Write draft payment bud

2025-12-09 15:18:49 +00:00 · 2024-10-29 15:42:35 +00:00
11 changed files with 119 additions and 333 deletions
--- a/README.md
+++ b/README.md
@@ -4,32 +4,15 @@ Blossom uses [nostr](https://github.com/nostr-protocol/nostr) public / private k
 ## What is it?
-Blossom is a specification for a set of HTTP endpoints that allow users to store blobs of data on publicly accessible servers
+Blossom is a spec for a set of HTTP endpoints that allow users to store blobs of data on publicly accessible servers
 ## What are blobs
 Blobs are packs of binary data addressed by their sha256 hash
-## Protocol specification (BUDs)
+## How does it work?
-BUDs or **Blossom Upgrade Documents** are short documents that outline an additional feature that a blossom server may implement.
+Blossom Servers expose four endpoints for managing blobs
 ## BUDs
 - [BUD-00: Blossom Upgrade Documents](./buds/00.md)
 - [BUD-01: Server requirements and blob retrieval](./buds/01.md)
 - [BUD-02: Blob upload and management](./buds/02.md)
 - [BUD-03: User Server List](./buds/03.md)
 - [BUD-04: Mirroring blobs](./buds/04.md)
 - [BUD-05: Media optimization](./buds/05.md)
 - [BUD-06: Upload requirements](./buds/06.md)
 - [BUD-07: Payment required](./buds/07.md)
 - [BUD-08: Nostr File Metadata Tags](./buds/08.md)
 - [BUD-09: Blob Report](./buds/09.md)
 ## Endpoints
 Blossom Servers expose a few endpoints for managing blobs
 - `GET /<sha256>` (optional file `.ext`) [BUD-01](./buds/01.md#get-sha256---get-blob)
 - `HEAD /<sha256>` (optional file `.ext`) [BUD-01](./buds/01.md#head-sha256---has-blob)
@@ -44,10 +27,22 @@ Blossom Servers expose a few endpoints for managing blobs
  - `Authentication`: Signed [nostr event](./buds/02.md#delete-authorization-required)
 - `PUT /mirror` [BUD-04](./buds/04.md#put-mirror---mirror-blob)
  - `Authentication`: Signed [nostr event](./buds/02.md#upload-authorization-required)
- `HEAD /media` [BUD-05](./buds/05.md#head-media)
+
- `PUT /media` [BUD-05](./buds/05.md#put-media)
+## Protocol specification (BUDs)
-  - `Authentication`: Signed [nostr event](./buds/05.md#upload-authorization)
+
- `PUT /report` [BUD-09](./buds/09.md)
+BUDs stand for **Blossom Upgrade Documents**.
 See the [BUDs](./buds) folder and specifically [BUD-01](./buds/01.md) and [BUD-02](./buds/02.md) for a detailed explanation of the endpoints
 ## BUDs
 - [BUD-01: Server requirements and blob retrieval](./buds/01.md)
 - [BUD-02: Blob upload and management](./buds/02.md)
 - [BUD-03: User Server List](./buds/03.md)
 - [BUD-04: Mirroring blobs](./buds/04.md)
 - [BUD-06: Upload requirements](./buds/06.md)
 - [BUD-07: Paid upload and download](./buds/07.md)
 - [BUD-08: Nostr File Metadata Tags](./buds/08.md)
 ## Event kinds
--- a/buds/00.md
+++ b/buds/00.md
@@ -1,19 +0,0 @@
 # BUD-00
 ## Blossom Upgrade Documents
 `draft` `mandatory`
 This document details the common language for all following BUDs
 ## Language
 All occurences of "MUST", "MUST NOT", "SHOULD", "SHOULD NOT" MUST be interpreted as per [RFC 2119](https://www.rfc-editor.org/rfc/rfc2119)
 ## BUDs
 BUDs or "Blossom Upgrade Documents" are short documents that outline an additional requirement or feature that a blossom server MUST or MAY implement.
 ## Blobs
 Blobs are raw binary data addressed by the sha256 hash of the data.
--- a/buds/01.md
+++ b/buds/01.md
@@ -8,17 +8,7 @@ _All pubkeys MUST be in hex format_
 ## Cross origin headers
-Servers MUST set the `Access-Control-Allow-Origin: *` header on all responses to ensure compatibility with applications hosted on other domains.
+Servers MUST set the `Access-Control-Allow-Origin: *`, `Access-Control-Allow-Headers: Authorization,*` and `Access-Control-Allow-Methods: GET, PUT, DELETE` headers on all endpoints to ensure compatibility with apps hosted on other domains
 For [preflight](https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS#preflighted_requests) (`OPTIONS`) requests,
 servers MUST also set, at minimum, the `Access-Control-Allow-Headers: Authorization, *` and `Access-Control-Allow-Methods: GET, HEAD, PUT,
 DELETE` headers.
