WordPress开发者和主题制作者的搜索引擎



send_origin_headers ›

Since3.4.0
已弃用n/a
send_origin_headers ( 没有参数 )
返回:
  • (string|false) Returns the origin URL if headers are sent. Returns false if headers are not sent.
定义在:
文档:

Send Access-Control-Allow-Origin and related headers if the current request is from an allowed origin.

If the request is an OPTIONS request, the script exits with either access control headers sent, or a 403 response if the origin is not allowed. For other request methods, you will receive a return value.



源码

function send_origin_headers() {
	$origin = get_http_origin();

	if ( is_allowed_http_origin( $origin ) ) {
		header( 'Access-Control-Allow-Origin: ' . $origin );
		header( 'Access-Control-Allow-Credentials: true' );
		if ( 'OPTIONS' === $_SERVER['REQUEST_METHOD'] ) {
			exit;
		}
		return $origin;
	}

	if ( 'OPTIONS' === $_SERVER['REQUEST_METHOD'] ) {
		status_header( 403 );
		exit;
	}

	return false;
}