Some endpoints do not use authentication internally, so there is no need for the app to send it to them.
Without any sensitive data sent in the request, it then makes more sense for these endpoints to use GET instead of POST (see README.md for an explanation of this measure of security through obscurity).
AdamVig
commented
8 years ago
Some endpoints do not use authentication internally, so there is no need for the app to send it to them.
Without any sensitive data sent in the request, it then makes more sense for these endpoints to use
GETinstead ofPOST(seeREADME.mdfor an explanation of this measure of security through obscurity).