Some API endpoints change data with GET rather than POST

[Miserlou]

This is poor API design as it introduces a potential security vulnerability.

I'd suggest this be changed some time in the future, but not without a heads up as it will break all of the client libraries. :(

[JohnMcLear]

Also the API isn't RESTful so it's all over the place, it's a design mistake we made early on..

[JohnMcLear]

@anttiviljami -- Any chance #3786 could resolve this please?

[anttiviljami]

I mean sure, but it would be a major breaking API change.

[anttiviljami]

I would probably just extract the current OpenAPI definition, modify it to create a new properly designed, restful version of the API and just expose it as a new major API version while supporting the old API for a while. Would be easy to do with openapi-backend

[JohnMcLear]

+1 will be a 1.9 thing :)

[JohnMcLear]

@anttiviljami was it possible for you to send through a PR including this breaking change please?

[anttiviljami]

Sorry @JohnMcLear. Too busy right now for pro bono work :(