SmartBear, profile picture
Uploaded bySmartBear
PPTX, PDF1,047 views

Introducing OpenAPI Version 3.1

The document provides an overview of OpenAPI 3.1, detailing its history, versioning using semantic versioning, and changes from previous versions. It introduces new features like webhooks, security schemes for client certificates, and enhancements to support various content types and schemas. Additionally, it discusses future possibilities such as overlays and reusable components for more efficient API design.

Embed presentation

Downloaded 69 times
Introduction to OpenAPI 3.1 Darrel Miller Ron Ratovsky OAI Technical Steering Committee Members
Proprietary & Confidential 3 OpenAPI 3.1
Proprietary & Confidential 4 OpenAPI 2.0 2014 2015 2016 2017 OpenAPI 3.0 OpenAPI 3.0.2 2018 2019 Alternative Schema Pilot OpenAPI 3.1 2021 Overlays OpenAPI Specification History
Proprietary & Confidential 5 OpenAPI Versioning 3.0 The OpenAPI Specification is versioned using Semantic Versioning 2.0.0 (semver) and follows the semver specification. 3.0.3 Each new minor version of the OpenAPI Specification SHALL allow any OpenAPI document that is valid against any previous minor version of the Specification, within the same major version, to be updated to the new Specification version with equivalent semantics. Such an update MUST only require changing the openapi property to the new minor version. 3.1 Occasionally, non-backwards compatible changes may be made in minor versions of the OAS where impact is believed to be low relative to the benefit provided. Yay SemVer! Clarity! Err SemVer? Need more precision! Boo SemVer!
Proprietary & Confidential 6 Info Object https://spdx.org/licenses/ openapi: 3.1.0 info: title: My Demo API version: 1.0.0 summary: An API with examples of features in 3.1 license: name: Apache 2.0 identifier: Apache-2.0 SPDX Identifier for machine processing
Proprietary & Confidential 7 Webhooks openapi: 3.1.0 info: title: My Demo API version: 1.0.0 summary: An API with examples of features in 3.1 webhooks: newThingAlert: $ref: '#/components/pathItems/newThingAlert' components: pathItems: newThingAlert: summary: Notification that a new thing has been created post: requestBody: content: applicaton/json: schema: type: object properties: thingName: type: string Reusable Path Items Out-of-band registered callbacks
Proprietary & Confidential 8 paths: /todos: post: requestBody: content: application/json: schema: summary: A new todo object description: | This is where where a new todo object can be described. $ref: "#/components/schemas/todo“ responses: 201: description: Created components: schemas: todo: title: A todo object type: object properties: id: type: integer description: type: string $ref SHOULD override Correction: The ability to override values is only within the Reference Object and cannot be used inside the Schema Object
Proprietary & Confidential 9 openapi: 3.1.0 info: title: Security Demo version: 1.0.0 paths: /todos: post: ... security: clientCertificate: - todo.write components: securitySchemes: clientCertificate: type: mutualTLS Security Roles/Claims for non-OAuth schemes New security scheme type for client certificates
Proprietary & Confidential 10 OpenAPI Documents paths webhooks components
Proprietary & Confidential 11 Odds and Ends Allowed request body for all HTTP methods Added multipart/form-data support for encoding object Path Item parameters must be defined Removed definition of some formats e.g. byte, binary Responses are now optional
Proprietary & Confidential 12 OpenAPI & JSON Schema OpenAPI 3.0 OpenAPI Schema OpenAPI Tools JSON Schema Tools OpenAPI 3.1 JSON Schema Draft 2020-09 OpenAPI Tools JSON Schema Tools Partially Broken OpenAPI Schema Tools
Proprietary & Confidential 13 Full JSON Schema Support - Full type support (nullable is gone) - Formats are… not enforced - exclusiveMinimum/Maximum, readOnly/writeOnly - file uploads, contentEncoding, contentMediaType - $schema and dialects (jsonSchemaDialect) - $id
Proprietary & Confidential 14 Relative References URIs (relative to document) • Reference Object • Path Item Object • $ref • Link Object • operationRef URLs (relative to servers) • External Documentation • License • Security URLs
Proprietary & Confidential 15 The Future Overlays: Separate document that augments another API description Reusable groups: $ref more than one component Alternative Schemas Optional and Multi-segment Paths Disambiguating based on query Digital Signatures and Encryption Discovery mechanism for security credentials (jwt, apikey, etc)

