1106

How can I detect which request type was used (GET, POST, PUT or DELETE) in PHP?

Improve this question
4
  • 28
    don't forget HEAD =) (also OPTIONS, TRACE and CONNECT, but I don't think PHP ever gets those). Commented Dec 12, 2008 at 23:22
  • 5
    How about PATCH? Commented Jun 9, 2016 at 19:36
  • 2
    PATCH also works fine. $_SERVER['REQUEST_METHOD'] === 'PATCH' Commented Feb 14, 2018 at 22:01
  • Arbitrary HTTP verbs also work: var_dump($_SERVER['REQUEST_METHOD']); -> string(15) "ISN'T-THIS-COOL" Commented May 5 at 22:11

15 Answers 15

Reset to default
1554
Answer recommended by PHP Collective

By using

$_SERVER['REQUEST_METHOD']

Example

if ($_SERVER['REQUEST_METHOD'] === 'POST') { // The request is using the POST method }

For more details please see the documentation for the $_SERVER variable.

Improve this answer
Sign up to request clarification or add additional context in comments.

12 Comments

What happens if you POST to mypage.php?var=something ?
The method will be POST, but if you have to use $_GET to get those variables Im not sure.
In the case nickf mentions, you could also (maybe) use the $_REQUEST variable. $_REQUEST contains post, get, and cookie values. Read the documentation at php.net/manual/en/reserved.variables.request.php
@NathanLong In my experience that is incorrect. If you POST to mypage.php?var=something then 'something' will be in $_GET['var'].
$_POST and $_GET are somewhat unfortunately named. $_GET contain variables from the URL's query component, regardless of the HTTP method. $_POST will contain form fields if the request was sent as application/x-www-form-urlencoded.
|
248

REST in PHP can be done pretty simple. Create http://example.com/test.php (outlined below). Use this for REST calls, e.g. http://example.com/test.php/testing/123/hello. This works with Apache and Lighttpd out of the box, and no rewrite rules are needed.

<?php $method = $_SERVER['REQUEST_METHOD']; $request = explode("/", substr(@$_SERVER['PATH_INFO'], 1)); switch ($method) { case 'PUT': do_something_with_put($request); break; case 'POST': do_something_with_post($request); break; case 'GET': do_something_with_get($request); break; default: handle_error($request); break; }
Improve this answer

8 Comments

If you want to have your API available, without quoting what interpreting engine you're using, add a .htaccess file containing RewriteEngine on RewriteRule ^api/(.*)$ api.php/$1 This assumes your API file is called api.php. Also, since the above code block was written, the PHP developers have depreciated the split function. it works fine if you replace split with explode.
What's with the @ in front of $_SERVER['PATH_INFO']?
@Svish, what a great detail you noticed! It gets rid of PHP Notice: Undefined index: PATH_INFO in case PATH_INFO is not in $_SERVER. I'm adding this to my bag of tricks right away! It's a way of saying "I know there might not be an entry named that way in this array, and I'm ready for that, so just shut up and do what I tell you to". :) Thanks guys, both for posting this answer and for bringing my attention to that particular character in it.
I usually use a !empty instead of @. Better practice?
As a more concise way using variable methods: <?php $request = explode("/", substr(@$_SERVER['PATH_INFO'], 1)); $rest = 'rest_'.strtolower($_SERVER['REQUEST_METHOD']); if (function_exists($rest)) call_user_func($rest, $request); ?>
|
32

Detecting the HTTP method or so called REQUEST METHOD can be done using the following code snippet.

$method = $_SERVER['REQUEST_METHOD']; if ($method == 'POST'){ // Method is POST } elseif ($method == 'GET'){ // Method is GET } elseif ($method == 'PUT'){ // Method is PUT } elseif ($method == 'DELETE'){ // Method is DELETE } else { // Method unknown }

You could also do it using a switch if you prefer this over the if-else statement.

If a method other than GET or POST is required in an HTML form, this is often solved using a hidden field in the form.

