Micropub — CUCH

Micropub
Micropub
W3C
Recommendation
23 May 2017
This version:
Latest published version:
Latest editor's draft:
Test suite:
Implementation report:
Previous version:
Editor:
Aaron Parecki
Repository:
Github
Issues
Commits
Please check the
errata
for any errors or issues reported since publication.
The English version of this specification is the only normative version. Non-normative
translations
may also be available.
W3C
MIT
ERCIM
Keio
Beihang
).
W3C
liability
trademark
and
permissive document license
rules apply.
Abstract
The Micropub protocol is used to create, update and delete posts on one's own domain using third-party clients. Web apps and native apps (e.g., iPhone, Android) can use Micropub to post and edit articles, short notes, comments, likes, photos, events or other kinds of posts on your own website.
Author's Note
This section is non-normative.
This specification was contributed to the
W3C
from the
IndieWeb
community. More history and evolution of Micropub can be found on the
IndieWeb wiki
Status of This Document
This section describes the status of this document at the time of its publication. Other documents may supersede this document. A list of current
W3C
publications and the latest revision of this technical report can be found in the
W3C
technical reports index
at https://www.w3.org/TR/.
This document was published by the
Social Web Working Group
as a Recommendation. Comments regarding this document are welcome. Please send them to
public-socialweb@w3.org
archives
).
Please see the Working Group's
implementation
report
This document has been reviewed by
W3C
Members, by software developers, and by other
W3C
groups and interested parties, and is endorsed by the Director as a
W3C
Recommendation. It is a stable document and may be used as reference material or cited from another document.
W3C
's role in making the Recommendation is to draw attention to the specification and to promote its widespread deployment. This enhances the functionality and interoperability of the Web.
This document was produced by a group operating under the
5 February 2004
W3C
Patent
Policy
W3C
maintains a
public list of any patent
disclosures
made in connection with the deliverables of the group; that page also includes instructions for disclosing a patent. An individual who has actual knowledge of a patent which the individual believes contains
Essential
Claim(s)
must disclose the information in accordance with
section
6 of the
W3C
Patent Policy
This document is governed by the
1 March 2017
W3C
Process Document
1.
Introduction
This section is non-normative.
Micropub is a spec to create, update and delete posts on a server using web or native app clients. Micropub is primarily focused around creating "posts" (individual pieces of content such as blog posts, photos, short notes, comments, and more) on a website, although it can be used for other kinds of content as well. The Micropub spec defines a simple mechanism to create content, as well as a more thorough mechanism to update and delete content.
1.1
Social Web Working Group
Micropub is one of several related specifications being produced by the Social Web Working Group. Implementers interested in alternative approaches and complementary protocols should review
ActivityPub
as well as the overview document [
social-web-protocols
].
1.2
Background
The Micropub specification began as a simplified version of the AtomPub and MetaWeblog APIs. Where AtomPub is an API to create items in an Atom feed, Micropub is an API to create items in a [
Microformats2
] feed.
In addition to being used with a different vocabulary from AtomPub and MetaWeblog, Micropub simplifies and improves upon both APIs in a number of ways. Micropub uses OAuth 2.0 Bearer Tokens for authentication, rather than the previous insecure username/password authentication method. Micropub also uses traditional form posts as well as JSON posts, which is both simpler and more secure than an XMLRPC approach.
The Micropub vocabulary is derived directly from the [
Microformats2
] vocabulary. Micropub is meant to be a serialization of Microformats that can be submitted as an HTTP POST. The method for developing new Micropub vocabularies is to look at the Microformats representation and work backwards.
2.
Conformance
The key words "
MUST
", "
MUST NOT
", "
REQUIRED
", "
SHALL
", "
SHALL NOT
", "
SHOULD
", "
SHOULD NOT
", "
RECOMMENDED
", "
MAY
", and "
OPTIONAL
" in this document are to be interpreted as described in [
RFC2119
].
2.1
Conformance Classes
This section describes the conformance criteria for Micropub clients and servers. All implementations
MUST
support UTF-8 encoding.
2.1.1
Publishing Clients
A conforming Micropub client that creates posts:
MUST
support sending
x-www-form-urlencoded
requests
MUST
support the [
h-entry
] vocabulary
If the client creates posts by uploading file attachments, it
MUST
check for the presence of a Media Endpoint and if present, send the file there instead of to the Micropub endpoint
SHOULD
handle server error messages gracefully, presenting helpful messages to the user
SHOULD
support
endpoint discovery
2.1.2
Editing Clients
A conforming Micropub client that edits posts:
MUST
support sending JSON-encoded requests
MUST
support the [
h-entry
] vocabulary
2.1.3
Servers
A conforming Micropub server:
MUST
support both header and form parameter methods of
authentication
MUST
support
creating
posts with the [
h-entry
] vocabulary
MUST
support
creating
posts using the
x-www-form-urlencoded
syntax
SHOULD
support
updating
and
deleting
posts
Servers that support updating posts
MUST
support
JSON syntax
and the
source content query
Servers that do not specify a Media Endpoint
MUST
support
multipart/form-data
requests for
creating
posts
Servers that specify a Media Endpoint
MUST
support the
configuration query
, other servers
SHOULD
support the configuration query
2.2
Candidate Recommendation Exit Criteria
This specification exited CR by there being least two independent, interoperable implementations of each feature. Each feature may be implemented by a different set of products. There is no requirement that all features be implemented by a single product. For the purposes of this criterion, we define the following terms:
2.2.1
Client
A Micropub Client is an implementation that sends Micropub requests to create or otherwise manipulate posts. The conformance criteria are described in
Conformance Classes
above.
2.2.2
Server
A Micropub Server is an implementation that can create and optionally edit and delete posts given a Micropub request. The Micropub server
MAY
also support a Media Endpoint for handling file uploads outside of the primary Micropub endpoint. The conformance criteria are described in
Conformance Classes
above.
2.2.3
Independent
Each implementation must be developed by a different party and cannot share, reuse, or derive from code used by another qualifying implementation. Sections of code that have no bearing on the implementation of this specification are exempt from this requirement.
2.2.4
Interoperable
A Client and Server implementation are considered interoperable for a specific feature when the Server takes the defined action that the Client requests, the Client gets the expected response from a Server according to the feature, and the Server sends the expected response to the Client.
2.2.5
Implementation
An Implementation is a Micropub Client or Server which meets all of the following criteria:
implements the corresponding conformance class of the specification
is available to the general public, as downloadable software or as a hosted service
is not experimental (i.e. is intended for a wide audience and could be used on a daily basis)
is suitable for a person to use as his/her primary implementation on a website
2.2.6
Feature
For the purposes of evaluating exit criteria, each of the following is considered a feature:
Discovering the Micropub endpoint given the profile URL of a user
Authenticating requests by including the access token in the HTTP
Authorization
header
Authenticating requests by including the access token in the post body for
x-www-form-urlencoded
requests
Limiting the ability to create posts given an access token by requiring that the access token contain at least one OAuth 2.0 scope value
Creating a post using
x-www-form-urlencoded
syntax with one or more properties
Creating a post using JSON syntax with one or more properties
Creating a post using
x-www-form-urlencoded
syntax with multiple values of the same property name
Creating a post using JSON syntax with multiple values of the same property name
Creating a post using JSON syntax including a nested Microformats2 object
Uploading a file to the specified Media Endpoint
Creating a post with a file by sending the request as
multipart/form-data
to the Micropub endpoint
Creating a post with a photo referenced by URL
Creating a post with a photo referenced by URL that includes image alt text
Creating a post where the request contains properties the server does not recognize
Returning
HTTP 201 Created
and a
Location
header when creating a post
Returning
HTTP 202 Created
and a
Location
header when creating a post
Updating a post and replacing all values of a property
Updating a post and adding a value to a property
Updating a post and removing a value from a property
Updating a post and removing a property
Returning
HTTP 200 OK
when updating a post
Returning
HTTP 201 Created
when updating a post if the update cause the post URL to change
Returning
HTTP 204 No Content
when updating a post
Deleting a post using
x-www-form-urlencoded
syntax
Deleting a post using JSON syntax
Undeleting a post using
x-www-form-urlencoded
syntax
Undeleting a post using JSON syntax
Uploading a photo to the Media Endpoint and using the resulting URL when creating a post
Querying the Micropub endpoint with
q=config
to retrieve the Media Endpoint and syndication targets if specified
Querying the Micropub endpoint with
q=syndicate-to
to retrieve the list of syndication targets
Querying the Micropub endpoint for a post's source content without specifying a list of properties
Querying the Micropub endpoint for a post's source content looking only for specific properties
2.3
Test Suite and Reporting
Please submit your implementation reports at
. Instructions are provided at the URL. The implementation report template references the tests available at
micropub.rocks
micropub.rocks
provides many test cases you can use to live-test your implementation. It also is a good tool to use while developing a Micropub implementation, as it provides detailed responses when errors are encountered.
