From d51296cbb9ba33c7274fa660a48a6f6c8fdf88b3 Mon Sep 17 00:00:00 2001
From: Marc 'risson' Schmitt <marc.schmitt@risson.space>
Date: Thu, 16 Apr 2026 16:19:32 +0000
Subject: [PATCH] scripts/api_filter_schema: fix authentication (#21644)

---
 packages/client-go/client.go                  |  5 +++++
 packages/client-go/configuration.go           |  3 +++
 packages/client-rust/src/apis/core_api.rs     | 15 +++++++++++++++
 packages/client-rust/src/apis/crypto_api.rs   |  9 +++++++++
 packages/client-rust/src/apis/events_api.rs   |  3 +++
 packages/client-rust/src/apis/flows_api.rs    |  6 ++++++
 packages/client-rust/src/apis/outposts_api.rs | 18 ++++++++++++++++++
 packages/client-rust/src/apis/root_api.rs     |  3 +++
 scripts/api_filter_schema.py                  |  3 +++
 9 files changed, 65 insertions(+)

diff --git a/packages/client-go/client.go b/packages/client-go/client.go
index 2dfb593c04..a8be2d57f7 100644
--- a/packages/client-go/client.go
+++ b/packages/client-go/client.go
@@ -433,6 +433,11 @@ func (c *APIClient) prepareRequest(
 
 		// Walk through any authentication.
 
+		// AccessToken Authentication
+		if auth, ok := ctx.Value(ContextAccessToken).(string); ok {
+			localVarRequest.Header.Add("Authorization", "Bearer "+auth)
+		}
+
 	}
 
 	for header, value := range c.cfg.DefaultHeader {
diff --git a/packages/client-go/configuration.go b/packages/client-go/configuration.go
index 051b41b3dd..754d7bed2b 100644
--- a/packages/client-go/configuration.go
+++ b/packages/client-go/configuration.go
@@ -29,6 +29,9 @@ func (c contextKey) String() string {
 }
 
 var (
+	// ContextAccessToken takes a string oauth2 access token as authentication for the request.
+	ContextAccessToken = contextKey("accesstoken")
+
 	// ContextServerIndex uses a server configuration from the index.
 	ContextServerIndex = contextKey("serverIndex")
 
diff --git a/packages/client-rust/src/apis/core_api.rs b/packages/client-rust/src/apis/core_api.rs
index bc545d5ec9..6e0361ffd7 100644
--- a/packages/client-rust/src/apis/core_api.rs
+++ b/packages/client-rust/src/apis/core_api.rs
@@ -181,6 +181,9 @@ pub async fn core_brands_list(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -330,6 +333,9 @@ pub async fn core_groups_list(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -612,6 +618,9 @@ pub async fn core_users_list(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -662,6 +671,9 @@ pub async fn core_users_me_retrieve(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -720,6 +732,9 @@ pub async fn core_users_retrieve(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
diff --git a/packages/client-rust/src/apis/crypto_api.rs b/packages/client-rust/src/apis/crypto_api.rs
index 90a807e3ca..2645967b60 100644
--- a/packages/client-rust/src/apis/crypto_api.rs
+++ b/packages/client-rust/src/apis/crypto_api.rs
@@ -57,6 +57,9 @@ pub async fn crypto_certificatekeypairs_retrieve(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -121,6 +124,9 @@ pub async fn crypto_certificatekeypairs_view_certificate_retrieve(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -185,6 +191,9 @@ pub async fn crypto_certificatekeypairs_view_private_key_retrieve(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
diff --git a/packages/client-rust/src/apis/events_api.rs b/packages/client-rust/src/apis/events_api.rs
index ca8c9ec2c6..dec39bab28 100644
--- a/packages/client-rust/src/apis/events_api.rs
+++ b/packages/client-rust/src/apis/events_api.rs
@@ -37,6 +37,9 @@ pub async fn events_events_create(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
     req_builder = req_builder.json(&p_body_event_request);
 
     let req = req_builder.build()?;
diff --git a/packages/client-rust/src/apis/flows_api.rs b/packages/client-rust/src/apis/flows_api.rs
index aada67d593..effc19ad1a 100644
--- a/packages/client-rust/src/apis/flows_api.rs
+++ b/packages/client-rust/src/apis/flows_api.rs
@@ -51,6 +51,9 @@ pub async fn flows_executor_get(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -116,6 +119,9 @@ pub async fn flows_executor_solve(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
     req_builder = req_builder.json(&p_body_flow_challenge_response_request);
 
     let req = req_builder.build()?;
diff --git a/packages/client-rust/src/apis/outposts_api.rs b/packages/client-rust/src/apis/outposts_api.rs
index 3d8aa429c9..89fb4391e8 100644
--- a/packages/client-rust/src/apis/outposts_api.rs
+++ b/packages/client-rust/src/apis/outposts_api.rs
@@ -158,6 +158,9 @@ pub async fn outposts_instances_list(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -221,6 +224,9 @@ pub async fn outposts_ldap_access_check(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -298,6 +304,9 @@ pub async fn outposts_ldap_list(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -375,6 +384,9 @@ pub async fn outposts_proxy_list(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -438,6 +450,9 @@ pub async fn outposts_radius_access_check(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
@@ -515,6 +530,9 @@ pub async fn outposts_radius_list(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
diff --git a/packages/client-rust/src/apis/root_api.rs b/packages/client-rust/src/apis/root_api.rs
index 98951a30f4..1cf2a03057 100644
--- a/packages/client-rust/src/apis/root_api.rs
+++ b/packages/client-rust/src/apis/root_api.rs
@@ -31,6 +31,9 @@ pub async fn root_config_retrieve(
     if let Some(ref user_agent) = configuration.user_agent {
         req_builder = req_builder.header(reqwest::header::USER_AGENT, user_agent.clone());
     }
+    if let Some(ref token) = configuration.bearer_access_token {
+        req_builder = req_builder.bearer_auth(token.to_owned());
+    };
 
     let req = req_builder.build()?;
     let resp = configuration.client.execute(req).await?;
diff --git a/scripts/api_filter_schema.py b/scripts/api_filter_schema.py
index f78885f5d1..07e7616d4f 100755
--- a/scripts/api_filter_schema.py
+++ b/scripts/api_filter_schema.py
@@ -55,6 +55,9 @@ def filter_components(schema: dict[str, Any], refs: set[str]) -> dict[str, Any]:
     filtered = {}
 
     for section, entries in components.items():
+        if section in ("securitySchemes",):
+            filtered[section] = entries
+            continue
         if not isinstance(entries, dict):
             continue
         kept = {}