Home > Uncategorized > Refresh form but do not resubmit (PHP)

Refresh form but do not resubmit (PHP)

September 2nd, 2007 Leave a comment Go to comments

This question has been asked so many times that most of you don’t want to hear it again. Unfortunately, the solutions that people are proposing are less than ideal.

For those who are new to the concept, a quick explanation is in order. You have a form that you display, validate and act upon (send e-mail, save to database, upload files, etc.) Once this is done, the user might refresh the page and you will end up with duplicate entries.

Bad ideas to handle it are: splitting into multiple files to work around this problem, using the meta-refresh tag, setting unique identifiers and store them in session or in hidden fields, checking for duplicates after resubmission, using javascript…
If you want to know why they are bad, just post a comment and I will give you a detailed explanation of the particular case.

I found a quick and neat way to do it (perhaps I’m not the first, but I feel the need to share it). Append “?submit=true” to your form action and use header(“Location: …”) with the current URL. Thus, once form data has been saved, you will be redirected to the same page without the POST variables. If PHP complains that output was already sent, then you have a bad approach for your output. I usually store all my output in a variable(s) and echo it when everything is okay. More on output in another entry.

Tags: , ,
  1. Juan
    February 5th, 2010 at 09:08 | #1
    Reply | Quote

    Hi,

    I was trying to deal with this matter but I gave up as I could not understand it properly.

    The solution I have seen is related to the session. when you submit a form then you save the values in a session and then empty the values in the form so the page will not resend the values again when it is refreshed.

    Now I am seeing in your blog that this solution would not be good enough.

    I would appreciate if you may explain me this problem.

    Thanks a lot,

    Juan

  2. Anna
    February 8th, 2010 at 14:07 | #2
    Reply | Quote

    Sorry for the late response.

    The problem with storing your data in the session for every post is that it’s an extra operation that has no real value and can be easily avoided. Also, when you have multiple tabs open with the same form, you may get unexpected results. Last, there may be some data that you would never for the world want to store in a session, such as a password or a credit card number, because they will be unencrypted and in a vulnerable session file (unless your sessions are in DB, but you still have the encryption issue).

    Redirection after the post data has been processed is a standard approach used by many renowned PHP frameworks that I have worked with since I posted this article.

  3. andrew
    May 3rd, 2010 at 23:09 | #3
    Reply | Quote

    Hi Anna have you got a code example you could share, am a newibe and not sure I can picture it right.

    Thanks

  4. php thumbnailer
    May 21st, 2010 at 12:48 | #4
    Reply | Quote

    I am using sessions too to avoid that.

  1. No trackbacks yet.