modify ruleset for authentication

TykTechnologies · Sep 10, 2024 · e50bfaf · e50bfaf
1 parent a53a2f4
commit e50bfaf
Showing 1 changed file with 9 additions and 15 deletions.
diff --git a/dev/tykapi-ruleset.yaml b/dev/tykapi-ruleset.yaml
@@ -17,19 +17,13 @@ rules:
       functionOptions:
         match: '^(?!\s*$).+'
 
-  security-authentication:
-    description: |
-      The API specification must specify either JWT authentication or mutual TLS authentication.
-    message: |
-      Either `.enable_jwt` must be true or `use_mutual_tls_auth` must be true.
-    given: $  # Root level
+  check-auth-settings:
+    description: Ensure either `enable_jwt` or `use_mutual_tls_auth` is set to true
+    message: "Either `enable_jwt` or `use_mutual_tls_auth` must be set to true."
+    severity: error
+    given: "$"
     then:
-      field: $  # Root level
-      function: anyOf
-      functionOptions:
-        criteria:
-          - field: $.enable_jwt
-            function: truthy
-          - field: $.use_mutual_tls_auth
-            function: truthy
-      severity: error
+      function: "truthy"
+      field: "enable_jwt"
+      or:
+        - field: "use_mutual_tls_auth"