OpenAPITools · devhl-labs · Mar 15, 2026 · cubic-dev-ai · Mar 15, 2026 · cubic-dev-ai
diff --git a/...nerator/src/main/resources/csharp/libraries/generichost/DependencyInjectionTests.mustache b/...nerator/src/main/resources/csharp/libraries/generichost/DependencyInjectionTests.mustache
@@ -76,8 +76,8 @@ namespace {{packageName}}.Test.{{apiPackage}}
 
                 {{/httpSignatureMethods}}
                 {{#oauthMethods}}
-                OAuthToken oauthToken = new{{^net70OrLater}} OAuthToken{{/net70OrLater}}("token", timeout: TimeSpan.FromSeconds(1));
-                options.AddTokens(oauthToken);
+                OAuthToken oauthToken{{-index}} = new{{^net70OrLater}} OAuthToken{{/net70OrLater}}("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken{{-index}});
 
                 {{/oauthMethods}}
                 {{/lambda.trimTrailingWithNewLine}}

diff --git a/...urces/3_0/csharp/petstore-with-fake-endpoints-models-for-testing-with-http-signature.yaml b/...urces/3_0/csharp/petstore-with-fake-endpoints-models-for-testing-with-http-signature.yaml
@@ -73,6 +73,9 @@ paths:
         - petstore_auth:
             - 'write:pets'
             - 'read:pets'
+        - petstore_auth2:
+            - 'write:pets'
+            - 'read:pets'
       requestBody:
         $ref: '#/components/requestBodies/Pet'
     put:
@@ -1430,6 +1433,14 @@ components:
           scopes:
             'write:pets': modify pets in your account
             'read:pets': read your pets
+    petstore_auth2:
+      type: oauth2
+      flows:
+        implicit:
+          authorizationUrl: 'http://petstore.swagger.io/api/oauth/dialog'
+          scopes:
+            'write:pets': modify pets in your account
+            'read:pets': read your pets
     api_key:
       type: apiKey
       name: api-key

diff --git a/samples/client/petstore/csharp/generichost/net10/FormModels/api/openapi.yaml b/samples/client/petstore/csharp/generichost/net10/FormModels/api/openapi.yaml
@@ -90,6 +90,9 @@ paths:
       - petstore_auth:
         - write:pets
         - read:pets
+      - petstore_auth2:
+        - write:pets
+        - read:pets
       summary: Add a new pet to the store
       tags:
       - pet
@@ -3116,6 +3119,14 @@ components:
             write:pets: modify pets in your account
             read:pets: read your pets
       type: oauth2
+    petstore_auth2:
+      flows:
+        implicit:
+          authorizationUrl: http://petstore.swagger.io/api/oauth/dialog
+          scopes:
+            write:pets: modify pets in your account
+            read:pets: read your pets
+      type: oauth2
     api_key:
       in: header
       name: api-key

diff --git a/samples/client/petstore/csharp/generichost/net10/FormModels/docs/apis/PetApi.md b/samples/client/petstore/csharp/generichost/net10/FormModels/docs/apis/PetApi.md
@@ -34,7 +34,7 @@ void (empty response body)
 
 ### Authorization
 
-[petstore_auth](../README.md#petstore_auth), [http_signature_test](../README.md#http_signature_test)
+[petstore_auth](../README.md#petstore_auth), [petstore_auth2](../README.md#petstore_auth2), [http_signature_test](../README.md#http_signature_test)
 
 ### HTTP request headers
 

diff --git a/...etstore/csharp/generichost/net10/FormModels/src/Org.OpenAPITools.Test/Api/ApiTestsBase.cs b/...etstore/csharp/generichost/net10/FormModels/src/Org.OpenAPITools.Test/Api/ApiTestsBase.cs
@@ -76,6 +76,9 @@ public static IHostBuilder CreateHostBuilder(string[] args) => Host.CreateDefaul
                 string oauthTokenValue1 = context.Configuration["<token>"] ?? throw new Exception("Token not found.");
                 OAuthToken oauthToken1 = new(oauthTokenValue1, timeout: TimeSpan.FromSeconds(1));
                 options.AddTokens(oauthToken1);
+                string oauthTokenValue2 = context.Configuration["<token>"] ?? throw new Exception("Token not found.");
+                OAuthToken oauthToken2 = new(oauthTokenValue2, timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken2);
             });
     }
 }
diff --git a/...rp/generichost/net10/FormModels/src/Org.OpenAPITools.Test/Api/DependencyInjectionTests.cs b/...rp/generichost/net10/FormModels/src/Org.OpenAPITools.Test/Api/DependencyInjectionTests.cs
@@ -45,6 +45,9 @@ public class DependencyInjectionTest
 
