What’s the difference when using GET or POST method? Which one is more secure? What are (dis)advantages of each of them?
What’s the difference when using GET or POST method? Which one is more secure?
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
What’s the difference when using GET or POST method? Which one is more secure? What are (dis)advantages of each of them?
It’s not a matter of security. The HTTP protocol defines GET-type requests as being idempotent, while POSTs may have side effects. In plain English, that means that GET is used for viewing something, without changing it, while POST is used for changing something. For example, a search page should use GET, while a form that changes your password should use POST.
Also, note that PHP confuses the concepts a bit. A POST request gets input from the query string and through the request body. A GET request just gets input from the query string. So a POST request is a superset of a GET request; you can use
$_GETin a POST request, and it may even make sense to have parameters with the same name in$_POSTand$_GETthat mean different things.For example, let’s say you have a form for editing an article. The article-id may be in the query string (and, so, available through
$_GET['id']), but let’s say that you want to change the article-id. The new id may then be present in the request body ($_POST['id']). OK, perhaps that’s not the best example, but I hope it illustrates the difference between the two.