docs(api): document apis with swagger (#4678)

* feat(api): introduce swagger

* feat(api): anottate api

* chore(api): tag endpoints

* chore(api): remove tags

* chore(api): add docs for oauth auth

* chore(api): document create endpoint api

* chore(api): document endpoint inspect and list

* chore(api): document endpoint update and snapshots

* docs(endpointgroups): document groups api

* docs(auth): document auth api

* chore(build): introduce a yarn script to build api docs

* docs(api): document auth

* docs(customtemplates): document customtemplates api

* docs(tags): document api

* docs(api): document the use of token

* docs(dockerhub): document dockerhub api

* docs(edgegroups): document edgegroups api

* docs(edgejobs): document api

* docs(edgestacks): doc api

* docs(http/upload): add security

* docs(api): document edge templates

* docs(edge): document edge jobs

* docs(endpointgroups): change description

* docs(endpoints): document missing apis

* docs(motd): doc api

* docs(registries): doc api

* docs(resourcecontrol): api doc

* docs(role): add swagger docs

* docs(settings): add swagger docs

* docs(api/status): add swagger docs

* docs(api/teammembership): add swagger docs

* docs(api/teams): add swagger docs

* docs(api/templates): add swagger docs

* docs(api/users): add swagger docs

* docs(api/webhooks): add swagger docs

* docs(api/webscokets): add swagger docs

* docs(api/stacks): swagger

* docs(api): fix missing apis

* docs(swagger): regen

* chore(build): remove docs from build

* docs(api): update tags

* docs(api): document tags

* docs(api): add description

* docs(api): rename jwt token

* docs(api): add info about types

* docs(api): document types

* docs(api): update request types annotation

* docs(api): doc registry and resource control

* chore(docs): add snippet

* docs(api): add description to role

* docs(api): add types for settings

* docs(status): add types

* style(swagger): remove documented code

* docs(http/upload): update docs with types

* docs(http/tags): add types

* docs(api/custom_templates): add types

* docs(api/teammembership): add types

* docs(http/teams): add types

* docs(http/stacks): add types

* docs(edge): add types to edgestack

* docs(http/teammembership): remove double returns

* docs(api/user): add types

* docs(http): fixes to make file built

* chore(snippets): add scope to swagger snippet

* chore(deps): install swag

* chore(swagger): remove handler

* docs(api): add description

* docs(api): ignore docs folder

* docs(api): add contributing guidelines

* docs(api): cleanup handler

* chore(deps): require swaggo

* fix(auth): fix typo

* fix(docs): make http ids pascal case

* feat(edge): add ids to http handlers

* fix(docs): add ids

* fix(docs): show correct api version

* chore(deps): remove swaggo dependency

* chore(docs): add install script for swag

api/http/handler/teammemberships/teammembership_create.go

@@ -7,15 +7,18 @@ import (
 	httperror "github.com/portainer/libhttp/error"
 	"github.com/portainer/libhttp/request"
 	"github.com/portainer/libhttp/response"
-	"github.com/portainer/portainer/api"
+	portainer "github.com/portainer/portainer/api"
 	httperrors "github.com/portainer/portainer/api/http/errors"
 	"github.com/portainer/portainer/api/http/security"
 )
 
 type teamMembershipCreatePayload struct {
-	UserID int
-	TeamID int
-	Role   int
+	// User identifier
+	UserID int `validate:"required" example:"1"`
+	// Team identifier
+	TeamID int `validate:"required" example:"1"`
+	// Role for the user inside the team (1 for leader and 2 for regular member)
+	Role int `validate:"required" example:"1" enums:"1,2"`
 }
 
 func (payload *teamMembershipCreatePayload) Validate(r *http.Request) error {
@@ -31,7 +34,22 @@ func (payload *teamMembershipCreatePayload) Validate(r *http.Request) error {
 	return nil
 }
 
-// POST request on /api/team_memberships
+// @id TeamMembershipCreate
+// @summary Create a new team membership
+// @description Create a new team memberships. Access is only available to administrators leaders of the associated team.
+// @description **Access policy**: admin
+// @tags team_memberships
+// @security jwt
+// @accept json
+// @produce json
+// @param body body teamMembershipCreatePayload true "Team membership details"
+// @success 200 {object} portainer.TeamMembership "Success"
+// @success 204 "Success"
+// @failure 400 "Invalid request"
+// @failure 403 "Permission denied to manage memberships"
+// @failure 409 "Team membership already registered"
+// @failure 500 "Server error"
+// @router /team_memberships [post]
 func (handler *Handler) teamMembershipCreate(w http.ResponseWriter, r *http.Request) *httperror.HandlerError {
 	var payload teamMembershipCreatePayload
 	err := request.DecodeAndValidateJSONPayload(r, &payload)

