wpseek.com
Uma área de pesquisa sobre o WordPress para devs e autores do tema

send_origin_headers › WordPress Function

Desde3.4.0

Obsoleton/a

› send_origin_headers ( Sem parâmetros )

Retorna:	(string\|false) Returns the origin URL if headers are sent. Returns false if headers are not sent.
Definido em:	wp-includes/http.php , line 501
Codex:	developer.wordpress.org / send_origin_headers

Send Access-Control-Allow-Origin and related headers if the current request is from an allowed origin.

If the request is an OPTIONS request, the script exits with either access control headers sent, or a 403 response if the origin is not allowed. For other request methods, you will receive a return value.

Funções relacionadas: rest_send_cors_headers, login_header, do_signup_header, send_nosniff_header, send_frame_options_header

Fonte

function send_origin_headers() {
	$origin = get_http_origin();

	if ( is_allowed_http_origin( $origin ) ) {
		header( 'Access-Control-Allow-Origin: ' . $origin );
		header( 'Access-Control-Allow-Credentials: true' );
		if ( 'OPTIONS' === $_SERVER['REQUEST_METHOD'] ) {
			exit;
		}
		return $origin;
	}

	if ( 'OPTIONS' === $_SERVER['REQUEST_METHOD'] ) {
		status_header( 403 );
		exit;
	}

	return false;
}