 The header `Access-Control-Max-Age: 86400` MAY be set to cache the results of a preflight request for 24 hours.
 ## Error responses
 Every time a server sends an error response (HTTP status codes >=400), it may include a human-readable header `X-Reason` that can be displayed to the user.
 ## Authorization events
@@ -28,7 +18,7 @@ Authorization events must be generic and must NOT be scoped to specific servers.
 Events MUST be kind `24242` and have a `t` tag with a verb of `get`, `upload`, `list`, or `delete`
-Events MUST have the `content` set to a human readable string explaining to the user what the events intended use is. For example `Upload Blob`, `Delete dog-picture.png`, `List Images`, etc
+Events MUST have the `content` set to a human readable string explaining to the user what the events inteded use is. For example `Upload Blob`, `Delete dog-picture.png`, `List Images`, etc
 All events MUST have a [NIP-40](https://github.com/nostr-protocol/nips/blob/master/40.md) `expiration` tag set to a unix timestamp at which the event should be considered expired.
@@ -36,7 +26,7 @@ Authorization events MAY have multiple `x` tags for endpoints that require a sha
 Example event:
-```jsonc
+```json
 {
  "id": "bb653c815da18c089f3124b41c4b5ec072a40b87ca0f50bbbc6ecde9aca442eb",
  "pubkey": "b53185b9f27962ebdf76b8a9b0a84cd8b27f9f3d4abd59f715788a3bf9e7f75e",
@@ -45,7 +35,7 @@ Example event:
  "created_at": 1708773959,
  "tags": [
    ["t", "upload"],
-    // Authorization events MAY have multiple "x" tags.
+    // Authorization events MAY have multiple "x" tags
    ["x", "b1674191a88ec5cdd733e4240a81803105dc412d6c6708d53ab94fc248f4f553"],
    ["expiration", "1708858680"]
  ],
@@ -71,39 +61,42 @@ Authorization: Nostr eyJpZCI6IjhlY2JkY2RkNTMyOTIwMDEwNTUyNGExNDI4NzkxMzg4MWIzOWQ
 ## Endpoints
-All endpoints MUST be served from the root of the domain (eg. the `/upload` endpoint MUST be accessible from `https://cdn.example.com/upload`, etc). This allows clients to talk to servers interchangeably when uploading or retrieving blobs
+All endpoints MUST be served from the root path (eg. `https://cdn.example.com/upload`, etc). This allows clients to talk to servers interchangeably when uploading or retrieving blobs
 ## Error Responses
 For HTTP `4xx` and `5xx` status codes servers MUST repond with `Content-Type: application/json` and a JSON object containing `message`
 The `message` field MUST be human readable and should explain the reason for the error. Optionally servers may include other fields for the client with more information about the error
 Example Error response:
 ```
 HTTP/2 401
 content-type: application/json; charset=utf-8
 content-length: 32
 access-control-allow-origin: *
 access-control-expose-headers: *
 access-control-allow-headers: authorization,*
 access-control-allow-methods: get, put, delete
 {"message":"Missing Auth event"}
 ```
 ## GET /sha256 - Get Blob
-The `GET /<sha256>` endpoint MUST return the contents of the blob in the response body. the `Content-Type` header SHOULD beset to the appropriate MIME-type
+The `GET /<sha256>` endpoint MUST return the contents of the blob with the `Content-Type` header set to the appropriate MIME type
 The endpoint MUST accept an optional file extension in the URL. ie. `.pdf`, `.png`, etc
-Regardless of the file extension, the server MUST return the MIME type of the blob in the `Content-Type` header. If the
+If the endpoints returns a 301 or 302 redirect it MUST redirect to a URL containing the same sha256 hash as requested blob.
-server does not know the MIME type of the blob, it MUST default to `application/octet-stream`
+This ensures that if a user was to copy or reuse the redirect URL it would still contain the original sha256 hash
 ### Proxying and Redirection (Optional)
 If the endpoint returns a redirection 3xx status code such as 307 or 308 ([RFC 9110 section
 15.4](https://datatracker.ietf.org/doc/html/rfc9110#name-redirection-3xx)), it MUST redirect to a URL containing the
 same sha256 hash as the requested blob. This ensures that if a user copies or reuses the redirect URL, it will
 contain the original sha256 hash.
