The Hypertext Transfer Protocol (HTTP) is an application protocol for distributed, collaborative, and hypermedia information systems. HTTP is the foundation of data communication for the World Wide Web.
Hypertext is structured text that uses logical links (hyperlinks) between nodes containing text. HTTP is the protocol to exchange or transfer hypertext.
Table of content
HTTP
Identifying resources on the Web
Data URIs
Introduction to MIME Types
Complete list of MIME Types
Choosing between www and non-www URLs
Basics of HTTP
Overview of HTTP
Evolution of HTTP
HTTP Messages
A typical HTTP session
Connection management in HTTP/1.x
Protocol upgrade mechanism
Content Security Policy (CSP)
HTTP Public Key Pinning (HPKP)
HTTP Strict Transport Security (HSTS)
Cookie security
X-Content-Type-Options
X-Frame-Options
X-XSS-Protection
Mozilla web security guidelines
HTTP access control (CORS)
HTTP authentication
HTTP caching
HTTP compression
HTTP conditional requests
HTTP content negotiation
HTTP cookies
HTTP range requests
HTTP redirects
HTTP specifications
HTTP headers
Accept
Accept-Charset
Accept-Encoding
Accept-Language
Accept-Ranges
Access-Control-Allow-Credentials
Access-Control-Allow-Headers
Access-Control-Allow-Methods
Access-Control-Allow-Origin
Access-Control-Expose-Headers
Access-Control-Max-Age
Access-Control-Request-Headers
Access-Control-Request-Method
Age
Allow
Authorization
Cache-Control
Connection
Content-Disposition
Content-Encoding
Content-Language
Content-Length
Content-Location
Content-Range
Content-Security-Policy
Content-Security-Policy-Report-Only
Content-Type
Cookie
Cookie2
DNT
Date
ETag
Expect
Expires
Forwarded
From
Host
If-Match
If-Modified-Since
If-None-Match
If-Range
If-Unmodified-Since
Keep-Alive
Large-Allocation
Last-Modified
Location
Origin
Pragma
Proxy-Authenticate
Proxy-Authorization
Public-Key-Pins
Public-Key-Pins-Report-Only
Range
Referer
Referrer-Policy
Retry-After
Server
Set-Cookie
Set-Cookie2
SourceMap
Strict-Transport-Security
TE
Timing-Allow-Origin
Tk
Trailer
Transfer-Encoding
Upgrade-Insecure-Requests
User-Agent
Vary
Via
WWW-Authenticate
Warning
X-Content-Type-Options
X-DNS-Prefetch-Control
X-Forwarded-For
X-Forwarded-Host
X-Forwarded-Proto
X-Frame-Options
X-XSS-Protection
HTTP request methods
CONNECT
DELETE
GET
HEAD
OPTIONS
PATCH
POST
PUT
HTTP response status codes
100 Continue
101 Switching Protocols
200 OK
201 Created
202 Accepted
203 Non-Authoritative Information
204 No Content
205 Reset Content
206 Partial Content
300 Multiple Choices
301 Moved Permanently
302 Found
303 See Other
304 Not Modified
307 Temporary Redirect
308 Permanent Redirect
400 Bad Request
401 Unauthorized
403 Forbidden
404 Not Found
405 Method Not Allowed
406 Not Acceptable
407 Proxy Authentication Required
408 Request Timeout
409 Conflict
410 Gone
411 Length Required
412 Precondition Failed
413 Payload Too Large
414 URI Too Long
415 Unsupported Media Type
416 Range Not Satisfiable
417 Expectation Failed
426 Upgrade Required
428 Precondition Required
429 Too Many Requests
431 Request Header Fields Too Large
451 Unavailable For Legal Reasons
500 Internal Server Error
501 Not Implemented
502 Bad Gateway
503 Service Unavailable
504 Gateway Timeout
505 HTTP Version Not Supported
511 Network Authentication Required
CSP: base-uri
CSP: block-all-mixed-content
CSP: child-src
CSP: connect-src
CSP: default-src
CSP: font-src
CSP: form-action
CSP: frame-ancestors
CSP: frame-src
CSP: img-src
CSP: manifest-src
CSP: media-src
CSP: object-src
CSP: plugin-types
CSP: referrer
CSP: report-uri
CSP: require-sri-for
CSP: sandbox
CSP: script-src
CSP: style-src
CSP: upgrade-insecure-requests
CSP: worker-src
The Hypertext Transfer Protocol (HTTP) adalah protokol aplikasi untuk diedarkan, sistem kerjasama dan maklumat hypermedia. HTTP adalah asas komunikasi data bagi World Wide Web.
Hiperteks distrukturkan teks yang menggunakan pautan logik (hyperlink) antara nod mengandungi teks. HTTP adalah protokol untuk pertukaran atau pemindahan hiperteks.
