Closed varnerac closed 6 years ago
We also need to fix the example in the 5.3 Get Objects table for Accept
This is interesting, nice catch.
Is there precedent for how to handle this in other specifications? Do they typically include both a type for the success condition and a type for the error condition in the Accept header? Do they weight them differently? Presumably you wouldn't want TAXII preferred over STIX, for example.
I think they would equally be preferred, it would just depend on the type of data coming back. Nice catch @varnerac
I changed the text to say:
All TAXII requests MUST include a media range in the Accept header and MUST include at least one TAXII media range. Requests for TAXII or STIX content MUST use the values from section 1.5.8 and SHOULD include the optional version parameter defined in that section.
And I updated the examples in section 5.3 and 5.5
Every TAXII request requires a TAXII media type in the HTTP Accept header to determine the TAXII content type to return in case of an error.
Propose changing the following in 3.1 Endpoints:
to