<!-- DELETE method --> <form action='' method='POST'> <input type="hidden" name'_METHOD' value="DELETE"> </form> <!-- PUT method --> <form action='' method='POST'> <input type="hidden" name'_METHOD' value="PUT"> </form>

For more information regarding HTTP methods I would like to refer to the following StackOverflow question:

HTTP protocol's PUT and DELETE and their usage in PHP

Improve this answer

Comments

16

We can also use the input_filter to detect the request method while also providing security through input sanitation.

$request = filter_input(INPUT_SERVER, 'REQUEST_METHOD', FILTER_SANITIZE_ENCODED);
Improve this answer

Comments

15

You can use getenv function and don't have to work with a $_SERVER variable:

getenv('REQUEST_METHOD');

More info:

http://php.net/manual/en/function.getenv.php

Improve this answer

1 Comment

This is the only method that worked for me. $_SERVER["REQUEST_METHOD"] variable only detected POST and GET methods, for the rest it returned false.
13

Since this is about REST, just getting the request method from the server is not enough. You also need to receive RESTful route parameters. The reason for separating RESTful parameters and GET/POST/PUT parameters is that a resource needs to have its own unique URL for identification.

Here's one way of implementing RESTful routes in PHP using Slim:

https://github.com/codeguy/Slim

$app = new \Slim\Slim(); $app->get('/hello/:name', function ($name) { echo "Hello, $name"; }); $app->run();

And configure the server accordingly.

Here's another example using AltoRouter:

https://github.com/dannyvankooten/AltoRouter

$router = new AltoRouter(); $router->setBasePath('/AltoRouter'); // (optional) the subdir AltoRouter lives in // mapping routes $router->map('GET|POST','/', 'home#index', 'home'); $router->map('GET','/users', array('c' => 'UserController', 'a' => 'ListAction')); $router->map('GET','/users/[i:id]', 'users#show', 'users_show'); $router->map('POST','/users/[i:id]/[delete|update:action]', 'usersController#doAction', 'users_do');
Improve this answer

2 Comments

Not what the OP asked for. And also, the OP didn't mention REST anywhere.
@BrunoFerreira would you like me to delete the answer because OP didn't specifically use the term REST?
9

In core php you can do like this :

<?php $method = $_SERVER['REQUEST_METHOD']; switch ($method) { case 'GET': //Here Handle GET Request echo 'You are using '.$method.' Method'; break; case 'POST': //Here Handle POST Request echo 'You are using '.$method.' Method'; break; case 'PUT': //Here Handle PUT Request echo 'You are using '.$method.' Method'; break; case 'PATCH': //Here Handle PATCH Request echo 'You are using '.$method.' Method'; break; case 'DELETE': //Here Handle DELETE Request echo 'You are using '.$method.' Method'; break; case 'COPY': //Here Handle COPY Request echo 'You are using '.$method.' Method'; break; case 'OPTIONS': //Here Handle OPTIONS Request echo 'You are using '.$method.' Method'; break; case 'LINK': //Here Handle LINK Request echo 'You are using '.$method.' Method'; break; case 'UNLINK': //Here Handle UNLINK Request echo 'You are using '.$method.' Method'; break; case 'PURGE': //Here Handle PURGE Request echo 'You are using '.$method.' Method'; break; case 'LOCK': //Here Handle LOCK Request echo 'You are using '.$method.' Method'; break; case 'UNLOCK': //Here Handle UNLOCK Request echo 'You are using '.$method.' Method'; break; case 'PROPFIND': //Here Handle PROPFIND Request echo 'You are using '.$method.' Method'; break; case 'VIEW': //Here Handle VIEW Request echo 'You are using '.$method.' Method'; break; Default: echo 'You are using '.$method.' Method'; break; } ?>
Improve this answer

Comments

9

It is very simple. Just use $_SERVER['REQUEST_METHOD'];.

Example:

<?php $method = $_SERVER['REQUEST_METHOD']; switch ($method) { case 'GET': //Here Handle GET Request break; case 'POST': //Here Handle POST Request break; case 'DELETE': //Here Handle DELETE Request break; case 'PUT': //Here Handle PUT Request break; } ?>
Improve this answer

4 Comments

The "DELETE" case will never be hit because that's not a possible REQUEST_METHOD. The valid REQUEST_METHODs are 'GET', 'HEAD', 'POST', 'PUT'. Read the documentation (pointed to in numerous answers on this very page) before posting an answer.
@Patrick, actually, the "DELETE" case will get a hit when the request method is DELETE; nonetheless the documentation in PHP does not mention it. Indeed, any method gets reflected in $_SERVER['REQUEST_METHOD'], even customized ones. Remember that the method is just a string in the request header and that it is our task to check for its correctness.
@Patrick DELETE is defined in RFC7231 and is supported in all major browsers. tools.ietf.org/html/rfc7231#section-4.3.5 and $_SERVER["REQUEST_METHOD"] is just a string.
@IvanDePazCenteno Exactly. Never trust user input. Never trust user input.
7

TL;DR

The "native source of true" is the $_SERVER global variable. The request Method is saved under the key "REQUEST_METHOD".

Check the $_SERVER array

$_SERVER['REQUEST_METHOD']

PHP Methods

But you can use a lot of workarounds to get the Method. Like filter_input: filter_input(INPUT_SERVER, 'REQUEST_METHOD', FILTER_SANITIZE_ENCODED);

Libs Or you use external libs like:

  • Symfony\Component\HttpFoundation\Request
  • \Zend\Http\PhpEnvironment\Request

Conclusion

But the easiest way would be to use: $_SERVER['REQUEST_METHOD'].

Improve this answer

Comments

7 
$request = new \Zend\Http\PhpEnvironment\Request(); $httpMethod = $request->getMethod();

In this way you can also achieve in zend framework 2 also.

Improve this answer

1 Comment

You can make in controller $request = $this->getRequest(). And then, $request->isPost(). Check out also $request->getMethod().
3

It is valuable to additionally note, that PHP will populate all the $_GET parameters even when you send a proper request of other type.

Methods in above replies are completely correct, however if you want to additionaly check for GET parameters while handling POST, DELETE, PUT, etc. request, you need to check the size of $_GET array.

Improve this answer

Comments

1

When a method was requested, it will have an array. So simply check with count().

$m=['GET'=>$_GET,'POST'=>$_POST]; foreach($m as$k=>$v){ echo count($v)? $k.' was requested.':null; }

3v4l.org/U51TE

Improve this answer

Comments

1

I used this code. It should work.

function get_request_method() { $request_method = strtolower($_SERVER['REQUEST_METHOD']); if($request_method != 'get' && $request_method != 'post') { return $request_method; } if($request_method == 'post' && isset($_POST['_method'])) { return strtolower($_POST['_method']); } return $request_method; }

This above code will work with REST calls and will also work with html form

<form method="post"> <input name="_method" type="hidden" value="delete" /> <input type="submit" value="Submit"> </form>
Improve this answer

Comments

0

Here's another suggestion. Maybe helpful if you are looking in a specific POST value such as 'foo'. Above, HelpNeeder introduced the filter_input() function, great for filtering user input.

//php 8.1 // example.com?foo=bar $query = 'bar'; if (filter_has_var(INPUT_SERVER, 'REQUEST_METHOD')) { $test = filter_input(INPUT_POST, 'foo', FILTER_SANITIZE_SPECIAL_CHARS); if (null != $test && $query === $test) { //... } }

https://www.php.net/manual/en/function.filter-input.php

https://www.php.net/manual/en/function.filter-has-var.php

Improve this answer

Comments

-5

You can get any query string data i.e www.example.com?id=2&name=r

You must get data using $_GET['id'] or $_REQUEST['id'].

Post data means like form <form action='' method='POST'> you must use $_POST or $_REQUEST.

Improve this answer

Comments

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.