                 OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
                 options.AddTokens(oauthToken1);
+
+                OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken2);
             })
             .Build();
 
@@ -67,8 +70,11 @@ public class DependencyInjectionTest
                 HttpSignatureToken httpSignatureToken1 = new(config1, timeout: TimeSpan.FromSeconds(1));
                 options.AddTokens(httpSignatureToken1);
 
-                OAuthToken oauthToken = new("token", timeout: TimeSpan.FromSeconds(1));
-                options.AddTokens(oauthToken);
+                OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken1);
+
+                OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken2);
                 options.AddApiHttpClients(client => client.BaseAddress = new Uri(ClientUtils.BASE_ADDRESS));
             })
             .Build();
@@ -96,6 +102,9 @@ public class DependencyInjectionTest
 
                     OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
                     options.AddTokens(oauthToken1);
+
+                    OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                    options.AddTokens(oauthToken2);
                 });
             })
             .Build();
@@ -123,6 +132,9 @@ public class DependencyInjectionTest
 
                     OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
                     options.AddTokens(oauthToken1);
+
+                    OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                    options.AddTokens(oauthToken2);
                     options.AddApiHttpClients(client => client.BaseAddress = new Uri(ClientUtils.BASE_ADDRESS));
                 });
             })

diff --git a/...es/client/petstore/csharp/generichost/net10/FormModels/src/Org.OpenAPITools/Api/PetApi.cs b/...es/client/petstore/csharp/generichost/net10/FormModels/src/Org.OpenAPITools/Api/PetApi.cs
@@ -847,14 +847,20 @@ public async Task<IAddPetApiResponse> AddPetAsync(Pet pet, System.Threading.Canc
 
                     oauthTokenLocalVar1.UseInHeader(httpRequestMessageLocalVar, "");
 
-                    HttpSignatureToken httpSignatureTokenLocalVar2 = (HttpSignatureToken) await HttpSignatureTokenProvider.GetAsync(cancellation: cancellationToken).ConfigureAwait(false);
+                    OAuthToken oauthTokenLocalVar2 = (OAuthToken) await OauthTokenProvider.GetAsync(cancellation: cancellationToken).ConfigureAwait(false);
 
-                    tokenBaseLocalVars.Add(httpSignatureTokenLocalVar2);
+                    tokenBaseLocalVars.Add(oauthTokenLocalVar2);
+
+                    oauthTokenLocalVar2.UseInHeader(httpRequestMessageLocalVar, "");
+
+                    HttpSignatureToken httpSignatureTokenLocalVar3 = (HttpSignatureToken) await HttpSignatureTokenProvider.GetAsync(cancellation: cancellationToken).ConfigureAwait(false);
+
+                    tokenBaseLocalVars.Add(httpSignatureTokenLocalVar3);
 
                     if (httpRequestMessageLocalVar.Content != null) {
                         string requestBodyLocalVar = await httpRequestMessageLocalVar.Content.ReadAsStringAsync(cancellationToken).ConfigureAwait(false);
 
-                        httpSignatureTokenLocalVar2.UseInHeader(httpRequestMessageLocalVar, requestBodyLocalVar, cancellationToken);
+                        httpSignatureTokenLocalVar3.UseInHeader(httpRequestMessageLocalVar, requestBodyLocalVar, cancellationToken);
                     }
 
                     string[] contentTypes = new string[] {

diff --git a/samples/client/petstore/csharp/generichost/net10/NullReferenceTypes/api/openapi.yaml b/samples/client/petstore/csharp/generichost/net10/NullReferenceTypes/api/openapi.yaml
@@ -90,6 +90,9 @@ paths:
       - petstore_auth:
         - write:pets
         - read:pets
+      - petstore_auth2:
+        - write:pets
+        - read:pets
       summary: Add a new pet to the store
       tags:
       - pet
@@ -3136,6 +3139,14 @@ components:
             write:pets: modify pets in your account
             read:pets: read your pets
       type: oauth2
+    petstore_auth2:
+      flows:
+        implicit:
+          authorizationUrl: http://petstore.swagger.io/api/oauth/dialog
+          scopes:
+            write:pets: modify pets in your account
+            read:pets: read your pets
+      type: oauth2
     api_key:
       in: header
       name: api-key

