Dare Obasanjo wrote:
Your argument is full of assumptions.
(1) Sending POST requests to an arbitrary URI is much
more dangerous than sending arbitrary GET requests.
It is. That's why we have different HTTP methods.
(2) Redirecting a POST request will mean that data
won't get POSTed to the new URI. Please go read
http://ppewww.ph.gla.ac.uk/~flavell/www/post-redirect.html,
HTTP specs just say the user must not be automatically
redirected. I've seen the behavior of web browsers
after redirection on a POST and this has never stopped
me from sending the POST message.
I don't understand your point. What's the series of requests that will lead to an automatically redirected POST request?
Basically I think you've unhealthily fixated on this
"problem" when worse problems exist with the entire
usage of XML over HTTP for delivering Atom feeds.
Thanks for looking out for my health.
Robert Sayre
