I have come across scripts that use: <pre class="prettyprint"><code>isset($_POST['submit']) </code></pre> as well as code that uses: <pre class="prettyprint"><code>$_SERVER['REQUEST_METHOD']=='POST' </code></pre> I was wondering the difference between these two and which method is best.

<pre class="prettyprint"><code>isset($_POST['submit']) </code></pre> If you already know that a particular value will always be sent and therefore is indicative of an expected form submission (the <code>submit</code> field in this case) this code will tell you two things: <ol> <li>The form is submitted via the <code>POST</code> method, as opposed to <code>GET</code>, <code>PUT</code>, etc.</li> <li>The <code>submit</code> field has been passed.</li> </ol> <hr> <pre class="prettyprint"><code>$_SERVER['REQUEST_METHOD'] == 'POST' </code></pre> This tells you exactly one thing, a form was submitted via the <code>POST</code> method. Reasons to use it include: <ul> <li>You want to distinguish between an invalid form submission (e.g. not all fields were transmitted) and other kinds of page retrieval (<code>GET</code>, <code>PUT</code>, etc.)</li> <li>You don't know exactly what you're going to receive. Perhaps this code is run in a controller which doesn't know all details of its dependent parts.</li> </ul> The former is <pre class="prettyprint"><code>if ($_SERVER['REQUEST_METHOD'] == 'POST') { if (!isset($_POST['name'])) { // at this point you know that `name` was not passed as part of the request // this could be treated as an error } } </code></pre> Versus: <pre class="prettyprint"><code>if (!isset($_POST['name'])) { // the `name` field was not passed as part of the request // but it might also be a GET request, in which case a page should be shown } </code></pre> Important Checking for a submit button field in the request is not reliable as a form can be submitted in other ways (such as pressing Enter in a text box). <hr> <pre class="prettyprint"><code>$_POST </code></pre> By just using this expression you can assert that: <ol> <li>The form is submitted via <code>POST</code> </li> <li>At least one field has been submitted</li> </ol>

isset($_POST['submit']) vs $_SERVER['REQUEST

I have come across scripts that use:

isset($_POST['submit'])

as well as code that uses:

$_SERVER['REQUEST_METHOD']=='POST'

I was wondering the difference between these two and which method is best.

What is $_ server Request_method == POST?

PHP: $_SERVER['REQUEST_METHOD'] $_SERVER['REQUEST_METHOD'] fetches the request method used to access the page. Request methods are 'GET', 'HEAD', 'POST', 'PUT'.

What is if isset ($_ POST?

Definition and Usage. The isset() function checks whether a variable is set, which means that it has to be declared and is not NULL. This function returns true if the variable exists and is not NULL, otherwise it returns false.

What is _server [' Request_method '] == POST in PHP?

$_SERVER['REQUEST_METHOD'] is one of the PHP server variables. It determines: Which request method was used to access the page; i.e. 'GET', 'HEAD', 'POST', 'PUT'. It's generally defaulted to GET though, so don't rely on it for determining if a form has been posted or not (eg if not POST then must be GET etc).

What is server request method?

The method designates the type of request being made to the web server. The most common types of request methods are GET and POST but there are many others, including HEAD, PUT, DELETE, CONNECT, and OPTIONS. GET and POST are widely supported while support for other methods is sometimes limited but expanding.

isset($_POST['submit'])

If you already know that a particular value will always be sent and therefore is indicative of an expected form submission (the submit field in this case) this code will tell you two things:

The form is submitted via the POST method, as opposed to GET, PUT, etc.
The submit field has been passed.

$_SERVER['REQUEST_METHOD'] == 'POST'

This tells you exactly one thing, a form was submitted via the POST method. Reasons to use it include:

You want to distinguish between an invalid form submission (e.g. not all fields were transmitted) and other kinds of page retrieval (GET, PUT, etc.)
You don't know exactly what you're going to receive. Perhaps this code is run in a controller which doesn't know all details of its dependent parts.

The former is

if ($_SERVER['REQUEST_METHOD'] == 'POST') {
    if (!isset($_POST['name'])) {
        // at this point you know that `name` was not passed as part of the request
        // this could be treated as an error
    }
}

Versus:

if (!isset($_POST['name'])) {
    // the `name` field was not passed as part of the request
    // but it might also be a GET request, in which case a page should be shown
}

Important

Checking for a submit button field in the request is not reliable as a form can be submitted in other ways (such as pressing Enter in a text box).

$_POST

By just using this expression you can assert that:

The form is submitted via POST
At least one field has been submitted

These mean two different things. The first, checks to see if when the form was submitted the parameter submit was passed. Many use this snippet to verify that a form has been sent. This works because the submit button is technically an <input> so it's value is sent along with any other elements that were part of the form.

<?php
    if(isset($_POST['submit'])) { // This way form and form logic can be adjacent to each other
        // Logic
    }
?>
<form method='POST' action='<?= $_SERVER['REQUEST_URI'] ?>'>
   <!--- other form stuff -->
   <input type="submit" name="submit" value="Send!" />
</form>

The second snippet tests if the form was submitted with the POST method. This doesn't necessarily mean that the form button was pushed. If it wasn't submitted with POST, then the superglobal $_POST would be empty.

isset($_POST['submit']) vs $_SERVER['REQUEST_METHOD']=='POST'

Tags:

php

Madz

People also ask

2 Answers

Ja͢ck

Bailey Parker

Recent Activity

Donate For Us