Usually data sent in a POST request is structured key/value pairs with a MIME type of application/x-www-form-urlencoded
. However many applications such as web services require raw data, often in XML or JSON format, to be sent instead. This data can be read using one of two methods.
php://input
is a stream that provides access to the raw request body.
$rawdata = file_get_contents("php://input");
// Let's say we got JSON
$decoded = json_decode($rawdata);
$HTTP_RAW_POST_DATA
is a global variable that contains the raw POST data. It is only available if the always_populate_raw_post_data
directive in php.ini
is enabled.
$rawdata = $HTTP_RAW_POST_DATA;
// Or maybe we get XML
$decoded = simplexml_load_string($rawdata);
This variable has been deprecated since PHP version 5.6, and was removed in PHP 7.0.
Note that neither of these methods are available when the content type is set to multipart/form-data
, which is used for file uploads.