3.
Syntax
As [
microformats2-parsing
] has a relatively small ruleset for parsing HTML documents into a data structure, Micropub similarly defines a small set of rules to interpret HTTP POST and GET requests as Micropub commands. Where [
microformats2-parsing
] does not require changing the parsing rules to introduce new properties of an object such as an [
h-entry
], Micropub similarly does not require changing parsing rules to interpret requests that may correspond to different post types, such as posting videos vs "likes".
The Micropub syntax describes how to interpret HTTP POST and GET requests into useful server actions.
3.1
Overview
All Micropub requests to create posts are sent as UTF-8
x-www-form-urlencoded
multipart/form-data
HTML5
], or [
JSON
]-encoded HTTP requests. Responses typically do not include a response body, indicating the needed information (such as the URL of the created post) in HTTP headers. When a response body is necessary, it
SHOULD
be returned as a [
JSON
] encoded object.
3.1.1
Form-Encoded and Multipart Requests
For
x-www-form-urlencoded
and
multipart/form-data
requests, Micropub supports an extension of the standard URL encoding that includes explicit indicators of multi-valued properties. Specifically, this means in order to send multiple values for a given property, you
MUST
append square brackets
[]
to the property name.
For example, to specify multiple values for the property "category", the request would include
category[]=foo&category[]=bar
On the server side, it is expected that the server will convert this to an internal representation of an array. For example, the equivalent JSON representation of this would be:
"category"
: [
"foo"
"bar"
This works equally well in multipart requests, where each value is given in a separate "part" of the request, and the name is given in a line such as
Content-Disposition: form-data; name="category[]"
Note that the extent of the extensions to the
x-www-form-urlencoded
syntax is the addition of the square brackets to indicate an array. Syntax such as
foo[0]
and
foo[bar]
is not supported, and so clients are expected to use the
JSON syntax
when posting more complex objects.
3.2
Reserved Properties
A few POST body property names are reserved when requests are sent as
x-www-form-urlencoded
or
multipart/form-data
access_token
- the OAuth Bearer token authenticating the request (the access token may be sent in an HTTP Authorization header or this form parameter)
- used to specify the object type being created
action
- indicates whether this is an
delete
, or
undelete
(updates are not supported in the form-encoded syntax)
url
- indicates the URL of the object being acted on
mp-*
- reserved for future use
When creating posts using
x-www-form-urlencoded
or
multipart/form-data
requests, all other properties in the request are considered properties of the object being created.
The server
MUST NOT
store the
access_token
property in the post.
Properties beginning with
mp-
are reserved as a mechanism for clients to give commands to servers. Where typically properties of a post are visible to users, commands to the server are not visible to users, so it does not make sense to set a property on the post for a command. Clients and servers wishing to experiment with creating new
mp-
commands are encouraged to brainstorm and document implementations at
indieweb.org/Micropub-extensions
When creating posts using
JSON syntax
, properties beginning with
mp-
are reserved as described above.
3.3
Create
To create a post, send an HTTP POST request to the Micropub endpoint indicating the type of post you are creating, as well as specifying the properties of the post. If no type is specified, the default type [
h-entry
SHOULD
be used. Clients and servers
MUST
support creating posts using the
x-www-form-urlencoded
syntax, and
MAY
also support creating posts using the
JSON syntax
h={Microformats object type}
e.g.,
h=entry
All parameters not beginning with "mp-" are properties of the object being created.
e.g.,
content=hello+world
To specify multiple values for a property, such as multiple categories of an h-entry, append square brackets to the property name, indicating it is an array.
e.g.,
category[]=foo&category[]=bar
Properties that accept multiple values
MUST
also accept a single value, with or without the square brackets. A complete example of a form-encoded request follows.
Example 1
h=entry&content=hello+world&category[]=foo&category[]=bar
3.3.1
Uploading Files
To upload files, the client
MUST
check for the presence of a
Media Endpoint
. If there is no Media Endpoint, the client can assume that the Micropub endpoint accepts files directly, and can send the request to it directly. To upload a file to the Micropub endpoint, format the whole request as
multipart/form-data
and send the file(s) as a standard property.
For example, to upload a photo with a caption, send a request that contains three parts, named
content
and
photo
Example 2
multipart/form-data; boundary=
553
d9cee2030456a81931fb708ece92c

-553
d9cee2030456a81931fb708ece92c
Content-Disposition: form-data; name=
"h"
entry
-553
d9cee2030456a81931fb708ece92c
Content-Disposition: form-data; name=
"content"
Hello World!
-553
d9cee2030456a81931fb708ece92c
Content-Disposition: form-data; name=
"photo"
; filename=
"aaronpk.png"
Content-Type: image/png
Content-Transfer-Encoding: binary

... (binary data) ...
-553
d9cee2030456a81931fb708ece92c--
For properties that can accept a file upload (such as
photo
or
video
), the Micropub endpoint
MUST
also accept a URL value, treating that the same as if the file had been uploaded directly. The endpoint
MAY
download [
Fetch
] a copy of the file at the URL and store it the same way it would store the file if it had been uploaded directly. For example:
Example 3
h=entry&content=hello+world&photo=https%3A%2F%2Fphotos.example.com%2F592829482876343254.jpg
This is to support uploading files via a Media Endpoint, or by reference to other external images. See the
Media Endpoint
section for more information.
3.3.2
JSON Syntax
In order to support more complex values of properties, you can create a post with JSON syntax by sending the entry in the parsed Microformats 2 JSON format.
Note that in this case, you cannot also upload a file, you can only reference files by URL as described above.
When creating posts in JSON format, all values
MUST
be specified as arrays, even if there is only one value, identical to the Microformats 2 JSON format. This request is sent with a content type of
application/json
Note that properties beginning with
mp-
are reserved as described in
Reserved Properties
Example 4
POST
/micropub
HTTP/1.1
Host
: aaronpk.example
Content-type
: application/json
"type"
: [
"h-entry"
],
"properties"
: {
"content"
: [
"hello world"
],
"category"
: [
"foo"
"bar"
],
"photo"
: [
"https://photos.example.com/592829482876343254.jpg"
Uploading a photo with alt text
To include alt text along with the image being uploaded, you can use the Microformats 2 syntax to specify both the image URL and alt text for the
photo
property. Instead of the value being simply a URL, the value is instead an object with two properties:
value
being the URL and
alt
being the text. Note that because the value of
photo
needs to be an object, we can't use form-encoded or multipart requests for this. Instead, we have to first upload the photo to the media endpoint, then reference the URL in a JSON request, as illustrated below.
Example 5
POST
/micropub
HTTP/1.1
Host
: aaronpk.example
Content-type
: application/json
"type"
: [
"h-entry"
],
"properties"
: {
"content"
: [
"hello world"
],
"category"
: [
"foo"
"bar"
],
"photo"
: [
"value"
"https://photos.example.com/globe.gif"
"alt"
"Spinning globe animation"
Warning
The specific method described here of specifying alt text was added with the assumption that the Microformats 2 proposal for how to represent image alt text (
issue 2
) will be incorporated. If the referenced issue is resolved a different way, the Micropub spec should be adjusted accordingly.
3.3.3
Nested Microformats Objects
Whenever possible, nested Microformats objects should be avoided. A better alternative is to reference objects by their URLs. The most common example is including an h-card for a venue, such as checking in to a location or tagging a photo with a person or location. In these cases, it is better to reference the object by URL, creating it first if necessary.
This technique has the advantage of ensuring that each object that is created has its own URL (each piece of data has its own link). This also gives the server an opportunity to handle each entity separately. E.g., rather than creating a duplicate of an existing venue, it may give back a link to one that was already created, possibly even merging newly received data first.
In some cases, it does not make sense for the nested object to have a URL. For example, when posting an h-measure value, there is no reason for the h-measure itself to have a URL, so this is an acceptable case to use the nested Microformats object syntax.
Nested objects require that the request be sent in JSON format, since the form-encoding syntax does not consistently support nested objects.
The example below creates a new "weight" measurement post as an h-entry with a h-measure objects to describe the weight and bodyfat values.
Example 6
"type"
: [
"h-entry"
],
"properties"
: {
"summary"
: [
"Weighed 70.64 kg"
],
"weight"
: [
"type"
: [
"h-measure"
],
"properties"
: {
"num"
: [
"70.64"
],
"unit"
: [
"kg"
],
"bodyfat"
: [
"type"
: [
"h-measure"
],
"properties"
: {
"num"
: [
"19.83"
],
"unit"
: [
"%"
3.3.4
Bidirectional Text
Natural language values in Micropub requests
MAY
contain bidirectional text. The default base direction of Micropub text values is left-to-right. The base direction of individual natural language values
MAY
be modified as described below.
When specifying bidirectional text for a natural language value, and the base direction of the text cannot be correctly identified by the first strong directional character of that text ([
BIDI
]), publishing clients
SHOULD
explicitly identify the default direction either by prefixing the value with an appropriate Unicode bidirectional control character, or by using HTML directional markup for HTML values.
Micropub servers that accept natural language values that contain bidirectional text
SHOULD
identify the base direction of any given natural language value by either: for plaintext values, scanning the text for the first strong directional character; or for HTML values, by utilizing directional markup, if available, or otherwise scanning for the first strong directional character not contained in a markup tag. When displaying these natural language values, the server
MUST
determine the appropriate rendering of the content according to the [
BIDI
] algorithm, which may necessitate wrapping additional control characters or markup around the string prior to display, in order to apply the base direction.
3.3.5
Unrecognized Properties
If the request includes properties that the server does not recognize, it
MUST
ignore unrecognized properties and create the post with the values that are recognized.
This allows clients to post rich types of content to servers that support it, while also posting fallback content to servers that don't.
For example, a client may create a post that contains a weight measurement, with an
h-measure
value for the
weight
property, and a plaintext summary of the post in the
summary
property. Servers that don't recognize the
weight
property will simply ignore it, and will create the post as a plaintext post with the summary instead.
3.3.6
Response
When the post is created, the Micropub endpoint
MUST
return either an
HTTP 201 Created
status code or
HTTP 202 Accepted
code, and
MUST
return a
Location
header indicating the URL of the created post. [
RFC2616
Example 7
HTTP/1.1
201
Created
Location
: https://aaronpk.example/post/1000
If the endpoint chooses to process the request asynchronously rather than creating and storing the post immediately, it
MUST
return an
HTTP 202 Accepted
status code, and
MUST
also return the
Location
header. The server
MUST
do any error checking and validation of the request synchronously in order to ensure the object will be created successfully, prior to returning HTTP 202. Clients will expect the object at the indicated URL to exist at some point in the (near) future if they receive an HTTP 202 response.
If the target also provides a shortlink, or if it syndicated the post to another location, the Micropub endpoint
MAY
return additional URLs using the HTTP Link header, along with an appropriate "rel" value. For example, it can return the short URL of a post by responding with:
Link:
http:
//
aaron.pk
xxxxx
; rel=
"shortlink"
or can include the location of the syndicated post with:
Link:
https:
//
myfavoritesocialnetwork.example
aaronpk
xxxxxx
; rel=
"syndication"
Error Response
See the "
Error Response
" section below for details on how to indicate an error occurred.
3.4
Update
Micropub servers
SHOULD
support updating posts, including adding and removing individual properties as described in this section.
Updating entries is done with a JSON post describing the changes to make.
To update an entry, send
"action": "update"
and specify the URL of the entry that is being updated using the "url" property. The request
MUST
also include a
replace
add
or
delete
property (or any combination of these) containing the updates to make.
The values of each property inside the
replace
add
or
delete
keys
MUST
be an array, even if there is only a single value.
While it is okay to combine add/delete operations in the same request, it only makes sense to do so when they are operating on different property-value combinations. Servers may have undefined behavior if multiple operations of the same property-value combination are sent in an update request.
3.4.1
Replace
Replace all values of the property. If the property does not exist already, it is created.
Example 8
"action"
"update"
"url"
"https://aaronpk.example/post/100"
"replace"
: {
"content"
: [
"hello moon"
This will replace the entire entry content with the new text, leaving any other existing property of the post as is.
3.4.2
Add
If there are any existing values for this property, they are not changed, the new values are added. If the property does not exist already, it is created.
Adding a syndication URL
Use case: adding a syndication link to a post after it has been published. For example, when a client supports posting first then syndicating to MyFavoriteSocialNetwork or Wikimedia after the fact, the site needs a way to update the original post with the new syndication URL.
To add syndication URLs, include one or more URLs in the update request.
Example 9
"action"
"update"
"url"
"https://aaronpk.example/2014/06/01/9/indieweb"
"add"
: {
"syndication"
: [
"http://web.archive.org/web/20040104110725/https://aaronpk.example/2014/06/01/9/indieweb"
Adding Tags
Use case: adding tags to a post after it's been created.
To add multiple values to a property (such as category), provide the new values in an array.
Example 10
"action"
"update"
"url"
"https://aaronpk.example/2014/06/01/9/indieweb"
"add"
: {
"category"
: [
"micropub"
"indieweb"
3.4.3
Remove
If the property exists, remove it. This completely removes the specified property.
Example 11
"action"
"update"
"url"
"https://aaronpk.example/2014/06/01/9/indieweb"
"delete"
: [
"category"
For properties with multiple values, such as categories, you can remove individual entries by value. If no values remain, the property is removed.
Example 12
"action"
"update"
"url"
"https://aaronpk.example/2014/06/01/9/indieweb"
"delete"
: {
"category"
: [
"indieweb"
3.4.4
Response
The server
MUST
respond to successful update requests with HTTP 200, 201 or 204. If the update operation caused the URL of the post to change, the server
MUST
respond with HTTP 201 and include the new URL in the HTTP
Location
header. Otherwise, the server
MUST
respond with 200 or 204, depending on whether the response body has content. No body is required in the response, but the response
MAY
contain a JSON object describing the changes that were made.
3.5
Delete
Micropub servers
SHOULD
support deleting posts, and
MAY
support undeleting posts.
To delete an entire entry at a URL, send a POST request containing
action=delete
and the URL of the item in the
url
property.
Example 13
action=
delete
&url=https:
//aaronpk.example/2014/06/01/9/indieweb
Example 14
"action"
"delete"
"url"
"https://aaronpk.example/2014/06/01/9/indieweb"
To undelete a post, use "undelete" as the action.
Example 15
action=undelete
&url=https:
//aaronpk.example/2014/06/01/9/indieweb
Example 16
"action"
"undelete"
"url"
"https://aaronpk.example/2014/06/01/9/indieweb"
3.5.1
Response
The server
MUST
respond to successful delete and undelete requests with HTTP 200, 201 or 204. If the undelete operation caused the URL of the post to change, the server
MUST
respond with HTTP 201 and include the new URL in the HTTP
Location
header. Otherwise, the server
MUST
respond with 200 or 204, depending on whether the response body has content. No body is required in the response, but the response
MAY
contain a JSON object describing the changes that were made.
