Check if class has method in PHP

php oop class methods

28,393

Solution 1

if (method_exists($db_manager, $_POST['operation'])){
  $db_manager->{$_POST['operation']}();
} else {
  echo 'error';
}

Though I strongly advise you don't go about programming this way...

Solution 2

You can use is_callable() or method_exists().

The difference between them is that the latter wouldn't work for the case, if __call() handles the method call.

Solution 3

Use method_exists()

method_exists($obj, $method_name);

Solution 4

You can use method_exists(). But this is a really bad idea

If $_POST['operation'] is set to some magic function names (like __set()), your code will still explode. Better use an array of allowed function names.

View more solutions

28,393

Author by

heron

Updated on April 24, 2020

Comments

heron about 4 years
Currently my code looks like that:
```
switch ($_POST['operation']) {
    case 'create':
        $db_manager->create();
        break;
    case 'retrieve':
        $db_manager->retrieve();
        break;
...
}
```
What I want to do is, to check if method called $_POST['operation'] exists: if yes then call it, else echo "error" Is it possible? How can I do this?
heron about 12 years

I think, You mean something like this. $operations=array("retrieve", "create"); if (isset($_POST['operation']) && in_array($_POST['operation'], $operations)) { $db_manager->{$_POST['operation']}(); } Can I collect all available methods into an array automatically or only manually?
iblue about 12 years

Letting users call arbitrary methods in an object is generally a bad idea (and its slow as hell). Make your own list, or even better use the switch statement from your question.
Brad Christie about 12 years

@epic_syntax: Because I could, with wget/cURL, spoof the POST variable and pry around for methods you don't necessarily want exposed. Also, you NEVER trust user input directly, you always want to sanitize it. basically, if you're using $_POST[...] anywhere else but the top of your file embedded in a check for safe-ness, you're doing it wrong and asking for trouble.
iblue about 12 years

And I almost though, you'd recomend not to use PHP at all :)
zerkms about 12 years

@epic_syntax: the easy way is to have whitelist of methods allowed to run
zerkms about 12 years

@iblue: you just wanted to share that link and could find better place, didn't you?
iblue about 12 years

After programming PHP for more than 11 years, I will take every opportunity to bash it. :)
heron about 12 years

@iblue So you wanna say facebook with 910 million users making mistake by using php & c++ backend, right?
iblue about 12 years

Do you really judge the quality of a programming language by the number of users of a product that is partally written in that language? They had to reimplement the whole language in C++, because the original implementation is so crappy. So, yes, Facebook is making a mistake by using php. If I would write a product of this size, I would implement a new, completely event-driven programming language, with a JIT compiler, probably based on Chrome V8. Following the syntax of coffeescript. But with a less sucking definition of this. Or I would port rubinius to the V8. Something like this.
Gabriel almost 6 years

"But X was implemented in Y" is not an argument for or against Y.