This rule belongs to the
apimatic-preliminary-linting ruleset and states that:
A declaration of Authorization header at endpoint level is not recommended. Alternatively, make use of the appropriate authentication scheme for the API which will automatically enable the authentication globally for all your endpoints except those that do not require authentication.
|Message||Authorization header declaration found in endpoint headers.|
|Products Impacted||Code Generation, Developer Experience Portal, API Transformer|
- Make use of a global API authentication scheme and remove all inline declarations of endpoint level Authorization headers.
- If an endpoint does not require authentication, enable the
Skip Authenticationflag for that endpoint.