<blockquote>
<p><a class="user-mention" data-hovercard-type="user" data-hovercard-url="/hovercards?user_id=361423" data-octo-click="hovercard-link-click" data-octo-dimensions="link_type:self" href="https://github.com/mvl22">@mvl22</a> see <a class="issue-link js-issue-link" data-error-text="Failed to load issue title" data-id="430010870" data-permission-text="Issue title is private" data-url="https://github.com/openstreetmap/openstreetmap-website/issues/2201" data-hovercard-type="issue" data-hovercard-url="/openstreetmap/openstreetmap-website/issues/2201/hovercard" href="https://github.com/openstreetmap/openstreetmap-website/issues/2201">#2201</a> (comment) I would think returning an error in all cases in which no token has been supplied is in order, there are obviously a couple of edge cases in which this might not be able to catch all repeated uploads outside of actual edits, but seriously, I don't think we really care about those.</p>
</blockquote>
<p>I am suggesting though that clients should have to change - instead that the server itself should do the token generation.</p>
<p>Would my suggested approach noted above work?</p>

<p style="font-size:small;-webkit-text-size-adjust:none;color:#666;">—<br />You are receiving this because you are subscribed to this thread.<br />Reply to this email directly, <a href="https://github.com/openstreetmap/openstreetmap-website/issues/2201#issuecomment-488832487">view it on GitHub</a>, or <a href="https://github.com/notifications/unsubscribe-auth/AAK2OLJ563BMKF5ZRXEGO6LPTNJXXANCNFSM4HEAKOPQ">mute the thread</a>.<img src="https://github.com/notifications/beacon/AAK2OLMIOBFHML6E6URSSKDPTNJXXA5CNFSM4HEAKOP2YY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGODURP3ZY.gif" height="1" width="1" alt="" /></p>
<script type="application/json" data-scope="inboxmarkup">{"api_version":"1.0","publisher":{"api_key":"05dde50f1d1a384dd78767c55493e4bb","name":"GitHub"},"entity":{"external_key":"github/openstreetmap/openstreetmap-website","title":"openstreetmap/openstreetmap-website","subtitle":"GitHub repository","main_image_url":"https://github.githubassets.com/images/email/message_cards/header.png","avatar_image_url":"https://github.githubassets.com/images/email/message_cards/avatar.png","action":{"name":"Open in GitHub","url":"https://github.com/openstreetmap/openstreetmap-website"}},"updates":{"snippets":[{"icon":"PERSON","message":"@mvl22 in #2201: \u003e @mvl22 see #2201 (comment) I would think returning an error in all cases in which no token has been supplied is in order, there are obviously a couple of edge cases in which this might not be able to catch all repeated uploads outside of actual edits, but seriously, I don't think we really care about those.\r\n\r\nI am suggesting though that clients should have to change - instead that the server itself should do the token generation.\r\n\r\nWould my suggested approach noted above work?"}],"action":{"name":"View Issue","url":"https://github.com/openstreetmap/openstreetmap-website/issues/2201#issuecomment-488832487"}}}</script>
<script type="application/ld+json">[
{
"@context": "http://schema.org",
"@type": "EmailMessage",
"potentialAction": {
"@type": "ViewAction",
"target": "https://github.com/openstreetmap/openstreetmap-website/issues/2201#issuecomment-488832487",
"url": "https://github.com/openstreetmap/openstreetmap-website/issues/2201#issuecomment-488832487",
"name": "View Issue"
},
"description": "View this Issue on GitHub",
"publisher": {
"@type": "Organization",
"name": "GitHub",
"url": "https://github.com"
}
}
]</script>