cURL vs WP_Http for safety?

The WP_Http class is essentially a wrapper for cURL in the same way that wpdb is essentially a wrapper for mysqli. As such, implemented properly, using cURL directly is exactly as safe as using WP_Http (since WP_Http uses cURL to make the requests).

That said, implementing cURL functions optimally isn’t the easiest thing in the world to do. What makes WP_Http so useful is that it takes over a lot of the heavy lifting for you e.g. standardizing error handling, request structures, etc. It also gives you a suite of useful helper functions that make requesting specific things from cURL requests much simpler.

Ideally, if you are making a lot of cURL requests you would be writing a suite of functions yourself so that you don’t have to have duplicate code everywhere, WP_Http just does it for you.

That is all just a long way of saying that WP_Http doesn’t request information through the frontend. If it did then it would be doing something like an ajax call which, as you allude to, generally shouldn’t (and in many browsers can’t) be used for cross-domain requests.

Related Posts:

  1. How to control accept encoding on HTTP API requests?
  2. How do I mock HTTP requests for PHPUnit?
  3. Mutual Authentiction on HTTPS with WordPress HTTP API?
  4. How to use WordPress HTTP API to download file from remote location
  5. HTTP digest authentication using wp_remote_get
  6. Error timed out with succesfull wp_remote_post
  7. Difference between wp_remote_post and wp_safe_remote_post
  8. How to consume and display external data in WordPress from another website
  9. Posting an XML request using HTTP API
  10. Is it possible to process $_POST / inbound http request in way to automatically create WordPress post?
  11. What’s the best way to detect referrer?
  12. Behind-the-scenes HTTP Request?
  13. Sending JSON Payload using Request::request_multiple()
  14. wp remote post getting a 404 error code
  15. wp_remote_request header error even though working properly with cURL
  16. Proper context for wp_remote_post()
  17. How to add code to HTTP header
  18. Using WP_Http to post data to Webservice without blocking caller script
  19. Sending JSON string through wp_remote_post()
  20. Filter any HTTP request URI?
  21. How to remove rest api link: in http headers?
  22. How to use the HTTP API with a Proxy?
  23. Hook into WordPress update?
  24. How to run multiple Async HTTP requests in WordPress?
  25. WP_Http_Cookie destroys cookie value through urldecode()
  26. parse XML from URL (via SOAP)
  27. POST to a REST API from a wordpress form
  28. Connect external web app to wordpress
  29. API JSON Data in WordPress
  30. Storing an XML Response (Transient)?
  31. How do I get URL from WP_HTTP object?
  32. What is the official way to consume the WordPress API? (api.wordpress.org)
  33. Allow download_url for lan addresses
  34. How to duplicate a curl XML request using HTTP API?
  35. How to set charset for wp_remote_post request?
  36. wp_remote_post with ssl:// protocol
  37. Extending WordPress REST API
  38. Inconsistent server code response using HTTP API
  39. using wp_remote_get to retrieve own url on local host
  40. Does WordPress’s HTTP API use any caching?
  41. How to convert this cURL to wp_remote_get?
  42. How deactivate the http-api
  43. How to make Http Request to a php file present in plugin directory of wordpress
  44. Cache WP remote_get HTTP Response using Transients
  45. Return WP_Error as WP_REST_Response
  46. WP Remote Request not returning all of content via request
  47. How to make a implement queue for scheduling tasks in WordPress?
  48. XML-code sent via the POST method to the URL (API) [closed]
  49. How do I create an rssfeed from the contents on this page?
  50. WP http XML response HTML encoding and image display problems
  51. WP_Http response throws “Cannot use object of type WP_Error as array”
  52. Save external API calls in WordPress
  53. http_response_timeout filter not working
  54. Add information to HTTP Header in WordPress Plugin
  55. wp_remote_post empty $_POST
  56. External HTTP API calls slowing down WordPress admin [closed]
  57. Send a get request to wordpress
  58. Why does WP HTTP API switch the method (POST/PURGE) to GET when redirecting (302)?
  59. How to set a header in wp_safe_remote_get()?
  60. Need help creating asynchronous data scraper in WordPress
  61. Properly loop through and paginate page on each function call
  62. Get the name WordPress default theme in the core
  63. HTTP API CALLS issue on Woocommerce WordPress
  64. Call external API in wordpress based on user input
  65. Remove unwanted fields from WP API response
  66. How to receive JSON payload from a digital device
  67. Creating custom URLs with template to fetch external JSON
  68. Turn twitter-urls into list timelines?
  69. Get full page HTML for a non-public WordPress page
  70. How to use wp_http with https-pages?
  71. Using the wp_remote_post response body
  72. Create plugin/function to catch XML-data via Shortcode
  73. How to use the HTTP API (wp_remote_get) instead of cURL?
  74. Why is this specific API request failing when sending via wp_remote_post?

Leave a Comment