More Related Content

PPTX
API Docs with OpenAPI 3.0
byFabrizio Ferri-Benedetti
 
PPTX
API Design- Best Practices
byPrakash Bhandari
 
PDF
OpenAPI 3.0, And What It Means for the Future of Swagger
bySmartBear
 
PDF
Designing APIs with OpenAPI Spec
byAdam Paxton
 
PPTX
Restful api
byAnurag Srivastava
 
PDF
Api presentation
byTiago Cardoso
 
PPSX
Rest api standards and best practices
byAnkita Mahajan
 
PPTX
RESTful API - Best Practices
byTricode (part of Dept)
 
API Docs with OpenAPI 3.0
byFabrizio Ferri-Benedetti
 
API Design- Best Practices
byPrakash Bhandari
 
OpenAPI 3.0, And What It Means for the Future of Swagger
bySmartBear
 
Designing APIs with OpenAPI Spec
byAdam Paxton
 
Restful api
byAnurag Srivastava
 
Api presentation
byTiago Cardoso
 
Rest api standards and best practices
byAnkita Mahajan
 
RESTful API - Best Practices
byTricode (part of Dept)
 

What's hot

PPTX
Azure DevOps
byJuan Fabian
 
PPTX
API Management in Digital Transformation
byAditya Thatte
 
PDF
APIsecure 2023 - API orchestration: to build resilient applications, Cherish ...
byapidays
 
PDF
Vertex AI - Unified ML Platform for the entire AI workflow on Google Cloud
byMárton Kodok
 
PDF
Architecting an Enterprise API Management Strategy
byWSO2
 
PDF
Vertex AI: Pipelines for your MLOps workflows
byMárton Kodok
 
PDF
Migrate to Microsoft Azure with Confidence
byDavid J Rosenthal
 
PPTX
Azure API Management
byDaniel Toomey
 
PDF
Understanding MicroSERVICE Architecture with Java & Spring Boot
byKashif Ali Siddiqui
 
PDF
API Management - Why it matters!
bySven Bernhardt
 
PDF
Deploy 22 microservices from scratch in 30 mins with GitOps
byOpsta
 
PPTX
An introduction to microsoft power apps
byMitul Rana
 
PDF
What is AWS | AWS Certified Solutions Architect | AWS Tutorial | AWS Training...
byEdureka!
 
PPTX
App Modernization with Microsoft Azure
byMicrosoft Tech Community
 
PPTX
Guide to an API-first Strategy
byKellton Tech Solutions Ltd
 
PPTX
Overview of API Management Architectures
byNordic APIs
 
PDF
Definitive Guide to API Management
byApigee | Google Cloud
 
PPTX
introduction Azure OpenAI by Usama wahab khan
byUsama Wahab Khan Cloud, Data and AI
 
PPTX
Power Platform Governance
byDaniel Laskewitz
 
PPTX
API Management in Azure
byTomasso Groenendijk
 
Azure DevOps
byJuan Fabian
 
API Management in Digital Transformation
byAditya Thatte
 
APIsecure 2023 - API orchestration: to build resilient applications, Cherish ...
byapidays
 
Vertex AI - Unified ML Platform for the entire AI workflow on Google Cloud
byMárton Kodok
 
Architecting an Enterprise API Management Strategy
byWSO2
 
Vertex AI: Pipelines for your MLOps workflows
byMárton Kodok
 
Migrate to Microsoft Azure with Confidence
byDavid J Rosenthal
 
Azure API Management
byDaniel Toomey
 
Understanding MicroSERVICE Architecture with Java & Spring Boot
byKashif Ali Siddiqui
 
API Management - Why it matters!
bySven Bernhardt
 
Deploy 22 microservices from scratch in 30 mins with GitOps
byOpsta
 
An introduction to microsoft power apps
byMitul Rana
 
What is AWS | AWS Certified Solutions Architect | AWS Tutorial | AWS Training...
byEdureka!
 
