Wojciech Trocki Dara Hayes Wei Li

Sending JSON in headers feels wrong.
I would rather Base64 encode the JSON and send it like that. Similar to JWT tokens.

Or, send separate headers.

I am in favor of single HTTP header and base64 encoding. This way we allow all the stuff the client wants to write into audit logs.
I will start the work this way.

If we go with separate headers, we need to adapt both the clients and the server if we want a new field.

What do you think?