3.6
Media Endpoint
In order to provide a better user experience for Micropub applications, as well as to overcome the limitation of being unable to upload a file with the JSON syntax, a Micropub server
MAY
support a "Media Endpoint". The role of the Media Endpoint is exclusively to handle file uploads and return a URL that can be used in a subsequent Micropub request.
When a Micropub server supports a Media Endpoint, clients can start uploading a photo or other media right away while the user is still creating other parts of the post. The diagram below illustrates a user interface that demonstrates creating a photo post while the photo is uploading asynchronously.
The above user flow applies just as well to mobile apps as it does to desktop apps. In general, the user experience of an application can be improved by having more of the work done asynchronously, giving the user a chance to continue working instead of waiting for the system to finish.
3.6.1
Discovery
To advertise that the Micropub endpoint supports a Media Endpoint, the server
MUST
include a key called
media-endpoint
with a value of the full URL of the Media Endpoint in the Micropub
configuration request
. Clients
MUST NOT
assume the Media Endpoint is on the same domain as the Micropub endpoint.
Example 17
GET /micropub?q=config
Authorization: Bearer xxxxxxxxx

"media-endpoint"
"https://media.example.com/micropub"
3.6.2
Authentication
The Media Endpoint
MUST
accept the same access tokens that the Micropub endpoint accepts.
3.6.3
Request
To upload a file to the Media Endpoint, the client sends a
multipart/form-data
request with one part named
file
. The Media Endpoint
MAY
ignore the suggested filename that the client sends.
Example 18
multipart/form-data; boundary=
553
d9cee2030456a81931fb708ece92c

-553
d9cee2030456a81931fb708ece92c
Content-Disposition: form-data; name=
"file"
; filename=
"sunset.jpg"
Content-Type: image/jpeg
Content-Transfer-Encoding: binary

... (binary data) ...
-553
d9cee2030456a81931fb708ece92c--
Note
To include accessibility-related information such as image alt text when creating posts that contain an image, the alt text is associated with the post itself rather than the media file. This is analogous to an HTML img tag where the img tag has a src attribute pointing to the media file and an alt attribute with the alt text. See
Uploading a photo with alt text
for more information.
3.6.4
Response
The Media Endpoint processes the file upload, storing it in whatever backend it wishes, and generates a URL to the file. The URL
SHOULD
be unguessable, such as using a UUID in the path. If the request is successful, the endpoint
MUST
return the URL to the file that was created in the HTTP
Location
header, and respond with
HTTP 201 Created
. The response body is left undefined.
Example 19
HTTP/1.1
201
Created
Location
: https://media.example.com/file/ff176c461dd111e6b6ba3e1d05defe78.jpg
The Micropub client can then use this URL as the value of e.g. the "photo" property of a Micropub request.
The Media Endpoint
MAY
periodically delete files uploaded if they are not used in a Micropub request within a specific amount of time.
3.6.4.1
Media Endpoint Error Response
The Media Endpoint
SHOULD
follow the same conventions for returning error responses as the Micropub endpoint, described in
Error Response
3.7
Querying
Micropub clients may need to query the Micropub endpoint to discover its capabilities, such as finding a list of syndication targets that it displays to the user, or retrieving the source of a post to display in the updating interface.
To query, make a
GET
request to the Micropub endpoint and use the
parameter to specify what you are querying.
Note
The Micropub endpoint URL may include a query string such as
?micropub=endpoint
, so in this case, Micropub clients
MUST
append the
parameter instead of replacing the query string.
3.7.1
Configuration
When a user initially logs in to a Micropub client, the client will want to query some initial information about the user's endpoint. The client
SHOULD
make a query request
q=config
to obtain initial configuration information.
The server
SHOULD
include the following information in the configuration response.
The list of syndication endpoints supported, in a property called
syndicate-to
(see
Syndication Targets
for details on the structure of the response)
The Media Endpoint if supported, in a property called
media-endpoint
Example 20
GET /micropub?q=config
Authorization: Bearer xxxxxxxxx
Accept: application/json