Summery Summery

Determines if the HTTP origin is an authorized one.

Syntax Syntax

is_allowed_http_origin( null|string $origin = null )

Parameters Parameters


(null|string) (Optional) Origin URL. If not provided, the value of get_http_origin() is used.

Default value: null

Return Return

(string) Origin URL if allowed, empty string if not.

Source Source

File: wp-includes/http.php

	if ( null === $origin ) {
		$origin = get_http_origin();

	if ( $origin && ! in_array( $origin, get_allowed_http_origins(), true ) ) {
		$origin = '';

	 * Change the allowed HTTP origin result.
	 * @since 3.4.0
	 * @param string $origin     Origin URL if allowed, empty string if not.
	 * @param string $origin_arg Original origin string passed into is_allowed_http_origin function.
	return apply_filters( 'allowed_http_origin', $origin, $origin_arg );



Changelog Changelog

Version Description
3.4.0 Introduced.


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.