Remove confidential Swagger OAuth client secret from browser configuration

## What to build

Adjust Swagger/OpenAPI OAuth configuration so the browser UI does not receive a confidential OIDC client secret. The template should prefer a public OAuth client with PKCE for interactive docs.

## Acceptance criteria

- [ ] Swagger UI config no longer passes `clientSecret` to the browser.
- [ ] Docs describe the expected OIDC client type for Swagger UI.
- [ ] PKCE-based authorization code flow remains supported for local interactive API docs.
- [ ] Tests or configuration checks cover the safer default.

## Blocked by

None - can start immediately.


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Remove confidential Swagger OAuth client secret from browser configuration #16

What to build

Acceptance criteria

Blocked by

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Remove confidential Swagger OAuth client secret from browser configuration #16

Description

What to build

Acceptance criteria

Blocked by

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions