http://simonwillison.net/2009-02-06T10:19:55+00:00Simon Willison2009-02-06T10:19:55+00:002009-02-06T10:19:55+00:00https://simonwillison.net/2009/Feb/6/json/#atom-tag

<p>I started a conversation about this on Twitter the other day, but Twitter is a horrible place to have an archived discussion so I'm going to try again here.</p> <p>If you're producing a JSON API for other people to use (as opposed to an API that's only really meant for your own local Ajax responses), you need to decide which Content-Type to use. The best option is not entirely obvious.</p> <p><a href="http://www.ietf.org/rfc/rfc4627.txt">RFC 4672</a> defines JSON and reserves <code>application/json</code> as the preferred media type. The problem is that most browsers will prompt you to download the file rather than displaying it inline (as they would for <code>text/plain</code> or <code>application/javascript</code>). One of my favourite qualities of REST-style APIs is that they enable exploration and debugging using just a browser - using <code>application/json</code> throws a big, frustrating road block in the way. There are ways of telling your browser to treat <code>application/json</code> in the same way as <code>text/plain</code> but that doesn't really help you if your aim is to create an API that's easy for other developers to use.</p> <p>It's also worth mentioning that if you are returning JSONP (with an extra callback function wrapped around the JSON response to enable the dynamic script tag hack) you HAVE to serve as <code>application/javascript</code> - otherwise the script you are providing won't be executed by the browser. Don't forget to include <code>charset=UTF8</code> as well (for both types of response).</p> <p>So, it's pragmatism v.s. purity. The <em>correct</em> thing to do is to return <code>application/json</code>, but doing so makes your API harder for developers to use.</p> <p>In a brief, non-comprehensive review of some existing JSON APIs (FriendFeed, Flickr, Google Social Graph etc) I couldn't find any that were using <code>application/json</code>, presumably for this exact reason.</p> <h4>Using the Accept: header</h4> <p>The Accept: header is one of my least favourite parts of HTTP. I like to be confident that if I send a URL to someone, they'll get back exactly the same bytes as I did when I retrieved it myself (I distrust language negotiation for the same reason). However, a number of people suggested it on Twitter and it looks like it could be a useful solution to this problem.</p> <p>I'm currently considering the following: ONLY use the <code>application/json</code> Content-Type in reply to requests that include <code>application/json</code> in their Accept header - essentially allowing clients that care about the correct content type to opt-in to receiving it. Everyone else (browsers included) gets <code>application/javascript</code>, which is less correct (though not an all-out lie, since JSON is a subset of JavaScript) but solves the usability problem.</p> <p>A couple of things worry me about this. Firstly, is this a reasonable thing to use Accept for? Secondly, is there a chance that browsers might add <code>application/json</code> to their Accept header at some point in the future? Safari currently sends <code>text/xml,application/xml,application/xhtml+xml,text/html; q=0.9,text/plain; q=0.8,image/png,*/*; q=0.5</code> while Firefox sends <code>text/html,application/xhtml+xml,application/xml; q=0.9,*/*; q=0.8</code>. Would it be smarter to look for <code>*/*</code> and serve the incorrect Content-Type to those requests and the correct one to everything else?</p> <p>An alternative is to simply allow people to specify "JSON with a browsable Content-Type" as an alternative format option, or to enable a "pretty=1" query string argument which returns the response as <code>text/plain</code> and potentially pretty prints it as well. I haven't yet decided if this is better than messing around with the Accept header.</p> <p>Tags: <a href="https://simonwillison.net/tags/accept">accept</a>, <a href="https://simonwillison.net/tags/apis">apis</a>, <a href="https://simonwillison.net/tags/contenttypes">contenttypes</a>, <a href="https://simonwillison.net/tags/http">http</a>, <a href="https://simonwillison.net/tags/json">json</a>, <a href="https://simonwillison.net/tags/pragmatism">pragmatism</a>, <a href="https://simonwillison.net/tags/purity">purity</a></p>

2008-10-13T12:45:13+00:002008-10-13T12:45:13+00:00https://simonwillison.net/2008/Oct/13/peter/#atom-tag

<p><strong><a href="http://barelyenough.org/blog/2008/05/versioning-rest-web-services/">Versioning REST Web Services</a></strong></p> Peter Williams suggests using a vendor MIME media type in the Accept header to specify a required API version, because embedding the API version in the URL itself leads to a single resource ending up with many different URLs, one for each API version. <p>Tags: <a href="https://simonwillison.net/tags/accept">accept</a>, <a href="https://simonwillison.net/tags/contentnegotiation">contentnegotiation</a>, <a href="https://simonwillison.net/tags/http">http</a>, <a href="https://simonwillison.net/tags/peter-williams">peter-williams</a>, <a href="https://simonwillison.net/tags/rest">rest</a>, <a href="https://simonwillison.net/tags/urls">urls</a>, <a href="https://simonwillison.net/tags/versioning">versioning</a></p>