 While the final blob may not be served from a Blossom server (e.g. CDN, IPFS, object storage, etc.), the destination
 server MUST set the `Access-Control-Allow-Origin: *` header on the response to allow cross-origin requests, as well as
 the `Content-Type` and `Content-Length` headers to ensure the blob can be correctly displayed by clients. Two ways to
 guarantee this are:
 1. Proxying the blob through the Blossom server, allowing it to override headers such as `Content-Type`.
 2. Manipulating the redirect URL to include a file extension that matches the blob type, such as `.pdf`, `.png`, etc. If
 the server is unable to determine the MIME type of the blob, it MUST default to `application/octet-stream` and MAY
 include a file extension in the URL that reflects the blob type (e.g. `.bin`, `.dat`, etc.).
 ### Get Authorization (optional)
 The server may optionally require authorization when retrieving blobs from the `GET /<sha256>` endpoint
-In this case, the server MUST perform additional checks on the authorization event
+In this case the server MUST perform additional checks on the authorization event
 1. A `t` tag MUST be present and set to `get`
 2. The event MUST contain either a `server` tag containing the full URL to the server or MUST contain at least one `x` tag matching the sha256 hash of the blob being retrieved
@@ -148,15 +141,6 @@ Example event for retrieving multiple blobs from single server:
 ## HEAD /sha256 - Has Blob
-The `HEAD /<sha256>` endpoint SHOULD be identical to the `GET /<sha256>` endpoint except that it MUST NOT return the
+The `HEAD /<sha256>` endpoint MUST respond with either a `200` or `404` status code
 blob in the reponse body per [RFC 7231](https://www.rfc-editor.org/rfc/rfc7231#section-4.3.2)
 The endpoint MUST respond with the same `Content-Type` and `Content-Length` headers as the `GET /<sha256>` endpoint.
 The endpoint MUST accept an optional file extension in the URL similar to the `GET /<sha256>` endpoint. ie. `.pdf`, `.png`, etc
 ## Range requests
 To better support mobile devices, video files, or low bandwidth connections. servers should support range requests ([RFC 7233 section 3](https://www.rfc-editor.org/rfc/rfc7233#section-3)) on the `GET /<sha256>` endpoint and signal support using the `accept-ranges: bytes` and `content-length` headers on the `HEAD /<sha256>` endpoint
 See [MDN docs](https://developer.mozilla.org/en-US/docs/Web/HTTP/Range_requests) for more details
--- a/buds/02.md
+++ b/buds/02.md
@@ -12,14 +12,12 @@ Defines the `/upload`, `/list` and `DELETE /<sha256>` endpoints
 A blob descriptor is a JSON object containing `url`, `sha256`, `size`, `type`, and `uploaded` fields
- `url` A publicly accessible URL to the [BUD-01](./01.md#get-sha256---get-blob) `GET /<sha256>` endpoint with a file extension
+- `url` A publicly accessible URL to the [BUD-01](./01.md#get-sha256---get-blob) `GET /<sha256>` endpoint (optionally with a file extension)
 - `sha256` The sha256 hash of the blob
 - `size` The size of the blob in bytes
- `type` The MIME type of the blob (falling back to `application/octet-stream` if unknown)
+- `type` (optional) The MIME type of the blob
 - `uploaded` The unix timestamp of when the blob was uploaded to the server
 Servers MUST include a file extension in the URL in the `url` field to allow clients to easily embed the URL in social posts or other content
 Servers MAY include additional fields in the descriptor like `magnet`, `infohash`, or `ipfs` depending on other protocols they support
 Example:
@@ -38,25 +36,18 @@ Example:
 The `PUT /upload` endpoint MUST accept binary data in the body of the request and MAY use the `Content-Type` and `Content-Length` headers to get the MIME type and size of the data
-The endpoint MUST NOT modify the blob in any way and SHOULD return the exact same sha256 that was uploaded. This is critical to allow users to re-upload their blobs to new servers
+The endpoint MUST NOT modify the blob in any way and should return the exact same sha256 that was uploaded. This is critical to allow users to re-upload their blobs to new servers
 The endpoint MUST return a [Blob Descriptor](#blob-descriptor) if the upload was successful or an error object if it was not
-Servers MAY reject an upload for any reason and SHOULD respond with the appropriate HTTP `4xx` status code and an error message explaining the reason for the rejection
+Servers MAY reject an upload for any reason and should respond with the appropriate HTTP `4xx` status code and an error message explaining the reason for the rejection
-### File extension normalization (Optional)
+### Upload Authorization (required)
-When storing blobs, servers MAY normalise the file extension to a standard format (e.g. `.pdf`, `.png`, etc.) based on
+Servers MUST accept an authorization event when uploading blobs and should perform additional checks
 the MIME type of the blob. This can be especially useful when the `GET /<sha256>` endpoint is redirected to an external
 URL (see the [proxying and redirection section from BUD-01](./01.md#proxying-and-redirection-optional)), as external
 servers may rely on the file extension to serve the blob correctly.
