Specify mandatory mime type(s) for Content-Type / Accept

openid / authzen

Proposed standard for an Authorization API

30 stars 10 forks source link

Specify mandatory mime type(s) for Content-Type / Accept #110

Closed cdanger closed 2 months ago

cdanger commented 3 months ago

Although this may be obvious and several examples use Content-Type: application/json in the API spec, it is not explicitly specified that it should be application/json as far as I can see, is it?

ogazitt commented 2 months ago

See section 2.1.1. https://openid.github.io/authzen/#name-access-evaluation-https-req