tags:

views:

634

answers:

3
+2  Q: 

Should I store _method=PUT/DELETE in the post or in the url

I'm using ASP.NET MVC to build a RESTful web application and I plan to tunnel PUT and DELETE requests through POST as it seems like the most pragmatic workaround.

What I'd like to know is, should I tunnel the information through the url like this:

<form method='post' action='resource?_method=DELETE'>
    <!-- fields -->
</form>

Or should I tunnel it through the posted form data like this:

<form method='post' action='resource'>
    <input type='hidden' name='_method' value='DELETE' />
    <!-- fields -->
</form>

And what are the pros and cons of each?

EDIT: One of the reasons I asked the question is that I read somewhere that putting information like this in the url is a good thing as post data usually gets lost, but urls hang around (in log files, etc) - unfortunately it makes the url look ugly

A: 

They are equivalent.

Though if pressed I'd prefer sending it in the post myself, but it's subjective.

Allain Lalonde  2009-03-20 03:36:39
+2  A: 

Have you seen this question? From what I understand, the x-http-method-override header is the preferred solution to this problem.

Darrel Miller  2009-03-20 03:37:29
Is x-http-method-override something that I can use from a browser that has javascript disabled?
Jacob Stanley  2009-03-20 03:41:05
I'm not aware of a way to do it without javascript enabled.
Darrel Miller  2009-03-20 03:55:28
A: 

Not that I have, but shouldn't you use:

<form method="put" action="resource">
    <!-- fields -->
</form>

And / or

<form method="delete" action="resource">
    <!-- fields -->
</form>

...?

Charlino  2009-03-20 03:55:58
I'd love to, but this is not supported by most web browsers (and indeed the HTML/XHTML spec)
Jacob Stanley  2009-03-20 04:04:41
I see. Personally I'd put it in the post because that's where all the other info for the request is. Where did you read that it's better in the URL?
Charlino  2009-03-20 04:11:08
I can't remember, but it's a good point that things like urls are logged. If I check my request log I can see 'POST /resource?_method=DELETE' instead of just 'POST /resource'
Jacob Stanley  2009-03-20 05:51:43

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?