What’s the preferred method of writing AJAX-enabled plugins?

the “safer and cleaner” way would be to use admin-ajax.php that comes with wordpress and wp_ajax hook to call your processing function from your plugin file and use wp-nonce to check the integrity of the call.

for example:

your ajax JQuery call would be

<script type="text/javascript" >
jQuery(document).ready(function($) {

    var data = {
        action: 'ACTION_NAME',
            Whatever: '1234',
            _ajax_nonce: '<?php echo wp_create_nonce( 'my_ajax_nonce' ); ?>'

    };

    // since 2.8 ajaxurl is always defined in the admin header and points to admin-ajax.php
    // If you need it on a public facing page, uncomment the following line:
    // var ajaxurl="<?php echo admin_url("admin-ajax.php'); ?>';
    jQuery.post(ajaxurl, data, function(response) {
        alert('Got this from the server: ' + response);
    });
});
</script>

then in your plugin file add

//if you want only logged in users to access this function use this hook
add_action('wp_ajax_ACTION_NAME', 'my_AJAX_processing_function');

//if you want none logged in users to access this function use this hook
add_action('wp_ajax_nopriv_ACTION_NAME', 'my_AJAX_processing_function');

*if you want logged in users and guests to access your function by ajax then add both hooks.
*ACTION_NAME must match the action value in your ajax POST.

then in your function just make sure the request came from valid source

function my_AJAX_processing_function(){
   check_ajax_referer('my_ajax_nonce');
   //do stuff here...
}

Hope this Helps

Related Posts:

  1. What’s the preferred method of writing AJAX-enabled plugins?
  2. How to pass JavaScript variable to PHP in wordpress widget?
  3. AJAX Call Via Vanilla JavaScript In WordPress Plugin Development
  4. Custom plugin giving: wp-admin/admin-ajax.php 400 (Bad Request)
  5. Execute a function using ajax
  6. Errors while using ajax from external wordpress page
  7. Built in admin ajax hooks?
  8. Ajax call doesn’t work in frontend but it’s working in backend (when I’m logged in)
  9. Why is my ajax call refreshing the page?
  10. Admin-ajax.php is dying “0” without processing function
  11. how to use ajax to display from database and load more in wordpress plugin
  12. How to remove an Ajax action
  13. How to create popup same as wordpress popup feature
  14. Only execute jQuery function(on document ready) on the page has shortcode from plugin [duplicate]
  15. $wpdb working with ajax but showing ajax error instead of success
  16. Ajax gives 400 error
  17. Check if email address exists front end with AJAX in a plugin
  18. WordPress Plugin Page is Loading in Admin Content Container Instead of Separate Page
  19. WooCommerce get_price returning wrong price when used via ajax
  20. Simple ajax call not working in wordpress plugin
  21. AJAX search posts and pages
  22. __callStatic method handler passed to add_action causes bug in PHP
  23. Using a custom plugin to capture input data via Ajax and PHP
  24. Ajax contact form widget plugin data not insert in database
  25. Best place for if/else piece of code related to custom plugin?
  26. Ajax call returning 0
  27. Create tabs in admin options page from custom post type loop
  28. What are the Best Practises When Using AJAX in Plugin Development?
  29. Admin AJAX doesn’t work in plugin admin page – Even though code is copied verbatim from WordPress Codex
  30. Submit Form data to another page via Ajax (WordPress Way)
  31. WordPress front end AJAX. Return 0 :?
  32. Using WordPress to build membership Page
  33. Asynchronous request in wordpress
  34. Is there a better way of handling AJAX requests in WordPress?
  35. WordPress API functions not working at AJAX functions.php call
  36. Calling a class method instantiated by ajax call in wordpress [closed]
  37. Ajax request sends url rather than data
  38. best way to run a php script away from the template?
  39. can’t unzip file
  40. wp_query ‘s’ parameter does not work with WC_AJAX
  41. wc_get_template_part doesnt display the content [duplicate]
  42. Error datatable whit ajax
  43. How to use Datatable with Ajax when creating plugin on WordPress?
  44. AJAX update fails for public/non-admin users
  45. WordPress Ajax request “Failed to load resource: the server responded with a status of 400 ()”
  46. WordPress ajax error 400 bad request for sending data to remote site [duplicate]
  47. ajax voting for custom post type
  48. Custom plugin giving: wp-admin/admin-ajax.php 400 (Bad Request)
  49. Overwriting Plugin’s Ajax callback function from theme
  50. My ajax request don´t work and return 0
  51. WordPress environment not loading properly
  52. wordpress ajax pagination object value does not change
  53. How can I use wp_ajax_response for front-end error reporting?
  54. How to limit each front-end user to view just his own uploaded files on Amazon S3?
  55. WordPress ajax not working in registration
  56. Ajax, jQuery and WordPress
  57. How to get site homepage from plugin?
  58. Capturing POST data
  59. Help me with my first very basic plugin
  60. Load css classes after using ajax calls
  61. wordpress Ajax success doesn’t return the value
  62. Jquery post responses 500 error after some time and lastly an 503 error
  63. Inline AJAX script passing variables to PHP
  64. wordpress admin-ajax bad request 400
  65. How to load wp_editor via AJAX
  66. How can I make it so the Add New Post page has Visibility set to Private by default?
  67. How does WordPress handle MySQL row lock errors?
  68. When do I need to use esc_attr when using WordPress internal functions
  69. How to list the Hooks and order of execution in current loading page? [duplicate]
  70. How to make my plugin theme-independent?
  71. How to bulk send emails
  72. How to handle the Plugin Version on Update using Tortoise SVN and the worpdress.org Plugin Repository?
  73. The Point of Using apply_filters()
  74. My plugin wants to update another plugin
  75. Using SVN to upload plugin created with gutenberg blocks
  76. Force quit running background job
  77. Ajax with plugins returns 0
  78. Check if plugin exists/active “class_exists()” does not work on plugin territory
  79. Widget’s container?
  80. custom uploader in the admin area
  81. How to do the simplest possible frontend ajax call from a plugin?
  82. I receive taxonomy id
  83. Error with get_price (and others) in self-written plugin to show price
  84. How do I localize admin-ajax.php that is used in Ajax Load More – Infinite Scroll?
  85. WordPress Widget Not Saving Instance
  86. Issue with wp_handle_upload
  87. Different registration form for different roles
  88. My plugin does not install correctly if a previous version is still installed
  89. How to call php file in theme directory from plugin
  90. How to solve conflict with scripts?
  91. wp_insert_post not inserting post from XML
  92. Access “wp site health info” data from plugin
  93. WordPress Frontend Page using Plugin
  94. Missing files in enqueue actions causes WordPress to reload
  95. Adding/ Removing actions for plugins
  96. Get input form data posted by users
  97. wp_verify_nonce fails always
  98. Custom Plugin: Point to `template_directory`
  99. Adding list of Indexes in wordpress document
  100. Validating values using Settings API?