[owl] Fix duplicate auth parameters in OpenAPI (#888)

iAmir97 · AmirBalwel · iAmir97 · commit 998c8e8d595f · 2026-02-09T13:55:23.000Z
* init

Signed-off-by: AmirBalwel &lt;amir.balwel@embeddedllm.com&gt;

* fix test

Signed-off-by: AmirBalwel &lt;amir.balwel@embeddedllm.com&gt;

* update

Signed-off-by: AmirBalwel &lt;amir.balwel@embeddedllm.com&gt;

* update a route where auth is optional to use fastapi security module

Signed-off-by: AmirBalwel &lt;amir.balwel@embeddedllm.com&gt;

---------

Signed-off-by: AmirBalwel &lt;amir.balwel@embeddedllm.com&gt;
Co-authored-by: AmirBalwel &lt;amir.balwel@embeddedllm.com&gt;
diff --git a/services/api/src/owl/entrypoints/api.py b/services/api/src/owl/entrypoints/api.py
@@ -308,16 +308,12 @@ async def health() -> ORJSONResponse:
         k: openapi_schema["paths"][k]
         for k in sorted(
             openapi_schema["paths"].keys(),
-            key=lambda p: internal_api_tag
-            in list(openapi_schema["paths"][p].values())[0]["tags"][0],
+            key=lambda p: (
+                internal_api_tag in list(openapi_schema["paths"][p].values())[0]["tags"][0]
+            ),
         )
     }
 if ENV_CONFIG.is_cloud:
-    # Add security schemes
-    openapi_schema["components"]["securitySchemes"] = {
-        "Authentication": {"type": "http", "scheme": "bearer"},
-    }
-    openapi_schema["security"] = [{"Authentication": []}]
     openapi_schema["info"]["x-logo"] = {"url": "https://www.jamaibase.com/favicon.svg"}
 app.openapi_schema = openapi_schema
 
diff --git a/services/api/tests/utils/test_auth.py b/services/api/tests/utils/test_auth.py
@@ -1,9 +1,10 @@
 import pytest
 
+from jamaibase import JamAI
 from owl.types import OrgMember_, ProjectMember_, Role, UserRead
 from owl.utils.auth import has_permissions
 from owl.utils.dates import now
-from owl.utils.exceptions import ForbiddenError
+from owl.utils.exceptions import AuthorizationError, ForbiddenError
 
 USER_ID = "user_id"
 ORG_ID = "0"
@@ -124,3 +125,13 @@ def test_has_permissions():
     with pytest.raises(ForbiddenError):
         has_permissions(sys_user, ["project.member"], project_id=PROJ_ID)
     assert has_permissions(sys_user, ["project.guest"], project_id=PROJ_ID) is True
+
+
+@pytest.mark.cloud
+async def test_no_auth_token():
+    client = JamAI(token="")
+    with pytest.raises(
+        AuthorizationError,
+        match='You need to provide your PAT in an "Authorization" header',
+    ):
+        await client.model_info()
