Automated commit by github action: 3154861556

2025-12-10 04:19:42 +00:00 · 2022-09-29 21:59:22 +00:00
parent 07b6a0894a
commit a48432daa8
221 changed files with 354 additions and 726 deletions
--- a/static/api-specs/idn/beta/paths/access-profile-bulk-delete.yaml
+++ b/static/api-specs/idn/beta/paths/access-profile-bulk-delete.yaml
@@ -82,5 +82,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:access-profile:manage]
        - 'idn:access-profile:manage'
--- a/static/api-specs/idn/beta/paths/access-profile-entitlements.yaml
+++ b/static/api-specs/idn/beta/paths/access-profile-entitlements.yaml
@@ -84,8 +84,7 @@ get:
      '500':
        $ref: '../../v3/responses/500.yaml'
    security:
-      - bearerAuth:
+      - oauth2: [idn:access-profile:read]
        - 'idn:access-profile:read'
--- a/static/api-specs/idn/beta/paths/access-profile.yaml
+++ b/static/api-specs/idn/beta/paths/access-profile.yaml
@@ -36,8 +36,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:access-profile:read]
        - 'idn:access-profile:read'
 patch:
  operationId: patchAccessProfile
  tags:
@@ -129,8 +128,7 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:access-profile:manage]
        - 'idn:access-profile:manage'
 delete:
  operationId: deleteAccessProfile
  tags:
@@ -192,6 +190,5 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:access-profile:manage]
        - 'idn:access-profile:manage'
--- a/static/api-specs/idn/beta/paths/access-profiles.yaml
+++ b/static/api-specs/idn/beta/paths/access-profiles.yaml
@@ -111,8 +111,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:access-profile:read]
        - 'idn:access-profile:read'
 post:
  operationId: createAccessProfile
  tags:
@@ -149,5 +148,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:access-profile:manage]
        - 'idn:access-profile:manage'
--- a/static/api-specs/idn/beta/paths/access-roles-change-segment-assignments.yaml
+++ b/static/api-specs/idn/beta/paths/access-roles-change-segment-assignments.yaml
@@ -38,5 +38,4 @@ post:
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:segments:write]
        - 'idn:segments:write'
--- a/static/api-specs/idn/beta/paths/account.yaml
+++ b/static/api-specs/idn/beta/paths/account.yaml
@@ -8,8 +8,7 @@ get:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account:read]
        - idn:account:read
  parameters:
    - in: path
      name: id
@@ -45,8 +44,7 @@ patch:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account:update]
        - idn:account:update
  parameters:
    - in: path
      name: id
@@ -95,8 +93,7 @@ put:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account:update]
        - idn:account:update
  parameters:
    - in: path
      name: id
@@ -140,8 +137,7 @@ delete:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account:delete]
        - idn:account:delete
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/accounts-id-disable.yaml
+++ b/static/api-specs/idn/beta/paths/accounts-id-disable.yaml
@@ -8,8 +8,7 @@ post:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account:disable]
        - idn:account:disable
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/accounts-id-enable.yaml
+++ b/static/api-specs/idn/beta/paths/accounts-id-enable.yaml
@@ -8,8 +8,7 @@ post:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account:enable]
        - idn:account:enable
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/accounts-id-entitlements.yaml
+++ b/static/api-specs/idn/beta/paths/accounts-id-entitlements.yaml
@@ -8,8 +8,7 @@ get:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account-entitlement:read]
        - idn:account-entitlement:read
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/accounts-id-reload.yaml
+++ b/static/api-specs/idn/beta/paths/accounts-id-reload.yaml
@@ -8,8 +8,7 @@ post:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account:reload]
        - idn:account:reload
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/accounts-id-unlock.yaml
+++ b/static/api-specs/idn/beta/paths/accounts-id-unlock.yaml
@@ -8,8 +8,7 @@ post:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account:unlock]
        - idn:account:unlock
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/accounts.yaml
+++ b/static/api-specs/idn/beta/paths/accounts.yaml
@@ -8,8 +8,7 @@ get:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account-list:read]
        - idn:account-list:read
  parameters:
    - in: query
      name: detailLevel
@@ -125,8 +124,7 @@ post:
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:account:create]
        - idn:account:create
  requestBody:
    required: true
    content:
--- a/static/api-specs/idn/beta/paths/auth-org-config.yaml
+++ b/static/api-specs/idn/beta/paths/auth-org-config.yaml
@@ -23,5 +23,4 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:read]
  #       - 'sp:auth-org:read'
--- a/static/api-specs/idn/beta/paths/auth-org-lockout-config.yaml
+++ b/static/api-specs/idn/beta/paths/auth-org-lockout-config.yaml
@@ -22,8 +22,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:read]
  #       - 'sp:auth-org:read'
 post:
  operationId: createAuthOrgLockoutConfig
  tags:
@@ -63,8 +62,7 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:create]
  #       - 'sp:auth-org:create'
 patch:
  operationId: patchAuthOrgLockoutConfig
  tags:
@@ -113,5 +111,4 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:update]
  #       - 'sp:auth-org:update'
--- a/static/api-specs/idn/beta/paths/auth-org-network-config.yaml
+++ b/static/api-specs/idn/beta/paths/auth-org-network-config.yaml
@@ -22,8 +22,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:read]
  #       - 'sp:auth-org:read'
 post:
  operationId: createAuthOrgNetworkConfig
  tags:
@@ -62,8 +61,7 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:create]
  #       - 'sp:auth-org:create'
 patch:
  operationId: patchAuthOrgNetworkConfig
  tags:
@@ -111,5 +109,4 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:update]
  #       - 'sp:auth-org:update'
--- a/static/api-specs/idn/beta/paths/auth-org-service-provider-config.yaml
+++ b/static/api-specs/idn/beta/paths/auth-org-service-provider-config.yaml
@@ -26,8 +26,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:read]
  #       - 'sp:auth-org:read'
 patch:
  operationId: patchAuthOrgServiceProviderConfig
  tags:
@@ -121,5 +120,4 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:update]
  #       - 'sp:auth-org:update'
--- a/static/api-specs/idn/beta/paths/auth-org-session-config.yaml
+++ b/static/api-specs/idn/beta/paths/auth-org-session-config.yaml
@@ -22,8 +22,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:read]
  #       - 'sp:auth-org:read'
 post:
  operationId: createAuthOrgSessionConfig
  tags:
@@ -63,8 +62,7 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:create]
  #       - 'sp:auth-org:create'
 patch:
  operationId: patchAuthOrgSessionConfig
  tags:
@@ -113,5 +111,4 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [sp:auth-org:update]
  #       - 'sp:auth-org:update'
--- a/static/api-specs/idn/beta/paths/auth-user-password.yaml
+++ b/static/api-specs/idn/beta/paths/auth-user-password.yaml
@@ -5,8 +5,7 @@ post:
  summary: Auth User Password Update
  description: Update a password of existing user in the authentication system by overwriting the password with new password.