 ### Upload Authorization (Optional)
 Servers MAY accept an authorization event when uploading blobs and SHOULD perform additional checks
 1. The `t` tag MUST be set to `upload`
-2. The authorization event MUST contain at least one `x` tag matching the sha256 hash of the body of the request
+2. MUST contain at least one `x` tag matching the sha256 hash of the blob being uploaded
 Example Authorization event:
@@ -76,23 +67,21 @@ Example Authorization event:
 }
 ```
-## GET /list/pubkey - List Blobs (Optional)
+## GET /list/pubkey - List Blobs
-The `/list/<pubkey>` endpoint MUST return a JSON array of [Blob Descriptor](#blob-descriptor) that were uploaded by the specified pubkey
+The `/list/<pubkey>` endpoint MUST return a JSON array of [Blob Descriptor](#blob-descriptor) that where uploaded by the specified pubkey
-The endpoint MUST support `cursor` and `limit` query parameters for cursor based pagination. The `cursor` parameter MUST be the `sha256` hash of the last blob in the previous page, or omitted to request the first page. The `limit` parameter specifies the maximum number of results to return. The returned array of blob descriptors MUST be sorted by the `uploaded` date in descending order and MUST NOT include the blob at the cursor
+The endpoint MUST support a `since` and `until` query parameter to limit the returned blobs by their `uploaded` date
-The endpoint MAY support `since` and `until` query parameters to filter the list of blobs by their `uploaded` date. These parameters are deprecated for pagination purposes as they do not preserve server resources
+Servers may reject a list for any reason and MUST respond with the appropriate HTTP `4xx` status code and an error message explaining the reason for the rejection
 Servers MAY reject a list request for any reason and MUST respond with the appropriate HTTP `4xx` status code and an error message explaining the reason for the rejection
 ### List Authorization (optional)
-The server MAY optionally require Authorization when listing blobs uploaded by the pubkey
+The server may optionally require Authorization when listing blobs uploaded by the pubkey
-In this case the server MUST perform additional checks on the authorization event
+In this case the server must perform additional checks on the authorization event
-1. The `t` tag MUST be set to `list`
+1. The `t` tag must be set to `list`
 Example Authorization event:
@@ -115,16 +104,16 @@ Example Authorization event:
 Servers MUST accept `DELETE` requests to the `/<sha256>` endpoint
-Servers MAY reject a delete request for any reason and SHOULD respond with the appropriate HTTP `4xx` status code and an error message explaining the reason for the rejection
+Servers may reject a delete request for any reason and should respond with the appropriate HTTP `4xx` status code and an error message explaining the reason for the rejection
 ### Delete Authorization (required)
 Servers MUST accept an authorization event when deleting blobs
-Servers SHOULD perform additional checks on the authorization event
+Servers should perform additional checks on the authorization event
-1. The `t` tag MUST be set to `delete`
+1. The `t` tag must be set to `delete`
-2. The authorization event MUST contain at least one `x` tag matching the sha256 hash of the blob being deleted
+2. MUST contain at least one `x` tag matching the sha256 hash of the blob being deleted
 When multiple `x` tags are present on the authorization event the server MUST only delete the blob listed in the URL.
--- a/buds/03.md
+++ b/buds/03.md
@@ -68,7 +68,7 @@ Take the following event as an example
 Once the client discovers that the URL `https://cdn.broken-domain.com/b1674191a88ec5cdd733e4240a81803105dc412d6c6708d53ab94fc248f4f553.pdf` is no longer available. It can perform the following steps to find the blob:
-1. Get the SHA256 hash from the URL
+1. Get the SHA256 has from the URL
 2. Look for the authors server list `kind:10063`
 3. If found, Attempt to retrieve the blob from each `server` listed started with the first
 4. If not found, the client MAY fallback to using a well-known popular blossom server to retrieve the blob
--- a/buds/04.md
+++ b/buds/04.md
@@ -8,39 +8,34 @@ Defines the `/mirror` endpoint
 ## PUT /mirror - Mirror Blob
-A server MAY expose a `PUT /mirror` endpoint to allow users to copy a blob from a URL instead of uploading it
+A server may expose a `PUT /mirror` endpoint to allow users to copy a blob from a URL instead of uploading it
 Clients MUST pass the URL of the remote blob as a stringified JSON object in the request body
-```jsonc
+```json
-// request body...
+// request body
 {
  "url": "https://cdn.satellite.earth/b1674191a88ec5cdd733e4240a81803105dc412d6c6708d53ab94fc248f4f553.pdf"
 }
 ```
-Clients MAY set the `Authorization` header to an upload authorization event defined in [BUD-02](./02.md#upload-authorization-optional). When using authorization, the event MUST be of type "upload".