Jadual kandungan
HTTP
Mengenal pasti sumber-sumber di Web
Data URI
Pengenalan kepada Jenis MIME
Senarai lengkap Jenis MIME
Memilih antara www dan bukan www URL
Asas HTTP
Gambaran mengenai HTTP
Evolusi HTTP
Mesej HTTP
Satu sesi HTTP biasa
pengurusan sambungan dalam HTTP / 1.x
mekanisme upgrade protokol
Dasar Keselamatan Kandungan (CSP)
HTTP Pelekatan Kunci Awam (HPKP)
HTTP Ketat Keselamatan Pengangkutan (HSTS)
keselamatan Cookie
X-Content-Type-Options
X-Frame-Options
X-XSS-Perlindungan
Mozilla garis panduan keselamatan web
kawalan akses HTTP (CORS)
pengesahan HTTP
HTTP caching
mampatan HTTP
HTTP permintaan bersyarat
HTTP rundingan kandungan
cookies HTTP
permintaan pelbagai HTTP
ubah hala HTTP
spesifikasi HTTP
HTTP header
terima
Terima-Set aksara
Terima-Encoding
Terima-Bahasa
Terima-Ranges
Access-Control-Allow-Bukti kelayakan
Access-Control-Allow-Pengepala
Access-Control-Allow-Kaedah
Access-Control-Allow-Origin
Access-Control-Expose-Pengepala
Access-Control-Max-Umur
Access-Control-Permintaan-Pengepala
Access-Control-Permintaan-Kaedah
Umur
membolehkan
Kebenaran
Cache-Control
sambungan
Pembuangan Kandungan
Kandungan-Encoding
Kandungan-Bahasa
Panjang Kandungan
Kandungan-Location
Kandungan Sederhana
Kandungan-Security-Dasar
Kandungan-Security-Polisi-Report-Only
Jenis kandungan
Cookie
Cookie2
DNT
Tarikh
ETag
mengharapkan
tamat tempoh
dikemukakan
daripada
Host
Jika perlawanan
Jika-Modified-Sejak
Jika-Tiada-Match
Jika Sederhana
Jika-diubahsuai-Sejak
Simpan Alive
Besar-Peruntukan
Last-Modified
lokasi
asal
Pragma
Proksi-ketulenan
Proksi-Kebenaran
Public-Key-Pins
Public-Key-Pins-Report-Only
pelbagai
perujuk
Perujuk-Dasar
Cuba semula-Selepas
Server
Set-Cookie
Set-Cookie2
SourceMap
Ketat-Transport-Security
TE
Masa-Allow-Origin
Tk
Trailer
Transfer-Encoding
Naik taraf-tidak selamat-Permintaan
User-Agent
berbeza-beza
Via
WWW-ketulenan
Amaran
X-Content-Type-Options
X-DNS-Pra-ambil-Kawalan
X-Forwarded-For
X-Forwarded-Host
X-Forwarded-Proto
X-Frame-Options
X-XSS-Perlindungan
kaedah permintaan HTTP
CONNECT
DELETE
DAPATKAN
HEAD
PILIHAN
PATCH
POST
LETAK
kod status HTTP sambutan
100 Teruskan
101 Protokol Switching
200 OK
201 Dibuat
202 diterima
203 Maklumat Bukan berwibawa
204 Tiada Kandungan
205 Kandungan Reset
206 Kandungan separa
300 Pilihan Pelbagai
301 Moved Permanently
302 Found
303 Lihat lain
304 Tidak Modified
307 Sementara Redirect
308 Tetap Redirect
400 Permintaan Bad
401 yang tidak dibenarkan
403 Terlarang
404 Not Found
405 Kaedah Tidak Dibenarkan
406 Tidak boleh diterima
407 Proxy Pengesahan Diperlukan
408 Permintaan Timeout
409 Konflik
410 Gone
411 Negara Diperlukan
412 Prasyarat Gagal
413 muatan Terlalu Besar
414 URI Too Long
415 tidak disokong Media Jenis
416 Range Tidak Satisfiable
417 Expectation Gagal
426 Upgrade Diperlukan
428 Prasyarat Diperlukan
429 Terlalu Banyak Permintaan
431 Permintaan Tandukan Fields Terlalu Besar
451 Unavailable sebab undang-undang
500 Ralat Pelayan Dalaman
501 Tidak Dilaksanakan
502 Bad Gateway
503 Service Unavailable
504 Gateway Timeout
505 HTTP Versi Tidak Disokong
511 Network Pengesahan Diperlukan
CSP: asas-uri
CSP: block-semua-bercampur kandungan
CSP: kanak-kanak src
CSP: menyambung src
CSP: lalai-src
CSP: font-src
CSP: Borang-tindakan
CSP: frame-nenek moyang
CSP: frame-src
CSP: img src-
CSP: nyata-src
CSP: media-src
CSP: objek src
CSP: plugin-jenis
CSP: perujuk
CSP: melaporkan-uri
CSP: memerlukan-sri-untuk
CSP: sandbox
CSP: Skrip-src
CSP: gaya src
CSP: menaik taraf tidak selamat-permintaan
CSP: Pekerja-src