api/http/handler/teammemberships/teammembership_delete.go

@@ -6,13 +6,25 @@ import (
 	httperror "github.com/portainer/libhttp/error"
 	"github.com/portainer/libhttp/request"
 	"github.com/portainer/libhttp/response"
-	"github.com/portainer/portainer/api"
+	portainer "github.com/portainer/portainer/api"
 	bolterrors "github.com/portainer/portainer/api/bolt/errors"
 	"github.com/portainer/portainer/api/http/errors"
 	"github.com/portainer/portainer/api/http/security"
 )
 
-// DELETE request on /api/team_memberships/:id
+// @id TeamMembershipDelete
+// @summary Remove a team membership
+// @description Remove a team membership. Access is only available to administrators leaders of the associated team.
+// @description **Access policy**: restricted
+// @tags team_memberships
+// @security jwt
+// @param id path int true "TeamMembership identifier"
+// @success 204 "Success"
+// @failure 400 "Invalid request"
+// @failure 403 "Permission denied"
+// @failure 404 "TeamMembership not found"
+// @failure 500 "Server error"
+// @router /team_memberships/{id} [delete]
 func (handler *Handler) teamMembershipDelete(w http.ResponseWriter, r *http.Request) *httperror.HandlerError {
 	membershipID, err := request.RetrieveNumericRouteVariableValue(r, "id")
 	if err != nil {

api/http/handler/teammemberships/teammembership_list.go

@@ -9,7 +9,18 @@ import (
 	"github.com/portainer/portainer/api/http/security"
 )
 
-// GET request on /api/team_memberships
+// @id TeamMembershipList
+// @summary List team memberships
+// @description  List team memberships. Access is only available to administrators and team leaders.
+// @description **Access policy**: admin
+// @tags team_memberships
+// @security jwt
+// @produce json
+// @success 200 {array} portainer.TeamMembership "Success"
+// @failure 400 "Invalid request"
+// @failure 403 "Permission denied"
+// @failure 500 "Server error"
+// @router /team_memberships [get]
 func (handler *Handler) teamMembershipList(w http.ResponseWriter, r *http.Request) *httperror.HandlerError {
 	securityContext, err := security.RetrieveRestrictedRequestContext(r)
 	if err != nil {

api/http/handler/teammemberships/teammembership_update.go

@@ -7,16 +7,19 @@ import (
 	httperror "github.com/portainer/libhttp/error"
 	"github.com/portainer/libhttp/request"
 	"github.com/portainer/libhttp/response"
-	"github.com/portainer/portainer/api"
+	portainer "github.com/portainer/portainer/api"
 	bolterrors "github.com/portainer/portainer/api/bolt/errors"
 	httperrors "github.com/portainer/portainer/api/http/errors"
 	"github.com/portainer/portainer/api/http/security"
 )
 
 type teamMembershipUpdatePayload struct {
-	UserID int
-	TeamID int
-	Role   int
+	// User identifier
+	UserID int `validate:"required" example:"1"`
+	// Team identifier
+	TeamID int `validate:"required" example:"1"`
+	// Role for the user inside the team (1 for leader and 2 for regular member)
+	Role int `validate:"required" example:"1" enums:"1,2"`
 }
 
 func (payload *teamMembershipUpdatePayload) Validate(r *http.Request) error {
@@ -32,7 +35,22 @@ func (payload *teamMembershipUpdatePayload) Validate(r *http.Request) error {
 	return nil
 }
 
-// PUT request on /api/team_memberships/:id
+// @id TeamMembershipUpdate
+// @summary Update a team membership
+// @description Update a team membership. Access is only available to administrators leaders of the associated team.
+// @description **Access policy**: restricted
+// @tags team_memberships
+// @security jwt
+// @accept json
+// @produce json
+// @param id path int true "Team membership identifier"
+// @param body body teamMembershipUpdatePayload true "Team membership details"
+// @success 200 {object} portainer.TeamMembership "Success"
+// @failure 400 "Invalid request"
+// @failure 403 "Permission denied"
+// @failure 404 "TeamMembership not found"
+// @failure 500 "Server error"
+// @router /team_memberships/{id} [put]
 func (handler *Handler) teamMembershipUpdate(w http.ResponseWriter, r *http.Request) *httperror.HandlerError {
 	membershipID, err := request.RetrieveNumericRouteVariableValue(r, "id")
 	if err != nil {