Verbose information

The cURL library has an option to return verbose information about the request, which is very useful while debugging; this can be enabled by setting the CURLOPT_VERBOSE option to true:

curl_setopt($ch, CURLOPT_VERBOSE, true);

This allows you to view the request type, but it will also allow you to extract other useful details, such as info on the TLS handshake and SSL certificate.

How are HEAD requests used

A HEAD request is similar to a GET, but it specifically means that the server should only return the HTTP response headers of the requested resource, without including the response body; sometimes the body may be included anyway due to errors and carelessness, but clients will generally ignore it.

The main advantage of sending a HEAD request to a resource, is that a client will be able to compare the caching headers before deciding if the full resource should be requested.

Servers may inform clients about the supported request methods for a given resource in allow header, each method separated by a comma:

allow: GET, HEAD

According to rfc7231#section-7.4.1: If an unsupported request method is used by a client, the server should respond with a 405 Method Not Allowed status, and then it must include the allow header to show supported methods.

As you may have noticed, it is not all servers or web applications that uses the allow header properly.

The format of a HTTP response

In the HTTP protocol, response headers are sent before the response body, and will look like this in plain text:

HTTP/1.1 200 OK
Date: Fri, 22 Jan 2021 12:41:43 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Transfer-Encoding: chunked
Content-Type: text/plain; charset=utf-8

<p>Hallo World</p>

The response headers and the response body are separated by two pairs of CRLF (A carriage return + a line feed character).

In PHP, CRLF is represented with \r\n; you can output CRLF using the following:

echo "\r\n";

Each header is separated by a single CRLF, while the headers- and body parts of the response is separated by CRLFCRLF (the equivalent of \r\n\r\n in PHP).

The idea is to allow HTTP clients to check caching headers such as last-modified and etag before deciding if a client-sided cache should be invalidated. If the cached copy is determined by a client to be outdated, the resource is typically re-downloaded with a fresh GET request. The main benefit of supporting HEAD is that the client avoids having to re-download resources that has not been changed, and at the same time servers also avoid wasting resources on generating and uploading resources that has already been downloaded by a client before.

It is far from all web-resources that support HEAD requests. In fact, if you are using a server-sided scripting language such as PHP, then you will have to manually add support for caching on dynamically generated pages — a good CMS system will already support client-sided caching without users having to do anything.

$header_size = curl_getinfo($ch, CURLINFO_HEADER_SIZE);
$headers = substr($response, 0, $header_size);
$body = substr($response, $header_size);

// Define the $response_headers array for later use
$response_headers = [];

// Get the first line (The Status Code)
$line = strtok($headers, "\r\n");
$status_code = trim($line);

// Parse the string, saving it into an array instead
while (($line = strtok("\r\n")) !== false) {
    if(false !== ($matches = explode(':', $line, 2))) {
      $response_headers["{$matches[0]}"] = trim($matches[1]);
    }  
}

if (isset($response_headers['allow'])) {
  echo '<p>The <b>allow</b> header was present, here is its contents:';
  var_dump($response_headers['allow']);
  exit();
}

Links

1. List of HTTP Status Codes

https://beamtic.com/api/user-agent

https://beamtic.com/api/request-headers