How can I deal with HTTP GET query string length limitations and still want to be RESTful?

后端 未结 6 1639
栀梦
栀梦 2020-12-04 06:21

As stated in http://www.boutell.com/newfaq/misc/urllength.html, HTTP query string have limited length. It can be limited by the client (Firefox, IE, ...), the server (Apache

相关标签:
6条回答
  • 2020-12-04 06:47

    REST is a manner to do things, not a protocol. Even if you dislike to POST when it is really a GET, it will work.

    If you will/must stay with the "standard" definition of GET, POST, etc. than maybe consider to POST a query, that query will be stored on the server with a query id and request the query later with GET by id.

    0 讨论(0)
  • 2020-12-04 06:49

    The confusion around GET is a browser limitation. If you are creating a RESTful interface for an A2A or P2P application then there is no limitation to the length of your GET.

    Now, if you happen to want to use a browser to view your RESTful interface (aka during development/debugging) then you will run into this limit, but there are tools out there to get around this.

    0 讨论(0)
  • 2020-12-04 06:50

    HTTP specification actually advises to use POST when sending data to a resource for computation.

    Your search looks like a computation, not a resource itself. What you could do if you still want your search results to be a resource is create a token to identify that specific search result and redirect the user agent to that resource.

    You could then delete search results tokens after some amount of time.

    Example

    POST /search
    query=something&category=c1&category=c2&...
    
    201 Created
    Location: /search/01543164876
    

    then

    GET /search/01543164876
    
    200 Ok
    ... your results here...
    

    This way, browsers and proxies can still cache search results but you are submitting your query parameters using POST.

    EDIT

    For clarification, 01543164876 here represents a unique ID for the resource representing your search. Those 2 requests basically mean: create a new search object with these criteria, then retrieve the results associated with the created search object.

    This ID can be a unique ID generated for each new request. This would mean that your server will leak "search" objects and you will have to clean them regularly with a caching strategy.

    Or it can be a hash of all the search criteria actually representing the search asked by the user. This allows you to reuse IDs since recreating a search will return an existing ID that may (or may not) be already cached.

    0 讨论(0)
  • 2020-12-04 06:53

    Regarding your example:http://compute.com?content={base64file}, I would use POST because you are uploading "something" to be computed. For me this "something" feels more like a resource as a simple parameter.

    In contrast to this in usual search I would start to stick with GET and parameters. You make it so much easier for api-clients to test and play around with your api. Make the read-only access (which in most cases is the majority of traffic) as simple as possible!

    But the dilemma of large query strings is a valid limitation of GET. Here I would go pragmatic, as long as you don't hit this limit go with GET and url-params. This will work in 98% of search-cases. Only act if you hit this limit and then also introduce POST with payload (with mime-type Content-Type: application/x-www-form-urlencoded).

    Have you got more real-world examples?

    0 讨论(0)
  • 2020-12-04 06:56

    Based on your description, IMHO you should use a POST. POST is for putting data on the server and, in some cases, obtain an answer. In your case, you do a search (send a query to the server) and get the result of that search (retrieve the query result).

    The definition of GET says that it must be used to retrieve an already existing resource. By definition, POST is to create a new resource. This is exactly what you are doing: creating a resource on the server and retrieving it! Even if you don't store the search result, you created an object on the server and retrieved it. As PeterMmm previsouly said, you could do this with a POST (create and store the query result) and then use a GET to retrive the query, but it's more pratical do only a POST and retrieve the result.

    Hope this helps! :)

    0 讨论(0)
  • 2020-12-04 06:56

    This is an easy one. Use POST. HTTP doesn't impose a limit on the URL length for GET but servers do. Be pragmatic and work around that with a POST.

    You could also use a GET body (that is allowed) but that's a double-whammy in that it is not correct usage and probably going to have server problems.

    0 讨论(0)
提交回复
热议问题