Overview

If your Slim Framework application has a route that matches the current HTTP request URI but NOT the HTTP request method, the application invokes its Not Allowed handler and returns a HTTP/1.1 405 Not Allowed response to the HTTP client.

Default Not Allowed handler

Each Slim Framework application has a default Not Allowed handler. This handler sets the Response status to 405, it sets the content type to text/html, it adds a Allowed: HTTP header with a comma-delimited list of allowed HTTP methods, and it writes a simple explanation to the Response body.

Custom Not Allowed handler

A Slim Framework application’s Not Allowed handler is a Pimple service. You can substitute your own Not Allowed handler by defining a custom Pimple factory method with the application container.

  1. $app['notAllowedHandler'] = function ($c) {
  2.     return function ($request, $response, $methods) use ($c) {
  3.         return $c['response']
  4.             ->withStatus(405)
  5.             ->withHeader('Allow', implode(', ', $methods))
  6.             ->withHeader('Content-type', 'text/html')
  7.             ->write('Method must be one of: ' . implode(', ', $methods));
  8. };

In this example, we define a new notAllowedHandler factory that returns a callable. The returned callable accepts three arguments:

  1. A \Psr\Http\Message\RequestInterface instance
  2. A \Psr\Http\Message\ResponseInterface instance
  3. A numeric array of allowed HTTP method names

The callable MUST return an appropriate \Psr\Http\Message\ResponseInterface instance.