Fix #1756 (#1786)

Author: tcztzy

docs/openapi-fetch/middleware-auth.md

@@ -160,8 +160,8 @@ If authorization isn’t needed for certain routes, you could also handle that w
 const UNPROTECTED_ROUTES = ["/v1/login", "/v1/logout", "/v1/public/"];
 
 const authMiddleware = {
-  onRequest({ url, request }) {
-    if (UNPROTECTED_ROUTES.some((pathname) => url.startsWith(pathname))) {
+  onRequest({ schemaPath, request }) {
+    if (UNPROTECTED_ROUTES.some((pathname) => schemaPath.startsWith(pathname))) {
       return undefined; // don’t modify request for certain paths
     }
 

packages/openapi-fetch/src/index.d.ts

@@ -125,8 +125,6 @@ export type MergedOptions<T = unknown> = {
 };
 
 export interface MiddlewareCallbackParams {
-  /** Final URL for this request */
-  readonly url: string;
   /** Current Request object */
   request: Request;
   /** The original OpenAPI schema path (including curly braces) */