why does use of $_POST vary based on host?

my_filthy_mind

Have some forms I developed on my host... using below code for example.

<?php
 if ( $addme )
 {
   echo 'it works!';
 } 
 else
 { ?>
<form METHOD="POST" action="<?php echo $PHP_SELF?>">
 <input type="submit" name="addme" value="Submit">
</form>
   <?php
 } ?>

Tried using these forms on another host and it wouldn't recognize $addme on submit and so it'd redisplay the form. I then changed the check to:

 if (array_key_exists('adddrv', $_POST))
 {
   echo 'it works!';
 }

and now it works. Can someone explain why to this noob? Thanks!

justsomeone

In your first code snippet, you don't assign any value to $addme before you test it. If one of your post variables is called addme, then the value of that variable will be assigned to $addme if the PHP configuration option REGISTER_GLOBALS is turned on. This option should never be turned on, as it opens a major security hole. I'll leave it as an exercise for you to research this.

The $_POST array is a much, much safer way to access POST variables. The above research should explain why this is the case.

So, finally to answer your intial question, PHP can operate differently on different servers because it gives the server admin the right to configure things in a way that suits them, regardless of how inadavisable that configuration is.