tags:

views:

750

answers:

3
+1  Q: 

Avoiding form resubmit in php when pressing f5

I have the following code on my site (using php and smarty) to try and avoid a form resubmitting when I hit f5:

            if ($this->bln_added == false) {
                if (isset($_POST['submit'])){
                    $this->obj_site->obj_smarty->assign('title',$_POST['tas_heading']);
                    $this->obj_site->obj_smarty->assign('desc',$_POST['tas_description']);
                }
            } else {
                $this->obj_site->obj_smarty->assign('title','');
                $this->obj_site->obj_smarty->assign('desc','');
                unset($_POST);
            }

bln_added is false by default, but changes to true once the form is successfully submitted. The smarty variables title and desc are used in the template to keep the form content there in case there is a user error and they need to change what they entered.

If the form is submitted successfully it sets bln_added = true, so the second bit of code should not only clear the form fields, but also empty $_POST. But if I press f5 the post data is still there.

Any ideas?

+2  A: 

The best way to handle forms is to use self-submission and a redirect. Something like this:

if (isset($_POST)) {
  // Perform your validation and whatever it is you wanted to do
  // Perform your redirect
}

// If we get here they didn't submit the form - display it to them.

Using the CodeIgniter framework:

function index() {
  $this->load->library('validation');
  // Your validation rules

  if ($this->form_validation->run()) {
    // Perform your database changes via your model
    redirect('');
    return;
  }
  // The form didn't validate (or the user hasn't submitted)
  $this->load->view('yourview');
}
Michael Wales  2009-04-06 18:12:25
+12  A: 

Your method could work in theory, but there's a much easier way.

After submitting the form successfully, perform a redirect. It doesn't matter where to, but it'll clear the $_POST.

header('Location: http://www.example.com/form.php');

In your case, it sounds like you want to redirect to the page you're already on. Append a $_GET parameter to the URL if you want to display a confirmation message.

Hope this helps,

Tom

Tom Wright  2009-04-06 18:12:49
Great answer, PRG is definitely the way to go: http://en.wikipedia.org/wiki/Post/Redirect/Get
Neil Williams  2009-04-06 18:20:25
Do I need the full url for the header?
wheresrhys  2009-04-06 18:29:43
Just tried it out and it's conflicting with a header set somewhere else in the application. I didn't write it all so have no idea where to go to stop it setting.
wheresrhys  2009-04-06 18:35:24
Sounds like you have output before your header. You could die('here'); and see what the application is sending.
Eddy  2009-04-06 18:44:22
@Rhys, yes you need the full url. Try Eddy's suggestion for your error. Otherwise, perhaps you could use a different form of redirect.
Tom Wright  2009-04-06 18:59:22
I believe the full URL is not required, and when you supply a relative URL either PHP or Apache will resolve it to an absolute URL to send to the client (not sure which stage in the chain this takes place).
Ciaran McNulty  2009-04-06 23:08:10
Huh. That's pretty nifty. :)
Tom Wright  2009-04-06 23:47:15
+6  A: 

The solution is a pattern commonly known as Post/Redirect/Get

David Caunt  2009-04-06 18:45:33

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases