Using GET to submit a shopping cart can be "idempotent", but it is not "safe" si... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		bobfunk on Jan 18, 2011 \| parent \| context \| favorite \| on: GET vs POST in terms of security Using GET to submit a shopping cart can be "idempotent", but it is not "safe" since it changes state on the server. GET should always be both safe and idempotent.

wahnfrieden on Jan 18, 2011 [–]

Right, but the idempotence is a side effect of the safety here. It's not the main point.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact