Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

method="post" enctype="text/plain" are not compatible?

Tags:

html

post

forms

php

When I use 

<form method="post" enctype="text/plain" action="proc.php">

form data can not be sent to proc.php file properly. Why? What is the problem? Why I can't use text/plain encoding with post but I can use it with get method?

like image 392
Narek Avatar asked Oct 02 '11 18:10

Narek

2 Answers

[Revised]

The answer is, because PHP doesn't handle it (and it is not a bug):

https://bugs.php.net/bug.php?id=33741

Valid values for enctype in <form> tag are:

application/x-www-form-urlencoded
multipart/form-data

The first is the default, the second one you need only when you upload files.

@Alohci provided explanation why PHP doesn't populate $_POST array, but store the value inside a variable $HTTP_RAW_POST_DATA.

Example of what can go wrong with text/plain enctype:

file1.php:

<form method="post" enctype="text/plain" action="file2.php">
<textarea name="input1">abc
input2=def</textarea>
<input name="input2" value="ghi" />
<input type="submit">
</form>

file2.php:

<?php
print($HTTP_RAW_POST_DATA);
?>

Result:

input1=abc
input2=def
input2=ghi

No way to distinguish what is the value of input1 and input2 variables. It can be

  • input1=abc\r\ninput2=def, input2=ghi, as well as
  • input1=abc, input2=def\r\ninput2=ghi

No such problem when using the other two encodings mentioned before.

The difference between GET and POST:

  • in GET, the variables are part of URL and are present in URL as query string, therefore they must be URL-encoded (and they are, even if you write enctype="text/plain" - it just gets ignored by the browser; you can test it using Wireshark to sniff the request packets),
  • when sending POST, the variables are not part of URL, but are sent as the last header in HTTP request (POSTDATA), and you can choose whether you want to send them as text/plain or application/x-www-form-urlencoded, but the second one is the only non-ambiguous solution.
like image 170
jakub.g Avatar answered Nov 20 '22 12:11

jakub.g

HTML5 does define how to format form data submitted as text/plain here: https://w3c.github.io/html/sec-forms.html#plain-text-form-data.

At the bottom of that section, it says:

Payloads using the text/plain format are intended to be human readable. They are not reliably interpretable by computer, as the format is ambiguous (for example, there is no way to distinguish a literal newline in a value from the newline at the end of the value).

So it not unreasonable that PHP does not attempt to interpret it and only makes it available in raw form. To me, that seems the correct approach.

like image 24
Alohci Avatar answered Nov 20 '22 13:11

Alohci
Sign in to Comment

Related questions

PHP - Extending Class
Clear memory being used by PHP
Ctrl + keys not work on my PHPStorm application
Codeigniter: Message: Cannot modify header information - headers already sent by (output started at [duplicate]
Call to undefined function array_column() [closed]
Posting JSON data to API using CURL
Call to undefined function mcrypt_decrypt() - even when php5-mcrypt installed
Laravel 4.1: How to paginate eloquent eager relationship?
Looking to give MailChimp dynamic content?
Undefined variable: errors -- Laravel 5.2
PhpMailer SMTP NOTICE: EOF caught while checking if connected
How can I check debug mode on Laravel
PhpStorm debug console says "this view is read only"
Laravel Eloquent find rows where date older than 2 days
How can I set time limit on get_file_contents in PHP?
PHP: Type hints for fields with Eclipse PDT
Get date in php in 2 weeks
Interview Question: Can we have an echo before header?
Check if a process is running using PHP in Linux
How to re-assign AUTO_INCREMENT column for every row in a MySQL table using PHP

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!