diff --git a/...client/petstore/csharp/generichost/net10/NullReferenceTypes/docs/apis/PetApi.md b/...client/petstore/csharp/generichost/net10/NullReferenceTypes/docs/apis/PetApi.md
@@ -34,7 +34,7 @@ void (empty response body)
 
 ### Authorization
 
-[petstore_auth](../README.md#petstore_auth), [http_signature_test](../README.md#http_signature_test)
+[petstore_auth](../README.md#petstore_auth), [petstore_auth2](../README.md#petstore_auth2), [http_signature_test](../README.md#http_signature_test)
 
 ### HTTP request headers
 

diff --git a/...csharp/generichost/net10/NullReferenceTypes/src/Org.OpenAPITools.Test/Api/ApiTestsBase.cs b/...csharp/generichost/net10/NullReferenceTypes/src/Org.OpenAPITools.Test/Api/ApiTestsBase.cs
@@ -76,6 +76,9 @@ public static IHostBuilder CreateHostBuilder(string[] args) => Host.CreateDefaul
                 string oauthTokenValue1 = context.Configuration["<token>"] ?? throw new Exception("Token not found.");
                 OAuthToken oauthToken1 = new(oauthTokenValue1, timeout: TimeSpan.FromSeconds(1));
                 options.AddTokens(oauthToken1);
+                string oauthTokenValue2 = context.Configuration["<token>"] ?? throw new Exception("Token not found.");
+                OAuthToken oauthToken2 = new(oauthTokenValue2, timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken2);
             });
     }
 }
diff --git a/...ichost/net10/NullReferenceTypes/src/Org.OpenAPITools.Test/Api/DependencyInjectionTests.cs b/...ichost/net10/NullReferenceTypes/src/Org.OpenAPITools.Test/Api/DependencyInjectionTests.cs
@@ -45,6 +45,9 @@ public class DependencyInjectionTest
 
                 OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
                 options.AddTokens(oauthToken1);
+
+                OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken2);
             })
             .Build();
 
@@ -67,8 +70,11 @@ public class DependencyInjectionTest
                 HttpSignatureToken httpSignatureToken1 = new(config1, timeout: TimeSpan.FromSeconds(1));
                 options.AddTokens(httpSignatureToken1);
 
-                OAuthToken oauthToken = new("token", timeout: TimeSpan.FromSeconds(1));
-                options.AddTokens(oauthToken);
+                OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken1);
+
+                OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken2);
                 options.AddApiHttpClients(client => client.BaseAddress = new Uri(ClientUtils.BASE_ADDRESS));
             })
             .Build();
@@ -96,6 +102,9 @@ public class DependencyInjectionTest
 
                     OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
                     options.AddTokens(oauthToken1);
+
+                    OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                    options.AddTokens(oauthToken2);
                 });
             })
             .Build();
@@ -123,6 +132,9 @@ public class DependencyInjectionTest
 
                     OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
                     options.AddTokens(oauthToken1);
+
+                    OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                    options.AddTokens(oauthToken2);
                     options.AddApiHttpClients(client => client.BaseAddress = new Uri(ClientUtils.BASE_ADDRESS));
                 });
             })

diff --git a/...t/petstore/csharp/generichost/net10/NullReferenceTypes/src/Org.OpenAPITools/Api/PetApi.cs b/...t/petstore/csharp/generichost/net10/NullReferenceTypes/src/Org.OpenAPITools/Api/PetApi.cs
@@ -849,14 +849,20 @@ public async Task<IAddPetApiResponse> AddPetAsync(Pet pet, System.Threading.Canc
 
                     oauthTokenLocalVar1.UseInHeader(httpRequestMessageLocalVar, "");
 
