API Improvements - OpenAPI and more auth options
The API should be documented with OpenAPI to allow better tooling.
Ideally using the above OpenAPI spec you could auto generate a SDK or API client for popular languages.
Lastly, the API should accept authentication options other than digest. There is very poor support for digest authentication by popular HTTP clients. I don't like trying to implement security protocols myself, as there is often some quirk I have not fully understood that ends up leaving me less secure than I hoped.
In many questions online when searching for information about digest authentication, the person asking the question is asking about the MongoDB Atlas API - so it seems you are one of the biggest users of digest auth. Anything else would be better IMO!
-
Hi Andy!
I just wanted to follow up on this as we recently introduced Service Accounts via OAuth 2.0 as an authentication option for the Atlas Admin API!
This feature is currently in Public Preview, and I would love to hear any feedback you might have!
The documentation is here: https://www.mongodb.com/docs/atlas/api/service-accounts-overview/#std-label-service-accounts-overview
-
Jerome commented
Hello,
A swagger description file would be a good start.
+ 1 for this improvement request.
Regards,