RocketChat · ggazzo · Aug 8, 2025 · Aug 1, 2025 · Aug 1, 2025 · Aug 1, 2025
diff --git a/.changeset/tall-scissors-boil.md b/.changeset/tall-scissors-boil.md
@@ -0,0 +1,7 @@
+---
+"@rocket.chat/meteor": patch
+"@rocket.chat/core-typings": patch
+"@rocket.chat/rest-typings": patch
+---
+
+Add OpenAPI support for the Rocket.Chat oauth-apps.get API endpoints by migrating to a modern chained route definition syntax and utilizing shared AJV schemas for validation to enhance API documentation and ensure type safety through response validation.
@@ -302,6 +302,8 @@ export type TypedThis<TOptions extends TypedOptions, TPath extends string = ''>
 	bodyParams: TOptions['body'] extends ValidateFunction<infer Body> ? Body : never;
 
 	requestIp?: string;
+	route: string;
+	response: Response;
 };
 
 type PromiseOrValue<T> = T | Promise<T>;

@@ -3,7 +3,6 @@ import { OAuthApps } from '@rocket.chat/models';
 import {
 	ajv,
 	isUpdateOAuthAppParams,
-	isOauthAppsGetParams,
 	isDeleteOAuthAppParams,
 	validateUnauthorizedErrorResponse,
 	validateBadRequestErrorResponse,
@@ -63,30 +62,87 @@ const oauthAppsListEndpoints = API.v1.get(
 	},
 );
 
-API.v1.addRoute(
+type OauthAppsGetParams = { clientId: string } | { appId: string } | { _id: string };
+
+const oauthAppsGetParamsSchema = {
+	oneOf: [
+		{
+			type: 'object',
+			properties: {
+				_id: {
+					type: 'string',
+				},
+			},
+			required: ['_id'],
+			additionalProperties: false,
+		},
+		{
+			type: 'object',
+			properties: {
+				clientId: {
+					type: 'string',
+				},
+			},
+			required: ['clientId'],
+			additionalProperties: false,
+		},
+		{
+			type: 'object',
+			properties: {
+				appId: {
+					type: 'string',
+				},
+			},
+			required: ['appId'],
+			additionalProperties: false,
+		},
+	],
+};
+
+const isOauthAppsGetParams = ajv.compile<OauthAppsGetParams>(oauthAppsGetParamsSchema);
+
+const oauthAppsGetEndpoints = API.v1.get(
 	'oauth-apps.get',
-	{ authRequired: true, validateParams: isOauthAppsGetParams },
 	{
-		async get() {
-			const isOAuthAppsManager = await hasPermissionAsync(this.userId, 'manage-oauth-apps');
+		authRequired: true,
+		query: isOauthAppsGetParams,
+		response: {
+			400: validateBadRequestErrorResponse,
+			401: validateUnauthorizedErrorResponse,
+			200: ajv.compile<{ oauthApp: IOAuthApps }>({
+				type: 'object',
+				properties: {
+					oauthApp: { anyOf: [{ $ref: '#/components/schemas/IOAuthApps' }, { type: 'null' }] },
+					success: {
+						type: 'boolean',
+						enum: [true],
+					},
+				},
+				required: ['oauthApp', 'success'],
+				additionalProperties: false,
+			}),
+		},
+	},
+
+	async function action() {
+		const isOAuthAppsManager = await hasPermissionAsync(this.userId, 'manage-oauth-apps');
 
-			const oauthApp = await OAuthApps.findOneAuthAppByIdOrClientId(
-				this.queryParams,
-				!isOAuthAppsManager ? { projection: { clientSecret: 0 } } : {},
-			);
+		const oauthApp = await OAuthApps.findOneAuthAppByIdOrClientId(
+			this.queryParams,
+			!isOAuthAppsManager ? { projection: { clientSecret: 0 } } : {},
+		);
 
-			if (!oauthApp) {
-				return API.v1.failure('OAuth app not found.');
-			}
+		if (!oauthApp) {
+			return API.v1.failure('OAuth app not found.');
+		}
 
-			if ('appId' in this.queryParams) {
-				apiDeprecationLogger.parameter(this.route, 'appId', '7.0.0', this.response);
-			}
+		if ('appId' in this.queryParams) {
+			apiDeprecationLogger.parameter(this.route, 'appId', '7.0.0', this.response);
+		}
 
-			return API.v1.success({
-				oauthApp,
-			});
-		},
+		return API.v1.success({
+			oauthApp,
+		});
 	},
 );
 
