You can define security definitions when you perform an operation on a REST API endpoint.
Define the securityDefinitions input parameter in the swagger file and call the security definitions in an operation. You can use only the basic and apiKey security definitions types with the securityDefinitions parameter.
If you want to connect to a web service that uses OAUTH version 2.0, provide the values of authentication details as custom header fields or query parameters in a request message.