I\'m trying to protect my api using the below. However it seems to have no effect, I can still access my endpoint without a token.
# [START swagger] swagger: &quo