+Clients MUST set the `Authorization` header to an upload authorization event defined in [BUD-02](./02.md#upload-authorization-required)
 The `/mirror` endpoint MUST download the blob from the specified URL and verify that there is at least one `x` tag in the authorization event matching the sha256 hash of the download blob
-**Multiple `x` tags in the authorization event MUST NOT be interpreted as the user requesting to mirror multiple blobs.**
+**Multiple `x` tags MUST NOT be interpreted as the user requesting a bulk mirror.**
-The endpoint MUST return a [Blob Descriptor](#blob-descriptor) and a `2xx` status code if the mirroring was successful
+The endpoint MUST return a [Blob Descriptor](#blob-descriptor) if the mirroring was successful or an error object if it was not
 or a `4xx` status code and error message if it was not.
-The destination server SHOULD use the `Content-Type` header returned from the origin server to infer the mime type of
+Servers should re-use the `Content-Type` header returned from the URL to discover the mime type of the blob. if none is returned it may use the file extension in the URL
 the blob. If the `Content-Type` header is not present the destination server SHOULD attempt to detect the `Content-Type`
 from the blob contents and file extension, falling back to `application/octet-stream` if it cannot determine the type.
-Servers MAY use the `Content-Length` header to determine the size of the blob.
+Servers MAY reject a mirror request for any reason and should respond with the appropriate HTTP `4xx` status code and an error message explaining the reason for the rejection
 Servers MAY reject a mirror request for any reason and MUST respond with the appropriate HTTP `4xx` status code and an error message explaining the reason for the rejection.
 ## Example Flow
-1. Client signs an `upload` authorization event and uploads blob to Server A
+1. Client signs authorization event and uploads blob to Server A
-1. Server A returns a [Blob Descriptor](./02.md#blob-descriptor) with the `url`
+1. Server A returns blob descriptor with `url`
-1. Client sends the `url` to Server B `/mirror` using the original `upload` authorization event
+1. Client sends the `url` to Server B `/mirror` using the original authorization event
-1. Server B downloads the blob from Server A using the `url`
+1. Server B downloads blob from Server A using the url
-1. Server B verifies the downloaded blob hash matches the `x` tag in the authorization event
+1. Server B verifies downloaded blob hash matches `x` tag in authorization event
-1. Server B returns a [Blob Descriptor](./02.md#blob-descriptor)
+1. Server B returns [Blob Descriptor](./02.md#blob-descriptor)
--- a/buds/05.md
+++ b/buds/05.md
@@ -1,48 +0,0 @@
 # BUD-05
 ## Media optimization endpoints
 `draft` `optional`
 Defines the `PUT /media` endpoint for processing and optimizing media
 ## PUT /media
 The `PUT /media` endpoint MUST accept binary data in the body of the request and MAY use the `Content-Type` and `Content-Length` headers to get the MIME type and size of the media
 The server should preform any optimizations or conversions it deems necessary in order to make the media more suitable for distribution
 The endpoint MUST respond with a `2xx` status and a [blob descriptor](./02.md#blob-descriptor) of the new processed blob
 Servers MAY reject media uploads for any reason and should respond with the appropriate HTTP `4xx` status code and an error message explaining the reason for the rejection
 ### Upload Authorization
 Servers MAY require a `media` [authorization event](./02.md#upload-authorization-required) to identify the uploader
 If a server requires a `media` authorization event it MUST perform the following checks
 1. The `t` tag MUST be set to `media`
 2. MUST contain at least one `x` tag matching the sha256 hash of the body of the request
 ## HEAD /media
 Servers MUST respond to `HEAD` requests on the `/media` endpoint in a similar way to the `HEAD /upload` endpoint defined in [BUD-06](./06.md)
 ## Limitations
 This endpoint is intentionally limited to optimizing a single blob with the goal of making it easier to distribute
 How the blob is optimized is the sole responsibility of the server and the client should have no say in what optimization process is used
 The goal of this endpoint is to provide a simple "trusted" optimization endpoint clients can use to optimize media for distribution
 If a longer optimization or transformation process is needed, or if the client needs to specify how a blob should be transformed. there are other tools and protocol that should be used.
 ## Client Implementation
 Clients MAY let a user selected a "trusted processing" server for uploading images or short videos
 Once a server has been selected, the client uploads the original media to the `/media` endpoint of the trusted server and get the optimized blob back
 Then the client can ask the user to sign another `upload` authorization event for the new optimized blob and call the `/mirror` endpoint on other servers to distribute the blob
--- a/buds/06.md
+++ b/buds/06.md
@@ -8,13 +8,14 @@ Defines how clients can verify if the upload can be completed before sending the
 ## HEAD /upload - Upload requirements
-The `HEAD /upload` endpoint MUST use the `X-SHA-256`, `X-Content-Type` and `X-Content-Length` headers sent by client to get the SHA-256 hash, MIME type and size of the blob that will be uploaded, returning a HTTP status code and a custom header `X-Reason` to indicate some human readable message about the upload requirements.