App Modernization with Microsoft Azure
byMicrosoft Tech Community
 
Guide to an API-first Strategy
byKellton Tech Solutions Ltd
 
Overview of API Management Architectures
byNordic APIs
 
Definitive Guide to API Management
byApigee | Google Cloud
 
introduction Azure OpenAI by Usama wahab khan
byUsama Wahab Khan Cloud, Data and AI
 
Power Platform Governance
byDaniel Laskewitz
 
API Management in Azure
byTomasso Groenendijk
 

Similar to Introducing OpenAPI Version 3.1

PDF
9 Months and Counting with Jeff Borek of IBM OpenAPI Meetup 2016 09 15
byOpen API Initiative (OAI)
 
PDF
Schema-First API Design
byYos Riady
 
PPTX
The Swagger Format becomes the Open API Specification: Standardizing descript...
by3scale
 
PDF
apidays Paris 2024 - Walk the OpenAPI Talk, Moonwalk the Developer Experience...
byapidays
 
PDF
Presentation at the 2016 Linux Foundation Collab Summit
byOpen API Initiative (OAI)
 
PPTX
SVQdotNET: Building APIs with OpenApi
byJuan Luis Guerrero Minero
 
PPTX
Open API Initiative: Six months and counting
byOpen API Initiative (OAI)
 
PPTX
OpenAPI v.Next - Events, Alternative Schemas & the Road Ahead
byTed Epstein
 
PDF
Building APIs with the OpenApi Spec
byPedro J. Molina
 
PDF
Api clarity webinar
byLibbySchulze
 
PDF
OpenAPI Intro (1).pdf
byPostman
 
PDF
Enforcing API Design Rules for High Quality Code Generation
byTim Burks
 
PDF
Dead Simple APIs with OpenAPI
byChris Tankersley
 
PDF
A Snapshot of API Design Trends In 2019
byBill Doerrfeld
 
PDF
Testing libraries for fun & profit. Beware: Increased productivity ahead
byIxchel Ruiz
 
PPTX
OWASP PDX May 2016 : Scanning with Swagger (OAS) 2.0
byScott Lee Davis
 
PPTX
API
byMasters Academy
 
PDF
JSON API Specificiation
byWojciech Langiewicz
 
PDF
The 12 facets of the OpenAPI standard.pdf
byCisco DevNet
 
PDF
OpenAPI/AsyncAPI Support in Oxygen
byOctavian Nadolu
 
9 Months and Counting with Jeff Borek of IBM OpenAPI Meetup 2016 09 15
byOpen API Initiative (OAI)
 
Schema-First API Design
byYos Riady
 
The Swagger Format becomes the Open API Specification: Standardizing descript...
by3scale
 
apidays Paris 2024 - Walk the OpenAPI Talk, Moonwalk the Developer Experience...
byapidays
 
Presentation at the 2016 Linux Foundation Collab Summit
byOpen API Initiative (OAI)
 
SVQdotNET: Building APIs with OpenApi
byJuan Luis Guerrero Minero
 
Open API Initiative: Six months and counting
byOpen API Initiative (OAI)
 
OpenAPI v.Next - Events, Alternative Schemas & the Road Ahead
byTed Epstein
 
Building APIs with the OpenApi Spec
byPedro J. Molina
 
Api clarity webinar
byLibbySchulze
 
OpenAPI Intro (1).pdf
byPostman
 
Enforcing API Design Rules for High Quality Code Generation
byTim Burks
 
Dead Simple APIs with OpenAPI
byChris Tankersley
 
A Snapshot of API Design Trends In 2019
byBill Doerrfeld
 
Testing libraries for fun & profit. Beware: Increased productivity ahead
byIxchel Ruiz
 
OWASP PDX May 2016 : Scanning with Swagger (OAS) 2.0
byScott Lee Davis
 
API
byMasters Academy
 
JSON API Specificiation
byWojciech Langiewicz
 
The 12 facets of the OpenAPI standard.pdf
byCisco DevNet
 
OpenAPI/AsyncAPI Support in Oxygen
byOctavian Nadolu
 

More from SmartBear

PPTX
Enforcing Your Organization's API Design Standards with SwaggerHub
bySmartBear
 
PPTX
IATA Open Air: How API Standardization Enables Innovation in the Airline Indu...
bySmartBear
 
PPTX
The State of API 2020 Webinar – Exploring Trends, Tools & Takeaways to Drive ...
bySmartBear
 
PPTX
How LISI Automotive Accelerated Application Delivery with SwaggerHub
bySmartBear
 
PPTX
Standardising APIs: Powering the Platform Economy in Financial Services
bySmartBear
 
PPTX
Getting Started with API Standardization in SwaggerHub
bySmartBear
 
PPTX
Adopting a Design-First Approach to API Development with SwaggerHub
bySmartBear
 
PPTX
Standardizing APIs Across Your Organization with Swagger and OAS | A SmartBea...
bySmartBear
 
PPTX
Effective API Lifecycle Management
bySmartBear
 
PDF
The API Lifecycle Series: Exploring Design-First and Code-First Approaches to...
bySmartBear
 
PDF
The API Lifecycle Series: Evolving API Development and Testing from Open Sour...
bySmartBear
 
PPTX
Artificial intelligence for faster and smarter software testing - Galway Mee...
bySmartBear
 
PDF
Successfully Implementing BDD in an Agile World
bySmartBear
 
PPTX
The Best Kept Secrets of Code Review | SmartBear Webinar
bySmartBear
 
PPTX
How Capital One Scaled API Design to Deliver New Products Faster
bySmartBear
 
PPTX
Testing Without a GUI Using TestComplete
bySmartBear
 
PPTX
Hidden Treasure - TestComplete Script Extensions
bySmartBear
 
PDF
How Bdd Can Save Agile
bySmartBear
 
PPTX
API Automation and TDD to Implement Master Data Survivorship Rules
bySmartBear
 
PDF
Support Rapid Systems Growth with a Design-First Approach
bySmartBear
 
Enforcing Your Organization's API Design Standards with SwaggerHub
bySmartBear
 
IATA Open Air: How API Standardization Enables Innovation in the Airline Indu...
bySmartBear
 
The State of API 2020 Webinar – Exploring Trends, Tools & Takeaways to Drive ...
bySmartBear
 
How LISI Automotive Accelerated Application Delivery with SwaggerHub
bySmartBear
 
Standardising APIs: Powering the Platform Economy in Financial Services
bySmartBear
 
Getting Started with API Standardization in SwaggerHub
bySmartBear
 
Adopting a Design-First Approach to API Development with SwaggerHub
bySmartBear
 
Standardizing APIs Across Your Organization with Swagger and OAS | A SmartBea...
bySmartBear
 
Effective API Lifecycle Management
bySmartBear
 
The API Lifecycle Series: Exploring Design-First and Code-First Approaches to...
bySmartBear
 
The API Lifecycle Series: Evolving API Development and Testing from Open Sour...
bySmartBear
 
Artificial intelligence for faster and smarter software testing - Galway Mee...
bySmartBear
 
Successfully Implementing BDD in an Agile World
bySmartBear
 
The Best Kept Secrets of Code Review | SmartBear Webinar
bySmartBear
 
How Capital One Scaled API Design to Deliver New Products Faster
bySmartBear
 
Testing Without a GUI Using TestComplete
bySmartBear
 
Hidden Treasure - TestComplete Script Extensions
bySmartBear
 
How Bdd Can Save Agile
bySmartBear
 
API Automation and TDD to Implement Master Data Survivorship Rules
bySmartBear
 
Support Rapid Systems Growth with a Design-First Approach
bySmartBear
 

Recently uploaded

PPTX
The Lex Wire Precedent: A Technical Standard for Machine-Mediated Authority ...
byJeff Howell
 
