tags:

views:

203

answers:

5
+3  Q: 

is restful meant for web services only OR for both web services AND web pages?

I read a lot of Restful tutorials for PHP.

(I don't want to go in depth into why I am not using RoR. It is due to the team being more familiar with PHP)

Because we are planning for future expansion into having APIs i read that it is important to implement Restful web services.

I have looked at tutorials such as

http://www.gen-x-design.com/archives/create-a-rest-api-with-php/

Apparently restful is meant for webservices.

What about for webpages? can they be RESTFUL as well?

if the answer is NO, please do not go beyond this line AND just tell me. Thank you.

i know to make the urls look like RESTFUL urls is to simply use mod_rewrite. However, i am quite sure, restful architecture goes beyond just making the urls look nice.

For eg, i have a list of items on a webpage called list.php . Each item has a delete link next to it. E.g., list.php?id=1&deleteitem

What happens is that when someone clicks on the list.php?id=1&deleteitem link, of course i go back to the same list.php file and check for the param deleteitem in $_GET.

If detected, i will then delete from database based on the param id in $_GET.

After which i will redirect back to list.php WITHOUT any params.

I am wondering, how do i make this whole flow RESTFUL?

I am asking because in REST, to make delete something you need to use HTTP request method (DELETE).

Clearly in my links they are all just simply <a href="list.php?id=1&deleteitem">Delete</a>

Please enlighten me.

My programming is not that strong and it would be good if the advice given can be as layman as possible.

Thank you.

EDIT

I have 2 follow up questions.

question 1) Since this is a list of items with paging, how would the URL look like if i want to make it RESTful?

question 2) Since i am putting DELETE links next to every one of the items in the list, I understand now, i should use 

<form method="POST">
<input type=hidden name="_method" value="delete">
<input type="submit" >
</form>

instead.

however the form should be posted to where? the item url? /items/{item-id}

But i want to go back to this listing page displaying a success message AFTER successfully deleting the row in database.

I also want to avoid a popup message when i refresh this listing page with success message.

If i post back to this list.php url, then it is not RESTful yes? because i am told by the answers below that each item is a resource which needs its own url.

Please enlighten me. Thank you.

+1  A: 

Restful approach can surely be used in web pages as well. Putting commands in an URL is not a good idea, due to the side effects you are mentioning. When you change the database (or do whatever that changes the model), use POST commands.

Of course, you don't have PUT and DELTE in major web browsers, but you can always send a simple POST with some specific parameter like method = "PUT", method="DELETE" etc.

naivists  2010-03-06 08:17:28
I'd call the parameter method=PUT or method=DELETE :D
aefxx  2010-03-06 08:19:59
aefxx: good idea, of course "method" makes more sense than "job"
naivists  2010-03-06 08:21:21
I have a question. For forms using POST, i do not want my user to see the popup window when they use the back and refresh buttons on their browser. So how do i overcome this while still be RESTful?
keisimone  2010-03-06 08:33:15
You can avoid duplicate form submissions with http://en.wikipedia.org/wiki/Post/Redirect/Get
vsr  2010-03-06 10:32:18
+2  A: 

Long answer short: yes. REST is for both. That's because even if you have the simplest of all websites one would still have to GET your page and maybe POST ones personal data to add an entry to the guestbook. In that we all adhere to REST somehow.

In your case poor browser implementation makes it hard to implement a PURE RESTful way. DELETE isn't supported without Javascript and therefore you would have to use GET or POST (which both do have a totally different meaning from DELETE in REST) anyway.

aefxx  2010-03-06 08:17:55
+2  A: 

RESTful is commonly used when referring to web services, but it can very well apply to web pages. In a nutshell, being RESTful is about dealing with resources. A resource can be a person, a book, a movie, a theatre, a ticket, or whatever you fancy.

There are four basic operations you could perform on a resource.

  • create (POST)
  • read (GET)
  • update (PUT)
  • delete (DELETE)

Most web browsers do not support the PUT and DELETE actions, so you can only use POST actions for sending data. Rails fakes PUT and DELETE by passing in a hidden parameter named _method that the framework picks up and routes it depending on that value.

Also, you should never use GET for any destructive action. Any action that changes the state of your resource(s), should be called with either POST, PUT, or DELETE depending on the change (fake PUT/DELETE with POST if need be).

I would suggest you checkout the way RESTful routing is handled in Rails just to get an idea, if nothing else. Althought the four actions above are sufficient to modify a resource in any way possible, Rails also introduces three other types of actions that sound useful.

  • index (listing view of all items)
  • new (usually a form view to add a new resource)
  • edit (usually a form view to update an existing resource)

Pretty URL's is definitely on the table when designing RESTful sites, but probably the biggest win is that the quality of code improves automatically. When you're only dealing with resources, and there are only four potential actions that can be applied to a resource, then things start to clean up by themselves.

Edit 1: Self-descriptive URL's are preferred and will make your life easier, but there's nothing stopping from creating cryptic URLs that uniquely identify a resource and manage it using the HTTP verbs. URLs such as the ones below (using md5) to uniquely identify resources are perfectly RESTful.

// represents a person "John Doe"
http://example.com/4c2a904bafba06591225113ad17b5cec

// represents the movie "Lord of the Rings: The Two Towers"
http://example.com/1d9198260dec7bda3fb21e232d60fec3

// represents the "Formula One" sport
http://example.com/fs340as?id=23xa12&amp;type=SP012Ts

That's REpresentational State Transfer right there. The MD5 hash is like the mailing address of the resource that remains constant. The representation could be the movie's details (in html/xml/json/etc.), or maybe the video of the movie itself depending on the capabilities of the client).

Edit 2: Let's say you have a resource which is a collection - countries of the world. It could be represented by a URI and HTTP verb such as:

GET /countries

Since paging is a property of the application rather than the resource itself, you could supply querystring parameters to control it.

GET /countries?page=1

A country is also a resource that is a part of the countries resource. You could identify a country with a URL such as:

/countries/<id>

And operations on this country could be performed with these verbs:

GET    /countries/<id>
POST   /countries  -- the new country has no existing representation
PUT    /countries/<id>
DELETE /countries/<id>
Anurag  2010-03-06 08:27:03
I have a question. For forms using POST, i do not want my user to see the popup window when they use the back and refresh buttons on their browser. So how do i overcome this while still be RESTful?
keisimone  2010-03-06 08:33:18
checkout this question for ideas on how to fix that: http://stackoverflow.com/questions/660329/prevent-back-button-from-showing-post-confirmation-alert
Anurag  2010-03-06 08:36:09
I have a question about the listing view of all items. I am not that familiar with Rails, so i have to ask you instead. For paging of lists, how would a RESTful framework handle it?
keisimone  2010-03-06 13:34:08
so what you are saying is whenever you have a property of the application rather than the resource itself, it is still RESTful that i indicate it using a url param like ?page=1
keisimone  2010-03-07 00:27:20
that's a minor detail.. the most important thing is to remember what constitutes a resource. if you paginate 10 countries per page, does each page of countries constitute a resource for your purposes? if so, make it a part of the URI itself. otherwise put it in the querystring params.
Anurag  2010-03-07 19:02:38
suppose i have /countries?page=1 that lists 10 countries, and each country has a DELETE link next to it. the link is a input submit within a form tag that will also have a hidden input _method valueDELETE as suggested by other answers here to make it RESTful. The problem is this form tag, what is the value of the action? is it a RESTful URI like /countries/<id> ? if so i must have a .php file that will handle all the PUTs, DELETEs, GETs, POSTs that are sent to the countries/<id> and then read the referral link and redirect back to be able to use the POSTRedirectGet?
keisimone  2010-03-08 02:36:35
yep. since you're deleting a resource like `/countries/43`, that will also be the URL (form action). the method will be `DELETE` like you mentioned. the redirect to `/countries` after delete is done can be implicit knowledge on the server side or could be requested by the client as a referral parameter like you said.
Anurag  2010-03-08 03:01:28
implicit knowledge on the server side meaning something like _SERVER['HTTP_REFERER'];requested by the client as a referral parameter you mean like making the form action = "/countries/43?referrer=countries?page=1"sorry if i have to ask in such details.
keisimone  2010-03-08 04:09:37
Oh and which do you think is better? the server side or the client side way? provided my understanding is correct based on my last comment
keisimone  2010-03-08 04:10:33
I prefer keeping it all in the server side itself. For ex., on the server side a delete may work like, `function deleteCountry() { ... ; header("Location:/countries"); }` .. after something is deleted, it has no representation, so ideally i'd let the server decide where to go next. but it's upto you and your use cases, which may vary
Anurag  2010-03-08 19:54:21
so i am on the right track to say that the $_SERVER['HTTP_REFERER'] should be used to determine where the request comes from and redirect accordingly?
keisimone  2010-03-08 23:41:33
yes, that works too
Anurag  2010-03-09 02:13:52
i also have read somewhere that it is not ideal to use $_SESSION for authentication in a restful website. What does that mean?
keisimone  2010-03-09 02:49:31
lol, this is not a forum.. that's a different question
Anurag  2010-03-09 02:56:28
okie i will post that as a separate question. thanks anurag
keisimone  2010-03-09 03:12:37
+1  A: 

I wrote a tiny framework on top of Zend Framework to make implementing RESTful interfaces easier:

http://github.com/mikekelly/Resauce

You can use that for web services and websites. Essentially, a website is just a web service driven by HTML.

Mike  2010-03-06 09:13:37
Due to certain reasons, we are not using Zend Framework. Can i still use Resauce to help me in my situation as described above? Thank you.
keisimone  2010-03-07 00:30:09
Resauce is built from ZF's MVC components - so no. There are other projects like glue (http://gluephp.com/about), Limonade, etc.
Mike  2010-03-07 07:31:49
+1  A: 

RESTful means not "beautiful URIs". Despite the fact that URIs identify a resource the only thing REST says about URIs is, that they shouldn't contain an action paramater like "delete".

In your case you would call 

DELETE /items/6793

The Answer would be typically status code 200 OK with the modified list as message body. See: http://restpatterns.org/HTTP_Methods/DELETE

Since HTML 4 doesn't support other form actions than GET and POST you have to workaround with a hidden paramater and override the HTTP method on the server side.

deamon  2010-03-06 09:28:24
even if i use form POST to delete the item, how would i redirect back to the listing page? I have edited my question to include this query
keisimone  2010-03-06 15:32:25

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases