iphone sends "GET" instead of "POST" - resulting in empty forms

christoph2806 06 Oct, 2015
I noticed several emtpy forms (we have required fields, so this should not happen).
A look in the apache access.log shows: - - [06/Oct/2015:07:42:16 +0200] "GET /kontakt/fragebogen?view=form&chronoform=fragebogen_interessent&event=submit HTTP/1.1" 200 5603 "-" "Mozilla/5.0 (iPhone; CPU iPhone OS 7_0_6

So it seems that the iphone is sending the forms with GET instead of POST.

What can we do?

GreyHead 06 Oct, 2015
Hi Christoph,

A quick Google doesn't find any reports of the iPhone doing this. So I suspect that what is happening is that some web-bot or virus scanner is scanning the URLs and testing them. The simplest answer is to add a couple of basic server-side validation checks to block empty forms (client side validation relies on JavaScript and so does not block bots with JavaScript disabled).

This topic is locked and no more replies can be posted.