  #  security:
-  #    - bearerAuth:
+  #    - oauth2: [sp:auth-user-password:update]
  #        - 'sp:auth-user-password:update'
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/auth-user.yaml
+++ b/static/api-specs/idn/beta/paths/auth-user.yaml
@@ -17,8 +17,7 @@ get:
        type: string
      example: ef38f94347e94562b5bb8424a56397d8
 #  security:
-#    - bearerAuth:
+#    - oauth2: [sp:auth-user:read]
 #        - 'sp:auth-user:read'
  responses:
    '200':
      description: The specified user's authentication system details.
@@ -46,8 +45,7 @@ patch:
  summary: Auth User Update - PATCH
  description: Update an existing user in the authentication system with a PATCH request.
 #  security:
-#    - bearerAuth:
+#    - oauth2: [sp:auth-user:update]
 #        - 'sp:auth-user:update'
  parameters:
    - in: path
      name: id
@@ -109,8 +107,7 @@ put:
  summary: Auth User Update - Overwrite
  description: Update an existing user in the authentication system by over overwriting the information with new information.
  #  security:
-  #    - bearerAuth:
+  #    - oauth2: [sp:auth-user:update]
  #        - 'sp:auth-user:update'
  parameters:
    - in: path
      name: id
@@ -156,8 +153,7 @@ delete:
  summary: Delete an Auth User
  description: Delete an existing user in the authentication system.
  #  security:
-  #    - bearerAuth:
+  #    - oauth2: [sp:auth-user:delete]
  #        - 'sp:auth-user:delete'
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/authorization-capabilities.yaml
+++ b/static/api-specs/idn/beta/paths/authorization-capabilities.yaml
@@ -1,8 +1,7 @@
 get:
  operationId: listAuthoriztionCapabilities
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:authorization-model:read]
  #       - 'idn:authorization-model:read'
  tags:
    - Authorization Model
  summary: List Authorization Model Capabilities
--- a/static/api-specs/idn/beta/paths/bulk-update-auth-user.yaml
+++ b/static/api-specs/idn/beta/paths/bulk-update-auth-user.yaml
@@ -5,8 +5,7 @@ post:
  summary: Auth User Bulk Update
  description: Update up to 25 existing auth users in a batch.
  #  security:
-  #    - bearerAuth:
+  #    - oauth2: [sp:auth-user:update]
  #        - 'sp:auth-user:update'
  requestBody:
    required: true
    description: |
--- a/static/api-specs/idn/beta/paths/campaign-activate.yaml
+++ b/static/api-specs/idn/beta/paths/campaign-activate.yaml
@@ -8,9 +8,7 @@ post:
    Requires roles of CERT_ADMIN and ORG_ADMIN
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [CERT_ADMIN,ORG_ADMIN]
  #       - CERT_ADMIN
  #       - ORG_ADMIN
  requestBody:
    description:
      Optional. If no timezone is specified, the standard UTC timezone is used (i.e. UTC+00:00).
--- a/static/api-specs/idn/beta/paths/campaign-complete.yaml
+++ b/static/api-specs/idn/beta/paths/campaign-complete.yaml
@@ -9,9 +9,7 @@ post:
    Requires roles of CERT_ADMIN and ORG_ADMIN
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [CERT_ADMIN,ORG_ADMIN]
  #       - CERT_ADMIN
  #       - ORG_ADMIN
  requestBody:
    description:
      Optional. Default behavior is for the campaign to auto-approve upon completion,
--- a/static/api-specs/idn/beta/paths/campaign-reports-configuration.yaml
+++ b/static/api-specs/idn/beta/paths/campaign-reports-configuration.yaml
@@ -9,9 +9,7 @@ get:
    Requires roles of CERT_ADMIN and ORG_ADMIN.
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [CERT_ADMIN,ORG_ADMIN]
  #       - CERT_ADMIN
  #       - ORG_ADMIN
  responses:
    '200':
      description: Campaign Report Configuration
@@ -38,9 +36,7 @@ put:
    Requires roles CERT_ADMIN and ORG_ADMIN.
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [CERT_ADMIN,ORG_ADMIN]
  #       - CERT_ADMIN
  #       - ORG_ADMIN
  requestBody:
    required: true
    description: Campaign Report Configuration
--- a/static/api-specs/idn/beta/paths/campaign-reports.yaml
+++ b/static/api-specs/idn/beta/paths/campaign-reports.yaml
@@ -8,11 +8,7 @@ get:
    Requires roles of CERT_ADMIN, DASHBOARD, ORG_ADMIN and REPORT_ADMIN
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [CERT_ADMIN,DASHBOARD,ORG_ADMIN,REPORT_ADMIN]
  #       - CERT_ADMIN
  #       - DASHBOARD
  #       - ORG_ADMIN
  #       - REPORT_ADMIN
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/campaign-run-remediation-scan.yaml
+++ b/static/api-specs/idn/beta/paths/campaign-run-remediation-scan.yaml
@@ -8,9 +8,7 @@ post:
    Requires roles of CERT_ADMIN and ORG_ADMIN
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [CERT_ADMIN,ORG_ADMIN]
  #       - CERT_ADMIN
  #       - ORG_ADMIN
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/campaign-run-report.yaml
+++ b/static/api-specs/idn/beta/paths/campaign-run-report.yaml
@@ -9,11 +9,7 @@ post:
    Requires the following roles: CERT_ADMIN, DASHBOARD, ORG_ADMIN and REPORT_ADMIN.
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [CERT_ADMIN,DASHBOARD,ORG_ADMIN,REPORT_ADMIN]
  #       - CERT_ADMIN
  #       - DASHBOARD
  #       - ORG_ADMIN
  #       - REPORT_ADMIN
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/campaign-template-generate.yaml
+++ b/static/api-specs/idn/beta/paths/campaign-template-generate.yaml
@@ -4,8 +4,7 @@ post:
    - Certification Campaigns
  summary: Generate a Campaign from Template
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [ORG_ADMIN]
  #     - ORG_ADMIN
  description: >-
    Generates a new campaign from a campaign template.
--- a/static/api-specs/idn/beta/paths/campaign.yaml
+++ b/static/api-specs/idn/beta/paths/campaign.yaml
@@ -49,9 +49,7 @@ patch:
  summary: Update a Campaign
  description: Allows updating individual fields on a campaign using the [JSON Patch](https://tools.ietf.org/html/rfc6902) standard.
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [ORG_ADMIN,CERT_ADMIN]
  #       - ORG_ADMIN
  #       - CERT_ADMIN
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/campaigns-delete.yaml
+++ b/static/api-specs/idn/beta/paths/campaigns-delete.yaml
@@ -7,9 +7,7 @@ post:
    Deletes campaigns whose Ids are specified in the provided list of campaign Ids.
    Authorized callers must be an ORG_ADMIN or a CERT_ADMIN.
 #  security:
-#    - bearerAuth:
+#    - oauth2: [CERT_ADMIN,ORG_ADMIN]
 #        - CERT_ADMIN
 #        - ORG_ADMIN
  requestBody:
    description: The ids of the campaigns to delete.
    required: true
--- a/static/api-specs/idn/beta/paths/campaigns.yaml
+++ b/static/api-specs/idn/beta/paths/campaigns.yaml
@@ -7,14 +7,7 @@ get:
    Gets campaigns and returns them in a list. Can provide increased level of detail for each campaign if provided
    the correct query.
 # security:
- #   - bearerAuth:
+ #   - oauth2: [CERT_ADMIN,DASHBOARD,ORG_ADMIN,REPORT_ADMIN,ROLE_ADMIN,SOURCE_ADMIN,SOURCE_SUBADMIN]
 #       - CERT_ADMIN
 #       - DASHBOARD
 #       - ORG_ADMIN
 #       - REPORT_ADMIN
 #       - ROLE_ADMIN
 #       - SOURCE_ADMIN
 #       - SOURCE_SUBADMIN
  parameters:
    - in: query
      name: detail
@@ -95,9 +88,7 @@ post:
  summary: Create a campaign
  description: Creates a new Certification Campaign with the information provided in the request body.
  #security:
-  #  - bearerAuth:
+  #  - oauth2: [ORG_ADMIN,CERT_ADMIN]
  #      - ORG_ADMIN
  #      - CERT_ADMIN
  requestBody:
    required: true
    content:
--- a/static/api-specs/idn/beta/paths/connector-messages.yaml
+++ b/static/api-specs/idn/beta/paths/connector-messages.yaml
@@ -6,9 +6,7 @@ post:
    Requires roles of ORG_ADMIN and API
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [ORG_ADMIN,API]
  #     - ORG_ADMIN
  #     - API
  tags:
    - Rosetta message handling
  parameters:
--- a/static/api-specs/idn/beta/paths/connector-rule-validate.yaml
+++ b/static/api-specs/idn/beta/paths/connector-rule-validate.yaml
@@ -31,5 +31,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:connector-rule:read]
        - 'idn:connector-rule:read'
--- a/static/api-specs/idn/beta/paths/connector-rule.yaml
+++ b/static/api-specs/idn/beta/paths/connector-rule.yaml
@@ -29,8 +29,7 @@ get:
    '404':
      $ref: '../../v3/responses/404.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:connector-rule:read]
        - 'idn:connector-rule:read'
 put:
  tags:
@@ -77,8 +76,7 @@ put:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:connector-rule:write]
        - 'idn:connector-rule:write'
 delete:
  tags:
@@ -111,6 +109,5 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:connector-rule:write]
        - 'idn:connector-rule:write'
--- a/static/api-specs/idn/beta/paths/connector-rules.yaml
+++ b/static/api-specs/idn/beta/paths/connector-rules.yaml
@@ -28,8 +28,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:connector-rule:read]
        - 'idn:connector-rule:read'
 post:
  tags:
    - Connector Rule Management
@@ -65,5 +64,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:connector-rule:write]
        - 'idn:connector-rule:write'
--- a/static/api-specs/idn/beta/paths/data-pipelines.yaml
+++ b/static/api-specs/idn/beta/paths/data-pipelines.yaml
@@ -25,5 +25,4 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [iai:data-pipeline:read]
  #       - 'iai:data-pipeline:read'
--- a/static/api-specs/idn/beta/paths/iai-configuration.yaml
+++ b/static/api-specs/idn/beta/paths/iai-configuration.yaml
@@ -31,8 +31,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [iai:configuration:read]
  #       - 'iai:configuration:read'    
 put:
  operationId: updateConfiguration
  tags:
@@ -66,8 +65,7 @@ put:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [iai:configuration:update]
  #       - 'iai:configuration:update'    
 delete:
  operationId: deleteConfiguration
  tags:
@@ -97,5 +95,4 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [iai:configuration:delete]
  #       - 'iai:configuration:delete'
--- a/static/api-specs/idn/beta/paths/iai-configurations.yaml
+++ b/static/api-specs/idn/beta/paths/iai-configurations.yaml
@@ -39,8 +39,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [iai:configuration:read]
  #       - 'iai:configuration:read'    
 post:
  operationId: createConfiguration
  summary: Creates an IAI configuration for a customer
@@ -75,5 +74,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [iai:configuration:create]
  #       - 'iai:configuration:create'
--- a/static/api-specs/idn/beta/paths/identity-profile-default-config.yaml
+++ b/static/api-specs/idn/beta/paths/identity-profile-default-config.yaml
@@ -36,7 +36,6 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile-default-mapping:read]
        - 'idn:identity-profile-default-mapping:read'
--- a/static/api-specs/idn/beta/paths/identity-profile-refresh-identities.yaml
+++ b/static/api-specs/idn/beta/paths/identity-profile-refresh-identities.yaml
@@ -33,7 +33,6 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:refresh]
        - 'idn:identity-profile:refresh'
--- a/static/api-specs/idn/beta/paths/identity-profile.yaml
+++ b/static/api-specs/idn/beta/paths/identity-profile.yaml
@@ -36,8 +36,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:read]
        - 'idn:identity-profile:read'
 delete:
  operationId: deleteIdentityProfile
@@ -78,8 +77,7 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:delete]
        - 'idn:identity-profile:delete'
 patch:
  operationId: updateIdentityProfile
@@ -159,5 +157,4 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:update]
        - 'idn:identity-profile:update'
--- a/static/api-specs/idn/beta/paths/identity-profiles-bulk-delete.yaml
+++ b/static/api-specs/idn/beta/paths/identity-profiles-bulk-delete.yaml
@@ -36,5 +36,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:delete]
        - 'idn:identity-profile:delete'
--- a/static/api-specs/idn/beta/paths/identity-profiles-export.yaml
+++ b/static/api-specs/idn/beta/paths/identity-profiles-export.yaml
@@ -59,5 +59,4 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:read]
        - 'idn:identity-profile:read'
--- a/static/api-specs/idn/beta/paths/identity-profiles-id.yaml
+++ b/static/api-specs/idn/beta/paths/identity-profiles-id.yaml
@@ -32,8 +32,7 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:delete]
        - 'idn:identity-profile:delete'
 patch:
  operationId: updateIdentityProfile
@@ -54,8 +53,7 @@ patch:
    * modified
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:update]
        - 'idn:identity-profile:update'
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/identity-profiles-identity-preview.yaml
+++ b/static/api-specs/idn/beta/paths/identity-profiles-identity-preview.yaml
@@ -35,5 +35,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:preview]
        - 'idn:identity-profile:preview'
--- a/static/api-specs/idn/beta/paths/identity-profiles-import.yaml
+++ b/static/api-specs/idn/beta/paths/identity-profiles-import.yaml
@@ -32,5 +32,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:create]
        - 'idn:identity-profile:create'
--- a/static/api-specs/idn/beta/paths/identity-profiles.yaml
+++ b/static/api-specs/idn/beta/paths/identity-profiles.yaml
@@ -59,8 +59,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:read]
        - 'idn:identity-profile:read'
 post:
  operationId: createIdentityProfile
@@ -95,6 +94,5 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:identity-profile:create]