PDF
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
PDF
The Enterprise Web3 Landscape - a view from Kaleido based on the past 10 year...
byPeter Broadhurst
 
PDF
AI-Powered Alert Analysis with ClickHouse - DB Mastery Jan'26
byAlkin Tezuysal
 
PDF
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
PDF
"Painless Major Upgrade: A Strategy for Updating Large Codebases", Andrii Yat...
byFwdays
 
PDF
When Drones Decide for Themselves_ Inside the Rise of Machine-Led Flight.pdf
byLyra Anderson
 
PPTX
Software Engineering in the Age of AI Agents
byHusseinMalikMammadli
 
PPTX
TechSprint WinterHack — Top 10 Teams Pitching Session we are excited for pit...
bybajpaitusharoffon678
 
PDF
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 
PDF
"When every team does things "right", but together it turns into chaos", Yozh...
byFwdays
 
PDF
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
PDF
Pneumatic Pressure Pump PPP01 for Calibration & Testing
bySERRAX TECHNOLOGIES LLP
 
PDF
2026_01_28 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
PDF
How to build hackthon projects from ZERO!
byishantyadav1111
 
PPTX
Introduction to Artificial Intelligence (AI).pptx
byammar414783
 
PPTX
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
PDF
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
PDF
Real-Time AI Masterclass: Vector Search at Scale
byScyllaDB
 
PDF
How to Design Premium Health (Public Health) PPT Using AI? Top Strategies
byPublic Health Concern Nepal
 
The Lex Wire Precedent: A Technical Standard for Machine-Mediated Authority ...
byJeff Howell
 
Computer-Based Training (CBT) The Backbone of Modern Technical & Defence Trai...
bycomputerbasedtrainin1
 
The Enterprise Web3 Landscape - a view from Kaleido based on the past 10 year...
byPeter Broadhurst
 
AI-Powered Alert Analysis with ClickHouse - DB Mastery Jan'26
byAlkin Tezuysal
 
React Mastery: Visual Mental Models to Understand React Deeply
byThomas Gaye
 
"Painless Major Upgrade: A Strategy for Updating Large Codebases", Andrii Yat...
byFwdays
 
When Drones Decide for Themselves_ Inside the Rise of Machine-Led Flight.pdf
byLyra Anderson
 
Software Engineering in the Age of AI Agents
byHusseinMalikMammadli
 
TechSprint WinterHack — Top 10 Teams Pitching Session we are excited for pit...
bybajpaitusharoffon678
 
Parental Control App for Phones_ The Complete 2026 Guide for Safer, Smarter P...
byRyan Cooper
 
"When every team does things "right", but together it turns into chaos", Yozh...
byFwdays
 
Transcript: What Thema can do: Leveraging metadata to support the discoverabi...
byBookNet Canada
 
Pneumatic Pressure Pump PPP01 for Calibration & Testing
bySERRAX TECHNOLOGIES LLP
 
2026_01_28 - OpenMetadata Community Meeting.pdf
byOpenMetadata
 
How to build hackthon projects from ZERO!
byishantyadav1111
 
Introduction to Artificial Intelligence (AI).pptx
byammar414783
 
TechSprint Inauguration at SJB Institute of Technology held on 18 December 2025
bysuhasspgdg
 
Taxonomy Alignment for SDG Tagging - ASHA Case Study
byEnterprise Knowledge
 
Real-Time AI Masterclass: Vector Search at Scale
byScyllaDB
 
How to Design Premium Health (Public Health) PPT Using AI? Top Strategies
byPublic Health Concern Nepal
 

