kvz
commented
13 years ago I don't think the information I disclose is sensitive (at least not to the one making the request)
For example my clients use the meta data for logging, and sorting out time & version differences with the server. Great tools to aid with keeping things consistent.
If it's a hard requirement on your end, I'm open to make it optional, but I can't strip it all out.
primeminister
He Kevin,
I think you provide too much data in meta part, especially for credentials. You don't want to show too much info about your app or request to the user. They cannot figure out how your REST works.
Open discussion, so let me know