        - 'idn:identity-profile:create'
--- a/static/api-specs/idn/beta/paths/managed-client-status.yaml
+++ b/static/api-specs/idn/beta/paths/managed-client-status.yaml
@@ -39,8 +39,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-client-status:read]
        - 'idn:managed-client-status:read'
 post:
  tags:
    - Managed Clients
@@ -81,5 +80,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-client-status:update]
        - 'idn:managed-client-status:update'
--- a/static/api-specs/idn/beta/paths/managed-clients-credentials.yaml
+++ b/static/api-specs/idn/beta/paths/managed-clients-credentials.yaml
@@ -33,5 +33,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-client:read]
        - 'idn:managed-client:read'
--- a/static/api-specs/idn/beta/paths/managed-clients-path.yaml
+++ b/static/api-specs/idn/beta/paths/managed-clients-path.yaml
@@ -33,8 +33,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-client:read]
        - 'idn:managed-client:read'
 patch:
  tags:
    - Managed Clients
@@ -77,8 +76,7 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-client:update]
        - 'idn:managed-client:update'
 delete:
  operationId: deleteManagedClient
  tags:
@@ -109,5 +107,4 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-client:delete]
        - 'idn:managed-client:delete'
--- a/static/api-specs/idn/beta/paths/managed-clients.yaml
+++ b/static/api-specs/idn/beta/paths/managed-clients.yaml
@@ -43,8 +43,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-client:read]
        - 'idn:managed-client:read'
 post:
  tags:
    - Managed Clients
@@ -80,5 +79,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-client:create]
        - 'idn:managed-client:create'
--- a/static/api-specs/idn/beta/paths/managed-cluster-cache.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-cache.yaml
@@ -39,5 +39,4 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:delete]
        - 'idn:managed-cluster:delete'
--- a/static/api-specs/idn/beta/paths/managed-cluster-jobs.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-jobs.yaml
@@ -40,5 +40,4 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster-jobs:read]
        - 'idn:managed-cluster-jobs:read'
--- a/static/api-specs/idn/beta/paths/managed-cluster-log-config.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-log-config.yaml
@@ -30,8 +30,7 @@ get:
    "404":
      $ref: '../../v3/responses/404.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster-log-config:read]
        - 'idn:managed-cluster-log-config:read'
 put:
  tags:
    - Managed Clusters
@@ -69,5 +68,4 @@ put:
    "404":
      $ref: '../../v3/responses/404.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster-log-config:write]
        - 'idn:managed-cluster-log-config:write'
--- a/static/api-specs/idn/beta/paths/managed-cluster-path-full.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-path-full.yaml
@@ -28,8 +28,7 @@ get:
    "404":
      $ref: '../../v3/responses/404.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:read]
        - 'idn:managed-cluster:read'
 patch:
  tags:
    - Managed Clusters
@@ -72,8 +71,7 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:update]
        - 'idn:managed-cluster:update'
 delete:
  operationId: deleteManagedCluster
  tags:
@@ -104,5 +102,4 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:delete]
        - 'idn:managed-cluster:delete'
--- a/static/api-specs/idn/beta/paths/managed-cluster-path-internal.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-path-internal.yaml
@@ -40,8 +40,7 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:update]
        - 'idn:managed-cluster:update'
 delete:
  operationId: deleteManagedCluster
  tags:
@@ -72,5 +71,4 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:delete]
        - 'idn:managed-cluster:delete'
--- a/static/api-specs/idn/beta/paths/managed-cluster-path.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-path.yaml
@@ -28,5 +28,4 @@ get:
    "404":
      $ref: '../../v3/responses/404.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:read]
        - 'idn:managed-cluster:read'
--- a/static/api-specs/idn/beta/paths/managed-cluster-processes.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-processes.yaml
@@ -36,5 +36,4 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-process:read]
        - 'idn:managed-process:read'
--- a/static/api-specs/idn/beta/paths/managed-cluster-reboot.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-reboot.yaml
@@ -37,5 +37,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:update]
        - 'idn:managed-cluster:update'
--- a/static/api-specs/idn/beta/paths/managed-cluster-status.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-status.yaml
@@ -32,5 +32,4 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster-status:read]
        - 'idn:managed-cluster-status:read'
--- a/static/api-specs/idn/beta/paths/managed-cluster-types-path.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-types-path.yaml
@@ -36,8 +36,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster-types:read]
        - 'idn:managed-cluster-types:read'
 patch:
  tags:
    - Managed Cluster Types
@@ -83,8 +82,7 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster-types:update]
        - 'idn:managed-cluster-types:update'
 delete:
  operationId: deleteManagedClusterType
  tags:
@@ -118,5 +116,4 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster-types:delete]
        - 'idn:managed-cluster-types:delete'
--- a/static/api-specs/idn/beta/paths/managed-cluster-types.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-types.yaml
@@ -49,8 +49,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster-types:read]
        - 'idn:managed-cluster-types:read'
 post:
  tags:
    - Managed Cluster Types
@@ -89,5 +88,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster-types:create]
        - 'idn:managed-cluster-types:create'
--- a/static/api-specs/idn/beta/paths/managed-cluster-upgrade.yaml
+++ b/static/api-specs/idn/beta/paths/managed-cluster-upgrade.yaml
