The HTTP Allow header is an Entity-type header that specifies the valid methods that are supported by a resource. It is used in response for a 405 Method not allowed. If this header is empty it means the resource does not allow any request methods.
Directives: The HTTP Allow header accepts a single directive mentioned above and described below:
- <http-methods>: This directive holds the list of HTTP request methods. If the requests are more than one then the request are separated by commas.
- When there is just one method. The POST method is used to submit an entity to the specified resource which often causes a change in state on the server.
- When there are multiple methods. The PATCH method is used to apply partial modifications to a resource while the DELETE method deletes the specified resource.
Allow: PATCH, DELETE
To check this Allow in action go to Inspect Element -> Network check the header for Allow like below.
Supported browsers: The browsers compatible with HTTP Allow header are listed below:
- Google Chrome
- Internet Explorer
- HTTP headers | Access-Control-Expose-Headers
- HTTP headers | Access-Control-Request-Headers
- HTTP headers | Access-Control-Allow-Headers.
- HTTP Headers | TE
- HTTP headers
- HTTP headers | Age
- HTTP headers | Via
- HTTP headers | SourceMap
- HTTP headers | If-Unmodified-Since
- HTTP headers | Retry-After
- HTTP headers | Digest
- HTTP headers | Expect
- HTTP headers | expires
- HTTP headers | Set-Cookie
- HTTP headers | Expect-CT
If you like GeeksforGeeks and would like to contribute, you can also write an article using contribute.geeksforgeeks.org or mail your article to email@example.com. See your article appearing on the GeeksforGeeks main page and help other Geeks.
Please Improve this article if you find anything incorrect by clicking on the "Improve Article" button below.