@@ -187,11 +243,15 @@ type OauthAppsCreateEndpoints = ExtractRoutesFromAPI<typeof oauthAppsCreateEndpo
 
 type OauthAppsListEndpoints = ExtractRoutesFromAPI<typeof oauthAppsListEndpoints>;
 
-export type OAuthAppsEndpoints = OauthAppsCreateEndpoints | OauthAppsListEndpoints;
+type OauthAppsGetEndpoints = ExtractRoutesFromAPI<typeof oauthAppsGetEndpoints>;
+
+export type OAuthAppsEndpoints = OauthAppsCreateEndpoints | OauthAppsListEndpoints | OauthAppsGetEndpoints;
 
 declare module '@rocket.chat/rest-typings' {
 	// eslint-disable-next-line @typescript-eslint/naming-convention, @typescript-eslint/no-empty-interface
 	interface Endpoints extends OauthAppsCreateEndpoints {}
 	// eslint-disable-next-line @typescript-eslint/naming-convention, @typescript-eslint/no-empty-interface
 	interface Endpoints extends OauthAppsListEndpoints {}
+	// eslint-disable-next-line @typescript-eslint/naming-convention, @typescript-eslint/no-empty-interface
+	interface Endpoints extends OauthAppsGetEndpoints {}
 }
@@ -286,8 +286,9 @@ describe('[OAuthApps]', () => {
 				.expect(400)
 				.expect((res) => {
 					expect(res.body).to.have.property('success', false);
+					expect(res.body).to.have.property('errorType', 'error-invalid-params');
 					expect(res.body).to.have.property('error');
-					expect(res.body.error).to.include('must be string').and.include('must match exactly one schema in oneOf [invalid-params]');
+					expect(res.body.error).to.include('must be string').and.include('must match exactly one schema in oneOf');
 				});
 		});
 
@@ -311,8 +312,9 @@ describe('[OAuthApps]', () => {
 				.expect(400)
 				.expect((res) => {
 					expect(res.body).to.have.property('success', false);
+					expect(res.body).to.have.property('errorType', 'error-invalid-params');
 					expect(res.body).to.have.property('error');
-					expect(res.body.error).to.include('must be string').and.include('must match exactly one schema in oneOf [invalid-params]');
+					expect(res.body.error).to.include('must be string').and.include('must match exactly one schema in oneOf');
 				});
 		});
 
@@ -336,8 +338,9 @@ describe('[OAuthApps]', () => {
 				.expect(400)
 				.expect((res) => {
 					expect(res.body).to.have.property('success', false);
+					expect(res.body).to.have.property('errorType', 'error-invalid-params');
 					expect(res.body).to.have.property('error');
-					expect(res.body.error).to.include('must be string').and.include('must match exactly one schema in oneOf [invalid-params]');
+					expect(res.body.error).to.include('must be string').and.include('must match exactly one schema in oneOf');
 				});
 		});
 

@@ -3,7 +3,7 @@ export interface IOAuthApps {
 	name: string;
 	active: boolean;
 	clientId: string;
-	clientSecret: string;
+	clientSecret?: string;
 	redirectUri: string;
 	_createdAt: Date;
 	_createdBy: {

@@ -236,7 +236,6 @@ export * from './v1/licenses';
 export * from './v1/omnichannel';
 export * from './v1/oauthapps';
 export * from './v1/oauthapps/UpdateOAuthAppParamsPOST';
-export * from './v1/oauthapps/OAuthAppsGetParamsGET';
 export * from './v1/oauthapps/DeleteOAuthAppParamsDELETE';
 export * from './helpers/PaginatedRequest';
 export * from './helpers/PaginatedResult';

@@ -1,16 +1,9 @@
 import type { IOAuthApps } from '@rocket.chat/core-typings';
 
 import type { DeleteOAuthAppParams } from './oauthapps/DeleteOAuthAppParamsDELETE';
-import type { OauthAppsGetParams } from './oauthapps/OAuthAppsGetParamsGET';
 import type { UpdateOAuthAppParams } from './oauthapps/UpdateOAuthAppParamsPOST';
 
 export type OAuthAppsEndpoint = {
-	'/v1/oauth-apps.get': {
-		GET: (params: OauthAppsGetParams) => {
-			oauthApp: IOAuthApps;
-		};
-	};
-
 	'/v1/oauth-apps.update': {
 		POST: (params: UpdateOAuthAppParams) => IOAuthApps | null;
 	};