@@ -43,5 +43,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:upgrade]
        - 'idn:managed-cluster:upgrade'
--- a/static/api-specs/idn/beta/paths/managed-clusters-create.yaml
+++ b/static/api-specs/idn/beta/paths/managed-clusters-create.yaml
@@ -33,5 +33,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:create]
        - 'idn:managed-cluster:create'
--- a/static/api-specs/idn/beta/paths/managed-clusters-full.yaml
+++ b/static/api-specs/idn/beta/paths/managed-clusters-full.yaml
@@ -37,8 +37,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:read]
        - 'idn:managed-cluster:read'
 post:
  tags:
    - Managed Clusters
@@ -74,5 +73,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:create]
        - 'idn:managed-cluster:create'
--- a/static/api-specs/idn/beta/paths/managed-clusters-set-encryption-keys.yaml
+++ b/static/api-specs/idn/beta/paths/managed-clusters-set-encryption-keys.yaml
@@ -43,5 +43,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:update]
        - 'idn:managed-cluster:update'
--- a/static/api-specs/idn/beta/paths/managed-clusters.yaml
+++ b/static/api-specs/idn/beta/paths/managed-clusters.yaml
@@ -37,5 +37,4 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-cluster:read]
        - 'idn:managed-cluster:read'
--- a/static/api-specs/idn/beta/paths/managed-processes-path.yaml
+++ b/static/api-specs/idn/beta/paths/managed-processes-path.yaml
@@ -36,8 +36,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-process:read]
        - 'idn:managed-process:read'
 patch:
  tags:
    - Managed Processes
@@ -83,8 +82,7 @@ patch:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-process:update]
        - 'idn:managed-process:update'
 delete:
  operationId: deleteManagedProcess
  tags:
@@ -118,5 +116,4 @@ delete:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-process:delete]
        - 'idn:managed-process:delete'
--- a/static/api-specs/idn/beta/paths/managed-processes.yaml
+++ b/static/api-specs/idn/beta/paths/managed-processes.yaml
@@ -49,8 +49,7 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-process:read]
        - 'idn:managed-process:read'
 post:
  tags:
    - Managed Processes
@@ -89,5 +88,4 @@ post:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth:
+    - oauth2: [idn:managed-process:create]
        - 'idn:managed-process:create'
--- a/static/api-specs/idn/beta/paths/message-catalog.yaml
+++ b/static/api-specs/idn/beta/paths/message-catalog.yaml
@@ -36,4 +36,4 @@ get:
    '500':
      $ref: '../../v3/responses/500.yaml'
  security:
-    - bearerAuth: []
+    - oauth2: []
--- a/static/api-specs/idn/beta/paths/mfa-config-test.yaml
+++ b/static/api-specs/idn/beta/paths/mfa-config-test.yaml
@@ -8,8 +8,7 @@ get:
    </br>
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:mfa-config:read]
      - idn:mfa-config:read
  parameters:
    - in: path
      name: method
--- a/static/api-specs/idn/beta/paths/mfa-config.yaml
+++ b/static/api-specs/idn/beta/paths/mfa-config.yaml
@@ -8,8 +8,7 @@ get:
    </br>
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:mfa-config:read]
      - idn:mfa-config:read
  parameters:
    - in: path
      name: method
@@ -56,8 +55,7 @@ put:
    </br>
    A token with ORG_ADMIN authority is required to call this API.
  security:
-    - bearerAuth:
+    - oauth2: [idn:mfa-config:write]
      - idn:mfa-config:write
  parameters:
    - in: path
      name: method
--- a/static/api-specs/idn/beta/paths/non-employee-approval-list.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-approval-list.yaml
@@ -1,7 +1,7 @@
 get:
  operationId: nonEmployeeApprovalList
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Get List of Non-Employee Approval Requests
--- a/static/api-specs/idn/beta/paths/non-employee-approval-summary.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-approval-summary.yaml
@@ -1,7 +1,7 @@
 get:
  operationId: nonEmployeeApprovalSummary
  security:
-    - bearerAuth: [] 
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Get Summary of Non-Employee Approval Requests
--- a/static/api-specs/idn/beta/paths/non-employee-approve-get.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-approve-get.yaml
@@ -1,7 +1,7 @@
 get:
  operationId: nonEmployeeApprovalGet
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Get a non-employee approval item detail
--- a/static/api-specs/idn/beta/paths/non-employee-approve-request.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-approve-request.yaml
@@ -1,7 +1,7 @@
 post:
  operationId: nonEmployeeApproveRequest
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Approve a Non-Employee Request
--- a/static/api-specs/idn/beta/paths/non-employee-bulk-upload-jobs-fail.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-bulk-upload-jobs-fail.yaml
@@ -1,7 +1,6 @@
 post:
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:helpdesk]
  #       - 'idn:helpdesk'
  operationId: nonEmployeeBulkUploadJobFail
  tags:
    - Non-Employee Lifecycle Management
--- a/static/api-specs/idn/beta/paths/non-employee-record.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-record.yaml
@@ -1,8 +1,7 @@
 get:
  operationId: nonEmployeeRecordGet
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:read]
  #     - 'idn:nesr:read'
  tags:
    - Non-Employee Lifecycle Management
  summary: Get a Non-Employee Record
@@ -42,7 +41,7 @@ get:
 put:
  operationId: nonEmployeeRecordUpdate
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Update Non-Employee Record
@@ -85,7 +84,7 @@ put:
 patch:
  operationId: nonEmployeeRecordPatch
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Patch Non-Employee Record
@@ -134,8 +133,7 @@ patch:
 delete:
  operationId: nonEmployeeRecordDelete
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:delete]
  #     - 'idn:nesr:delete'
  tags:
    - Non-Employee Lifecycle Management
  summary: Delete Non-Employee Record
--- a/static/api-specs/idn/beta/paths/non-employee-records-bulk-delete.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-records-bulk-delete.yaml
@@ -1,8 +1,7 @@
 post:
  operationId: nonEmployeeRecordBulkDelete
