is_allowed_http_origin

function

is_allowed_http_origin( null|string $origin = null )

Determines if the HTTP origin is an authorized one.

Contents

Description
- Parameters
- Return
- Source
- Changelog
Related
- Uses
- Used By
User Contributed Notes

Description Description

Parameters Parameters

$origin

(null|string) (Optional) Origin URL. If not provided, the value of get_http_origin() is used.

Default value: null

Return Return

(string) Origin URL if allowed, empty string if not.

Source Source

File: wp-includes/http.php

function is_allowed_http_origin( $origin = null ) {
	$origin_arg = $origin;

	if ( null === $origin ) {
		$origin = get_http_origin();
	}

	if ( $origin && ! in_array( $origin, get_allowed_http_origins() ) ) {
		$origin = '';
	}

	/**
	 * Change the allowed HTTP origin result.
	 *
	 * @since 3.4.0
	 *
	 * @param string $origin     Origin URL if allowed, empty string if not.
	 * @param string $origin_arg Original origin string passed into is_allowed_http_origin function.
	 */
	return apply_filters( 'allowed_http_origin', $origin, $origin_arg );
}

Expand full source code Collapse full source code View on Trac

Changelog Changelog

Changelog
Version	Description
3.4.0	Introduced.

Uses Uses

Uses
Uses	Description
wp-includes/http.php: allowed_http_origin	Change the allowed HTTP origin result.
wp-includes/http.php: get_http_origin()	Get the HTTP Origin of the current request.
wp-includes/http.php: get_allowed_http_origins()	Retrieve list of allowed HTTP origins.
wp-includes/plugin.php: apply_filters()	Calls the callback functions that have been added to a filter hook.

Used By Used By

Used By
Used By	Description
wp-includes/http.php: send_origin_headers()	Send Access-Control-Allow-Origin and related headers if the current request is from an allowed origin.

User Contributed Notes User Contributed Notes

You must log in before being able to contribute a note or feedback.

Keep Leading Your Followers!
Share it for them.