@@ -86,7 +86,7 @@ receive request bodies:
8686
8787All error objects have resource and field properties so that your client
8888can tell what the problem is. There's also an error code to let you
89- know what is wrong with the field. These are the possible validation error
89+ know what is wrong with the field. These are the possible validation error
9090codes:
9191
9292missing
@@ -131,7 +131,7 @@ POST requests.
131131
132132PUT
133133: Used for replacing resources or collections. For PUT requests
134- with no` body ` attribute, be sure to set the` Content-Length ` header to zero.
134+ with no` body ` attribute, be sure to set the` Content-Length ` header to zero.
135135
136136DELETE
137137: Used for deleting resources.
@@ -164,7 +164,7 @@ are not websites.
164164
165165Requests that require authentication will return 404, instead of 403, in some places.
166166This is to prevent the accidental leakage of private repositories to unauthorized
167- users.
167+ users.
168168
169169##Pagination
170170
@@ -212,7 +212,16 @@ X-RateLimit-Limit: 5000
212212X-RateLimit-Remaining: 4966
213213</pre >
214214
215- You can[ contact us] ( https://github.com/contact ) to request white listed access for your application. We prefer sites that
215+ You can also check your rate limit status without incurring an API hit.
216+
217+ GET /rate_limit
218+
219+ ###Rate limit
220+
221+ <%= headers 200 %>
222+ <%= json: rate => {: remaining => 4999,: limit => 5000} %>
223+
224+ Please[ contact us] ( https://github.com/contact ) to request white listed access for your application. We prefer sites that
216225setup OAuth applications for their users.
217226
218227##Cross Origin Resource Sharing
@@ -225,21 +234,21 @@ HTML 5 Security Guide.
225234Here's a sample request sent from a browser hitting
226235` http://some-site.com ` :
227236
228- $ curl -i https://api.github.com -H "Origin: http://some-site.com"
237+ $ curl -i https://api.github.com -H "Origin: http://some-site.com"
229238HTTP/1.1 302 Found
230239
231240Any domain that is registered as an OAuth Application is accepted.
232241Here's a sample request for a browser hitting[ Calendar About Nothing] ( http://calendaraboutnothing.com/ ) :
233242
234- $ curl -i https://api.github.com -H "Origin: http://calendaraboutnothing.com"
243+ $ curl -i https://api.github.com -H "Origin: http://calendaraboutnothing.com"
235244HTTP/1.1 302 Found
236245Access-Control-Allow-Origin: http://calendaraboutnothing.com
237246Access-Control-Expose-Headers: Link, X-RateLimit-Limit, X-RateLimit-Remaining, X-OAuth-Scopes, X-Accepted-OAuth-Scopes
238247Access-Control-Allow-Credentials: true
239248
240249This is what the CORS preflight request looks like:
241250
242- $ curl -i https://api.github.com -H "Origin: http://calendaraboutnothing.com" -X OPTIONS
251+ $ curl -i https://api.github.com -H "Origin: http://calendaraboutnothing.com" -X OPTIONS
243252HTTP/1.1 204 No Content
244253Access-Control-Allow-Origin: http://calendaraboutnothing.com
245254Access-Control-Allow-Headers: Authorization, X-Requested-With