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:delete]
  #     - 'idn:nesr:delete'
  tags:
    - Non-Employee Lifecycle Management
  summary: Delete Multiple Non-Employee Records
--- a/static/api-specs/idn/beta/paths/non-employee-records.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-records.yaml
@@ -1,8 +1,7 @@
 post:
  operationId: nonEmployeeRecordCreation
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:create]
  #     - 'idn:nesr:create'
  tags:
    - Non-Employee Lifecycle Management
  summary: Create Non-Employee Record
@@ -40,7 +39,7 @@ post:
 get:
  operationId: nonEmployeeRecordList
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: List Non-Employee Records
--- a/static/api-specs/idn/beta/paths/non-employee-reject-request.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-reject-request.yaml
@@ -1,7 +1,7 @@
 post:
  operationId: nonEmployeeRejectRequest
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Reject a Non-Employee Request
--- a/static/api-specs/idn/beta/paths/non-employee-request-summary-get.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-request-summary-get.yaml
@@ -1,7 +1,7 @@
 get:
  operationId: nonEmployeeRequestSummaryGet
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Get Summary of Non-Employee Requests
--- a/static/api-specs/idn/beta/paths/non-employee-request.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-request.yaml
@@ -1,7 +1,7 @@
 get:
  operationId: nonEmployeeRequestGet
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Get a Non-Employee Request
@@ -38,8 +38,7 @@ get:
 delete:
  operationId: nonEmployeeRequestDeletion
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:delete]
  #     - 'idn:nesr:delete'
  tags:
    - Non-Employee Lifecycle Management
  summary: Delete Non-Employee Request
--- a/static/api-specs/idn/beta/paths/non-employee-requests.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-requests.yaml
@@ -1,7 +1,7 @@
 post:
  operationId: nonEmployeeRequestCreation
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Create Non-Employee Request
@@ -57,7 +57,7 @@ post:
 get:
  operationId: nonEmployeeRequestList
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: List Non-Employee Requests
--- a/static/api-specs/idn/beta/paths/non-employee-source-aggregate.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-source-aggregate.yaml
@@ -1,8 +1,7 @@
 post:
  operationId: nonEmployeeSourceAggregateGet
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:create]
  #     - 'idn:nesr:create'
  tags:
    - Non-Employee Lifecycle Management
  summary: Aggregate all accounts for a Non-Employee Source
--- a/static/api-specs/idn/beta/paths/non-employee-source.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-source.yaml
@@ -1,7 +1,7 @@
 get:
  operationId: nonEmployeeSourceGet
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Get a Non-Employee Source
@@ -36,8 +36,7 @@ get:
 patch:
  operationId: nonEmployeeSourcePatch
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:update]
  #     - 'idn:nesr:update'
  tags:
    - Non-Employee Lifecycle Management
  summary: Patch a Non-Employee Source
@@ -92,8 +91,7 @@ patch:
 delete:
  operationId: nonEmployeeSourceDelete
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:delete]
  #     - 'idn:nesr:delete'
  tags:
    - Non-Employee Lifecycle Management
  summary: Delete Non-Employee Source
--- a/static/api-specs/idn/beta/paths/non-employee-sources-bulk-upload-details.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-sources-bulk-upload-details.yaml
@@ -1,8 +1,7 @@
 get:
  operationId: nonEmployeeBulkUploadDetails
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:read]
  #       - 'idn:nesr:read'
  tags:
    - Non-Employee Lifecycle Management
  summary: Details of bulk upload job on source
--- a/static/api-specs/idn/beta/paths/non-employee-sources-bulk-upload-non-employees.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-sources-bulk-upload-non-employees.yaml
@@ -1,8 +1,7 @@
 post:
  operationId: nonEmployeeRecordsBulkUpload
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:create]
  #       - 'idn:nesr:create'
  tags:
    - Non-Employee Lifecycle Management
  summary: Imports, or Updates, Non-Employee Records
--- a/static/api-specs/idn/beta/paths/non-employee-sources-bulk-upload-status.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-sources-bulk-upload-status.yaml
@@ -1,8 +1,7 @@
 get:
  operationId: nonEmployeeBulkUploadStatus
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:read]
  #       - 'idn:nesr:read'
  tags:
    - Non-Employee Lifecycle Management
  summary: Obtain the status of bulk upload on the source
--- a/static/api-specs/idn/beta/paths/non-employee-sources-export-non-employees.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-sources-export-non-employees.yaml
@@ -1,8 +1,7 @@
 get:
  operationId: nonEmployeeRecordsExport
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:read]
  #       - 'idn:nesr:read'
  tags:
    - Non-Employee Lifecycle Management
  summary: Exports Non-Employee Records to CSV
--- a/static/api-specs/idn/beta/paths/non-employee-sources-export-schema-attributes-template.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-sources-export-schema-attributes-template.yaml
@@ -1,8 +1,7 @@
 get:
  operationId: nonEmployeeExportSourceSchemaTemplate
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:read]
  #       - 'idn:nesr:read'
  tags:
    - Non-Employee Lifecycle Management
  summary: Exports Source Schema Template
--- a/static/api-specs/idn/beta/paths/non-employee-sources-schema-attribute.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-sources-schema-attribute.yaml
@@ -1,7 +1,7 @@
 get:
  operationId: getSchemaAttribute
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: Get Schema Attribute Non-Employee Source
@@ -37,8 +37,7 @@ get:
 patch:
  operationId: patchSchemaAttribute
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:update]
  #       - 'idn:nesr:update'
  tags:
    - Non-Employee Lifecycle Management
  summary: Patch a Schema Attribute for Non-Employee Source