Introducing OpenAPI Version 3.1

  • 1.
    Introduction to OpenAPI 3.1 DarrelMiller Ron Ratovsky OAI Technical Steering Committee Members
  • 3.
  • 4.
  • 5.
    Proprietary & Confidential 5 OpenAPIVersioning 3.0 The OpenAPI Specification is versioned using Semantic Versioning 2.0.0 (semver) and follows the semver specification. 3.0.3 Each new minor version of the OpenAPI Specification SHALL allow any OpenAPI document that is valid against any previous minor version of the Specification, within the same major version, to be updated to the new Specification version with equivalent semantics. Such an update MUST only require changing the openapi property to the new minor version. 3.1 Occasionally, non-backwards compatible changes may be made in minor versions of the OAS where impact is believed to be low relative to the benefit provided. Yay SemVer! Clarity! Err SemVer? Need more precision! Boo SemVer!
  • 6.
    Proprietary & Confidential 6 InfoObject https://spdx.org/licenses/ openapi: 3.1.0 info: title: My Demo API version: 1.0.0 summary: An API with examples of features in 3.1 license: name: Apache 2.0 identifier: Apache-2.0 SPDX Identifier for machine processing
  • 7.
    Proprietary & Confidential 7 Webhooks openapi:3.1.0 info: title: My Demo API version: 1.0.0 summary: An API with examples of features in 3.1 webhooks: newThingAlert: $ref: '#/components/pathItems/newThingAlert' components: pathItems: newThingAlert: summary: Notification that a new thing has been created post: requestBody: content: applicaton/json: schema: type: object properties: thingName: type: string Reusable Path Items Out-of-band registered callbacks
  • 8.
    Proprietary & Confidential 8 paths: /todos: post: requestBody: content: application/json: schema: summary:A new todo object description: | This is where where a new todo object can be described. $ref: "#/components/schemas/todo“ responses: 201: description: Created components: schemas: todo: title: A todo object type: object properties: id: type: integer description: type: string $ref SHOULD override Correction: The ability to override values is only within the Reference Object and cannot be used inside the Schema Object
  • 9.
    Proprietary & Confidential 9 openapi:3.1.0 info: title: Security Demo version: 1.0.0 paths: /todos: post: ... security: clientCertificate: - todo.write components: securitySchemes: clientCertificate: type: mutualTLS Security Roles/Claims for non-OAuth schemes New security scheme type for client certificates
  • 10.
    Proprietary & Confidential 10 OpenAPIDocuments paths webhooks components
  • 11.
    Proprietary & Confidential 11 Oddsand Ends Allowed request body for all HTTP methods Added multipart/form-data support for encoding object Path Item parameters must be defined Removed definition of some formats e.g. byte, binary Responses are now optional
  • 12.
    Proprietary & Confidential 12 OpenAPI& JSON Schema OpenAPI 3.0 OpenAPI Schema OpenAPI Tools JSON Schema Tools OpenAPI 3.1 JSON Schema Draft 2020-09 OpenAPI Tools JSON Schema Tools Partially Broken OpenAPI Schema Tools
  • 13.
    Proprietary & Confidential 13 FullJSON Schema Support - Full type support (nullable is gone) - Formats are… not enforced - exclusiveMinimum/Maximum, readOnly/writeOnly - file uploads, contentEncoding, contentMediaType - $schema and dialects (jsonSchemaDialect) - $id
  • 14.
    Proprietary & Confidential 14 RelativeReferences URIs (relative to document) • Reference Object • Path Item Object • $ref • Link Object • operationRef URLs (relative to servers) • External Documentation • License • Security URLs
  • 15.
    Proprietary & Confidential 15 TheFuture Overlays: Separate document that augments another API description Reusable groups: $ref more than one component Alternative Schemas Optional and Multi-segment Paths Disambiguating based on query Digital Signatures and Encryption Discovery mechanism for security credentials (jwt, apikey, etc)

Editor's Notes

  • #2 Member of TSC
  • #6 Easy to migrate existing body of descriptions to new version SemVer sucks for specs! Major and minor
  • #16 -45