+The `HEAD /upload` endpoint `MUST` use the `X-SHA-256`, `X-Content-Type` and `X-Content-Length` headers sent by client to get the SHA-256 hash, MIME type and size of the blob that will be uploaded, returning a HTTP status code and a custom header `X-Upload-Message` to indicate some human readable message about the upload requirements.
 ### Headers
 - `X-SHA-256`: A string that represents the blob's SHA-256 hash.
 - `X-Content-Length`: An integer that represents the blob size in bytes.
 - `X-Content-Type`: A string that specifies the blob's MIME type, like `application/pdf` or `image/png`.
 - `X-Upload-Message`: A human readable message that explains the reason why the upload cannot proceed.
 ### Upload Authorization
@@ -38,36 +39,36 @@ Example response from the server if the upload can be done:
 HTTP/1.1 200 OK
 ```
-If the upload cannot proceed, the server MUST return an appropriate `4xx` HTTP status code and a custom header `X-Reason` with a human readable error message.
+If the upload cannot proceed, the server `MUST` return an appropriate `4xx` HTTP status code and a custom header `X-Upload-Message` with a human readable error message.
 Some examples of error messages:
 ```http
 HTTP/1.1 400 Bad Request
-X-Reason: Invalid X-SHA-256 header format. Expected a string.
+X-Upload-Message: Invalid X-SHA-256 header format. Expected a string.
 ```
 ```http
 HTTP/1.1 401 Unauthorized
-X-Reason: Authorization required for uploading video files.
+X-Upload-Message: Authorization required for uploading video files.
 ```
 ```http
 HTTP/1.1 403 Forbidden
-X-Reason: SHA-256 hash banned.
+X-Upload-Message: SHA-256 hash banned.
 ```
 ```http
 HTTP/1.1 411 Length Required
-X-Reason: Missing X-Content-Length header.
+X-Upload-Message: Missing X-Content-Length header.
 ```
 ```http
 HTTP/1.1 413 Content Too Large
-X-Reason: File too large. Max allowed size is 100MB.
+X-Upload-Message: File too large. Max allowed size is 100MB.
 ```
 ```http
 HTTP/1.1 415 Unsupported Media Type
-X-Reason: Unsupported file type.
+X-Upload-Message: Unsupported file type.
 ```
--- a/buds/07.md
+++ b/buds/07.md
@@ -2,104 +2,35 @@ BUD-07
 ======
 Paid upload and download
---------------
+------------------------
 `draft` `optional`
-Payment requirements for blob storage.
+Cashu payments for uploads and downloads
-## Payment Required
+## Paid Upload
-Some servers MAY require payment for uploads, downloads, or any other endpoint. In such cases, these endpoints MUST return a **402 Payment Required** status code.
+The server may require payment for uploading blob by returning a `402` status code the `PUT /upload` endpoint (and `HEAD /upload` if [BUD-06](./06.md) is supported)
-Some endpoints a server may require payment for:
+## Paid Downloads
- [`HEAD /upload`](./06.md) to signal that payment is required for the `PUT` request ( if [BUD-06](./06.md) is supported )
+The server may also require payment for downloads by responding with a `402` status code for `GET /<sha256` and `HEAD /<sha256>` endpoints
 - [`PUT /upload`](./02.md#put-upload---upload-blob) to require payment for uploads
 - [`HEAD /<sha256>`](./01.md#head-sha256---has-blob) to signal that payment is required for the `GET` request
 - [`GET /<sha256>`](./01.md#get-sha256---get-blob) to require payment for downloads ( maybe charge by MB downloaded? )
 - [`HEAD /media`](./05.md) and [`PUT /upload`](./05.md) to require payment for media optimizations ( if [BUD-06](./06.md) is supported )
-When payment is required, the server MUST include one or more `X-{payment_method}` header(s), each corresponding to a supported payment method.
+## Payment Flow
-## Server headers
+When the server is requesting payment for an endpoint it MUST respond with `402` and a `X-Cashu` header containing a base64 encoded json object (payment request)
-The 402 status code and `X-{payment_method}` header is used by the server to inform the client that a payment is required for the requested operation. The server MUST provide specific headers for each supported payment method.
+The payment request should contain an `amount`, `mints`, `unit`, and `pubkey` fields
-Supported payment methods:
+ - `amount` The amount of ecash being requested
 - `mints` An array of mints that this server uses
 - `unit` The cashu `unit` from the `mints`
 - `pubkey` (optional) a 33 byte pubkey to lock the tokens too. see [NUT-11](https://github.com/cashubtc/nuts/blob/main/11.md)
- `X-Cashu`: Payment details for the cashu payment method, adhering to the [NUT-24](https://github.com/cashubtc/nuts/blob/main/24.md) standard.