@@ -97,8 +96,7 @@ patch:
 delete:
  operationId: deleteSchemaAttribute
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:delete]
  #       - 'idn:nesr:delete'
  tags:
    - Non-Employee Lifecycle Management
  summary: Delete a Schema Attribute for Non-Employee Source
--- a/static/api-specs/idn/beta/paths/non-employee-sources-schema-attributes.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-sources-schema-attributes.yaml
@@ -1,7 +1,7 @@
 get:
  operationId: getSchemaAttributes
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: List Schema Attributes Non-Employee Source
@@ -39,8 +39,7 @@ get:
 post:
  operationId: createSchemaAttribute
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:create]
  #       - 'idn:nesr:create'
  tags:
    - Non-Employee Lifecycle Management
  summary: Create a new Schema Attribute for Non-Employee Source
@@ -87,8 +86,7 @@ post:
 delete:
  operationId: deleteSchemaAttributes
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:delete]
  #       - 'idn:nesr:delete'
  tags:
    - Non-Employee Lifecycle Management
  summary: Delete all custom schema attributes for Non-Employee Source
--- a/static/api-specs/idn/beta/paths/non-employee-sources.yaml
+++ b/static/api-specs/idn/beta/paths/non-employee-sources.yaml
@@ -1,8 +1,7 @@
 post:
  operationId: nonEmployeeSourcesCreation
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:nesr:create]
  #     - 'idn:nesr:create'
  tags:
    - Non-Employee Lifecycle Management
  summary: Create Non-Employee Source
@@ -39,7 +38,7 @@ post:
 get:
  operationId: nonEmployeeSourcesList
  security:
-    - bearerAuth: []
+    - oauth2: []
  tags:
    - Non-Employee Lifecycle Management
  summary: List Non-Employee Sources
--- a/static/api-specs/idn/beta/paths/notification-preferences.yaml
+++ b/static/api-specs/idn/beta/paths/notification-preferences.yaml
@@ -8,9 +8,7 @@ get:
    Request will require the following legacy roles:  ORG_ADMIN and API
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [ORG_ADMIN,API]
  #       - ORG_ADMIN
  #       - API
  parameters:
    - in: path
      name: key
@@ -52,9 +50,7 @@ put:
    Request will require the following legacy roles:  ORG_ADMIN and API
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [ORG_ADMIN,API]
  #       - ORG_ADMIN
  #       - API
  parameters:
    - in: path
      name: key
--- a/static/api-specs/idn/beta/paths/notification-template-context.yaml
+++ b/static/api-specs/idn/beta/paths/notification-template-context.yaml
@@ -12,8 +12,7 @@ get:
    Requires the following security scope:  idn:notification-templates:read
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:notification-templates:read]
  #     - 'idn:notification-templates:read'
  responses:
    '200':
--- a/static/api-specs/idn/beta/paths/oauth-client.yaml
+++ b/static/api-specs/idn/beta/paths/oauth-client.yaml
@@ -1,8 +1,7 @@
 get:
  operationId: getOauthClient
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:oathkeeper-client:read]
  #       - 'idn:oathkeeper-client:read'
  tags:
    - OAuth Clients
  summary: Get OAuth Client
@@ -42,9 +41,7 @@ get:
 delete:
  operationId: deleteOauthClient
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:oathkeeper-client:delete,idn:oathkeeper-internal-client:delete]
  #       - 'idn:oathkeeper-client:delete'
  #       - 'idn:oathkeeper-internal-client:delete'
  tags:
    - OAuth Clients
  summary: Delete OAuth Client
@@ -81,8 +78,7 @@ delete:
 patch:
  operationId: patchOauthClient
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:oathkeeper-client:update]
  #       - 'idn:oathkeeper-client:update'
  tags:
    - OAuth Clients
  summary: Patch OAuth Client
--- a/static/api-specs/idn/beta/paths/oauth-clients.yaml
+++ b/static/api-specs/idn/beta/paths/oauth-clients.yaml
@@ -1,8 +1,7 @@
 get:
  operationId: listOauthClients
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:oathkeeper-client-list:read]
  #       - 'idn:oathkeeper-client-list:read'
  tags:
    - OAuth Clients
  summary: List OAuth Clients
@@ -34,9 +33,7 @@ get:
 post:
  operationId: createOauthClient
  # security:
-  #   - bearerAuth:
+  #   - oauth2: [idn:oathkeeper-client:create,idn:oathkeeper-internal-client:create]
  #       - 'idn:oathkeeper-client:create'
  #       - 'idn:oathkeeper-internal-client:create'
  tags:
    - OAuth Clients
  summary: Create OAuth Client
--- a/static/api-specs/idn/beta/paths/password-sync-group.yaml
+++ b/static/api-specs/idn/beta/paths/password-sync-group.yaml
@@ -7,8 +7,7 @@ get:
    This API returns the sync group for the specified ID.
    A token with ORG_ADMIN authority is required to call this API.
 #  security:
-#   - bearerAuth:
+#   - oauth2: [ORG_ADMIN]
 #       - ORG_ADMIN
  parameters:
    - in: path
      name: id
@@ -48,8 +47,7 @@ put:
    This API updates the specified password sync group.
    A token with ORG_ADMIN authority is required to call this API.
 #  security:
-#   - bearerAuth:
+#   - oauth2: [ORG_ADMIN]
 #       - ORG_ADMIN
  parameters:
    - in: path
      name: id
@@ -102,8 +100,7 @@ delete:
    This API deletes the specified password sync group.
    A token with ORG_ADMIN authority is required to call this API.
 #  security:
-#   - bearerAuth:
+#   - oauth2: [ORG_ADMIN]
 #       - ORG_ADMIN
  parameters:
    - in: path
      name: id
--- a/static/api-specs/idn/beta/paths/password-sync-groups.yaml
+++ b/static/api-specs/idn/beta/paths/password-sync-groups.yaml
@@ -7,8 +7,7 @@ get:
    This API returns a list of password sync groups.
    A token with ORG_ADMIN authority is required to call this API.
 #  security:
-#   - bearerAuth:
+#   - oauth2: [ORG_ADMIN]
 #       - ORG_ADMIN
  parameters:
    - $ref: '../../v3/parameters/limit.yaml'
    - $ref: '../../v3/parameters/offset.yaml'
@@ -37,8 +36,7 @@ post:
    This API creates a password sync group based on the specifications provided.
    A token with ORG_ADMIN authority is required to call this API.
 #  security:
-#    - bearerAuth:
+#    - oauth2: [ORG_ADMIN]
 #        - ORG_ADMIN
  requestBody:
    required: true
    content:
--- a/Show More
+++ b/Show More