VerbFilter
VerbFilter is a filter for HTTP request methods. Its function is to define the allowed access to specified actions. HTTP request, if an HTTP request that is not allowed comes, an HTTP 405 error will be thrown. If you do not specify the allowed request method, all types of request methods are allowed by default. (Recommended learning: yii tutorial)
Next, try the simple use of VerbFilter.
First, add the code in SiteController
public function actionInfo()
{
return \Yii::createObject([
'class' => 'yii\web\Response',
'format' => \yii\web\Response::FORMAT_JSON,
'data' => [
'message' => 'hello world',
'code' => 100,
],
]);
}The above code returns a string formatted using FORMAT_JSON
Use URL: http://localhost/basic/web/index.php?r=site/info When accessing, it returns successfully
{"message":"hello world","code":100}Then, add the code in behaviors()
public function behaviors()
{
return [
... ...
'verbs' => [
'class' => VerbFilter::className(),
'actions' => [
'logout' => ['post'],
'info' => ['post'],
],
],
];
}The above code uses the filter VerbFilter in behaviors(), which indicates that when accessing the action info, only the POST request method can be used.
At this time, use the RESTClient tool and select the GET request method for access. time, a 405 error is returned
Modify the code again
public function behaviors()
{
return [
... ...
'verbs' => [
'class' => VerbFilter::className(),
'actions' => [
'logout' => ['post'],
'info' => ['post','get'],
],
],
];
}Allow POST and GET two request methods to access the action Info, use the RESTClient tool to access, and obtain the return value when selecting the GET request method for access.
{"message":"hello world","code":100}At this time, use the tool RESTClient to send the request through post and return a 405 error.
At this time, modify the web.php file
'request' => [
// !!! insert a secret key in the following (if it is empty) - this is required by cookie validation
'cookieValidationKey' => '4mWc84oNsYJpc-nnnjMwyOOiCTgcThig',
'enableCookieValidation' => false,
'enableCsrfValidation' => false,
],Add these two lines of code to police cookie protection and CSRF prevention strategies
'enableCookieValidation' => false, 'enableCsrfValidation' => false,
Send a request for access through post again, success.
Note: CSRF verification
Because when the Web page is accessed, there will be a corresponding hidden input:_csrf in the form for verification. Only when the verification is passed can the process proceed normally. Access;
rather than web page access (not through a web form, such as command line CURL request) cannot pass csrf verification.
The above is the detailed content of How to process http requests in yii2. For more information, please follow other related articles on the PHP Chinese website!
The Longevity of Yii: Reasons for Its EnduranceApr 30, 2025 am 12:22 AMYii frameworks remain strong in many PHP frameworks because of their efficient, simplicity and scalable design concepts. 1) Yii improves development efficiency through "conventional optimization over configuration"; 2) Component-based architecture and powerful ORM system Gii enhances flexibility and development speed; 3) Performance optimization and continuous updates and iterations ensure its sustained competitiveness.
Yii: Exploring Its Current UsageApr 29, 2025 am 12:52 AMYii is still suitable for projects that require high performance and flexibility in modern web development. 1) Yii is a high-performance framework based on PHP, following the MVC architecture. 2) Its advantages lie in its efficient, simplified and component-based design. 3) Performance optimization is mainly achieved through cache and ORM. 4) With the emergence of the new framework, the use of Yii has changed.
Yii and PHP: Developing Dynamic WebsitesApr 28, 2025 am 12:09 AMYii and PHP can create dynamic websites. 1) Yii is a high-performance PHP framework that simplifies web application development. 2) Yii provides MVC architecture, ORM, cache and other functions, which are suitable for large-scale application development. 3) Use Yii's basic and advanced features to quickly build a website. 4) Pay attention to configuration, namespace and database connection issues, and use logs and debugging tools for debugging. 5) Improve performance through caching and optimization queries, and follow best practices to improve code quality.
Yii's Features: Examining Its AdvantagesApr 27, 2025 am 12:03 AMThe Yii framework stands out in the PHP framework, and its advantages include: 1. MVC architecture and component design to improve code organization and reusability; 2. Gii code generator and ActiveRecord to improve development efficiency; 3. Multiple caching mechanisms to optimize performance; 4. Flexible RBAC system to simplify permission management.
Beyond the Hype: Assessing Yii's Role TodayApr 25, 2025 am 12:27 AMYii remains a powerful choice for developers. 1) Yii is a high-performance PHP framework based on the MVC architecture and provides tools such as ActiveRecord, Gii and cache systems. 2) Its advantages include efficiency and flexibility, but the learning curve is steep and community support is relatively limited. 3) Suitable for projects that require high performance and flexibility, but consider the team technology stack and learning costs.
Yii in Action: Current Applications and ProjectsApr 24, 2025 am 12:03 AMYii framework is suitable for enterprise-level applications, small and medium-sized projects and individual projects. 1) In enterprise-level applications, Yii's high performance and scalability make it outstanding in large-scale projects such as e-commerce platforms. 2) In small and medium-sized projects, Yii's Gii tool helps quickly build prototypes and MVPs. 3) In personal and open source projects, Yii's lightweight features make it suitable for small websites and blogs.
Using Yii: Creating Robust and Scalable Web SolutionsApr 23, 2025 am 12:16 AMThe Yii framework is suitable for building efficient, secure and scalable web applications. 1) Yii is based on the MVC architecture and provides component design and security features. 2) It supports basic CRUD operations and advanced RESTfulAPI development. 3) Provide debugging skills such as logging and debugging toolbar. 4) It is recommended to use cache and lazy loading for performance optimization.
Yii's Purpose: Building Web Applications Quickly and EfficientlyApr 22, 2025 am 12:07 AMYii's purpose is to enable developers to quickly and efficiently build web applications. Its implementation is implemented through the following methods: 1) Component-based design and MVC architecture to improve code maintainability and reusability; 2) Gii tools automatically generate code to improve development speed; 3) Lazy loading and caching mechanism optimization performance; 4) Flexible scalability to facilitate integration of third-party libraries; 5) Provide RBAC functions to handle complex business logic.
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
SAP NetWeaver Server Adapter for Eclipse
Integrate Eclipse with SAP NetWeaver application server.
Atom editor mac version download
The most popular open source editor
SecLists
SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.
Zend Studio 13.0.1
Powerful PHP integrated development environment
EditPlus Chinese cracked version
Small size, syntax highlighting, does not support code prompt function