+When the client receives a `402` response and with a `X-Cashu` header it may retry the request with a payment
 - `X-Lightning`: Payment details for the lightning payment method, adhering to the [BOLT-11](https://github.com/lightning/bolts/blob/master/11-payment-encoding.md) standard.
-If a server supports multiple payment methods, it MAY send multiple `X-{payment_method}` headers in the same response.
+The payment should be a serialized cashu token according to [NUT-00](https://github.com/cashubtc/nuts/blob/main/00.md#v4-tokens)
-Schema:
+## Payment Checks
-```http
+Optionally a server may respond with `402` to the `HEAD /upload`, `HEAD /<sha156>` if it supports [BUD-06](./06.md)
 HTTP/1.1 402 Payment Required
 X-{payment_method}: "<encoded_payload_according_to_{payment_method}_spec>"
 ```
 ### `X-Cashu` Header
 When using the X-Cashu header, the server MUST adhere to the [NUT-24](https://github.com/cashubtc/nuts/blob/main/24.md) standard.
 Example for cashu:
 ```http	
 HTTP/1.1 402 Payment Required
 X-Cashu: creqApWF0gaNhdGVub3N0cmFheKlucHJvZmlsZTFxeTI4d3VtbjhnaGo3dW45ZDNzaGp0bnl2OWtoMnVld2Q5aHN6OW1od2RlbjV0ZTB3ZmprY2N0ZTljdXJ4dmVuOWVlaHFjdHJ2NWhzenJ0aHdkZW41dGUwZGVoaHh0bnZkYWtxcWd5ZGFxeTdjdXJrNDM5eWtwdGt5c3Y3dWRoZGh1NjhzdWNtMjk1YWtxZWZkZWhrZjBkNDk1Y3d1bmw1YWeBgmFuYjE3YWloYjdhOTAxNzZhYQphdWNzYXRhbYF4Imh0dHBzOi8vbm9mZWVzLnRlc3RudXQuY2FzaHUuc3BhY2U
 ```
 ### `X-Lightning` Header
 When using the X-Lightning header, the server MUST adhere to the [BOLT-11](https://github.com/lightning/bolts/blob/master/11-payment-encoding.md) standard.
 Example for lightning:
 ```http
 HTTP/1.1 402 Payment Required
 X-Lightning: lnbc30n1pnnmw3lpp57727jjq8zxctahfavqacymellq56l70f7lwfkmhxfjva6dgul2zqhp5w48l28v60yvythn6qvnpq0lez54422a042yaw4kq8arvd68a6n7qcqzzsxqyz5vqsp5sqezejdfaxx5hge83tf59a50h6gagwah59fjn9mw2d5mn278jkys9qxpqysgqt2q2lhjl9kgfaqz864mhlsspftzdyr642lf3zdt6ljqj6wmathdhtgcn0e6f4ym34jl0qkt6gwnllygvzkhdlpq64c6yv3rta2hyzlqp8k28pz
 ```
 ### Client implementation
 Clients MUST parse and validate the `X-{payment_method}` header received from the server. The client SHOULD provide a way for the user to complete the payment and retry the request using the same `X-{payment_method}` header.
 The client MUST provide the payment proof when re-trying the request using the same `X-{payment_method}` header that was chosen. The payment proof MUST align with the payment method specification:
 - For cashu the payment proof should be a serialized `cashuB` token in the `X-Cashu` header according to [NUT-24](https://github.com/cashubtc/nuts/blob/main/24.md#client-payment).
 - For lightning the payment proof should be the preimage of the payment request according to [BOLT-11](https://github.com/lightning/bolts/blob/master/11-payment-encoding.md).
 Schema:
 ```http
 X-{payment_method}: "<encoded_payment_proof_according_to_{payment_method}_spec>"
 ```
 Example for Cashu:
 ```http
 X-Cashu: cashuBo2F0gqJhaUgA_9SLj17PgGFwgaNhYQFhc3hAYWNjMTI0MzVlN2I4NDg0YzNjZjE4NTAxNDkyMThhZjkwZjcxNmE1MmJmNGE1ZWQzNDdlNDhlY2MxM2Y3NzM4OGFjWCECRFODGd5IXVW
 ```
 Example for Lightning:
 ```http
 X-Lightning: 966fcb8f153339372f9a187f725384ff4ceae0047c25b9ce607488d7c7e93bba
 ```
 **Special Note on HEAD Requests**
 The HEAD endpoints are only used to retrieve blob or server information. They MUST NOT be retried with payment proof. Instead, clients should complete the payment and proceed with the `PUT` or `GET` request.
 ### Error handling
 If the client fails to provide the payment proof (expired invoice, invalid token, etc.) the server MUST respond with **400 Bad request** status code and include a `X-Reason` header with a human-readable message. The client SHOULD inform the user about the error and provide a way to retry the request.
 ### Extending with Future Payment Methods
 To support future payment methods (e.g., other Layer 2 solutions), the specification allows the addition of new X-{payment_method} headers. Each new method MUST adhere to the following:
 New methods MUST use a unique `X-{payment_method}` header containing the specific payment details.
 New methods MUST adhere their own specification, which MUST be publicly available and linked in the header.
--- a/buds/08.md
+++ b/buds/08.md
@@ -1,18 +1,16 @@
-# BUD-08
+# Nostr File Metadata Tags
 ## Nostr File Metadata Tags
 `draft` `optional`
 Describes how a server could return nostr [NIP-94 File Metadata](https://github.com/nostr-protocol/nips/blob/master/94.md) tags from the `/upload` and `/mirror` endpoints
-### Returning tags
+## Returning tags
 As described in [BUD-02](./02.md#blob-descriptor) servers MAY add any additional fields to a blob descriptor
 Servers MAY return an additional `nip94` field in the [blob descriptor](./02.md#blob-descriptor) from the `/upload` or `/mirror` endpoints
-The `nip94` field should contain a JSON array with KV pairs as defined in [NIP-94](https://github.com/nostr-protocol/nips/blob/master/94.md)
+The `nip94` field should contain a JSON object with the keys being the tag names defined in [NIP-94](https://github.com/nostr-protocol/nips/blob/master/94.md)
 An example response would look like:
@@ -23,13 +21,13 @@ An example response would look like:
 	"size": 184292,
 	"type": "application/pdf",
 	"uploaded": 1725909682,
-	"nip94": [
+	"nip94": {
-		["url", "https://cdn.example.com/b1674191a88ec5cdd733e4240a81803105dc412d6c6708d53ab94fc248f4f553.pdf"],
+		"url": "https://cdn.example.com/b1674191a88ec5cdd733e4240a81803105dc412d6c6708d53ab94fc248f4f553.pdf",
-		["m", "application/pdf"],
+		"m": "application/pdf",
-		["x", "b1674191a88ec5cdd733e4240a81803105dc412d6c6708d53ab94fc248f4f553"],
+		"x": "b1674191a88ec5cdd733e4240a81803105dc412d6c6708d53ab94fc248f4f553",
-		["size", "184292"],
+		"size": 184292,
-		["magnet", "magnet:?xt=urn:btih:9804c5286a3fb07b2244c968b39bc3cc814313bc&dn=bitcoin.pdf"],
+		"magnet": "magnet:?xt=urn:btih:9804c5286a3fb07b2244c968b39bc3cc814313bc&dn=bitcoin.pdf",
-		["i", "9804c5286a3fb07b2244c968b39bc3cc814313bc"]
+		"i": "9804c5286a3fb07b2244c968b39bc3cc814313bc"
-	]
+	}
 }
 ```
--- a/buds/09.md
+++ b/buds/09.md
@@ -1,40 +0,0 @@
 # BUD-09
 ## Blob Report
 `draft` `optional`
 This bud defines a new endpoint for clients and users to report blobs to servers.
 ### PUT /report - reporting a blob
 The request body MUST be a signed [NIP-56](https://github.com/nostr-protocol/nips/blob/master/56.md) report event with one or more `x` tags containing the hashes of the blobs being reported.
 Example:
 ```jsonc
 {
  "kind": 1984,
  "tags": [
    ["x", "<blob-sha256>", "<type-based-on-nip-56>"],
    ["x", "<another-blob-sha256>", "<type-based-on-nip-56>"]
  ],
  "content": "<human readable report details>",
  // other fields...
 }
 ```
 The clients can include `e` or `p` tags to point to the event or the profile that contains this media if they want to make this report event useful for relays as well.
 Server MUST respond to a report request with a success code or a code in the 4xx/5xx range if there was any error.
 ### Client behavior
 The clients can show a blob report button on posts or in blob details. Or its RECOMMENDED to merge this with normal nostr report and send it to both relays and blossom server. other clients can receive it from relays and hide or blur reported blob from trusted friends.
 ### Server behavior
 The servers MAY keep the reports somewhere for operators to check and take action on them. they MAY use a list of trusted people or moderators to directly take action on blob without operator request.
 Servers MAY consider removed blobs sha256 as blocked to prevent rewrite.
 Servers SHOULD advertise a route or landing page to provide their rules and terms of service which affects the report process.