Allow free-form Cookie header to be set in the Authorise modal

[chris-crispin]

Content & configuration

Swagger/OpenAPI definition:

openapi: 3.0.1
info:
 title: Some Example Service
 version: "1.0"
servers:
- url: http://localhost:8080
 description: Generated server url
security:
- Cookie: []
paths:
 /something/create:
   post:
     operationId: createSomething
     parameters:
       - name: client-id
         in: header
         required: false
         schema:
           type: string
     responses:
       "201":
         description: Created
components:
 securitySchemes:
   Cookie:
     type: apiKey
     description: Authentication Cookies
     name: Cookie
     in: header

Swagger-UI configuration options:

SwaggerUI({
  persistAuthorization: true
})

Is your feature request related to a problem?

Clients are not able to set free-form cookies in the browser rendering the try it out function useless for a number of our APIs.

Describe the solution you'd like

When a header authorization named Cookie is configured in security schema and the persist authorization option is set to true, and the authorize button is clicked, the free-form cookie values provided in the authorization modal should be set on the browser, thus sent with any request to the same origin. The path for these cookies should be set to "/" to ensure the cookies are attached to every same origin request (it appears as though sets these to the Swagger UI path based on my limited testing).

Describe alternatives you've considered

Alternative is to let the request fail in the UI and copy the curl request to be performed on the users terminal or provide some javascript helper to set the cookies through the browser console independent of Swagger UI. Both of these are cumbersome and put a dent in the usability/benefits of the Swagger UI.