Time  Nick          Message
22:48 pdurbin       could read part of the db, probably. sure
22:40 JMZ_DMZ       could they even read any db info without having a user/pass?
22:39 JMZ_DMZ       if someone compromises the api key
22:39 JMZ_DMZ       say you have an apikey and user-auth securing access to a database
12:29 pdurbin       SwashBuckla: good job
11:43 SwashBuckla   than Postman...
11:43 SwashBuckla   It's much easier to use curl
11:43 SwashBuckla   pdurbin: well, I fixed it.
11:31 SwashBuckla   oh, I have found some docs on that
11:30 SwashBuckla   how do I get one?
11:21 pdurbin       it'd be easier to tell from looking at a curl command
11:17 SwashBuckla   is that the right way to do it?
11:16 SwashBuckla   raw request pasted there
11:16 SwashBuckla   pdurbin: http://pastebin.com/jK1czcrQ
11:15 SwashBuckla   ¯\_(ツ)_/¯
11:15 SwashBuckla   but I could be doing it wrong
11:15 SwashBuckla   application/json
11:15 pdurbin       SwashBuckla: which Content-Type header are you sending?
11:14 SwashBuckla   !paste
11:13 SwashBuckla   so...
11:13 pdurbin       "When performing a request that contains a body (eg. POST or PUT), the type of content you are sending needs to be specified in the Content-Type header." https://developer.bigcommerce.com/api/media-types
11:10 SwashBuckla   whenever I send raw a copy-paste of that example Request JSON, I get [{"status":415,"message":"The specified input content type is not valid."}]
11:09 SwashBuckla   I am a bit of a REST noob. Can anyone see how to create an order given this documentation? I am using Basic Auth: https://developer.bigcommerce.com/api/stores/v2/orders#create-order
10:43 singh_abhinav yeah sure I am looking at it pdurbin
10:39 pdurbin       singh_abhinav: you could look at how Twitter lets you upload pictures
07:36 singh_abhinav I am creating REST API for uploading files. Any pointers on best practises for designing file upload API?  I'm particularly interested in what all the request and response headers shall I sent
06:29 trygvis       sorry
06:28 trygvis       uhm, yes. you're right
06:28 tmoore        (according to the link above and other things I've read)
06:28 tmoore        trygvis: I thought it was the other way around
06:27 woky          great, than you, tmoore, trygvis
06:22 trygvis       422 is when you're sending illegal json/xml, 400 if the file is semantically invalid (missing fields etc)
06:20 tmoore        http://stackoverflow.com/a/20215807/29470
06:20 tmoore        woky: 422 is typical
06:19 singh_abhinav I am creating REST API for uploading files. Any pointers on best practises for designing file upload API?  I'm particularly interested in what all the request and response headers shall I sent
06:11 woky          Is it just 400?
06:10 woky          Hello. What's the correct status code that should the resource return on PUT when the body of the request didn't conform to the resource constraints (bad xml/json structure, missing field, negative int, ...)?