Are there any best practices for implementing a Referrer redirect in PHP?

When implementing a Referrer redirect in PHP, it is important to validate the referrer URL to prevent malicious redirects. One best practice is to check if the referrer URL is from a trusted domain before performing the redirect. This can help prevent security risks such as open redirect vulnerabilities.

&lt;?php
$allowed_domains = array(&quot;example.com&quot;, &quot;trusteddomain.com&quot;);

$referrer = $_SERVER[&#039;HTTP_REFERER&#039;];

if ($referrer &amp;&amp; in_array(parse_url($referrer, PHP_URL_HOST), $allowed_domains)) {
    header(&quot;Location: https://example.com/redirected-page.php&quot;);
    exit();
} else {
    echo &quot;Referrer not allowed&quot;;
}
?&gt;

Keywords

Referrer redirect implementation PHP best practices

Are there any best practices for implementing a Referrer redirect in PHP?

Keywords

Related Questions