add requirement for redirects to include sha256 hash

2025-12-08 14:58:49 +00:00 · 2024-05-01 16:49:15 -05:00
parent ff33d9c52f
commit 077084ad45
1 changed files with 3 additions and 0 deletions
--- a/buds/bud-01.md
+++ b/buds/bud-01.md
@@ -98,6 +98,9 @@ The `GET /<sha256>` endpoint MUST return the contents of the blob with the `Cont

 The endpoint MUST accept an optional file extension in the URL. ie. `.pdf`, `.png`, etc

+If the endpoints returns a 301 or 302 redirect it MUST redirect to a URL containing the same sha256 hash as requested blob.
+This ensures that if a user was to copy or reuse the redirect URL it would still contain the original sha256 hash
+
 #### Get Authorization (optional)

 The server may optionally require authorization when fetching blobs from the `GET /<sha256>` endpoint