Home » API reference » bootstrap.inc

drupal_valid_http_host

Versions
5 – 7
drupal_valid_http_host($host)

Validate that a hostname (for example $_SERVER['HTTP_HOST']) is safe.

As $_SERVER['HTTP_HOST'] is user input, ensure it only contains characters allowed in hostnames. See RFC 952 (and RFC 2181). $_SERVER['HTTP_HOST'] is lowercased.

Return value

TRUE if only containing valid characters, or FALSE otherwise.

▸ 1 function calls drupal_valid_http_host()

▾ 1 function calls drupal_valid_http_host()

conf_init in includes/bootstrap.inc
Loads the configuration and sets the base URL, cookie domain, and session name correctly.

Code

includes/bootstrap.inc, line 241

<?php
function drupal_valid_http_host($host) {
  return preg_match('/^\[?(?:[a-z0-9-:\]_]+\.?)+$/', $host);
}
?>
Login or register to post comments
 
 

All source code and documentation on this site is released under the terms of the GNU General Public License, version 2 and later. Drupal is a registered trademark of Dries Buytaert.