lunny/git-lfs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
da96dd4cad
git-lfs/docs/api.md
Rick Olson da96dd4cad clarify response codes
2015-01-12 11:43:09 -07:00

284 lines
7.9 KiB
Markdown
Raw Blame History

# Git Media API
The server implements a simple API for uploading and downloading binary content.
Git repositories that use Git Media will specify a URI endpoint. See the
[specification](spec.md) for how Git Media determines the server endpoint to use.
Use that endpoint as a base, and append the following relative paths to upload
and download from the Git Media server.
## GET objects/{oid}
This gets either the object content, or the object's meta data. The OID is the
value from the object pointer.
### Getting the content
To download the object content, send an Accept header of `application/vnd.git-media`.
The server returns the raw content back with a `Content-Type` of
`application/octet-stream`.
```
> GET https://git-media-server.com/objects/{oid} HTTP/1.1
> Accept: application/vnd.git-media
> Authorization: Basic ... (if authentication is needed)
>
< HTTP/1.1 200 OK
< Content-Type: application/octet-stream
<
< {binary contents}
```
The server can also redirect to another location. This is useful in cases where
you do not want to render user content on a domain with important cookies.
Request headers like `Range` or `Accept` should be passed through. The
`Authorization` header must _not_ be passed through if the location's host or
scheme differs from the original request uri.
```
> GET https://git-media-server.com/objects/{oid} HTTP/1.1
> Accept: application/vnd.git-media
> Authorization: Basic ... (if authentication is needed)
>
< HTTP/1.1 302 Found
< Location: https://storage-server.com/{oid}
<
< {binary contents}
```
### Responses
* 200 - The object contents or meta data is in the response.
* 302 - Temporary redirect to a new location.
* 404 - The user does not have access to the object, or it does not exist.
### Getting meta data.
You can also request just the JSON meta data with an `Accept` header of
`application/vnd.git-media+json`. Here's an example successful request:
```
> GET https://git-media-server.com/objects/{OID} HTTP/1.1
> Accept: application/vnd.git-media+json
> Authorization: Basic ... (if authentication is needed)
>
< HTTP/1.1 200 OK
< Content-Type: application/vnd.git-media+json
<
< {
< "oid": "the-sha-256-signature",
< "size": 123456,
< "_links": {
< "download": {
< "href": "https://some-download.com",
< "header": {
< "Key": "value"
< }
< }
< }
< }
```
The `oid` and `size` properties are required. If the download link differs from
the current URL, then a hypermedia `_links` section is included with a `download`
link relation. All links include an `href` property, and an optional `header`
property if necessary. A download link relation's `href` property should match
the URL that is the target of a normal GET redirection.
If the object does not exist on the server, the payload describes how to upload
it:
```
> GET https://git-media-server.com/objects/{OID} HTTP/1.1
> Accept: application/vnd.git-media+json
> Authorization: Basic ... (if authentication is needed)
>
< HTTP/1.1 200 OK
< Content-Type: application/vnd.git-media+json
<
< {
< "oid": "the-sha-256-signature",
< "_links": {
< "upload": {
< "href": "https://some-upload.com",
< "header": {
< "Key": "value"
< }
< },
< "callback": {
< "href": "https://some-callback.com",
< "header": {
< "Key": "value"
< }
< }
< }
< }
```
The `oid` property is required. A response can include one of multiple link
relations, each with an `href` property and an optional `header` property.
* `upload` - This relation describes how to upload the object.
* `callback` - The server can specify a URL for the client to hit after
successfully uploading an object.
Here's a sample response for a request with an authorization error:
```
> GET https://git-media-server.com/objects/{OID} HTTP/1.1
> Accept: application/vnd.git-media+json
> Authorization: Basic ... (if authentication is needed)
>
< HTTP/1.1 404 OK
< Content-Type: application/vnd.git-media+json
<
< {
< "message": "Unauthorized"
< }
```
There are what the HTTP status codes mean:
* 200 - The user is able to read the object.
* 404 - The repository does not exist for the user, or the user does not have
access to it.
## OPTIONS objects/{oid}
This is a pre-flight request to verify credentials before sending the file
contents. Note: The `OPTIONS` method is only supported in pre-1.0 Git Media
clients. After 1.0, clients should use the `GET` with the
`application/vnd.git-media+json` Accept header.
Here's an example successful request:
```
> OPTIONS https://git-media-server.com/objects/{OID} HTTP/1.1
> Accept: application/vnd.git-media+json
> Authorization: Basic ... (if authentication is needed)
>
< HTTP/1.1 200 OK
< Content-Type: application/vnd.git-media+json
<
< {
< "oid": "the-sha-256-signature",
< "size": 123456,
< "_links": {
< "download": {
< "href": "https://some-download.com",
< "header": {
< "Key": "value"
< }
< }
< }
< }
```
The `oid` and `size` properties are required. If the download link differs from
the current URL, then a hypermedia `_links` section is included with a `download`
link relation. All links include an `href` property, and an optional `header`
property if necessary.
If the object does not exist on the server, the payload describes how to upload
it:
```
> OPTIONS https://git-media-server.com/objects/{OID} HTTP/1.1
> Accept: application/vnd.git-media+json
> Authorization: Basic ... (if authentication is needed)
>
< HTTP/1.1 200 OK
< Content-Type: application/vnd.git-media+json
<
< {
< "oid": "the-sha-256-signature",
< "_links": {
< "upload": {
< "href": "https://some-upload.com",
< "header": {
< "Key": "value"
< }
< },
< "callback": {
< "href": "https://some-callback.com",
< "header": {
< "Key": "value"
< }
< }
< }
< }
```
The `oid` property is required. A response can include one of multiple link
relations, each with an `href` property and an optional `header` property.
* `upload` - This relation describes how to upload the object.
* `callback` - The server can specify a URL for the client to hit after
successfully uploading an object.
Here's a sample response for a request with an authorization error:
```
> OPTIONS https://git-media-server.com/objects/{OID} HTTP/1.1
> Accept: application/vnd.git-media+json
> Authorization: Basic ... (if authentication is needed)
>
< HTTP/1.1 404 OK
< Content-Type: application/vnd.git-media+json
<
< {
< "message": "Unauthorized"
< }
```
There are what the HTTP status codes mean:
* 200 - The user is able to read the object.
* 204 - The user is able to PUT the object to the same URL.
* 403 - The user has **read**, but not **write** access.
* 404 - The repository does not exist for the user.
## PUT objects/{oid}
This writes the object contents to the Git Media server.
```
> PUT https://git-media-server.com/objects/{oid} HTTP/1.1
> Accept: application/vnd.git-media
> Content-Type: application/octet-stream
> Authorization: Basic ...
> Content-Length: 123
>
> {binary contents}
>
< HTTP/1.1 200 OK
```
### Responses
* 200 - The object already exists.
* 201 - The object was uploaded successfully.
* 403 - The user has **read**, but not **write** access.
* 404 - The repository does not exist for the user.
* 405 - PUT method is not allowed. Use an OPTIONS or GET pre-flight request to
get the current URL to send a file.
## Callbacks
Git Media clients issue a GET or OPTIONS preflight request, which can potentially
return a "callback" link relation. If given, The Git Media server expects a
POST to the callback href after a successful upload. Git Media clients send:
* `oid` - The String OID of the Git Media object.
* `status` - The HTTP status of the redirected PUT request.
* `body` - The response body from the redirected PUT request.
```
> POST https://git-media-server.com/callback
> Accept: application/vnd.git-media
> Content-Type: application/vnd.git-media+json
> Content-Length: 123
>
> {"oid": "{oid}", "status": 200, "body": "ok"}
```
Reference in New Issue View Git Blame Copy Permalink