-                    HttpSignatureToken httpSignatureTokenLocalVar2 = (HttpSignatureToken) await HttpSignatureTokenProvider.GetAsync(cancellation: cancellationToken).ConfigureAwait(false);
+                    OAuthToken oauthTokenLocalVar2 = (OAuthToken) await OauthTokenProvider.GetAsync(cancellation: cancellationToken).ConfigureAwait(false);
 
-                    tokenBaseLocalVars.Add(httpSignatureTokenLocalVar2);
+                    tokenBaseLocalVars.Add(oauthTokenLocalVar2);
+
+                    oauthTokenLocalVar2.UseInHeader(httpRequestMessageLocalVar, "");
+
+                    HttpSignatureToken httpSignatureTokenLocalVar3 = (HttpSignatureToken) await HttpSignatureTokenProvider.GetAsync(cancellation: cancellationToken).ConfigureAwait(false);
+
+                    tokenBaseLocalVars.Add(httpSignatureTokenLocalVar3);
 
                     if (httpRequestMessageLocalVar.Content != null) {
                         string requestBodyLocalVar = await httpRequestMessageLocalVar.Content.ReadAsStringAsync(cancellationToken).ConfigureAwait(false);
 
-                        httpSignatureTokenLocalVar2.UseInHeader(httpRequestMessageLocalVar, requestBodyLocalVar, cancellationToken);
+                        httpSignatureTokenLocalVar3.UseInHeader(httpRequestMessageLocalVar, requestBodyLocalVar, cancellationToken);
                     }
 
                     string[] contentTypes = new string[] {

diff --git a/samples/client/petstore/csharp/generichost/net10/Petstore/api/openapi.yaml b/samples/client/petstore/csharp/generichost/net10/Petstore/api/openapi.yaml
@@ -90,6 +90,9 @@ paths:
       - petstore_auth:
         - write:pets
         - read:pets
+      - petstore_auth2:
+        - write:pets
+        - read:pets
       summary: Add a new pet to the store
       tags:
       - pet
@@ -3136,6 +3139,14 @@ components:
             write:pets: modify pets in your account
             read:pets: read your pets
       type: oauth2
+    petstore_auth2:
+      flows:
+        implicit:
+          authorizationUrl: http://petstore.swagger.io/api/oauth/dialog
+          scopes:
+            write:pets: modify pets in your account
+            read:pets: read your pets
+      type: oauth2
     api_key:
       in: header
       name: api-key

diff --git a/samples/client/petstore/csharp/generichost/net10/Petstore/docs/apis/PetApi.md b/samples/client/petstore/csharp/generichost/net10/Petstore/docs/apis/PetApi.md
@@ -34,7 +34,7 @@ void (empty response body)
 
 ### Authorization
 
-[petstore_auth](../README.md#petstore_auth), [http_signature_test](../README.md#http_signature_test)
+[petstore_auth](../README.md#petstore_auth), [petstore_auth2](../README.md#petstore_auth2), [http_signature_test](../README.md#http_signature_test)
 
 ### HTTP request headers
 

diff --git a/.../petstore/csharp/generichost/net10/Petstore/src/Org.OpenAPITools.Test/Api/ApiTestsBase.cs b/.../petstore/csharp/generichost/net10/Petstore/src/Org.OpenAPITools.Test/Api/ApiTestsBase.cs
@@ -76,6 +76,9 @@ public static IHostBuilder CreateHostBuilder(string[] args) => Host.CreateDefaul
                 string oauthTokenValue1 = context.Configuration["<token>"] ?? throw new Exception("Token not found.");
                 OAuthToken oauthToken1 = new(oauthTokenValue1, timeout: TimeSpan.FromSeconds(1));
                 options.AddTokens(oauthToken1);
+                string oauthTokenValue2 = context.Configuration["<token>"] ?? throw new Exception("Token not found.");
+                OAuthToken oauthToken2 = new(oauthTokenValue2, timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken2);
             });
     }
 }
diff --git a/...harp/generichost/net10/Petstore/src/Org.OpenAPITools.Test/Api/DependencyInjectionTests.cs b/...harp/generichost/net10/Petstore/src/Org.OpenAPITools.Test/Api/DependencyInjectionTests.cs
@@ -45,6 +45,9 @@ public class DependencyInjectionTest
 
                 OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
                 options.AddTokens(oauthToken1);
+
+                OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken2);
             })
             .Build();
 
@@ -67,8 +70,11 @@ public class DependencyInjectionTest
                 HttpSignatureToken httpSignatureToken1 = new(config1, timeout: TimeSpan.FromSeconds(1));
                 options.AddTokens(httpSignatureToken1);
 
-                OAuthToken oauthToken = new("token", timeout: TimeSpan.FromSeconds(1));
-                options.AddTokens(oauthToken);
+                OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken1);
+
+                OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                options.AddTokens(oauthToken2);
                 options.AddApiHttpClients(client => client.BaseAddress = new Uri(ClientUtils.BASE_ADDRESS));
             })
             .Build();
@@ -96,6 +102,9 @@ public class DependencyInjectionTest
 
                     OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
                     options.AddTokens(oauthToken1);
+
+                    OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                    options.AddTokens(oauthToken2);
                 });
             })
             .Build();
@@ -123,6 +132,9 @@ public class DependencyInjectionTest
 
                     OAuthToken oauthToken1 = new("token", timeout: TimeSpan.FromSeconds(1));
                     options.AddTokens(oauthToken1);
+
+                    OAuthToken oauthToken2 = new("token", timeout: TimeSpan.FromSeconds(1));
+                    options.AddTokens(oauthToken2);
                     options.AddApiHttpClients(client => client.BaseAddress = new Uri(ClientUtils.BASE_ADDRESS));
                 });
             })

diff --git a/samples/client/petstore/csharp/generichost/net10/Petstore/src/Org.OpenAPITools/Api/PetApi.cs b/samples/client/petstore/csharp/generichost/net10/Petstore/src/Org.OpenAPITools/Api/PetApi.cs
@@ -847,14 +847,20 @@ public async Task<IAddPetApiResponse> AddPetAsync(Pet pet, System.Threading.Canc
 
                     oauthTokenLocalVar1.UseInHeader(httpRequestMessageLocalVar, "");
 
-                    HttpSignatureToken httpSignatureTokenLocalVar2 = (HttpSignatureToken) await HttpSignatureTokenProvider.GetAsync(cancellation: cancellationToken).ConfigureAwait(false);
+                    OAuthToken oauthTokenLocalVar2 = (OAuthToken) await OauthTokenProvider.GetAsync(cancellation: cancellationToken).ConfigureAwait(false);
 
-                    tokenBaseLocalVars.Add(httpSignatureTokenLocalVar2);
+                    tokenBaseLocalVars.Add(oauthTokenLocalVar2);
+
+                    oauthTokenLocalVar2.UseInHeader(httpRequestMessageLocalVar, "");
+
+                    HttpSignatureToken httpSignatureTokenLocalVar3 = (HttpSignatureToken) await HttpSignatureTokenProvider.GetAsync(cancellation: cancellationToken).ConfigureAwait(false);
+
+                    tokenBaseLocalVars.Add(httpSignatureTokenLocalVar3);
 
                     if (httpRequestMessageLocalVar.Content != null) {
                         string requestBodyLocalVar = await httpRequestMessageLocalVar.Content.ReadAsStringAsync(cancellationToken).ConfigureAwait(false);
 
-                        httpSignatureTokenLocalVar2.UseInHeader(httpRequestMessageLocalVar, requestBodyLocalVar, cancellationToken);
+                        httpSignatureTokenLocalVar3.UseInHeader(httpRequestMessageLocalVar, requestBodyLocalVar, cancellationToken);
                     }
 
                     string[] contentTypes = new string[] {

diff --git a/samples/client/petstore/csharp/generichost/net10/SourceGeneration/api/openapi.yaml b/samples/client/petstore/csharp/generichost/net10/SourceGeneration/api/openapi.yaml
@@ -90,6 +90,9 @@ paths:
       - petstore_auth:
         - write:pets
         - read:pets
+      - petstore_auth2:
+        - write:pets
+        - read:pets
       summary: Add a new pet to the store
       tags:
       - pet
@@ -3136,6 +3139,14 @@ components:
             write:pets: modify pets in your account
             read:pets: read your pets
       type: oauth2
+    petstore_auth2:
+      flows:
+        implicit:
+          authorizationUrl: http://petstore.swagger.io/api/oauth/dialog
+          scopes:
+            write:pets: modify pets in your account
+            read:pets: read your pets
+      type: oauth2
     api_key:
       in: header
       name: api-key