summaryrefslogtreecommitdiff
path: root/core/api-sync.rst
diff options
context:
space:
mode:
authorChristian Grothoff <christian@grothoff.org>2019-12-05 21:46:56 +0100
committerChristian Grothoff <christian@grothoff.org>2019-12-05 21:46:56 +0100
commit69a282f6997d2dc230a28543b707e3ceecfa6a05 (patch)
tree37e67e289f3c9f818c561bd1b8414f467312356a /core/api-sync.rst
parentc3c23422efd929ead7f829b022ede4597c3c51b0 (diff)
downloaddocs-69a282f6997d2dc230a28543b707e3ceecfa6a05.tar.gz
docs-69a282f6997d2dc230a28543b707e3ceecfa6a05.tar.bz2
docs-69a282f6997d2dc230a28543b707e3ceecfa6a05.zip
use If-none-match instead of etag
Diffstat (limited to 'core/api-sync.rst')
-rw-r--r--core/api-sync.rst10
1 files changed, 4 insertions, 6 deletions
diff --git a/core/api-sync.rst b/core/api-sync.rst
index 50cde65..5241507 100644
--- a/core/api-sync.rst
+++ b/core/api-sync.rst
@@ -212,15 +212,13 @@ Receiving Terms of Service
for example due to concurrent activities from other accounts on the
same account!
- The request must also include an "Sync-Signature" signing
+ The request MUST also include an "Sync-Signature" signing
the "If-Match" SHA-512 value and the SHA-512 hash of the body with
the account private key.
- Finally, the SHA-512 hash of the body must also be given in an
- "Etag" header of the request (so that the signature can be verified
- before the upload is allowed to proceed). We note that the use
- of "ETag" in HTTP requests is non-standard, but in this case
- logical.
+ Finally, the SHA-512 hash of the body MUST also be given in an
+ "If-None-Match" header of the request (so that the signature can be verified
+ before the upload is allowed to proceed).
The uploaded body must have at least 32 bytes of payload (see
suggested upload format beginning with an ephemeral key).