alt Hacker NewsThe point is that if you do that, you end up with lots of undefined behaviour in existing software that has not been patched yet.
If you make it a whole new request method, existing unpatched software should just respond with "Method not allowed".
The point is that if you do that, you end up with lots of undefined behaviour in existing software that has not been patched yet.
If you make it a whole new request method, existing unpatched software should just respond with "Method not allowed".
Which means you have to structure everything around multiple scenarios anyway.