schema`.\n\nThe `example` and `examples` fields are mutually exclusive; see [Working with Examples](#working-with-examples) for guidance on validation requirements.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-description\"></a>description | `string` | A brief description of the header. This could contain examples of use. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"header-required\"></a>required | `boolean` | Determines whether this header is mandatory. The default value is `false`. |\n| <a name=\"header-deprecated\"></a> deprecated | `boolean` | Specifies that the header is deprecated and SHOULD be transitioned out of usage. Default value is `false`. |\n| <a name=\"header-example\"></a>example | Any | Example of the header's potential value; see [Working With Examples](#working-with-examples). |\n| <a name=\"header-examples\"></a>examples | Map[ `string`, [Example Object](#example-object) \\| [Reference Object](#reference-object)] | Examples of the header's potential value; see [Working With Examples](#working-with-examples). |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n##### Fixed Fields for use with `schema`\n\nFor simpler scenarios, a [`schema`](#header-schema) and [`style`](#header-style) can describe the structure and syntax of the header.\n\nWhen serializing headers with `schema`, URI percent-encoding MUST NOT be applied; if using an RFC6570 implementation that automatically applies it, it MUST be removed before use.\nImplementations MUST pass header values through unchanged rather than attempting to automatically quote header values, as the quoting rules vary too widely among different headers; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for guidance on quoting and escaping.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-style\"></a>style | `string` | Describes how the header value will be serialized. The default (and only legal value for headers) is `\"simple\"`. |\n| <a name=\"header-explode\"></a>explode | `boolean` | When this is true, header values of type `array` or `object` generate a single header whose value is a comma-separated list of the array items or key-value pairs of the map, see [Style Examples](#style-examples). For other data types this field has no effect. The default value is `false`. |\n| <a name=\"header-schema\"></a>schema | [Schema Object](#schema-object) | The schema defining the type used for the header. |\n\nSee also [Appendix C: Using RFC6570-Based Serialization](#appendix-c-using-rfc6570-based-serialization) for additional guidance.\n\n##### Fixed Fields for use with `content`\n\nFor more complex scenarios, the [`content`](#header-content) field can define the media type and schema of the header, as well as give examples of its use.\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"header-content\"></a>content | Map[`string`, [Media Type Object](#media-type-object) \\| [Reference Object](#reference-object)] | A map containing the representations for the header. The key is the media type and the value describes it. The map MUST only contain one entry. |\n\n#### Modeling Link Headers\n\n[[!RFC9264]] defines the `application/linkset` and `application/linkset+json` media types.\nThe former is exactly the format of HTTP link header values except allowing additional whitespace for readability, while the latter is an equivalent JSON representation of such headers.\n\nTo use either of these media types, the `schema` in the [Media Type Object](#media-type-object) MUST describe the links as they would be structured in the `application/linkset+json` format.\nIf the Media Type Object's parent key is `application/linkset+json`, then the serialization is trivial, however this format cannot be used in the HTTP `Link` header.\nIf the Media Type Object's parent key is `application/linkset`, then the serialization MUST be the equivalent representation of the `schema`-modeled links in the `application/linkset` format.\nIf the `application/linkset` Media Type Object is used in the `content` field of a Header Object (or a Parameter Object with `in: \"header\"`), the serialization MUST be made compatible with the HTTP field syntax as described by [[!RFC9264]] [Section 4.1](https://www.rfc-editor.org/rfc/rfc9264.html#name-http-link-document-format-a).\n\nThe following example shows how the same data model can be used for a collection pagination linkset either in JSON format as message content, or in the HTTP `Link` header:\n\n```yaml\ncomponents:\n  schemas:\n    SimpleLinkContext:\n      type: array\n      items:\n        type: object\n        required:\n        - href\n        properties:\n          href:\n            type: string\n            format: uri-reference\n    CollectionLinks:\n      type: object\n      required:\n      - linkset\n      properties:\n        linkset:\n          type: array\n          items:\n            type: object\n            required: [first, prev, next, last]\n            properties:\n              anchor:\n                type: string\n                format: uri\n            additionalProperties:\n              $ref: '#/components/schemas/SimpleLinkContext'\n  responses:\n    CollectionWithLinks:\n      content:\n        application/json:\n          schema:\n            type: array\n      headers:\n        Link:\n          required: true\n          content:\n            application/linkset:\n              schema:\n                $ref: '#/components/schemas/CollectionLinks'\n    StandaloneJsonLinkset:\n      content:\n        application/linkset+json:\n          schema:\n            $ref: '#/components/mediaTypes/CollectionLinks'\n```\n\n#### Representing the `Set-Cookie` Header\n\nThe `Set-Cookie` header is noted in [[!RFC9110]] [Section 5.3](https://www.rfc-editor.org/rfc/rfc9110.html#section-5.3) as an exception to the normal rules of headers with multiple values.\n\nFor most headers using the general syntax defined in RFC9110, the multiple-line and comma-separated single-line forms are interchangeable, meaning that this:\n\n```http\nAccept-Encoding: compress;q=0.5\nAccept-Encoding: gzip;q=1.0\n```\n\nis interchangeable with the one-line form that works well with the OAS's `style: \"simple\"` option:\n\n```http\nAccept-Encoding: compress;q=0.5,gzip;q=1.0\n```\n\nThe OAS models such multi-value headers using the one-line form as it matches the behavior of `style: \"simple\"`, and works well when using `content` as the values are completely separate from the header name, but it does not matter which form is used in an actual HTTP message.\n\nAs also noted in the RFC, `Set-Cookie` is an exception as it allows unquoted, non-escaped commas in its values, and can only use the one-value-per-line form.\nFor HTTP messages, this is purely a serialization concern, and no more of a problem than a message that uses the multi-line form of any other header.\n\nHowever, because examples and values modeled with `content` do not incorporate the header name, for these fields `Set-Cookie` MUST be handled by placing each value on a separate line, without the header name or the `:` delimiter.\n\nNote also that any URI percent-encoding, base64 encoding, or other escaping MUST be performed prior to supplying the data to OAS tooling; see [Appendix D](#appendix-d-serializing-headers-and-cookies) for details.\n\nThe following example shows two different ways to describe `Set-Cookie` headers that require cookies named `\"lang\"` and `\"foo\"`, as well as a `\"urlSafeData\"` cookie that is expected to be percent-encoded.  The first uses `content` in order to show exactly how such examples are formatted, but also notes the limitations of schema constraints with multi-line text.  The second shows the use of `style: \"simple\"`, which produces the same serialized example text (with each line corresponding to one `Set-Cookie:` line in the HTTP response), but allows schema constraints on each cookie; note that the percent-encoding is already applied in the `dataValue` field of the example:\n\n```yaml\ncomponents:\n  headers:\n    SetCookieWithContent:\n      content:\n        text/plain:\n          schema:\n            # Due to lack of support for multiline regular expressions\n            # in the `pattern` keyword, not much validation can be done.\n            type: string\n      examples:\n        WithExpires:\n          # This demonstrates that the text is required to be provided\n          # in the final format, and is not changed by serialization.\n          # In practice, it is not necessary to show both value fields.\n          # Note that only the comma (%2C) would need to be percent-encoded\n          # if percent-encoding were only being done to make the value\n          # a valid cookie, as space (%20) and the exclamation point (%21)\n          # are allowed in cookies, but not in URLs.  See the cookie\n          # input parameter examples for an example of encoding only\n          # what is needed for the cookie syntax.\n          dataValue: |\n            lang=en-US; Expires=Wed, 09 Jun 2021 10:18:14 GMT\n            foo=bar; Expires=Wed, 09 Jun 2021 10:18:14 GMT\n            urlSafeData: Hello%2C%20world%21\n          serializedValue: |\n            lang=en-US; Expires=Wed, 09 Jun 2021 10:18:14 GMT\n            foo=bar; Expires=Wed, 09 Jun 2021 10:18:14 GMT\n            urlSafeData: Hello%2C%20world%21\n    SetCookieWithSchemaAndStyle:\n      schema:\n        type: object\n        required:\n        - lang\n        - foo\n        - urlSafeData\n        properties:\n          urlSafeData:\n            type: string\n            pattern: ^[-_.%a-zA-Z0-9]+(;|$)\n        additionalProperties:\n          $comment: Require an Expires parameter\n          pattern: \"; *Expires=\"\n      style: simple\n      explode: true\n      examples:\n        SetCookies:\n          dataValue: {\n            \"lang\": \"en-US; Expires=Wed, 09 Jun 2021 10:18:14 GMT\"\n            \"foo\": \"bar; Expires=Wed, 09 Jun 2021 10:18:14 GMT\"\n            \"urlSafeData\": \"Hello%2C%20world%21\"\n          }\n          serializedValue: |\n            lang=en-US; Expires=Wed, 09 Jun 2021 10:18:14 GMT\n            foo=bar; Expires=Wed, 09 Jun 2021 10:18:14 GMT\n            urlSafeData: Hello%2C%20world%21\n```\n\nIn an HTTP message, the serialized example would look like:\n\n```http\nSet-Cookie: lang=en-US; Expires=Wed, 09 Jun 2021 10:18:14 GM\nSet-Cookie: foo=bar; Expires=Wed, 09 Jun 2021 10:18:14 GMT\nSet-Cookie: urlSafeData=Hello%2C%20world%21\n```\n\n#### Header Object Example\n\nA simple header of type `integer`:\n\n```yaml\nX-Rate-Limit-Limit:\n  description: The number of allowed requests in the current period\n  schema:\n    type: integer\n```\n\nRequiring that a strong `ETag` header (with a value starting with `\"` rather than `W/`) is present.\n\n```yaml\nETag:\n  required: true\n  schema:\n    type: string\n    # Note that quotation marks are part of the\n    # ETag value, unlike many other headers that\n    # use a quoted string purely for managing\n    # reserved characters.\n    pattern: ^\"\n  example: '\"xyzzy\"'\n```\n\n### Tag Object\n\nAdds metadata to a single tag that is used by the [Operation Object](#operation-object).\nIt is not mandatory to have a Tag Object per tag defined in the Operation Object instances.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"tag-name\"></a>name | `string` | **REQUIRED**. The name of the tag. Use this value in the `tags` array of an Operation. |\n| <a name=\"tag-summary\"></a>summary | `string` | A short summary of the tag, used for display purposes. |\n| <a name=\"tag-description\"></a>description | `string` | A description for the tag. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"tag-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this tag. |\n| <a name=\"tag-parent\"></a>parent | `string` | The `name` of a tag that this tag is nested under. The named tag MUST exist in the API description, and circular references between parent and child tags MUST NOT be used. |\n| <a name=\"tag-kind\"></a>kind | `string` | A machine-readable string to categorize what sort of tag it is. Any string value can be used; common uses are `nav` for Navigation, `badge` for visible badges, `audience` for APIs used by different groups. A [registry of the most commonly used values](https://spec.openapis.org/registry/tag-kind/) is available. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Tag Object Example\n\n```yaml\ntags:\n  - name: account-updates\n    summary: Account Updates\n    description: Account update operations\n    kind: nav\n\n  - name: partner\n    summary: Partner\n    description: Operations available to the partners network\n    parent: external\n    kind: audience\n\n  - name: external\n    summary: External\n    description: Operations available to external consumers\n    kind: audience\n```\n\n### Reference Object\n\nA simple object to allow referencing other components in the OpenAPI Description, internally and externally.\n\nThe `$ref` string value contains a URI [RFC3986](https://tools.ietf.org/html/rfc3986), which identifies the value being referenced.\n\nSee the rules for resolving [Relative References](#relative-references-in-api-description-uris).\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"reference-ref\"></a>$ref | `string` | **REQUIRED**. The reference identifier. This MUST be in the form of a URI. |\n| <a name=\"reference-summary\"></a>summary | `string` | A short summary which by default SHOULD override that of the referenced component. If the referenced object-type does not allow a `summary` field, then this field has no effect. |\n| <a name=\"reference-description\"></a>description | `string` | A description which by default SHOULD override that of the referenced component. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. If the referenced object-type does not allow a `description` field, then this field has no effect. |\n\nThis object cannot be extended with additional properties, and any properties added SHALL be ignored.\n\nNote that this restriction on additional properties is a difference between Reference Objects and [Schema Objects](#schema-object) that contain a `$ref` keyword.\n\n#### Reference Object Example\n\n```yaml\n$ref: '#/components/schemas/Pet'\n```\n\n#### Relative Schema Document Example\n\n```yaml\n$ref: Pet.yaml\n```\n\n#### Relative Documents with Embedded Schema Example\n\n```yaml\n$ref: definitions.yaml#/Pet\n```\n\n### Schema Object\n\nThe Schema Object allows the definition of input and output data types.\nThese types can be objects, but also primitives and arrays. This object is a superset of the [JSON Schema Specification Draft 2020-12](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html). The empty schema (which allows any instance to validate) MAY be represented by the boolean value `true` and a schema which allows no instance to validate MAY be represented by the boolean value `false`.\n\nFor more information about the keywords, see [JSON Schema Core](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html) and [JSON Schema Validation](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html).\n\nUnless stated otherwise, the keyword definitions follow those of JSON Schema and do not add any additional semantics; this includes keywords such as `$schema`, `$id`, `$ref`, and `$dynamicRef` being URIs rather than URLs.\nWhere JSON Schema indicates that behavior is defined by the application (e.g. for annotations), OAS also defers the definition of semantics to the application consuming the OpenAPI document.\n\n#### JSON Schema Keywords\n\nThe OpenAPI Schema Object [dialect](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-4.3.3) is defined as requiring the [OAS base vocabulary](#base-vocabulary), in addition to the vocabularies as specified in the JSON Schema Specification Draft 2020-12 [general purpose meta-schema](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-8).\n\nThe OpenAPI Schema Object dialect for this version of the specification is identified by the URI `https://spec.openapis.org/oas/3.1/dialect/base` (the <a name=\"dialect-schema-id\"></a>\"OAS dialect schema id\").\n\nThe following keywords are taken from the JSON Schema specification but their definitions have been extended by the OAS:\n\n* description - [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation.\n* format - See [Data Type Formats](#data-type-format) for further details. While relying on JSON Schema's defined formats, the OAS offers a few additional predefined formats.\n\nIn addition to the JSON Schema keywords comprising the OAS dialect, the Schema Object supports keywords from any other vocabularies, or entirely arbitrary properties.\n\nJSON Schema implementations MAY choose to treat keywords defined by the OpenAPI Specification's base vocabulary as [unknown keywords](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-4.3.1), due to its inclusion in the OAS dialect with a [`$vocabulary`](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-8.1.2) value of `false`.\n<a name=\"base-vocabulary\"></a>The OAS base vocabulary is comprised of the following keywords:\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"schema-discriminator\"></a>discriminator | [Discriminator Object](#discriminator-object) | The discriminator provides a \"hint\" for which of a set of schemas a payload is expected to satisfy. See [Composition and Inheritance](#composition-and-inheritance-polymorphism) for more details. |\n| <a name=\"schema-xml\"></a>xml | [XML Object](#xml-object) | Adds additional metadata to describe the XML representation of this schema. |\n| <a name=\"schema-external-docs\"></a>externalDocs | [External Documentation Object](#external-documentation-object) | Additional external documentation for this schema. |\n| <a name=\"schema-example\"></a>example | Any | A free-form field to include an example of an instance for this schema. To represent examples that cannot be naturally represented in JSON or YAML, a string value can be used to contain the example with escaping where necessary.<br><br>**Deprecated:** The `example` field has been deprecated in favor of the JSON Schema `examples` keyword. Use of `example` is discouraged, and later versions of this specification may remove it. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions), though as noted, additional properties MAY omit the `x-` prefix within this object.\n\n#### Data Types\n\nData types in the OAS are based on the types defined by the [JSON Schema Validation Specification Draft 2020-12](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#section-6.1.1):\n\"null\", \"boolean\", \"object\", \"array\", \"number\", \"string\", or \"integer\".\nModels are defined using the [Schema Object](#schema-object), which is a superset of the JSON Schema Specification Draft 2020-12.\n\nJSON Schema keywords and `format` values operate on JSON \"instances\" which may be one of the six JSON data types, \"null\", \"boolean\", \"object\", \"array\", \"number\", or \"string\", with certain keywords and formats only applying to a specific type. For example, the `pattern` keyword and the `date-time` format only apply to strings, and treat any instance of the other five types as _automatically valid._ This means JSON Schema keywords and formats do **NOT** implicitly require the expected type. Use the `type` keyword to explicitly constrain the type.\n\nNote that the `type` keyword allows `\"integer\"` as a value for convenience, but keyword and format applicability does not recognize integers as being of a distinct JSON type from other numbers because [[RFC8259|JSON]] itself does not make that distinction. Since there is no distinct JSON integer type, JSON Schema defines integers mathematically. This means that both `1` and `1.0` are [equivalent](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-4.2.2), and are both considered to be integers.\n\n##### Data Type Format\n\nAs defined by the [JSON Schema Validation specification](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#section-7.3), data types can have an optional modifier keyword: `format`. As described in that specification, `format` is treated as a non-validating annotation by default; the ability to validate `format` varies across implementations.\n\nThe OpenAPI Initiative also hosts a [Format Registry](https://spec.openapis.org/registry/format/) for formats defined by OAS users and other specifications. Support for any registered format is strictly OPTIONAL, and support for one registered format does not imply support for any others.\n\nTypes that are not accompanied by a `format` keyword follow the type definition in the JSON Schema. Tools that do not recognize a specific `format` MAY default back to the `type` alone, as if the `format` is not specified.\nFor the purpose of [JSON Schema validation](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#section-7.1), each format should specify the set of JSON data types for which it applies. In this registry, these types are shown in the \"JSON Data Type\" column.\n\nThe formats defined by the OAS are:\n\n| `format` | JSON Data Type | Comments |\n| ---- | ---- | ---- |\n| `int32` | number | signed 32 bits |\n| `int64` | number | signed 64 bits (a.k.a long) |\n| `float` | number | |\n| `double` | number | |\n| `password` | string | A hint to obscure the value. |\n\nAs noted under [Data Type](#data-types), both `type: number` and `type: integer` are considered to be numbers in the data model.\n\n#### Parsing and Serializing\n\nAPI data has several forms:\n\n1. The serialized form, which is either a document of a particular media type, an HTTP header value, or part of a URI.\n2. The data form, intended for use with a [Schema Object](#schema-object).\n3. The application form, which incorporates any additional information conveyed by JSON Schema keywords such as `format` and `contentType`, and possibly additional information such as class hierarchies that are beyond the scope of this specification, although they MAY be based on specification elements such as the [Discriminator Object](#discriminator-object) or guidance regarding [Data Modeling Techniques](#data-modeling-techniques).\n\n##### JSON Data\n\nJSON-serialized data is nearly equivalent to the data form because the [JSON Schema data model](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-4.2.1) is nearly equivalent to the JSON representation.\nThe serialized UTF-8 JSON string `{\"when\": \"1985-04-12T23:20:50.52\"}` represents an object with one data field, named `when`, with a string value, `1985-04-12T23:20:50.52`.\n\nThe exact application form is beyond the scope of this specification, as can be shown with the following schema for our JSON instance:\n\n```yaml\ntype: object\nproperties:\n  when:\n    type: string\n    format: date-time\n```\n\nSome applications might leave the string as a string regardless of programming language, while others might notice the `format` and use it as a `datetime.datetime` instance in Python, or a `java.time.ZonedDateTime` in Java.\nThis specification only requires that the data is valid according to the schema, and that [annotations](#extended-validation-with-annotations) such as `format` are available in accordance with the JSON Schema specification.\n\n##### Non-JSON Data\n\nNon-JSON serializations can be substantially different from their corresponding data form, and might require several steps to parse.\n\nTo continue our \"when\" example, if we serialized the object as `application/x-www-form-urlencoded`, it would appear as the ASCII string `when=1985-04-12T23%3A20%3A50.52`.\nThis example is still straightforward to use as it is all string data, and the only differences from JSON are the URI percent-encoding and the delimiter syntax (`=` instead of JSON punctuation and quoting).\n\nHowever, many non-JSON text-based formats can be complex, requiring examination of the appropriate schema(s) in order to correctly parse the text into a schema-ready data structure.\nSerializing data into such formats requires either examining the schema-validated data or performing the same schema inspections.\n\nWhen inspecting schemas, given a starting point schema, implementations MUST examine that schema and all schemas that can be reached from it by following only `$ref` and `allOf` keywords.\nThese schemas are guaranteed to apply to any instance.\nWhen searching schemas for `type`, if the `type` keyword's value is a list of types and the serialized value can be successfully parsed as more than one of the types in the list, and no other findable `type` keyword disambiguates the actual required type, the behavior is implementation-defined.\nSchema Objects that do not contain `type` MUST be considered to allow all types, regardless of which other keywords are present (e.g. `maximum` applies to numbers, but _does not_ require the instance to be a number).\n\nImplementations MAY inspect subschemas or possible reference targets of other keywords such as `oneOf` or `$dynamicRef`, but MUST NOT attempt to resolve ambiguities.\nFor example, if an implementation opts to inspect `anyOf`, the schema:\n\n```yaml\nanyOf:\n- type: number\n  minimum: 0\n- type: number\n  maximum: 100\n```\n\nunambiguously indicates a numeric type, but the schema:\n\n```yaml\nanyOf:\n- type: number\n- maximum: 100\n```\n\ndoes not, because the second subschema allows all types.\n\nDue to these limited requirements for searching schemas, serializers that have access to validated data MUST inspect the data if possible; implementations that either do not work with runtime data (such as code generators) or cannot access validated data for some reason MUST fall back to schema inspection.\n\nRecall also that in JSON Schema, keywords that apply to a specific type (e.g. `pattern` applies to strings, `minimum` applies to numbers) _do not_ require or imply that the data will actually be of that type.\n\nAs an example of these processes, given these OpenAPI components:\n\n```yaml\ncomponents:\n  requestBodies:\n    Form:\n      content:\n        application/x-www-form-urlencoded:\n          schema:\n            $ref: \"#/components/schemas/FormData\"\n          encoding:\n            extra:\n              contentType: application/xml\n  schemas:\n    FormData:\n      type: object\n      properties:\n        code:\n          allOf:\n          - type: [string, number]\n            pattern: \"1\"\n            minimum: 0\n          - type: string\n            pattern: \"2\"\n        count:\n          type: integer\n        extra:\n          type: object\n```\n\nAnd this request body to parse into its data form:\n\n```uri\ncode=1234&count=42&extra=%3Cinfo%3Eabc%3C/info%3E\n```\n\nWe must first search the schema for `properties` or other property-defining keywords, and then use each property schema as a starting point for a search for that property's `type` keyword, as follows (the exact order is implementation-defined):\n\n* `#/components/requestBodies/Form/content/application~1x-www-form-urlencoded/schema` (initial starting point schema, only `$ref`)\n* `#/components/schemas/FormData` (follow `$ref`, found `properties`)\n* `#/components/schemas/FormData/properties/code` (starting point schema for `code` property)\n* `#/components/schemas/FormData/properties/code/allOf/0` (follow `allOf`, found `type: [string, number]`)\n* `#/components/schemas/FormData/properties/code/allOf/1` (follow `allOf`, found `type: string`)\n* `#/components/schemas/FormData/properties/count` (starting point schema for `count` property, found `type: integer`)\n* `#/components/schemas/FormData/properties/extra` (starting point schema for `extra` property, found `type: object`)\n\nNote that for `code` we first found an ambiguous `type`, but then found another `type` keyword that ensures only one of the two possibilities is valid.\n\nFrom this inspection, we determine that `code` is a string that happens to look like a number, while `count` needs to be parsed into a number _prior_ to schema validation.\nFurthermore, the `extra` string is in fact an XML serialization of an object containing an `info` property.\nThis means that the data form of this serialization is equivalent to the following JSON object:\n\n```json\n{\n  \"code\": \"1234\",\n  \"count\": 42\n  \"extra\": {\n    \"info\": \"abc\"\n  }\n}\n```\n\nSerializing this object also requires correlating properties with [Encoding Objects](#encoding-object), and may require inspection to determine a default value of the `contentType` field.\nIf validated data is not available, the schema inspection process is identical to that shown for parsing.\n\nIn this example, both `code` and `count` are of primitive type and do not appear in the `encoding` field, and are therefore serialized as plain text.\nHowever, the `extra` field is an object, which would by default be serialized as JSON, but the `extra` entry in the `encoding` field tells use to serialize it as XML instead.\n\n##### Working with Binary Data\n\nThe OAS can describe either _raw_ or _encoded_ binary data.\n\n* **raw binary** is used where unencoded binary data is allowed, such as when sending a binary payload as the entire HTTP message body, or as part of a `multipart/*` payload that allows binary parts\n* **encoded binary** is used where binary data is embedded in a text-only format such as `application/json` or `application/x-www-form-urlencoded` (either as a message body or in the URL query string).\n\nIn the following table showing how to use Schema Object keywords for binary data, we use `image/png` as an example binary media type. Any binary media type, including `application/octet-stream`, is sufficient to indicate binary content.\n\n| Keyword | Raw | Encoded | Comments |\n| ---- | ---- | ---- | ---- |\n| `type` | _omit_ | `string` | raw binary is [outside of `type`](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-4.2.3) |\n| `contentMediaType` | `image/png` | `image/png` | can sometimes be omitted if redundant (see below) |\n| `contentEncoding` | _omit_ | `base64`&nbsp;or&nbsp;`base64url` | other encodings are [allowed](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#section-8.3) |\n\nNote that the encoding indicated by `contentEncoding`, which inflates the size of data in order to represent it as 7-bit ASCII text, is unrelated to HTTP's `Content-Encoding` header, which indicates whether and how a message body has been compressed and is applied after all content serialization described in this section has occurred. Since HTTP allows unencoded binary message bodies, there is no standardized HTTP header for indicating base64 or similar encoding of an entire message body.\n\nUsing a `contentEncoding` of `base64url` ensures that URL encoding (as required in the query string and in message bodies of type `application/x-www-form-urlencoded`) does not need to further encode any part of the already-encoded binary data.\n\nThe `contentMediaType` keyword is redundant if the media type is already set:\n\n* as the key for a [Media Type Object](#media-type-object)\n* in the `contentType` field of an [Encoding Object](#encoding-object)\n\nIf the [Schema Object](#schema-object) will be processed by a non-OAS-aware JSON Schema implementation, it may be useful to include `contentMediaType` even if it is redundant. However, if `contentMediaType` contradicts a relevant Media Type Object or Encoding Object, then `contentMediaType` SHALL be ignored.\n\nSee [Complete vs Streaming Content](#complete-vs-streaming-content) for guidance on streaming binary payloads.\n\n###### Schema Evaluation and Binary Data\n\nFew JSON Schema implementations directly support working with binary data, as doing so is not a mandatory part of that specification.\n\nOAS Implementations that do not have access to a binary-instance-supporting JSON Schema implementation MUST examine schemas and apply them in accordance with [Working with Binary Data](#working-with-binary-data).\nWhen the entire instance is binary, this is straightforward as few keywords are relevant.\n\nHowever, `multipart` media types can mix binary and text-based data, leaving implementations with two options for schema evaluations:\n\n1. Use a placeholder value, on the assumption that no assertions will apply to the binary data and no conditional schema keywords will cause the schema to treat the placeholder value differently (e.g. a part that could be either plain text or binary might behave unexpectedly if a string is used as a binary placeholder, as it would likely be treated as plain text and subject to different subschemas and keywords).\n2. Inspect the schema(s) to find the appropriate keywords (`properties`, `prefixItems`, etc.) in order to break up the subschemas and apply them separately to binary and JSON-compatible data.\n\n###### Migrating Binary Descriptions from OAS 3.0\n\nThe following table shows how to migrate from OAS 3.0 binary data descriptions, continuing to use `image/png` as the example binary media type:\n\n| OAS < 3.1 | OAS >= 3.1 | Comments |\n| ---- | ---- | ---- |\n| <code style=\"white-space:nowrap\">type: string</code><br /><code style=\"white-space:nowrap\">format: binary</code> | <code style=\"white-space:nowrap\">contentMediaType: image/png</code> | if redundant, can be omitted, often resulting in an empty [Schema Object](#schema-object) |\n| <code style=\"white-space:nowrap\">type: string</code><br /><code style=\"white-space:nowrap\">format: byte</code> | <code style=\"white-space:nowrap\">type: string</code><br /><code style=\"white-space:nowrap\">contentMediaType: image/png</code><br /><code style=\"white-space:nowrap\">contentEncoding: base64</code> | note that `base64url` can be used to avoid re-encoding the base64 string to be URL-safe |\n\n#### Extended Validation with Annotations\n\nJSON Schema Draft 2020-12 supports [collecting annotations](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-7.7.1), including [treating unrecognized keywords as annotations](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-6.5).\nOAS implementations MAY use such annotations, including [extensions](https://spec.openapis.org/registry/extension/) not recognized as part of a declared JSON Schema vocabulary, as the basis for further validation.\nNote that JSON Schema Draft 2020-12 does not require an `x-` prefix for extensions.\n\n##### Non-Validating Constraint Keywords\n\nThe [`format` keyword (when using default format-annotation vocabulary)](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#section-7.2.1) and the [`contentMediaType`, `contentEncoding`, and `contentSchema` keywords](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#section-8.2) define constraints on the data, but are treated as annotations instead of being validated directly.\nExtended validation is one way that these constraints MAY be enforced.\n\n##### Validating `readOnly` and `writeOnly`\n\nThe `readOnly` and `writeOnly` keywords are annotations, as JSON Schema is not aware of how the data it is validating is being used.\nValidation of these keywords MAY be done by checking the annotation, the read or write direction, and (if relevant) the current value of the field.\n[JSON Schema Validation Draft 2020-12 Section 9.4](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#section-9.4) defines the expectations of these keywords, including that a resource (described as the \"owning authority\") MAY either ignore a `readOnly` field or treat it as an error.\n\nFields that are both required and read-only are an example of when it is beneficial to ignore a `readOnly: true` constraint in a PUT, particularly if the value has not been changed.\nThis allows correctly requiring the field on a GET and still using the same representation and schema with PUT.\nEven when read-only fields are not required, stripping them is burdensome for clients, particularly when the JSON data is complex or deeply nested.\n\nNote that the behavior of `readOnly` in particular differs from that specified by version 3.0 of this specification.\n\n#### Data Modeling Techniques\n\n##### Composition and Inheritance (Polymorphism)\n\nThe OpenAPI Specification allows combining and extending model definitions using the `allOf` keyword of JSON Schema, in effect offering model composition.\n`allOf` takes an array of object definitions that are validated _independently_ but together compose a single object.\n\nWhile composition offers model extensibility, it does not imply a hierarchy between the models.\n\nJSON Schema also provides the `anyOf` and `oneOf` keywords, which allow defining multiple schemas where at least one or exactly one of them must be valid, respectively.\nAs is the case with `allOf`, the schemas are validated _independently_.\nThese keywords can be used to describe polymorphism, where a single field can accept multiple types of values.\n\nThe OpenAPI specification extends the JSON Schema support for polymorphism by adding the [`discriminator`](#schema-discriminator) field whose value is a [Discriminator Object](#discriminator-object).\nWhen used, the Discriminator Object indicates the name of the property that hints which schema of an `anyOf` or `oneOf` is expected to validate the structure of the model.\nThe discriminating property MAY be defined as required or optional, but when defined as an optional property the Discriminator Object MUST include a `defaultMapping` field that specifies which schema of the `anyOf` or `oneOf`, or which schema that references the current schema in an `allOf`, is expected to validate the structure of the model when the discriminating property is not present.\n\nThere are two ways to define the value of a discriminating property for an inheriting instance.\n\n* Use the schema name.\n* [Override the schema name](#discriminator-mapping) by overriding the property with a new value. If a new value exists, this takes precedence over the schema name.\n\n##### Generic (Template) Data Structures\n\nImplementations SHOULD support defining generic or template data structures using JSON Schema's dynamic referencing feature:\n\n* `$dynamicAnchor` identifies a set of possible schemas (including a default placeholder schema) to which a `$dynamicRef` can resolve\n* `$dynamicRef` resolves to the first matching `$dynamicAnchor` encountered on its path from the schema entry point to the reference, as described in the JSON Schema specification\n\nAn example is included in the [Schema Object Examples](#schema-object-examples) section below, and further information can be found on the Learn OpenAPI site's [\"Dynamic References\"](https://learn.openapis.org/referencing/dynamic.html) page.\n\n##### Annotated Enumerations\n\nThe Schema Object's `enum` keyword does not allow associating descriptions or other information with individual values.\n\nImplementations MAY support recognizing a `oneOf` or `anyOf` where each subschema in the keyword's array consists of a `const` keyword and annotations such as `title` or `description` as an enumerated type with additional information. The exact behavior of this pattern beyond what is required by JSON Schema is implementation-defined.\n\n##### XML Modeling\n\nThe [xml](#schema-xml) field allows extra definitions when translating the JSON definition to XML.\nThe [XML Object](#xml-object) contains additional information about the available options.\n\n#### Specifying Schema Dialects\n\nIt is important for tooling to be able to determine which dialect or meta-schema any given resource wishes to be processed with: JSON Schema Core, JSON Schema Validation, OpenAPI Schema dialect, or some custom meta-schema.\n\nThe `$schema` keyword MAY be present in any Schema Object that is a [schema resource root](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-4.3.5), and if present MUST be used to determine which dialect should be used when processing the schema. This allows use of Schema Objects which comply with other drafts of JSON Schema than the default Draft 2020-12 support. Tooling MUST support the <a href=\"#dialect-schema-id\">OAS dialect schema id</a>, and MAY support additional values of `$schema`.\n\nTo allow use of a different default `$schema` value for all Schema Objects contained within an OAS document, a `jsonSchemaDialect` value may be set within the <a href=\"#openapi-object\">OpenAPI Object</a>. If this default is not set, then the OAS dialect schema id MUST be used for these Schema Objects. The value of `$schema` within a resource root Schema Object always overrides any default.\n\nFor standalone JSON Schema documents that do not set `$schema`, or for Schema Objects in OpenAPI description documents that are _not_ [complete documents](#openapi-description-structure), the dialect SHOULD be assumed to be the OAS dialect.\nHowever, for maximum interoperability, it is RECOMMENDED that OpenAPI description authors explicitly set the dialect through `$schema` in such documents.\n\n#### Schema Object Examples\n\n##### Primitive Example\n\n```yaml\ntype: string\nformat: email\n```\n\n##### Simple Model\n\n```yaml\ntype: object\nrequired:\n  - name\nproperties:\n  name:\n    type: string\n  address:\n    $ref: '#/components/schemas/Address'\n  age:\n    type: integer\n    format: int32\n    minimum: 0\n```\n\n##### Model with Map/Dictionary Properties\n\nFor a simple string to string mapping:\n\n```yaml\ntype: object\nadditionalProperties:\n  type: string\n```\n\nFor a string to model mapping:\n\n```yaml\ntype: object\nadditionalProperties:\n  $ref: '#/components/schemas/ComplexModel'\n```\n\n##### Model with Annotated Enumeration\n\n```yaml\noneOf:\n  - const: RGB\n    title: Red, Green, Blue\n    description: Specify colors with the red, green, and blue additive color model\n  - const: CMYK\n    title: Cyan, Magenta, Yellow, Black\n    description: Specify colors with the cyan, magenta, yellow, and black subtractive color model\n```\n\n##### Model with Example\n\n```yaml\ntype: object\nproperties:\n  id:\n    type: integer\n    format: int64\n  name:\n    type: string\nrequired:\n  - name\nexamples:\n  - name: Puma\n    id: 1\n```\n\n##### Models with Composition\n\n```yaml\ncomponents:\n  schemas:\n    ErrorModel:\n      type: object\n      required:\n        - message\n        - code\n      properties:\n        message:\n          type: string\n        code:\n          type: integer\n          minimum: 100\n          maximum: 600\n    ExtendedErrorModel:\n      allOf:\n        - $ref: '#/components/schemas/ErrorModel'\n        - type: object\n          required:\n            - rootCause\n          properties:\n            rootCause:\n              type: string\n```\n\n##### Models with Polymorphism Support\n\nThe following example describes a `Pet` model that can represent either a cat or a dog, as distinguished by the `petType` property. Each type of pet has other properties beyond those of the base `Pet` model. An instance without a `petType` property, or with a `petType` property that does not match either `cat` or `dog`, is invalid.\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      properties:\n        name:\n          type: string\n      required:\n        - name\n        - petType\n      oneOf:\n        - $ref: '#/components/schemas/Cat'\n        - $ref: '#/components/schemas/Dog'\n    Cat:\n      description: A pet cat\n      type: object\n      properties:\n        petType:\n          const: 'cat'\n        huntingSkill:\n          type: string\n          description: The measured skill for hunting\n          enum:\n            - clueless\n            - lazy\n            - adventurous\n            - aggressive\n      required:\n        - huntingSkill\n    Dog:\n      description: A pet dog\n      type: object\n      properties:\n        petType:\n          const: 'dog'\n        packSize:\n          type: integer\n          format: int32\n          description: the size of the pack the dog is from\n          default: 0\n          minimum: 0\n      required:\n        - packSize\n```\n\n##### Models with Polymorphism Support and a Discriminator Object\n\nThe following example extends the example of the previous section by adding a [Discriminator Object](#discriminator-object) to the `Pet` schema. Note that the Discriminator Object is only a hint to the consumer of the API and does not change the validation outcome of the schema.\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n        mapping:\n          cat: '#/components/schemas/Cat'\n          dog: '#/components/schemas/Dog'\n      properties:\n        name:\n          type: string\n      required:\n        - name\n        - petType\n      oneOf:\n        - $ref: '#/components/schemas/Cat'\n        - $ref: '#/components/schemas/Dog'\n    Cat:\n      description: A pet cat\n      type: object\n      properties:\n        petType:\n          const: 'cat'\n        huntingSkill:\n          type: string\n          description: The measured skill for hunting\n          enum:\n            - clueless\n            - lazy\n            - adventurous\n            - aggressive\n      required:\n        - huntingSkill\n    Dog:\n      description: A pet dog\n      type: object\n      properties:\n        petType:\n          const: 'dog'\n        packSize:\n          type: integer\n          format: int32\n          description: the size of the pack the dog is from\n          default: 0\n          minimum: 0\n      required:\n        - petType\n        - packSize\n```\n\n##### Models with Polymorphism Support using `allOf` and a Discriminator Object\n\nIt is also possible to describe polymorphic models using `allOf`. The following example uses `allOf` with a [Discriminator Object](#discriminator-object) to describe a polymorphic `Pet` model.\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      discriminator:\n        propertyName: petType\n      properties:\n        name:\n          type: string\n        petType:\n          type: string\n      required:\n        - name\n        - petType\n    Cat: # \"Cat\" will be used as the discriminating value\n      description: A representation of a cat\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          properties:\n            huntingSkill:\n              type: string\n              description: The measured skill for hunting\n              enum:\n                - clueless\n                - lazy\n                - adventurous\n                - aggressive\n          required:\n            - huntingSkill\n    Dog: # \"Dog\" will be used as the discriminating value\n      description: A representation of a dog\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          properties:\n            packSize:\n              type: integer\n              format: int32\n              description: the size of the pack the dog is from\n              default: 0\n              minimum: 0\n          required:\n            - packSize\n```\n\n##### Generic Data Structure Model\n\n```yaml\ncomponents:\n  schemas:\n    genericArrayComponent:\n      $id: fully_generic_array\n      type: array\n      items:\n        $dynamicRef: '#generic-array'\n      $defs:\n        allowAll:\n          $dynamicAnchor: generic-array\n    numberArray:\n      $id: array_of_numbers\n      $ref: fully_generic_array\n      $defs:\n        numbersOnly:\n          $dynamicAnchor: generic-array\n          type: number\n    stringArray:\n      $id: array_of_strings\n      $ref: fully_generic_array\n      $defs:\n        stringsOnly:\n          $dynamicAnchor: generic-array\n          type: string\n    objWithTypedArray:\n      $id: obj_with_typed_array\n      type: object\n      required:\n      - dataType\n      - data\n      properties:\n        dataType:\n          enum:\n          - string\n          - number\n      oneOf:\n      - properties:\n          dataType:\n            const: string\n          data:\n            $ref: array_of_strings\n      - properties:\n          dataType:\n            const: number\n          data:\n            $ref: array_of_numbers\n```\n\n### Discriminator Object\n\nWhen request bodies or response payloads may be one of a number of different schemas, these should use the JSON Schema `anyOf` or `oneOf` keywords to describe the possible schemas (see [Composition and Inheritance](#composition-and-inheritance-polymorphism)).\n\nA polymorphic schema MAY include a Discriminator Object, which defines the name of the property that may be used as a hint for which schema of the `anyOf` or `oneOf`, or which schema that references the current schema in an `allOf`, is expected to validate the structure of the model.\nThis hint can be used to aid in serialization, deserialization, and validation.\nThe Discriminator Object does this by implicitly or explicitly associating the possible values of a named property with alternative schemas.\n\nNote that `discriminator` MUST NOT change the validation outcome of the schema.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"property-name\"></a>propertyName | `string` | **REQUIRED**. The name of the discriminating property in the payload that will hold the discriminating value. The discriminating property MAY be defined as required or optional, but when defined as optional the Discriminator Object MUST include a `defaultMapping` field that specifies which schema is expected to validate the structure of the model when the discriminating property is not present. |\n| <a name=\"discriminator-mapping\"></a> mapping | Map[`string`, `string`] | An object to hold mappings between payload values and schema names or URI references. |\n| <a name=\"discriminator-default-mapping\"></a> defaultMapping | `string` | The schema name or URI reference to a schema that is expected to validate the structure of the model when the discriminating property is not present in the payload or contains a value for which there is no explicit or implicit mapping. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Conditions for Using the Discriminator Object\n\nThe Discriminator Object is legal only when using one of the composite keywords `oneOf`, `anyOf`, `allOf`.\n\nIn both the `oneOf` and `anyOf` use cases, where those keywords are adjacent to `discriminator`, all possible schemas MUST be listed explicitly.\n\nTo avoid redundancy, the discriminator MAY be added to a parent schema definition, and all schemas building on the parent schema via an `allOf` construct may be used as an alternate schema.\n\nThe `allOf` form of `discriminator` is _only_ useful for non-validation use cases; validation with the parent schema with this form of `discriminator` _does not_ perform a search for child schemas or use them in validation in any way.\nThis is because `discriminator` cannot change the validation outcome, and no standard JSON Schema keyword connects the parent schema to the child schemas.\n\nThe behavior of any configuration of `oneOf`, `anyOf`, `allOf` and `discriminator` that is not described above is undefined.\n\n#### Options for Mapping Values to Schemas\n\nThe value of the property named in `propertyName` is used as the name of the associated schema under the [Components Object](#components-object), _unless_ a `mapping` is present for that value.\nThe `mapping` entry maps a specific property value to either a different schema component name, or to a schema identified by a URI.\nWhen using implicit or explicit schema component names, inline `oneOf` or `anyOf` subschemas are not considered.\nThe behavior of a `mapping` value or `defaultMapping` value that is both a valid schema name and a valid relative URI reference is implementation-defined, but it is RECOMMENDED that it be treated as a schema name.\nTo ensure that an ambiguous value (e.g. `\"foo\"`) is treated as a relative URI reference by all implementations, authors MUST prefix it with the `\".\"` path segment (e.g. `\"./foo\"`).\n\nMapping keys MUST be string values, but tooling MAY convert response values to strings for comparison.\nHowever, the exact nature of such conversions are implementation-defined.\n\n#### Optional Discriminating Property\n\nWhen the discriminating property is defined as optional, the [Discriminator Object](#discriminator-object) MUST include a `defaultMapping` field that specifies a schema that is expected to validate the structure of the model when the discriminating property is not present in the payload or contains a value for which there is no explicit or implicit mapping. This allows the schema to still be validated correctly even if the discriminating property is missing.\n\nThe primary use case for an optional discriminating property is to allow a schema to be extended with a discriminator without breaking existing clients that do not provide the discriminating property.\n\nWhen the discriminating property is defined as optional, it is important that each subschema that defines a value for the discriminating property also define the property as required, since this is no longer enforced by the parent schema.\n\nThe `defaultMapping` schema is also expected to validate the structure of the model when the discriminating property is present but contains a value for which there is no explicit or implicit mapping. This is typically expressed in the `defaultMapping` schema by excluding any instances with mapped values of the discriminating property, e.g.\n\n```yaml\nOtherPet:\n  type: object\n  properties:\n    petType:\n      not:\n        enum: ['cat', 'dog']\n```\n\nThis prevents the `defaultMapping` schema from validating a payload that includes the discriminating property with a mapped discriminating value, which would cause a validation to fail when polymorphism is described using the `oneOf` JSON schema keyword.\n\n#### Examples\n\nFor these examples, assume all schemas are in the [entry document](#openapi-description-structure) of the OAD; for handling of `discriminator` in referenced documents see [Resolving Implicit Connections](#resolving-implicit-connections).