http_response_headers.admin.inc in HTTP Response Headers 7
Admin page callbacks for the HTTP response headers module.
File
http_response_headers.admin.incView source
<?php
/**
* @file
* Admin page callbacks for the HTTP response headers module.
*/
/**
* Callback for configuration form.
*/
function http_response_headers_settings_form($form, &$from_state) {
$form['http_response_headers']['label'] = array(
'#type' => 'markup',
'#markup' => theme('item_list', array(
'items' => variable_get('http_response_headers_allowed_headers', array()),
'title' => t('Currently enabled headers:'),
)),
);
$form['http_response_headers']['http_response_headers_allowed_headers'] = array(
'#type' => 'select',
'#title' => t('Allowed headers'),
'#default_value' => variable_get('http_response_headers_allowed_headers', array()),
'#options' => http_response_headers_get_all_headers(),
'#multiple' => TRUE,
'#size' => 10,
'#description' => t('Allowed headers to set via admin UI on <a href="!header_rule_url"> HTTP response headers page</a> page.', array(
'!header_rule_url' => url('admin/config/system/http-response-headers'),
)),
);
$form['http_response_headers']['http_response_headers_additional_headers'] = array(
'#type' => 'textarea',
'#title' => t('Additional headers'),
'#rows' => '5',
'#default_value' => http_response_headers_get_additional_headers(),
'#description' => t('Additional HTTP headers, one per line.'),
);
$form['http_response_headers']['http_response_headers_exclude_pages'] = array(
'#type' => 'textarea',
'#title' => t('Exclude header rule pages'),
'#rows' => '5',
'#default_value' => variable_get('http_response_headers_exclude_pages'),
'#description' => t('Excludes header rule check on this pages.'),
);
$form['#submit'][] = 'http_response_headers_additional_headers_submit';
return system_settings_form($form);
}
/**
* Submit handler for http_response_headers_additional_headers.
*/
function http_response_headers_additional_headers_submit($form, &$form_state) {
$headers =& $form_state['values']['http_response_headers_additional_headers'];
$headers = explode("\n", $headers);
$headers = array_map('trim', $headers);
$headers = array_filter($headers);
}
/**
* Provides any additional headers.
*
* @return string
* List of headers separated by newlines.
*/
function http_response_headers_get_additional_headers() {
$headers = variable_get('http_response_headers_additional_headers', array());
if (!is_array($headers)) {
$headers = array(
$headers,
);
}
$headers = trim(implode("\n", $headers));
return $headers;
}
/**
* Provides response headers.
*
* @return array
* An array of response headers.
*/
function http_response_headers_get_all_headers() {
// Standard response headers.
$headers['Standard response headers'] = array(
'Access-Control-Allow-Origin',
'Accept-Ranges',
'Age',
'Allow',
'Cache-Control',
'Connection',
'Content-Encoding',
'Content-Language',
'Content-Length',
'Content-Location',
'Content-MD5',
'Content-Disposition',
'Content-Range',
'Content-Type',
'Date',
'ETag',
'Expires',
'Last-Modified',
'Link',
'Location',
'P3P',
'Pragma',
'Proxy-Authenticate',
'Refresh',
'Retry-After',
'Server',
'Set-Cookie',
'Status',
'Strict-Transport-Security',
'Trailer',
'Transfer-Encoding',
'Vary',
'Via',
'Warning',
'WWW-Authenticate',
);
// Non-standard response headers.
$headers['Common non-standard response headers'] = array(
'X-Frame-Options',
'X-XSS-Protection',
'Content-Security-Policy',
'X-Content-Security-Policy',
'X-WebKit-CSP',
'X-Content-Type-Options',
'X-Powered-By',
'X-UA-Compatible',
'X-Permitted-Cross-Domain-Policies',
'Surrogate-Control',
);
$additional_headers = variable_get('http_response_headers_additional_headers', array());
if (count($additional_headers)) {
$headers['Additional headers'] = $additional_headers;
}
// Map key.
foreach ($headers as $title => $header_set) {
$return_list[$title] = array_combine($header_set, $header_set);
}
return $return_list;
}Functions
Name |
Description |
|---|---|
| http_response_headers_additional_headers_submit | Submit handler for http_response_headers_additional_headers. |
| http_response_headers_get_additional_headers | Provides any additional headers. |
| http_response_headers_get_all_headers | Provides response headers. |
| http_response_headers_settings_form | Callback for configuration form. |