How you wrote it, some thing like "GET currenttime" could well be Mistaken because it will not be idempotent (inside the perception that repeated queries may well create distinctive final results); in actual fact everything queried for may transform with time.So how exactly does not sticking details within the URL help it become more secure? (Btw,