Correct Use of GET and POST
Many devs use HTTP GET and POST requests in the wrong places, for a good writeup of the differences and when to use what, please see http://www.cs.tut.fi/~jkorpela/forms/methods.html.
- Check that all requests that create, modify or delete resources use the HTTP POST method.
In other words, GET must only be used for idempotent processing, all other requests must be done with POST.
Idempotent: no lasting observable effect on the state of the world
Idempotent processing means that a form submission causes no changes anywhere except on the user's screen (or, more generally speaking, in the user agent's state). Thus, it is basically for retrieving data
GET: a search form POST: updating a user record GET: tweaking filter params to return property results POST: logging into a website GET: button to go to certain page