\n\nIn OAS 3.x, a response payload MAY be described to be exactly one of any number of types:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n```\n\nwhich means a valid payload has to match exactly one of the schemas described by `Cat`, `Dog`, or `Lizard`. Deserialization of a `oneOf` can be a costly operation, as it requires determining which schema matches the payload and thus should be used in deserialization. This problem also exists for `anyOf` schemas. A `discriminator` can be used as a \"hint\" to improve the efficiency of selection of the matching schema. The [Discriminator Object](#discriminator-object) cannot change the validation result of the `oneOf`, it can only help make the deserialization more efficient and provide better error messaging. We can specify the exact field that tells us which schema is expected to match the instance:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n  discriminator:\n    propertyName: petType\n```\n\nThe expectation now is that a property with name `petType` _MUST_ be present in the response payload, and the value will correspond to the name of a schema defined in the OpenAPI Description. Thus the response payload:\n\n```json\n{\n  \"id\": 12345,\n  \"petType\": \"Cat\"\n}\n```\n\nwill indicate that the `Cat` schema is expected to match this payload.\n\nIn scenarios where the value of the discriminating property does not match the schema name or implicit mapping is not possible, an optional `mapping` definition can be used:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n    - $ref: https://gigantic-server.com/schemas/Monster/schema.json\n  discriminator:\n    propertyName: petType\n    mapping:\n      dog: '#/components/schemas/Dog'\n      monster: https://gigantic-server.com/schemas/Monster/schema.json\n```\n\nHere the discriminating value of `dog` will map to the schema `#/components/schemas/Dog`, rather than the default (implicit) value of `#/components/schemas/dog`. If the discriminating value does not match an implicit or explicit mapping, no schema can be determined and validation SHOULD fail.\n\nWhen used in conjunction with the `anyOf` construct, the use of the discriminator can avoid ambiguity for serializers/deserializers where multiple schemas may satisfy a single payload.\n\nWhen the discriminating property is defined as optional, the Discriminator Object has to include a `defaultMapping` field that specifies a schema of the `anyOf` or `oneOf` is expected to validate the structure of the model when the discriminating property is not present in the payload. This allows the schema to still be validated correctly even if the discriminator property is missing.\n\nFor example:\n\n```yaml\nMyResponseType:\n  oneOf:\n    - $ref: '#/components/schemas/Cat'\n    - $ref: '#/components/schemas/Dog'\n    - $ref: '#/components/schemas/Lizard'\n    - $ref: '#/components/schemas/OtherPet'\n  discriminator:\n    propertyName: petType\n    defaultMapping: OtherPet\nOtherPet:\n  type: object\n  properties:\n    petType:\n      not:\n        enum: ['Cat', 'Dog', 'Lizard']\n```\n\nIn this example, if the `petType` property is not present in the payload, or if the value of `petType` is not \"Cat\", \"Dog\", or \"Lizard\", then the payload should validate against the `OtherPet` schema.\n\nThis example shows the `allOf` usage, which avoids needing to reference all child schemas in the parent:\n\n```yaml\ncomponents:\n  schemas:\n    Pet:\n      type: object\n      required:\n        - petType\n      properties:\n        petType:\n          type: string\n      discriminator:\n        propertyName: petType\n        mapping:\n          dog: Dog\n    Cat:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a `Cat`\n          properties:\n            name:\n              type: string\n    Dog:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a `Dog`\n          properties:\n            bark:\n              type: string\n    Lizard:\n      allOf:\n        - $ref: '#/components/schemas/Pet'\n        - type: object\n          # all other properties specific to a `Lizard`\n          properties:\n            lovesRocks:\n              type: boolean\n```\n\nValidated against the `Pet` schema, a payload like this:\n\n```json\n{\n  \"petType\": \"Cat\",\n  \"name\": \"Misty\"\n}\n```\n\nwill indicate that the `#/components/schemas/Cat` schema is expected to match. Likewise this payload:\n\n```json\n{\n  \"petType\": \"dog\",\n  \"bark\": \"soft\"\n}\n```\n\nwill map to `#/components/schemas/Dog` because the `dog` entry in the `mapping` element maps to `Dog` which is the schema name for `#/components/schemas/Dog`.\n\n### XML Object\n\nA metadata object that allows for more fine-tuned XML model definitions.\nWhen using a Schema Object with XML, if no XML Object is present, the behavior is determined by the XML Object's default field values.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"xml-node-type\"></a>nodeType | `string` | One of `element`, `attribute`, `text`, `cdata`, or `none`, as explained under [XML Node Types](#xml-node-types).  The default value is `none` if `$ref`, `$dynamicRef`, or `type: \"array\"` is present in the [Schema Object](#schema-object) containing the XML Object, and `element` otherwise. |\n| <a name=\"xml-name\"></a>name | `string` | Sets the name of the element/attribute corresponding to the schema, replacing the name that was inferred as described under [XML Node Names](#xml-node-names). This field SHALL be ignored if the `nodeType` is `text`, `cdata`, or `none`. |\n| <a name=\"xml-namespace\"></a>namespace | `string` | The IRI ([[RFC3987]]) of the namespace definition. Value MUST be in the form of a non-relative IRI. |\n| <a name=\"xml-prefix\"></a>prefix | `string` | The prefix to be used for the [name](#xml-name). |\n| <a name=\"xml-attribute\"></a>attribute | `boolean` | Declares whether the property definition translates to an attribute instead of an element. Default value is `false`. If `nodeType` is present, this field MUST NOT be present.<br /><br />**Deprecated:** Use `nodeType: \"attribute\"` instead of `attribute: true` |\n| <a name=\"xml-wrapped\"></a>wrapped | `boolean` | MAY be used only for an array definition. Signifies whether the array is wrapped (for example, `<books><book/><book/></books>`) or unwrapped (`<book/><book/>`). Default value is `false`. The definition takes effect only when defined alongside `type` being `\"array\"` (outside the `items`). If `nodeType` is present, this field MUST NOT be present.<br /><br />**Deprecated:** Use `nodeType: \"element\"` instead of `wrapped: true` |\n\nNote that when generating an XML document from object data, the order of the nodes is undefined.\nUse `prefixItems` to control node ordering as shown under [Ordered Elements and Text](#ordered-elements-and-text).\n\nSee [Appendix B](#appendix-b-data-type-conversion) for a discussion of converting values of various types to string representations.\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### XML Node Types\n\nEach Schema Object describes a particular type of XML [[!DOM]] [node](https://dom.spec.whatwg.org/#interface-node) which is specified by the `nodeType` field, which has the following possible values.\nExcept for the special value `none`, these values have numeric equivalents in the DOM specification which are given in parentheses after the name:\n\n* `element` (1): The schema represents an element and describes its contents\n* `attribute` (2): The schema represents an attribute and describes its value\n* `text` (3): The schema represents a text node (parsed character data)\n* `cdata` (4): The schema represents a CDATA section\n* `none`: The schema does not correspond to any node in the XML document, and the nodes corresponding to its subschema(s) are included directly under its parent schema's node\n\nThe `none` type is useful for JSON Schema constructs that require more Schema Objects than XML nodes, such as a schema containing only `$ref` that exists to facilitate re-use rather than imply any structure.\n\n##### Modeling Element Lists\n\nFor historical compatibility, schemas of `type: \"array\"` default to `nodeType: \"none\"`, placing the nodes for each array item directly under the parent node.\nThis also aligns with the inferred naming behavior defined under [XML Node Names](#xml-node-names).\n\nTo produce an element wrapping the list, set an explicit `nodeType: \"element\"` on the `type: \"array\"` schema.\nWhen doing so, it is advisable to set an explicit name on either the wrapping element or the item elements to avoid them having the same inferred name.\nSee examples for expected behavior.\n\n##### Implicit and Explicit `text` Nodes\n\nIf an `element` node has a primitive type, then the schema also produces an implicit `text` node described by the schema for the contents of the `element` node named by the property name (or `name` field).\n\nExplicit `text` nodes are necessary if an element has both attributes and content.\n\nNote that placing two `text` nodes adjacent to each other is ambiguous for parsing, and the resulting behavior is implementation-defined.\n\n#### XML Node Names\n\nThe `element` and `attribute` node types require a name, which MUST be inferred from the schema as follows, unless overridden by the `name` field:\n\n* For schemas directly under the [Components Object's](#components-object) `schemas` field, the component name is the inferred name.\n* For property schemas, and for array item schemas under a property schema, the property name is the inferred name.\n* In all other cases, such as an inline schema under a [Media Type Object's](#media-type-object) `schema` field, no name can be inferred and an XML Object with a `name` field MUST be present.\n\nNote that when using arrays, singular vs plural forms are _not_ inferred, and must be set explicitly.\n\n#### Namespace Limitations\n\nThe `namespace` field is intended to match the syntax of [XML namespaces](https://www.w3.org/TR/xml-names11/), although there are a few caveats:\n\n* Versions 3.1.0, 3.0.3, and earlier of this specification erroneously used the term \"absolute URI\" instead of \"non-relative URI\" (\"non-relative IRI\" as of OAS v3.2.0), so authors using namespaces that include a fragment should check tooling support carefully.\n* XML allows but discourages relative IRI-references, while this specification outright forbids them.\n\n#### Handling `null` Values\n\nXML does not, by default, have a concept equivalent to `null`, and to preserve compatibility with version 3.1.1 and earlier of this specification, the behavior of serializing `null` values is implementation-defined.\n\nHowever, implementations SHOULD handle `null` values as follows:\n\n* For elements, produce an empty element with an `xsi:nil=\"true\"` attribute.\n* For attributes, omit the attribute.\n* For text and CDATA sections, see [Appendix B](#appendix-b-data-type-conversion) for a discussion of serializing non-text values to text.\n\nNote that for attributes, this makes either a `null` value or a missing property serialize to an omitted attribute.\nAs the Schema Object validates the in-memory representation, this allows handling the combination of `null` and a required property.\nHowever, because there is no distinct way to represent `null` as an attribute, it is RECOMMENDED to make attribute properties optional rather than use `null`.\n\nTo ensure correct round-trip behavior, when parsing an element that omits an attribute, implementations SHOULD set the corresponding property to `null` if the schema allows for that value (e.g. `type: [\"number\", \"null\"]`), and omit the property otherwise (e.g.`type: \"number\"`).\n\n#### XML Object Examples\n\nThe Schema Objects are followed by an example XML representation produced for the schema shown.\nFor examples using `attribute` or `wrapped`, please see version 3.1 of the OpenAPI Specification.\n\n##### No XML Object\n\nBasic string property without an XML Object, using `serializedValue` (the remaining examples will use `externalValue` so that the XML form can be shown with syntax highlighting):\n\n```yaml\napplication/xml:\n  schema:\n    type: object\n    xml:\n      name: document\n    properties:\n      animals:\n        type: string\n  examples:\n    pets:\n      dataValue:\n        animals: dog, cat, hamster\n      serializedValue: |\n        <document>\n          <animals>dog, cat, hamster</animals>\n        </document>\n```\n\nBasic string array property (`nodeType` is `none` by default):\n\n```yaml\napplication/xml:\n  schema:\n    type: object\n    xml:\n      name: document\n    properties:\n      animals:\n        type: array\n        items:\n          type: string\n  examples:\n    pets:\n      dataValue:\n        animals:\n          - dog\n          - cat\n          - hamster\n      externalValue: ./examples/pets.xml\n```\n\nWhere `./examples/pets.xml` would be:\n\n```xml\n<document>\n  <animals>dog</animals>\n  <animals>cat</animals>\n  <animals>hamster</animals>\n</document>\n```\n\n##### XML Name Replacement\n\n```yaml\napplication/xml:\n  schema:\n    type: object\n    xml:\n      name: document\n    properties:\n      animals:\n        type: string\n        xml:\n          name: animal\n  examples:\n    pets:\n      dataValue:\n        animals:\n          - dog\n          - cat\n          - hamster\n      externalValue: ./examples/pets.xml\n```\n\nWhere `./examples/pets.xml` would be:\n\n```xml\n<document>\n  <animal>dog</animal>\n  <animal>cat</animal>\n  <animal>hamster</animal>\n</document>\n```\n\n##### XML Attribute, Prefix and Namespace\n\nNote that the name of the root XML element comes from the component name.\n\n```yaml\ncomponents:\n  schemas:\n    Person:\n      type: object\n      properties:\n        id:\n          type: integer\n          format: int32\n          xml:\n            nodeType: attribute\n        name:\n          type: string\n          xml:\n            namespace: https://example.com/schema/sample\n            prefix: sample\n  requestBodies:\n    Person:\n      content:\n        application/xml:\n          schema:\n            $ref: \"#/components/schemas/Person\"\n          examples:\n            Person:\n              dataValue:\n                id: 123\n                name: example\n              externalValue: ./examples/Person.xml\n```\n\nWhere `./examples/Person.xml` would be:\n\n```xml\n<Person id=\"123\">\n  <sample:name xmlns:sample=\"https://example.com/schema/sample\">example</sample:name>\n</Person>\n```\n\n##### XML Arrays\n\nChanging the element names:\n\n```yaml\napplication/xml:\n  schema:\n    type: object\n    xml:\n      name: document\n    properties:\n      animals:\n        type: array\n        items:\n          type: string\n          xml:\n            name: animal\n  examples:\n    pets:\n      dataValue:\n        animals:\n          - dog\n          - cat\n          - hamster\n      externalValue: ./examples/pets.xml\n```\n\nWhere `./examples/pets.xml` would be:\n\n```xml\n<document>\n  <animal>dog</animal>\n  <animal>cat</animal>\n  <animal>hamster</animal>\n</document>\n```\n\nThe `name` field for the `type: \"array\"` schema has no effect because the default `nodeType` for that object is `none`:\n\n```yaml\napplication/xml:\n  schema:\n    type: object\n    xml:\n      name: document\n    properties:\n      animals:\n        type: array\n        xml:\n          name: aliens\n        items:\n          type: string\n          xml:\n            name: animal\n  examples:\n    pets:\n      dataValue:\n        animals:\n          - dog\n          - cat\n          - hamster\n      externalValue: ./examples/pets.xml\n```\n\nWhere `./examples/pets.xml` would be:\n\n```xml\n<document>\n  <animal>dog</animal>\n  <animal>cat</animal>\n  <animal>hamster</animal>\n</document>\n```\n\nEven when a wrapping element is explicitly created by setting `nodeType` to `element`, if a name is not explicitly defined, the same name will be used for both the wrapping element and the list item elements:\n\n```yaml\napplication/xml:\n  schema:\n    type: object\n    xml:\n      name: document\n    properties:\n      animals:\n        type: array\n        xml:\n          nodeType: element\n        items:\n          type: string\n  examples:\n    pets:\n      dataValue:\n        animals:\n          - dog\n          - cat\n          - hamster\n      externalValue: ./examples/pets.xml\n```\n\nWhere `./examples/pets.xml` would be:\n\n```xml\n<document>\n  <animals>\n    <animals>dog</animals>\n    <animals>cat</animals>\n    <animals>hamster</animals>\n  </animals>\n</document>\n```\n\nTo overcome the naming problem in the example above, the following definition can be used:\n\n```yaml\napplication/xml:\n  schema:\n    type: object\n    xml:\n      name: document\n    properties:\n      animals:\n        type: array\n        xml:\n          nodeType: element\n        items:\n          type: string\n          xml:\n            name: animal\n  examples:\n    pets:\n      dataValue:\n        animals:\n          - dog\n          - cat\n          - hamster\n      externalValue: ./examples/pets.xml\n```\n\nWhere `./examples/pets.xml` would be:\n\n```xml\n<document>\n  <animals>\n    <animal>dog</animal>\n    <animal>cat</animal>\n    <animal>hamster</animal>\n  </animals>\n</document>\n```\n\nAffecting both wrapping element and item element names:\n\n```yaml\napplication/xml:\n  schema:\n    type: object\n    xml:\n      name: document\n    properties:\n      animals:\n        type: array\n        xml:\n          name: aliens\n          nodeType: element\n        items:\n          type: string\n          xml:\n            name: animal\n  examples:\n    pets:\n      dataValue:\n        animals:\n          - dog\n          - cat\n          - hamster\n      externalValue: ./examples/pets.xml\n```\n\nWhere `./examples/pets.xml` would be:\n\n```xml\n<document>\n  <aliens>\n    <animal>dog</animal>\n    <animal>cat</animal>\n    <animal>hamster</animal>\n  </aliens>\n</document>\n```\n\nIf we change the wrapping element name but not the item element names:\n\n```yaml\napplication/xml:\n  schema:\n    type: object\n    xml:\n      name: document\n    properties:\n      animals:\n        type: array\n        xml:\n          name: aliens\n          nodeType: element\n        items:\n          type: string\n  examples:\n    pets:\n      dataValue:\n        animals:\n          - dog\n          - cat\n          - hamster\n      externalValue: ./examples/pets.xml\n```\n\nWhere `./examples/pets.xml` would be:\n\n```xml\n<document>\n  <aliens>\n    <aliens>dog</aliens>\n    <aliens>cat</aliens>\n    <aliens>hamster</aliens>\n  </aliens>\n</document>\n```\n\n##### Elements With Attributes And Text\n\n```yaml\napplication/xml:\n  schema:\n    type: array\n    xml:\n      nodeType: element\n      name: animals\n    items:\n      xml:\n        name: animal\n      properties:\n        kind:\n          type: string\n          xml:\n            nodeType: attribute\n        name:\n          type: string\n          xml:\n            nodeType: text\n  examples:\n    pets:\n      dataValue:\n      - kind: Cat\n        name: Fluffy\n      - kind: Dog\n        name: Fido\n```\n\nWhere `./examples/pets.xml` would be:\n\n```xml\n<animals>\n  <animal kind=\"Cat\">Fluffy</animals>\n  <animal kind=\"Dog\">Fido</animals>\n<animals>\n```\n\n##### Referenced Element With CDATA\n\nIn this example, no element is created for the Schema Object that contains only  the `$ref`, as its `nodeType` defaults to `none`.\nIt is necessary to create a subschema for the CDATA section as otherwise the content would be treated as an implicit node of type `text`.\n\n```yaml\ncomponents:\n  schemas:\n    Documentation:\n      type: object\n      properties:\n        content:\n          type: string\n          contentMediaType: text/html\n          xml:\n            nodeType: cdata\n  responses:\n    content:\n      application/xml:\n        schema:\n          $ref: \"#/components/schemas/Documentation\"\n        examples:\n          docs:\n            dataValue:\n              content: <html><head><title>Awesome Docs</title></head><body></body><html>\n            externalValue: ./examples/docs.xml\n```\n\nWhere `./examples/docs.xml` would be:\n\n```xml\n<Documentation>\n  <![CDATA[<html><head><title>Awesome Docs</title></head><body></body><html>]]>\n</Documentation>\n```\n\nAlternatively, the named root element could be set at the point of use and the root element disabled on the component (note that in this example, the same `dataValue` is used in two places with different serializations shown with `externalValue`):\n\n```yaml\npaths:\n  /docs:\n    get:\n      responses:\n        \"200\":\n          content:\n            application/xml:\n              schema:\n                xml:\n                  nodeType: element\n                  name: StoredDocument\n                $ref: \"#/components/schemas/Documentation\"\n              examples:\n                stored:\n                  dataValue:\n                    content: <html><head><title>Awesome Docs</title></head><body></body><html>\n                  externalValue: ./examples/stored.xml\n    put:\n      requestBody:\n        required: true\n        content:\n          application/xml:\n            schema:\n              xml:\n                nodeType: element\n                name: UpdatedDocument\n              $ref: \"#/components/schemas/Documentation\"\n            examples:\n              updated:\n                dataValue:\n                  content: <html><head><title>Awesome Docs</title></head><body></body><html>\n                externalValue: ./examples/updated.xml\n      responses:\n        \"201\": {}\ncomponents:\n  schemas:\n    Documentation:\n      xml:\n        nodeType: none\n      type: object\n      properties:\n        content:\n          type: string\n          contentMediaType: text/html\n          xml:\n            nodeType: cdata\n```\n\nwhere `./examples/stored.xml` would be:\n\n```xml\n<StoredDocument>\n  <![CDATA[<html><head><title>Awesome Docs</title></head><body></body><html>]]>\n</StoredDocument>\n```\n\nand `./examples/updated.xml` would be:\n\n```xml\n<UpdatedDocument>\n  <![CDATA[<html><head><title>Awesome Docs</title></head><body></body><html>]]>\n</UpdatedDocument>\n```\n\n##### Ordered Elements and Text\n\nTo control the exact order of elements, use the `prefixItems` keyword.\nWith this approach, it is necessary to set the element names using the XML Object as they would otherwise all inherit the parent's name despite being different elements in a specific order.\nIt is also necessary to set `nodeType: \"element\"` explicitly on the array in order to get an element containing the sequence.\n\nThis first ordered example shows a sequence of elements, as well as the recommended serialization of `null` for elements:\n\n```yaml\napplication/xml:\n  schema:\n    xml:\n      nodeType: element\n      name: OneTwoThree\n    type: array\n    minLength: 3\n    maxLength: 3\n    prefixItems:\n    - xml:\n        name: One\n      type: string\n    - xml:\n        name: Two\n      type: object\n      required:\n      - unit\n      - value\n      properties:\n        unit:\n          type: string\n          xml:\n            nodeType: attribute\n        value:\n          type: number\n          xml:\n            nodeType: text\n    - xml:\n        name: Three\n      type:\n      - boolean\n      - \"null\"\n  examples:\n    OneTwoThree:\n      dataValue:\n        - Some text\n        - unit: cubits\n          value: 42\n        null\n      ]\n      externalValue: ./examples/OneTwoThree.xml\n```\n\nWhere `./examples/OneTwoThree.xml` would be:\n\n```xml\n<OneTwoThree>\n  <One>Some text</One>\n  <Two unit=\"cubits\">42</Two>\n  <Three xsi:nil=\"true\" />\n</OneTwoThree>\n```\n\nIn this next example, the `name` needs to be set for the element, while the `nodeType` needs to be set for the text nodes.\n\n```yaml\napplication/xml:\n  schema:\n    xml:\n      nodeType: element\n      name: Report\n    type: array\n    prefixItems:\n    - xml:\n        nodeType: text\n      type: string\n    - xml:\n        name: data\n      type: number\n    - xml:\n        nodeType: text\n      type: string\n  examples:\n    Report:\n      dataValue:\n        - Some preamble text.\n        - 42\n        - Some postamble text.\n      externalValue: ./examples/Report.xml\n```\n\nWhere `./examples/Report.xml` would be:\n\n```xml\n<Report>Some preamble text.<data>42</data>Some postamble text.</Report>\n```\n\n##### XML With `null` Values\n\nRecall that the schema validates the in-memory data, not the XML document itself.\nThis example does not define properties for `\"related\"` as it is showing how\nempty objects and `null` are handled.\n\n```yaml\napplication/xml:\n  schema:\n    xml:\n      name: product\n    type: object\n    required:\n    - count\n    - description\n    - related\n    properties:\n      count:\n        type:\n        - number\n        - \"null\"\n        xml:\n          nodeType: attribute\n      rating:\n        type: string\n        xml:\n          nodeType: attribute\n      description:\n        type: string\n      related:\n        type:\n        - object\n        - \"null\"\n  examples:\n    productWithNulls:\n      dataValue:\n        count: null\n        description: Thing\n        related: null\n      externalValue: ./examples/productWithNulls.xml\n    productNoNulls:\n      dataValue:\n        count: 42\n        description: Thing\n        related: {}\n      externalValue: ./examples/productNoNulls.xml\n```\n\nWhere `./examples/productWithNulls.xml` would be:\n\n```xml\n<product>\n  <description>Thing</description>\n  <related xsi:nil=\"true\" />\n</product>\n```\n\nand `./examples/productNoNulls.xml` would be:\n\n```xml\n<product count=\"42\">\n  <description>Thing</description>\n  <related></related>\n</product>\n```\n\n### Security Scheme Object\n\nDefines a security scheme that can be used by the operations.\n\nSupported schemes are HTTP authentication, an API key (either as a header, a cookie parameter or as a query parameter), mutual TLS (use of a client certificate), OAuth2's common flows (implicit, password, client credentials and authorization code) as defined in [RFC6749](https://tools.ietf.org/html/rfc6749), OAuth2 device authorization flow as defined in [RFC8628](https://tools.ietf.org/html/rfc8628), and [[OpenID-Connect-Core]].\nPlease note that as of 2020, the implicit flow is about to be deprecated by [OAuth 2.0 Security Best Current Practice](https://tools.ietf.org/html/draft-ietf-oauth-security-topics). Recommended for most use cases is Authorization Code Grant flow with PKCE.\n\n#### Fixed Fields\n\n| Field Name | Type | Applies To | Description |\n| ---- | :----: | ---- | ---- |\n| <a name=\"security-scheme-type\"></a>type | `string` | Any | **REQUIRED**. The type of the security scheme. Valid values are `\"apiKey\"`, `\"http\"`, `\"mutualTLS\"`, `\"oauth2\"`, `\"openIdConnect\"`. |\n| <a name=\"security-scheme-description\"></a>description | `string` | Any | A description for security scheme. [CommonMark syntax](https://spec.commonmark.org/) MAY be used for rich text representation. |\n| <a name=\"security-scheme-name\"></a>name | `string` | `apiKey` | **REQUIRED**. The name of the header, query or cookie parameter to be used. |\n| <a name=\"security-scheme-in\"></a>in | `string` | `apiKey` | **REQUIRED**. The location of the API key. Valid values are `\"query\"`, `\"header\"`, or `\"cookie\"`. |\n| <a name=\"security-scheme-scheme\"></a>scheme | `string` | `http` | **REQUIRED**. The name of the HTTP Authentication scheme to be used in the [Authorization header as defined in RFC9110](https://www.rfc-editor.org/rfc/rfc9110.html#section-16.4.1). The values used SHOULD be registered in the [IANA Authentication Scheme registry](https://www.iana.org/assignments/http-authschemes/http-authschemes.xhtml). The value is case-insensitive, as defined in [RFC9110](https://www.rfc-editor.org/rfc/rfc9110.html#section-11.1). |\n| <a name=\"security-scheme-bearer-format\"></a>bearerFormat | `string` | `http` (`\"bearer\"`) | A hint to the client to identify how the bearer token is formatted. Bearer tokens are usually generated by an authorization server, so this information is primarily for documentation purposes. |\n| <a name=\"security-scheme-flows\"></a>flows | [OAuth Flows Object](#oauth-flows-object) | `oauth2` | **REQUIRED**. An object containing configuration information for the flow types supported. |\n| <a name=\"security-scheme-open-id-connect-url\"></a>openIdConnectUrl | `string` | `openIdConnect` | **REQUIRED**. [Well-known URL](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfig) to discover the [[OpenID-Connect-Discovery]] [provider metadata](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata). |\n| <a name=\"security-scheme-oauth2-metadata-url\"></a>oauth2MetadataUrl | `string` | `oauth2` | URL to the OAuth2 authorization server metadata [RFC8414](https://datatracker.ietf.org/doc/html/rfc8414). TLS is required. |\n| <a name=\"security-scheme-deprecated\"></a>deprecated | `boolean` | Any | Declares this security scheme to be deprecated. Consumers SHOULD refrain from usage of the declared scheme. Default value is `false`. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### Security Scheme Object Examples\n\n##### Basic Authentication Example\n\n```yaml\ntype: http\nscheme: basic\n```\n\n##### API Key Example\n\n```yaml\ntype: apiKey\nname: api-key\nin: header\n```\n\n##### JWT Bearer Example\n\n```yaml\ntype: http\nscheme: bearer\nbearerFormat: JWT\n```\n\n##### MutualTLS Example\n\n```yaml\ntype: mutualTLS\ndescription: Cert must be signed by example.com CA\n```\n\n##### Implicit OAuth2 Example\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n### OAuth Flows Object\n\nAllows configuration of the supported OAuth Flows.\n\n#### Fixed Fields\n\n| Field Name | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"oauth-flows-implicit\"></a>implicit | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Implicit flow |\n| <a name=\"oauth-flows-password\"></a>password | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Resource Owner Password flow |\n| <a name=\"oauth-flows-client-credentials\"></a>clientCredentials | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Client Credentials flow. Previously called `application` in OpenAPI 2.0. |\n| <a name=\"oauth-flows-authorization-code\"></a>authorizationCode | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Authorization Code flow. Previously called `accessCode` in OpenAPI 2.0. |\n| <a name=\"oauth-flows-device-authorization\"></a>deviceAuthorization | [OAuth Flow Object](#oauth-flow-object) | Configuration for the OAuth Device Authorization flow. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n### OAuth Flow Object\n\nConfiguration details for a supported OAuth Flow\n\n#### Fixed Fields\n\n| Field Name | Type | Applies To | Description |\n| ---- | :----: | ---- | ---- |\n| <a name=\"oauth-flow-authorization-url\"></a>authorizationUrl | `string` | `oauth2` (`\"implicit\"`, `\"authorizationCode\"`) | **REQUIRED**. The authorization URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-device-authorization-url\"></a>deviceAuthorizationUrl | `string` | `oauth2` (`\"deviceAuthorization\"`) | **REQUIRED**. The device authorization URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-token-url\"></a>tokenUrl | `string` | `oauth2` (`\"password\"`, `\"clientCredentials\"`, `\"authorizationCode\"`, `\"deviceAuthorization\"`) | **REQUIRED**. The token URL to be used for this flow. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-refresh-url\"></a>refreshUrl | `string` | `oauth2` | The URL to be used for obtaining refresh tokens. This MUST be in the form of a URL. The OAuth2 standard requires the use of TLS. |\n| <a name=\"oauth-flow-scopes\"></a>scopes | Map[`string`, `string`] | `oauth2` | **REQUIRED**. The available scopes for the OAuth2 security scheme. A map between the scope name and a short description for it. The map MAY be empty. |\n\nThis object MAY be extended with [Specification Extensions](#specification-extensions).\n\n#### OAuth Flow Object Example\n\n```yaml\ntype: oauth2\nflows:\n  implicit:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n  authorizationCode:\n    authorizationUrl: https://example.com/api/oauth/dialog\n    tokenUrl: https://example.com/api/oauth/token\n    scopes:\n      write:pets: modify pets in your account\n      read:pets: read your pets\n```\n\n### Security Requirement Object\n\nLists the required security schemes to execute this operation.\n\nThe name used for each property MUST either correspond to a security scheme declared in the [Security Schemes](#components-security-schemes) under the [Components Object](#components-object), or be the URI of a Security Scheme Object.\nProperty names that are identical to a component name under the Components Object MUST be treated as a component name.\nTo reference a Security Scheme with a single-segment relative URI reference (e.g. `foo`) that collides with a component name (e.g. `#/components/securitySchemes/foo`), use the `.` path segment (e.g. `./foo`).\n\nUsing a Security Scheme component name that appears to be a URI is NOT RECOMMENDED, as the precedence of component-name-matching over URI resolution, which is necessary to maintain compatibility with prior OAS versions, is counter-intuitive. See also [Security Considerations](#security-considerations).\n\nA Security Requirement Object MAY refer to multiple security schemes in which case all schemes MUST be satisfied for a request to be authorized.\nThis enables support for scenarios where multiple query parameters or HTTP headers are required to convey security information.\n\nWhen the `security` field is defined on the [OpenAPI Object](#openapi-object) or [Operation Object](#operation-object) and contains multiple Security Requirement Objects, only one of the entries in the list needs to be satisfied to authorize the request.\nThis enables support for scenarios where the API allows multiple, independent security schemes.\n\nAn empty Security Requirement Object (`{}`) indicates anonymous access is supported.\n\n#### Patterned Fields\n\n| Field Pattern | Type | Description |\n| ---- | :----: | ---- |\n| <a name=\"security-requirements-name\"></a>{name} | [`string`] | Each name or URI MUST correspond to a security scheme as described above. If the security scheme is of type `\"oauth2\"` or `\"openIdConnect\"`, then the value is a list of scope names required for the execution, and the list MAY be empty if authorization does not require a specified scope. For other security scheme types, the array MAY contain a list of role names which are required for the execution, but are not otherwise defined or exchanged in-band. |\n\n#### Security Requirement Object Examples\n\nSee also [Implicit Connection Resolution Examples](#implicit-connection-resolution-examples) in [Appendix G: Parsing and Resolution Guidance](#appendix-g-parsing-and-resolution-guidance) for an example using Security Requirement Objects in multi-document OpenAPI Descriptions.\n\n##### Non-OAuth2 Security Requirement\n\n```yaml\napi_key: []\n```\n\n##### OAuth2 Security Requirement\n\nThis example uses a component name for the Security Scheme.\n\n```yaml\npetstore_auth:\n  - write:pets\n  - read:pets\n```\n\n##### Optional OAuth2 Security\n\nThis example uses a relative URI reference for the Security Scheme.