No security scope definition generated

[naXa777]

I've launched springfox-demos:boot-swagger project, copy-pasted the generated JSON from http://localhost:8080/springfox/oai/api-docs?group=user-api into Swagger Editor (via File > Paste JSON menu), and got the following error

It states:

code: "UNRESOLVABLE_REFERENCE"
message: "Security scope definition could not be resolved: read"
level: 900
type: "Swagger Error"

Here's the relevant JSON

...
"paths":{"/api/user":{"post":
...
"security":[{"test":["read"]}]
}},
...
"securityDefinitions":{"test":{"type":"basic"}},
...

And YAML

...
paths:
  /api/user:
    post:
...
      security:
        - test:
            - read
...
securityDefinitions:
  test:
    type: basic
...

This issue is reproducible for BasicAuth and ApiKey authentication types.

[kevdoran]

To clarify what I think is going on here: The issue is not that scope definitions should be generated for BasicAuth and ApiKey types; rather, it is that scope definitions should not be referenced when using those types, as scopes are only used with the OAuth type in Swagger 2.0

I am basing this off of: https://apihandyman.io/writing-openapi-swagger-specification-tutorial-part-6-defining-security/