\n\nOptional OAuth2 security as would be defined in an <a href=\"#openapi-object\">OpenAPI Object</a> or an <a href=\"#operation-object\">Operation Object</a>:\n\n```yaml\nsecurity:\n  - {}\n  - petstore_auth:\n      - write:pets\n      - read:pets\n```\n\n## Specification Extensions\n\nWhile the OpenAPI Specification tries to accommodate most use cases, additional data can be added to extend the specification at certain points.\n\nThe extensions properties are implemented as patterned fields that are always prefixed by `x-`.\n\n| Field Pattern | Type | Description |\n| ---- | :--: | ---- |\n| <a name=\"extension-properties\"></a>^x- | Any | Allows extensions to the OpenAPI Schema. The field name MUST begin with `x-`, for example, `x-internal-id`. Field names beginning `x-oai-` and `x-oas-` are reserved for uses defined by the [OpenAPI Initiative](https://www.openapis.org/). The value can be any valid JSON value (`null`, a primitive, an array, or an object.) |\n\nThe OpenAPI Initiative maintains several [[OpenAPI-Registry|extension registries]], including registries for [individual extension keywords](https://spec.openapis.org/registry/extension/) and [extension keyword namespaces](https://spec.openapis.org/registry/namespace/).\n\nExtensions are one of the best ways to prove the viability of proposed additions to the specification.\nIt is therefore RECOMMENDED that implementations be designed for extensibility to support community experimentation.\n\nSupport for any one extension is OPTIONAL, and support for one extension does not imply support for others.\n\n## Security Considerations\n\n### OpenAPI Description Formats\n\nOpenAPI Descriptions use a combination of JSON, YAML, and JSON Schema, and therefore share their security considerations:\n\n* [JSON](https://www.iana.org/assignments/media-types/application/json)\n* [YAML](https://www.iana.org/assignments/media-types/application/yaml)\n* [JSON Schema Core](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-13)\n* [JSON Schema Validation](https://www.ietf.org/archive/id/draft-bhutton-json-schema-validation-01.html#section-10)\n\n### Tooling and Usage Scenarios\n\nIn addition, OpenAPI Descriptions are processed by a wide variety of tooling for numerous different purposes, such as client code generation, documentation generation, server side routing, and API testing. OpenAPI Description authors must consider the risks of the scenarios where the OpenAPI Description may be used.\n\n### Security Schemes\n\nAn OpenAPI Description describes the security schemes used to protect the resources it defines. The security schemes available offer varying degrees of protection. Factors such as the sensitivity of the data and the potential impact of a security breach should guide the selection of security schemes for the API resources. Some security schemes, such as basic auth and OAuth Implicit flow, are supported for compatibility with existing APIs. However, their inclusion in OpenAPI does not constitute an endorsement of their use, particularly for highly sensitive data or operations.\n\nThe rules for connecting a [Security Requirement Object](#security-requirement-object) to a [Security Scheme Object](#security-scheme-object) under a [Components Object](#components-object) are ambiguous in a way that could be exploited. Specifically:\n\n* It is implementation-defined whether a component name used by a Security Requirement Object in a referenced document is resolved from the entry document (RECOMMENDED) or the referenced document.\n* A Security Requirement Object that uses a URI to identify a Security Scheme Object can have the URI resolution hijacked by providing a Security Scheme component name identical to the URI, as the name lookup behavior takes precedence over URI resolution for compatibility with previous versions of the OAS.\n\n### Security Filtering\n\nSome objects in the OpenAPI Specification MAY be declared and remain empty, or be completely removed, even though they are inherently the core of the API documentation.\n\nThe reasoning is to allow an additional layer of access control over the documentation.\nWhile not part of the specification itself, certain libraries MAY choose to allow access to parts of the documentation based on some form of authentication/authorization.\n\nTwo examples of this:\n\n1. The [Paths Object](#paths-object) MAY be present but empty. It may be counterintuitive, but this may tell the viewer that they got to the right place, but can't access any documentation. They would still have access to at least the [Info Object](#info-object) which may contain additional information regarding authentication.\n2. The [Path Item Object](#path-item-object) MAY be empty. In this case, the viewer will be aware that the path exists, but will not be able to see any of its operations or parameters. This is different from hiding the path itself from the [Paths Object](#paths-object), because the user will be aware of its existence. This allows the documentation provider to finely control what the viewer can see.\n\n### Handling External Resources\n\nOpenAPI Descriptions may contain references to external resources that may be dereferenced automatically by consuming tools. External resources may be hosted on different domains that may be untrusted.\n\n### Handling Reference Cycles\n\nReferences in an OpenAPI Description may cause a cycle. Tooling must detect and handle cycles to prevent resource exhaustion.\n\n### Markdown and HTML Sanitization\n\nCertain fields allow the use of Markdown which can contain HTML including script. It is the responsibility of tooling to appropriately sanitize the Markdown.\n\n## Appendix A: Revision History\n\n| Version | Date | Notes |\n| ---- | ---- | ---- |\n| 3.2.0 | 2025-09-19 | Release of the OpenAPI Specification 3.2.0 |\n| 3.1.2 | 2025-09-19 | Patch release of the OpenAPI Specification 3.1.2 |\n| 3.1.1 | 2024-10-24 | Patch release of the OpenAPI Specification 3.1.1 |\n| 3.1.0 | 2021-02-15 | Release of the OpenAPI Specification 3.1.0 |\n| 3.1.0-rc1 | 2020-10-08 | rc1 of the 3.1 specification |\n| 3.1.0-rc0 | 2020-06-18 | rc0 of the 3.1 specification |\n| 3.0.4 | 2024-10-24 | Patch release of the OpenAPI Specification 3.0.4 |\n| 3.0.3 | 2020-02-20 | Patch release of the OpenAPI Specification 3.0.3 |\n| 3.0.2 | 2018-10-08 | Patch release of the OpenAPI Specification 3.0.2 |\n| 3.0.1 | 2017-12-06 | Patch release of the OpenAPI Specification 3.0.1 |\n| 3.0.0 | 2017-07-26 | Release of the OpenAPI Specification 3.0.0 |\n| 3.0.0-rc2 | 2017-06-16 | rc2 of the 3.0 specification |\n| 3.0.0-rc1 | 2017-04-27 | rc1 of the 3.0 specification |\n| 3.0.0-rc0 | 2017-02-28 | Implementer's Draft of the 3.0 specification |\n| 2.0 | 2015-12-31 | Donation of Swagger 2.0 to the OpenAPI Initiative |\n| 2.0 | 2014-09-08 | Release of Swagger 2.0 |\n| 1.2 | 2014-03-14 | Initial release of the formal document. |\n| 1.1 | 2012-08-22 | Release of Swagger 1.1 |\n| 1.0 | 2011-08-10 | First release of the Swagger Specification |\n\n## Appendix B: Data Type Conversion\n\nSerializing typed data to plain text, which can occur in `text/plain` message bodies or `multipart` parts, as well as in the `application/x-www-form-urlencoded` format in either URL query strings or message bodies, involves significant implementation- or application-defined behavior.\n\n[Schema Objects](#schema-object) validate data based on the [JSON Schema data model](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#section-4.2.1), which only recognizes four primitive data types: strings (which are [only broadly interoperable as UTF-8](https://datatracker.ietf.org/doc/html/rfc7159#section-8.1)), numbers, booleans, and `null`.\nNotably, integers are not a distinct type from other numbers, with `type: \"integer\"` being a convenience defined mathematically, rather than based on the presence or absence of a decimal point in any string representation.\n\nThe [Parameter Object](#parameter-object), [Header Object](#header-object), and [Encoding Object](#encoding-object) offer features to control how to arrange values from array or object types.\nThey can also be used to control how strings are further encoded to avoid reserved or illegal characters.\nHowever, there is no general-purpose specification for converting schema-validated non-UTF-8 primitive data types (or entire arrays or objects) to strings.\n\nTwo cases do offer standards-based guidance:\n\n* [RFC3987](https://datatracker.ietf.org/doc/html/rfc3987#section-3.1) provides guidance for converting non-Unicode strings to UTF-8, particularly in the context of URIs (and by extension, the form media types which use the same encoding rules)\n* [RFC6570](https://www.rfc-editor.org/rfc/rfc6570#section-2.3) specifies which values, including but not limited to `null`, are considered _undefined_ and therefore treated specially in the expansion process when serializing based on that specification\n\nImplementations of RFC6570 often have their own conventions for converting non-string values, but these are implementation-specific and not defined by the RFC itself.\nThis is one reason for the OpenAPI Specification to leave these conversions as implementation-defined: It allows using RFC6570 implementations regardless of how they choose to perform the conversions.\n\nTo control the serialization of numbers, booleans, and `null` (or other values RFC6570 deems to be undefined) more precisely, schemas can be defined as `type: \"string\"` and constrained using `pattern`, `enum`, `format`, and other keywords to communicate how applications must pre-convert their data prior to schema validation.\nThe resulting strings would not require any further type conversion.\n\nThe `format` keyword can assist in serialization.\nSome formats (such as `date-time`) are unambiguous, while others (such as [`decimal`](https://spec.openapis.org/registry/format/decimal.html) in the [Format Registry](https://spec.openapis.org/registry/format/)) are less clear.\nHowever, care must be taken with `format` to ensure that the specific formats are supported by all relevant tools as unrecognized formats are ignored.\n\nRequiring input as pre-formatted, schema-validated strings also improves round-trip interoperability as not all programming languages and environments support the same data types.\n\n## Appendix C: Using RFC6570-Based Serialization\n\nSerialization is defined in terms of [RFC6570](https://www.rfc-editor.org/rfc/rfc6570) URI Templates in three scenarios:\n\n| Object | Condition |\n| ---- | ---- |\n| [Parameter Object](#parameter-object) | When `schema` is present |\n| [Header Object](#header-object) | When `schema` is present |\n| [Encoding Object](#encoding-object) | When encoding for `application/x-www-form-urlencoded` and any of `style`, `explode`, or `allowReserved` are used |\n\nImplementations of this specification MAY use an implementation of RFC6570 to perform variable expansion, however, some caveats apply.\n\nNote that when using `style: \"form\"` RFC6570 expansion to produce an `application/x-www-form-urlencoded` HTTP message body, it is necessary to remove the `?` prefix that is produced to satisfy the URI query string syntax.\n\nWhen using `style` and similar keywords to produce a `multipart/form-data` body, the query string names are placed in the `name` parameter of the `Content-Disposition` part header, and the values are placed in the corresponding part body; the `?`, `=`, and `&` characters are not used, and URI percent encoding is not applied, regardless of the value of `allowReserved`.\nNote that while [RFC7578](https://datatracker.ietf.org/doc/html/rfc7578) allows using [[RFC3986]] percent-encoding in \"file names\", it does not otherwise address the use of percent-encoding within the format.\nUsers are expected to provide names and data with any escaping necessary for conformance with RFC7578 already applied.\n\nNote also that not all RFC6570 implementations support all four levels of operators, all of which are needed to fully support the OpenAPI Specification's usage.\nUsing an implementation with a lower level of support will require additional manual construction of URI Templates to work around the limitations.\n\n### Equivalences Between Fields and RFC6570 Operators\n\nCertain field values translate to RFC6570 [operators](https://datatracker.ietf.org/doc/html/rfc6570#section-2.2) (or lack thereof):\n\n| field | value | equivalent |\n| ---- | ---- | ---- |\n| style | `\"simple\"` | _n/a_ |\n| style | `\"matrix\"` | `;` prefix operator |\n| style | `\"label\"` | `.` prefix operator |\n| style | `\"form\"` | `?` prefix operator |\n| allowReserved | `false` | _n/a_ |\n| allowReserved | `true` | `+` prefix operator |\n| explode | `false` | _n/a_ |\n| explode | `true` | `*` modifier suffix |\n\nMultiple `style: \"form\"` parameters are equivalent to a single RFC6570 [variable list](https://www.rfc-editor.org/rfc/rfc6570#section-2.2) using the `?` prefix operator:\n\n```yaml\nparameters:\n- name: foo\n  in: query\n  schema:\n    type: object\n  explode: true\n- name: bar\n  in: query\n  schema:\n    type: string\n```\n\nThis example is equivalent to RFC6570's `{?foo*,bar}`, and **NOT** `{?foo*}{&bar}`. The latter is problematic because if `foo` is not defined, the result will be an invalid URI.\nThe `&` prefix operator has no equivalent in the Parameter Object.\n\nNote that RFC6570 does not specify behavior for compound values beyond the single level addressed by `explode`. The result of using objects or arrays where no behavior is clearly specified for them is implementation-defined.\n\n### Delimiters in Parameter Values\n\nDelimiters used by RFC6570 expansion, such as the `,` used to join arrays or object values with `style: \"simple\"`, are all automatically percent-encoded as long as `allowReserved` is `false`.\nNote that since RFC6570 does not define a way to parse variables based on a URI Template, users must take care to first split values by delimiter before percent-decoding values that might contain the delimiter character.\n\nWhen `allowReserved` is `true`, both percent-encoding (prior to joining values with a delimiter) and percent-decoding (after splitting on the delimiter) must be done manually at the correct time.\n\nSee [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for additional guidance on handling delimiters for `style` values with no RFC6570 equivalent that already need to be percent-encoded when used as delimiters.\n\n### Non-RFC6570 Field Values and Combinations\n\nConfigurations with no direct [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570) equivalent SHOULD also be handled according to RFC6570.\nImplementations MAY create a properly delimited URI Template with variables for individual names and values using RFC6570 regular or reserved expansion (based on `allowReserved`).\n\nThis includes:\n\n* the styles `pipeDelimited`, `spaceDelimited`, and `deepObject`, which have no equivalents at all\n* the combination of the style `form` with `allowReserved: true`, which is not allowed because only one prefix operator can be used at a time\n* any parameter name that is not a legal RFC6570 variable name\n\nThe Parameter Object's `name` field has a much more permissive syntax than RFC6570 [variable name syntax](https://www.rfc-editor.org/rfc/rfc6570#section-2.3).\nA parameter name that includes characters outside of the allowed RFC6570 variable character set MUST be percent-encoded before it can be used in a URI Template.\n\n### Examples\n\nLet's say we want to use the following data in a form query string, where `formulas` is exploded, and `words` is not:\n\n```yaml\nformulas:\n  a: x+y\n  b: x/y\n  c: x^y\nwords:\n- math\n- is\n- fun\n```\n\n#### RFC6570-Equivalent Expansion\n\nThis array of Parameter Objects uses regular `style: \"form\"` expansion, fully supported by [RFC6570](https://datatracker.ietf.org/doc/html/rfc6570):\n\n```yaml\nparameters:\n- name: formulas\n  in: query\n  schema:\n    type: object\n    additionalProperties:\n      type: string\n  explode: true\n- name: words\n  in: query\n  schema:\n    type: array\n    items:\n      type: string\n```\n\nThis translates to the following URI Template:\n\n```uritemplate\n{?formulas*,words}\n```\n\nwhen expanded with the data given earlier, we get:\n\n```uri\n?a=x%2By&b=x%2Fy&c=x%5Ey&words=math,is,fun\n```\n\n#### Expansion with Non-RFC6570-Supported Options\n\nBut now let's say that (for some reason), we really want that `/` in the `b` formula to show up as-is in the query string, and we want our words to be space-separated like in a written phrase.\nTo do that, we'll add `allowReserved: true` to `formulas`, and change to `style: \"spaceDelimited\"` for `words`:\n\n```yaml\nparameters:\n- name: formulas\n  in: query\n  schema:\n    type: object\n    additionalProperties:\n      type: string\n  explode: true\n  allowReserved: true\n- name: words\n  in: query\n  style: spaceDelimited\n  explode: false\n  schema:\n    type: array\n    items:\n      type: string\n```\n\nWe can't combine the `?` and `+` RFC6570 [prefixes](https://datatracker.ietf.org/doc/html/rfc6570#section-2.4.1), and there's no way with RFC6570 to replace the `,` separator with a space character.\nSo we need to restructure the data to fit a manually constructed URI Template that passes all of the pieces through the right sort of expansion.\n\nHere is one such template, using a made-up convention of `words.0` for the first entry in the words value, `words.1` for the second, and `words.2` for the third:\n\n```uritemplate\n?a={+a}&b={+b}&c={+c}&words={words.0} {words.1} {words.2}\n```\n\nRFC6570 [mentions](https://www.rfc-editor.org/rfc/rfc6570.html#section-2.4.2) the use of `.` \"to indicate name hierarchy in substructures,\" but does not define any specific naming convention or behavior for it.\nSince the `.` usage is not automatic, we'll need to construct an appropriate input structure for this new template.\n\nWe'll also need to pre-process the values for `formulas` because while `/` and most other reserved characters are allowed in the query string by RFC3986, `[`, `]`, and `#` [are not](https://datatracker.ietf.org/doc/html/rfc3986#appendix-A), and `&`, `=`, and `+` all have [special behavior](https://url.spec.whatwg.org/#application/x-www-form-urlencoded) in the `application/x-www-form-urlencoded` format, which is what we are using in the query string.\n\nSetting `allowReserved: true` does _not_ make reserved characters that are not allowed in URIs allowed, it just allows them to be _passed through expansion unchanged_, for example because some other specification has defined a particular meaning for them.\n\nTherefore, users still need to percent-encode any reserved characters that are _not_ being passed through due to a special meaning because reserved expansion does not know which reserved characters are being used, and which should still be percent-encoded.\nHowever, reserved expansion, unlike regular expansion,  _will_ leave the pre-percent-encoded triples unchanged.\nSee also [Appendix E](#appendix-e-percent-encoding-and-form-media-types) for further guidance on percent-encoding and form media types, including guidance on handling the delimiter characters for `spaceDelimited`, `pipeDelimited`, and `deepObject` in parameter names and values.\n\nSo here is our data structure that arranges the names and values to suit the template above, where values for `formulas` have `[]#&=+` pre-percent encoded (although only `+` appears in this example):\n\n```yaml\na: x%2By\nb: x/y\nc: x^y\nwords.0: math\nwords.1: is\nwords.2: fun\n```\n\nExpanding our manually assembled template with our restructured data yields the following query string:\n\n```uri\n?a=x%2By&b=x/y&c=x%5Ey&words=math%20is%20fun\n```\n\nThe `/` and the pre-percent-encoded `%2B` have been left alone, but the disallowed `^` character (inside a value) and space characters (in the template but outside of the expanded variables) were percent-encoded.\n\n#### Undefined Values and Manual URI Template Construction\n\nCare must be taken when manually constructing templates to handle the values that RFC6570 [considers to be _undefined_](https://datatracker.ietf.org/doc/html/rfc6570#section-2.3) correctly:\n\n```yaml\nformulas: {}\nwords:\n- hello\n- world\n```\n\nUsing this data with our original RFC6570-friendly URI Template, `{?formulas*,words}`, produces the following:\n\n```uri\n?words=hello,world\n```\n\nThis means that the manually constructed URI Template and restructured data need to leave out the `formulas` object entirely so that the `words` parameter is the first and only parameter in the query string.\n\nRestructured data:\n\n```yaml\nwords.0: hello\nwords.1: world\n```\n\nManually constructed URI Template:\n\n```uritemplate\n?words={words.0} {words.1}\n```\n\nResult:\n\n```uri\n?words=hello%20world\n```\n\n#### Illegal Variable Names as Parameter Names\n\nIn this example, the heart emoji is not legal in URI Template names (or URIs):\n\n```yaml\nparameters:\n- name: ❤️\n  in: query\n  schema:\n    type: string\n```\n\nWe can't just pass `❤️: \"love!\"` to an RFC6570 implementation.\nInstead, we have to pre-percent-encode the name (which is a six-octet UTF-8 sequence) in both the data and the URI Template:\n\n```yaml\n\"%E2%9D%A4%EF%B8%8F\": love!\n```\n\n```uritemplate\n{?%E2%9D%A4%EF%B8%8F}\n```\n\nThis will expand to the result:\n\n```uri\n?%E2%9D%A4%EF%B8%8F=love%21\n```\n\n## Appendix D: Serializing Headers and Cookies\n\nHTTP headers have inconsistent rules regarding what characters are allowed, and how some or all disallowed characters can be escaped and included.\nWhile the `quoted-string` ABNF rule given in [[RFC9110]] [Section 5.4.6](https://www.rfc-editor.org/rfc/rfc9110.html#section-5.6.4) is the most common escaping solution, it is not sufficiently universal to apply automatically.\nFor example, a strong `ETag` looks like `\"foo\"` (with quotes, regardless of the contents), and a weak `ETag` looks like `W/\"foo\"` (note that only part of the value is quoted); the contents of the quotes for this header are also not escaped in the way `quoted-string` contents are.\n\nFor this reason, any data being passed to a header by way of a [Parameter](#parameter-object) or [Header](#header-object) Object needs to be quoted and escaped prior to passing it to the OAS implementation, and the parsed header values are expected to contain the quotes and escapes.\n\n### Percent-Encoding and Cookies\n\n[RFC6570](https://www.rfc-editor.org/rfc/rfc6570)'s percent-encoding behavior is not always appropriate for `in: \"cookie\"` parameters.\nWhile percent-encoding seems more common as an escaping mechanism than the base64 encoding (`contentEncoding`: \"base64\") recommended by [[RFC6265]], [section 5.6 of draft-ietf-httpbis-rfc6265bis-20](https://www.ietf.org/archive/id/draft-ietf-httpbis-rfc6265bis-20.html#section-5.6), the proposed update to that RFC notes that cookies sent in the `Set-Cookie` response header that appear to be percent-encoded MUST NOT be decoded when stored by the client, which would mean that they are already encoded when retrieved from that storage for use in the `Cookie` request header.\nThe behavior of `style: \"cookie\"` assumes this usage, and _does not_ apply or remove percent-encoding.\n\nIf automatic percent-encoding is desired, `style: \"form\"` with a primitive value or with the non-default `explode` value of `false` provides this behavior.\nHowever, note that the default value of `explode: true` for `style: \"form\"` with non-primitive values uses the wrong delimiter for cookies (`&` instead of `;` followed by a single space) to set multiple cookie values.\nUsing `style: \"form\"` with `in: \"cookie\"` via an RFC6570 implementation requires stripping the `?` prefix, as when producing `application/x-www-form-urlencoded` message bodies.\nTo allow the full use of `style: \"form\"` with `in: \"cookie\"`, use the `allowReserved` field.\n\n## Appendix E: Percent-Encoding and Form Media Types\n\n_**NOTE:** In this section, the `application/x-www-form-urlencoded` and `multipart/form-data` media types are abbreviated as `form-urlencoded` and `form-data`, respectively, for readability._\n\nPercent-encoding is used in URIs and media types that derive their syntax from URIs.\nThe fundamental rules of percent-encoding are:\n\n* The set of characters that MUST be encoded varies depending on which version of which specification you use, and (for URIs) in which part of the URI the character appears.\n* The way an unencoded `+` character is decoded depends on whether you are using `application/x-www-form-urlencoded` rules or more general URI rules; this is the only time where choice of decoding algorithm can change the outcome.\n* Encoding more characters than necessary is always safe in terms of the decoding process, but may produce non-normalized URIs.\n* In practice, some systems tolerate or even expect unencoded characters that some or all percent-encoding specifications require to be encoded; this can cause interoperability issues with more strictly compliant implementations.\n\nThe rest of this appendix provides more detailed guidance based on the above rules.\n\n### Percent-Encoding Character Classes\n\nThis process is concerned with three classes of characters, the names of which vary among specifications but are defined as follows for the purposes of this section:\n\n* _unreserved_ characters do not need to be percent-encoded; while it is safe to percent-encode them, doing so produces a URI that is [not normalized](https://datatracker.ietf.org/doc/html/rfc3986#section-6.2.2.2)\n* _reserved_ characters either have special behavior in the URI syntax (such as delimiting components) or are reserved for other specifications that need to define special behavior (e.g. `form-urlencoded` defines special behavior for `=`, `&`, and `+`)\n* _unsafe_ characters are known to cause problems when parsing URIs in certain environments\n\nUnless otherwise specified, this section uses RFC3986's definition of [reserved](https://datatracker.ietf.org/doc/html/rfc3986#section-2.2) and [unreserved](https://datatracker.ietf.org/doc/html/rfc3986#section-2.3), and defines the unsafe set as all characters not included in either of those sets.\n\n### Percent-Encoding and `form-urlencoded`\n\nEach URI component (such as the query string) considers some of the reserved characters to be unsafe, either because they serve as delimiters between the components (e.g. `#`), or (in the case of `[` and `]`) were historically considered globally unsafe but were later given reserved status for limited purposes.\n\nReserved characters with no special meaning defined within a component can be left un-percent encoded.\nHowever, other specifications can define special meanings, requiring percent-encoding for those characters outside of the additional special meanings.\n\nThe `form-urlencoded` media type defines special meanings for `=` and `&` as delimiters, and `+` as the replacement for the space character (instead of its percent-encoded form of `%20`).\nThis means that while these three characters are reserved-but-allowed in query strings by RFC3986, they must be percent-encoded in `form-urlencoded` query strings except when used for their `form-urlencoded` purposes; see [Appendix C](#appendix-c-using-rfc6570-based-serialization) for an example of handling `+` in form values.\n\n### Percent-Encoding and `form-data`\n\n[RFC7578](https://datatracker.ietf.org/doc/html/rfc7578#section-2) suggests RFC3986-based percent-encoding as a mechanism to keep text-based per-part header data such as file names within the ASCII character set.\nThis suggestion was not part of older (pre-2015) specifications for `form-data`, so care must be taken to ensure interoperability.\nUsers wishing to use percent-encoding in this way MUST provide the data in percent-encoded form, as percent-encoding is not automatically applied for this media type regardless of which Encoding Object fields are used.\n\nThe `form-data` media type allows arbitrary text or binary data in its parts, so percent-encoding or similar escaping is not needed in general.\n\n### Generating and Validating URIs and `form-urlencoded` Strings\n\nURI percent encoding and the `form-urlencoded` media type have complex specification histories spanning multiple revisions and, in some cases, conflicting claims of ownership by different standards bodies.\nUnfortunately, these specifications each define slightly different percent-encoding rules, which need to be taken into account if the URIs or `form-urlencoded` message bodies will be subject to strict validation.\n(Note that many URI parsers do not perform validation by default, if at all.)\n\nThis specification normatively cites the following relevant standards:\n\n| Specification | Date | OAS Usage | Percent-Encoding | Notes |\n| ---- | ---- | ---- | ---- | ---- |\n| [RFC3986](https://www.rfc-editor.org/rfc/rfc3986) | 01/2005 | URI/URL syntax, including non-`form-urlencoded` content-based serialization | [[RFC3986]] | obsoletes [[?RFC1738]], [[?RFC2396]] |\n| [RFC6570](https://www.rfc-editor.org/rfc/rfc6570) | 03/2012 | style-based serialization | [[RFC3986]] | does not use `+` for query strings |\n| [WHATWG-URL Section 5](https://url.spec.whatwg.org/#application/x-www-form-urlencoded) | \"living\" standard | content-based `form/url-encoded` serialization, including HTTP message contents | [WHATWG-URL Section 1.3](https://url.spec.whatwg.org/#application-x-www-form-urlencoded-percent-encode-set) | obsoletes [[?RFC1866]], [[?HTML401]] |\n\nStyle-based serialization with percent-encoding is used in the [Parameter Object](#parameter-object) when `schema` is present, and in the [Encoding Object](#encoding-object) when at least one of `style`, `explode`, or `allowReserved` is present.\nSee [Appendix C](#appendix-c-using-rfc6570-based-serialization) for more details of RFC6570's two different approaches to percent-encoding, including an example involving `+`.\n\nContent-based serialization is defined by the [Media Type Object](#media-type-object), and used with the [Parameter Object](#parameter-object) and [Header Object](#header-object) when the `content` field is present, and with the [Encoding Object](#encoding-object) based on the `contentType` field when the fields `style`, `explode`, and `allowReserved` are absent.\nFor use in URIs, each part is encoded based on the media type (e.g. `text/plain` or `application/json`), and must then be percent-encoded for use in a `form-urlencoded` string (in form-style query strings), or for general URI use in other URL components, unless the media type already incorporates URI percent-encoding.\n\n#### Interoperability with Historical Specifications\n\nPrior versions of this specification required [[?RFC1866]] and its use of [[?RFC1738]] percent-encoding rules in place of [[WHATWG-URL]].\nThe [[WHATWG-URL]] `form-urlencoded` rules represent the current browser consensus on that media type, and avoid the ambiguity introduced by unclear paraphrasing of RFC1738 in RFC1866.\n\nUsers needing conformance with RFC1866/RFC1738 are advised to check their tooling and library behavior carefully.\n\n#### Interoperability with Web Browser Environments\n\nWHATWG is a [web browser-oriented](https://whatwg.org/faq#what-is-the-whatwg-working-on) standards group that has defined a \"URL Living Standard\" for parsing and serializing URLs in a browser context, including parsing and serializing `form-urlencoded` data.\nWHATWG's percent-encoding rules for query strings are different depending on whether the query string is [being treated as `form-urlencoded`](https://url.spec.whatwg.org/#application-x-www-form-urlencoded-percent-encode-set) (where it requires more percent-encoding than [[?RFC1738]]) or [as part of the generic syntax](https://url.spec.whatwg.org/#query-percent-encode-set), where its requirements differ from [[RFC3986]].\n\nThis specification only depends on WHATWG for its `form-urlencoded` specification.\nImplementations using the query string in other ways are advised that, the distinctions between WHATWG's non-`form-urlencoded` query string rules and RFC3986 require careful consideration, incorporating both WHATWG's percent-encoding sets and their set of valid Unicode code points for URLs; see [Percent-Encoding and Illegal or Reserved Delimiters](#percent-encoding-and-illegal-or-reserved-delimiters) for more information.\n\n### Decoding URIs and `form-urlencoded` Strings\n\nThe percent-decoding algorithm does not care which characters were or were not percent-decoded, which means that URIs percent-encoded according to any specification will be decoded correctly.\n\nSimilarly, all `form-urlencoded` decoding algorithms simply add `+`-for-space handling to the percent-decoding algorithm, and will work regardless of the encoding specification used.\n\nHowever, care must be taken to use `form-urlencoded` decoding if `+` represents a space, and to use regular percent-decoding if `+` represents itself as a literal value.\n\n### Percent-Encoding and Illegal or Reserved Delimiters\n\nThe `[`, `]`, `|`, and space characters, which are used as delimiters for the `deepObject`, `pipeDelimited`, and `spaceDelimited` styles, respectively, all MUST be percent-encoded to comply with [[RFC3986]].\nThis requires users to pre-encode the character(s) in some other way in parameter names and values to distinguish them from the delimiter usage when using one of these styles.\n\nThe space character is always illegal and encoded in some way by all implementations of all versions of the relevant standards.\nWhile one could use the `form-urlencoded` convention of `+` to distinguish spaces in parameter names and values from `spaceDelimited` delimiters encoded as `%20`, the specifications define the decoding as a single pass, making it impossible to distinguish the different usages in the decoded result unless a non-standard parsing algorithm is used that separates based on one delimiter before decoding the other.\nAny such non-standard parsing approach will not be interoperable across all tools.\n\nSome environments use `[`, `]`, and possibly `|` unencoded in query strings without apparent difficulties.\nWHATWG's generic query string rules do not require percent-encoding them in non-`form-urlencoded` query strings, although it also excludes them from the set of valid URL Unicode code points.\nCode that relies on leaving these delimiters unencoded, while using regular percent-encoding for them within names and values, is not guaranteed to be interoperable across all implementations.\n\nFor maximum interoperability, it is RECOMMENDED to either define and document an additional escape convention while percent-encoding the delimiters for these styles, or to avoid these styles entirely.\nThe exact method of additional encoding/escaping is left to the API designer, and is expected to be performed before serialization and encoding described in this specification, and reversed after this specification's encoding and serialization steps are reversed.\nThis keeps it outside of the processes governed by this specification.\n\n## Appendix F: Examples of Base URI Determination and Reference Resolution\n\nThis section shows each of the four possible sources of base URIs, followed by an example with a relative `$self` and `$id`.\n\n### Base URI Within Content\n\nA base URI within the resource's content ([RFC3986](https://tools.ietf.org/html/rfc3986#section-5.1.1)) is the highest-precedence source of a base URI.\nFor OpenAPI documents, this source is the OpenAPI Object's `$self` field, while for Schema Objects that contain a `$id`, or are a subschema of a Schema Object containing a `$id`, the source is the `$id` field:\n\nAssume the retrieval URI of the following document is `file://home/someone/src/api/openapi.yaml`:\n\n```yaml\nopenapi: 3.2.0\n$self: https://example.com/api/openapi\ninfo:\n  title: Example API\n  version: 1.0\npaths:\n  /foo:\n    get:\n      requestBody:\n        $ref: \"shared/foo#/components/requestBodies/Foo\"\n```\n\nAssume the retrieval URI for the following document is `https://git.example.com/shared/blob/main/shared/foo.yaml`:\n\n```yaml\nopenapi: 3.2.0\n$self: https://example.com/api/shared/foo\ninfo:\n  title: Shared components for all APIs\n  version: 1.0\ncomponents:\n  requestBodies:\n    Foo:\n      content:\n        application/json:\n          schema:\n            $ref: ../schemas/foo\n  schemas:\n    Foo:\n      $id: https://example.com/api/schemas/foo\n      properties:\n        bar:\n          $ref: bar\n    Bar:\n      $id: https://example.com/api/schemas/bar\n      type: string\n```\n\nIn this example, the retrieval URIs are irrelevant because both documents define `$self`.\n\nThe relative `$ref` in the first document is resolved against `$self` to produce `https://example.com/api/shared/foo#/components/requestBodies/Foo`.\nThe portion of that URI before the `#` matches the `$self` of the second document, so the reference target is resolved to `#/components/requestBodies/Foo` in that second document.\n\nIn that document, the `$ref` in the Request Body Object is resolved using that document's `$self` as the base URI, producing `https://example.com/api/schemas/foo`.\nThis matches the `$id` at `#/components/schemas/Foo/$id` so it points to that Schema Object.\nThat Schema Object has a subschema with `$ref: bar`, which is resolved against the `$id` to produce `https://example.com/api/schemas/bar`, which matches the `$id` at `#/components/schemas/Bar/$id`.\n\nTo guarantee interoperability, Schema Objects containing an `$id`, or that are under a schema containing an `$id`, MUST be referenced by the nearest such `$id` for the non-fragment part of the reference.\nAs the JSON Schema specification notes, using a base URI other than the nearest `$id` and crossing that `$id` with a JSON Pointer fragment [is not interoperable](https://www.ietf.org/archive/id/draft-bhutton-json-schema-01.html#name-json-pointer-fragments-and-).\n\nNote also that it is impossible for the reference at `#/components/schemas/Foo/properties/bar/$ref` to reference the schema at `#/components/schemas/Bar` using _only_ a JSON Pointer fragment, as the JSON Pointer would be resolved relative to `https://example.com/api/schemas/foo`, not to the OpenAPI document's base URI from `$self`.\n\n### Base URI From Encapsulating Entity\n\nIf no base URI can be determined within the content, the next location to search is any encapsulating entity ([RFC3986](https://tools.ietf.org/html/rfc3986#section-5.1.2)).\n\nThis is common for Schema Objects encapsulated within an OpenAPI document.\nAn example of an OpenAPI Object itself being encapsulated in another entity would be a `multipart/related` archive ([[?RFC2557]]), such as the following `multipart/related; boundary=\"boundary-example\"; type=\"application/openapi+yaml\"` document.\nNote that this is purely an example, and support for such multipart documents or any other format that could encapsulate an OpenAPI Object is not a requirement of this specification.\n\nRFC2557 was written to allow sending hyperlinked sets of documents as email attachments, in which case there would not be a retrieval URI for the multipart attachment (although the format could also be used in HTTP as well).\n\n```multipart\n--boundary-example\nContent-Type: application/openapi+yaml\nContent-Location: https://example.com/api/openapi.yaml\n\nopenapi: 3.2.0\ninfo:\n  title: Example API\n  version: 1.0\n  externalDocs:\n    url: docs.html\ncomponents:\n  requestBodies:\n    Foo:\n      content:\n        application/json:\n          schema:\n            $ref: \"#/components/api/schemas/Foo\"\n  schemas:\n    Foo:\n      properties:\n        bar:\n          $ref: schemas/bar\n--boundary-example\nContent-Type: application/schema+json\nContent-Location: https://example.com/api/schemas/bar\n\n{\n  \"type\": \"string\"\n}\n--boundary-example\nContent-Type: text/html\nContent-Location: https://example.com/api/docs.html\n\n<html>\n  <head>\n    <title>API Documentation</title>\n  </head>\n  <body>\n    <p>Awesome documentation goes here</p>\n  </body>\n</html>\n--boundary-example\n```\n\nIn this example, the URI for each part, which also serves as its base URI, comes from the part's `Content-Location` header as specified by RFC2557.\nSince the Schema Object at `#/components/schemas/Foo` does not contain an `$id`, the reference in its subschema uses the OpenAPI document's base URI, which is taken from the `Content-Location` header of its part within the `multipart/related` format.\nThe resulting reference to `https://example.com/schemas/bar` matches the `Content-Location` header of the second part, which according to RFC2557 allows the reference target to be located within the multipart archive.\n\nSimilarly, the `url` field of the [External Documentation Object](#external-documentation-object) is resolved against the base URI from `Content-Location`, producing `https://example.com/api/docs.html` which matches the `Content-Location` of the third part.\n\n### Base URI From the Retrieval URI\n\nIf no base URI is provided from either of the previous sources, the next source is the retrieval URI ([RFC3986](https://tools.ietf.org/html/rfc3986#section-5.1.3)).\n\nAssume this document was retrieved from `https://example.com/api/openapis.yaml`:\n\n```yaml\nopenapi: 3.2.0\ninfo:\n  title: Example API\n  version: 1.0\ncomponents:\n  requestBodies:\n    Foo:\n      content:\n        application/json:\n          schema:\n            $ref: schemas/foo\n```\n\nAssume this document was retrieved from `https://example.com/api/schemas/foo`:\n\n```json\n{\n  \"type\": \"object\",\n  \"properties\": {\n    \"bar\": {\n      \"type\": \"string\"\n    }\n  }\n}\n```\n\nResolving the `$ref: schemas/foo` against the retrieval URI of the OpenAPI document produces `https://example.com/api/schemas/foo`, the retrieval URI of the JSON Schema document.\n\n### Application-Specific Default Base URI\n\nWhen constructing an OpenAPI document in memory that does not have a `$self`, or an encapsulating entity, or a retrieval URI, applications can resolve internal (fragment-only) references by assuming a default base URI ([RFC3986](https://tools.ietf.org/html/rfc3986#section-5.1.4)).\nWhile this sort of internal resolution can be performed in practice without choosing a base URI, choosing one, such as a URN with a randomly generated UUID (e.g. `urn:uuid:f26cdaad-3193-4398-a838-4ecb7326c4c5`) avoids the need to implement it as a special case.\n\n### Resolving Relative `$self` and `$id`\n\nLet's re-consider the first example in this appendix, but with relative URI references for `$self` and `$id`, and retrieval URIs that support that relative usage:\n\n\nAssume that the following is retrieved from `https://staging.example.com/api/openapi`:\n\n```yaml\nopenapi: 3.2.0\n$self: /api/openapi\ninfo:\n  title: Example API\n  version: 1.0\npaths:\n  /foo:\n    get:\n      requestBody:\n        $ref: \"shared/foo#/components/requestBodies/Foo\"\n```\n\nAssume the retrieval URI for the following document is `https://staging.example.com/api/shared/foo`:\n\n```yaml\nopenapi: 3.2.0\n$self: /api/shared/foo\ninfo:\n  title: Shared components for all APIs\n  version: 1.0\ncomponents:\n  requestBodies:\n    Foo:\n      content:\n        application/json:\n          schema:\n            $ref: ../schemas/foo\n  schemas:\n    Foo:\n      $id: /api/schemas/foo\n      properties:\n        bar:\n          $ref: bar\n    Bar:\n      $id: /api/schemas/bar\n      type: string\n```\n\nIn this example, all of the `$self` and `$id` values are relative URI references consisting of an absolute path.\nThis allows the retrieval URI to set the host (and scheme), in this case `https://staging.example.com`, resulting in the first document's `$self` being `https://staging.example.com/openapi`, and the second document's `$self` being `https://staging.example.com/api/shared/foo`, with `$id` values of `https://staging.example.com/api/schemas/foo` and `https://staging.example.com/api/schemas/bar`.\nRelative `$self` and `$id` values of this sort  allow the same set of documents to work when deployed to other hosts, e.g. `https://example.com` (production) or `https://localhost:8080` (local development).\n\n## Appendix G: Parsing and Resolution Guidance\n\nImplementations MAY support complete-document parsing in any of the following ways:\n\n* Detecting OpenAPI or JSON Schema documents using media types\n* Detecting OpenAPI documents through the root `openapi` field\n* Detecting JSON Schema documents through detecting keywords or otherwise successfully parsing the document in accordance with the JSON Schema specification\n\nAdditional mechanisms can be used to support documents with Objects other than an OpenAPI Object or a Schema Object at the root, but note that the resulting behavior is implementation-defined:\n\n* Detecting a document containing a referenceable Object at its root based on the expected type of the reference\n* Allowing users to configure the type of documents that might be loaded due to a reference to a non-root Object\n\n### Warnings Regarding Fragmentary Parsing\n\nImplementations that parse referenced fragments of OpenAPI content without regard for the content of the rest of the containing document will miss keywords that change the meaning and behavior of the reference target.\nIn particular, failing to take into account keywords that change the base URI introduces security risks by causing references to resolve to unintended URIs, with unpredictable results.\nWhile some implementations support this sort of parsing due to the requirements of past versions of this specification, in version 3.1 and later, the result of parsing fragments in isolation is _undefined_ and likely to contradict the requirements of this specification.\n\nWhile it is possible to structure certain OpenAPI Descriptions to ensure that they will behave correctly when references are parsed as isolated fragments, depending on this is NOT RECOMMENDED.\nThis specification does not explicitly enumerate the conditions under which such behavior is safe and provides no guarantee for continued safety in any future versions of the OAS.\n\n### Conflicts Between Field Types and Reference Contexts\n\nJSON or YAML objects within an OAD are interpreted as specific Objects (such as [Operation Objects](#operation-object), [Response Objects](#response-object), [Reference Objects](#reference-object), etc.) based on their context. Depending on how references are arranged, a given JSON or YAML object can be interpreted in multiple different contexts:\n\n* As the root object of the [entry document](#openapi-description-structure), which is always interpreted as an OpenAPI Object\n* As the Object type implied by its parent Object's field within the document\n* As a reference target, with the Object type matching the reference source's context\n\nIf the same JSON/YAML object is parsed multiple times and the respective contexts require it to be parsed as _different_ Object types, the resulting behavior is _implementation defined_, and MAY be treated as an error if detected. An example would be referencing an empty Schema Object under `#/components/schemas` where a Path Item Object is expected, as an empty object is valid for both types. For maximum interoperability, it is RECOMMENDED that OpenAPI Description authors avoid such scenarios.\n\n### Guidance Regarding Implicit Connections\n\nThe following Objects and Fields involve the use of implicit connections:\n\n| Source | Target | Alternative |\n| ---- | ---- | ---- |\n| [Security Requirement Object](#security-requirement-object) `{name}` | [Security Scheme Object](#security-scheme-object) name under the [Components Object](#components-object) | _n/a_ |\n| [Discriminator Object](#discriminator-object) `mapping` _(implicit, or explicit name syntax)_ | [Schema Object](#schema-object) name under the Components Object | `mapping` _(explicit URI syntax)_ |\n| [Operation Object](#operation-object) `tags` | [Tag Object](#tag-object) `name` (in the [OpenAPI Object](#openapi-object)'s `tags` array) | _n/a_ |\n| [Link Object](#link-object) `operationId` | [Operation Object](#operation-object) `operationId` | `operationRef` |\n\nAn additional implicit connection involves appending the templated URL paths of the [Paths Object](#paths-object) to the appropriate [Server Object](#server-object)'s `url` field.\nThis connection is unambiguous because only the entry document's Paths Object contributes URLs to the described API.\n\nThe implicit connections in the Security Requirement Object and Discriminator Object rely on the _component name_, which is the name of the property holding the component in the appropriately typed sub-object of the Components Object.\nFor example, the component name of the Schema Object at `#/components/schemas/Foo` is `Foo`.\nThe implicit connection of `tags` in the Operation Object uses the `name` field of Tag Objects, which (like the Components Object) are found under the root OpenAPI Object.\nThis means resolving component names and tag names both depend on starting from the correct OpenAPI Object.\n\nFor resolving component and tag name connections from a referenced (non-entry) document, it is RECOMMENDED that tools resolve from the entry document, rather than the current document.\nResolving component and tag name connections from a referenced (non-entry) document to the entry document as recommended under [Resolving Implicit Connections](#resolving-implicit-connections) allows components and Tag Objects to be defined next to the API's deployment information in the top-level array of Server Objects and treated as an interface for referenced documents to access.\n\nFor Security Requirement Objects and Discriminator Objects, it is also possible to keep the resolution within the referenced document by using the URI-reference form that these Objects offer.\n\nThere are no URI-based alternatives for the Operation Object's `tags` field.\nOAD authors are advised to use external solutions such as the OpenAPI Initiative's Overlay Specification to simulate sharing [Tag Objects](#tag-object) across multiple documents.\n\n#### Implicit Connection Resolution Examples\n\nThis section shows how to retrieve an HTTP-accessible multi-document OpenAPI Description (OAD) and resolve a [Security Requirement Object](#security-requirement-object) in the referenced (non-entry) document.\nThe behavior for Discriminator Object non-URI mappings and for the Operation Object's `tags` field operate on the same principles.\n\nFirst, the [entry document](#openapi-description-structure) is where parsing begins. It defines the `MySecurity` security scheme to be JWT-based, and it defines a Path Item as a reference to a component in another document:\n\n```http\nGET /api/description/openapi HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+json\n```\n\n```json\n\"components\": {\n  \"securitySchemes\": {\n    \"MySecurity\": {\n      \"type\": \"http\",\n      \"scheme\": \"bearer\",\n      \"bearerFormat\": \"JWT\"\n    }\n  }\n},\n\"paths\": {\n  \"/foo\": {\n    \"$ref\": \"other#/components/pathItems/Foo\"\n  }\n}\n```\n\n```http\nGET /api/description/openapi HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+yaml\n```\n\n```yaml\ncomponents:\n  securitySchemes:\n    MySecurity:\n      type: http\n      scheme: bearer\n      bearerFormat: JWT\npaths:\n  /foo:\n    $ref: 'other#/components/pathItems/Foo'\n```\n\nThis entry document references another document, `other`, without using a file extension. This gives the client the flexibility to choose an acceptable format on a resource-by-resource basis, assuming both representations are available:\n\n```http\nGET /api/description/other HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+json\n```\n\n```json\n\"components\": {\n  \"securitySchemes\": {\n    \"MySecurity\": {\n      \"type\": \"http\",\n      \"scheme\": \"basic\"\n    }\n  },\n  \"pathItems\": {\n    \"Foo\": {\n      \"get\": {\n        \"security\": [\n          \"MySecurity\": []\n        ]\n      }\n    }\n  }\n}\n```\n\n```http\nGET /api/description/other HTTP/1.1\nHost: www.example.com\nAccept: application/openapi+yaml\n```\n\n```yaml\ncomponents:\n  securitySchemes:\n    MySecurity:\n      type: http\n      scheme: basic\n  pathItems:\n    Foo:\n      get:\n        security:\n          - MySecurity: []\n```\n\nIn the `other` document, the referenced path item has a Security Requirement for a Security Scheme, `MySecurity`. The same Security Scheme exists in the original entry document. As outlined in [Resolving Implicit Connections](#resolving-implicit-connections), `MySecurity` is resolved with an [implementation-defined behavior](#undefined-and-implementation-defined-behavior), but the section formally recommends that tools resolve component names from the [entry document](#openapi-description-structure). As with all implementation-defined behavior, it is important to check tool documentation to determine which behavior is supported.\n"
  },
  {
    "path": "vitest.config.mjs",
    "content": "import { defineConfig } from 'vitest/config'\nimport { jsonSchemaCoveragePlugin } from \"@hyperjump/json-schema-coverage/vitest\"\n\nexport default defineConfig({\n  plugins: [jsonSchemaCoveragePlugin()],\n  test: {\n    globalSetup: [\"tests/schema/oas-schema.mjs\"],\n    coverage: {\n      include: [\"src/schemas/validation/**/*.yaml\"],\n      thresholds: process.env.BASE !== \"dev\" ? {\n        statements: 100,    // JSON Schema keywords\n        lines: 100,\n        // functions: 100,  // subschemas, for example with `properties` - to be discussed\n        // branches: 56.77, // branch coverage isn't that useful\n      } : {}\n    },\n    forceRerunTriggers: ['**/scripts/**', '**/tests/**'],\n    testTimeout: 20000, // 20 seconds, sometimes needed on slower machines\n  },\n})\n"
  }
]