HTTP Range header

by

As Wrikken suggested, it’s a valid request. It’s also quite common when the client is requesting media or resuming a download.

A client will often test to see if the server handles ranged requests other than just looking for an Accept-Ranges response. Chrome always sends a Range: bytes=0- with its first GET request for a video, so it’s something you can’t dismiss.

Whenever a client includes Range: in its request, even if it’s malformed, it’s expecting a partial content (206) response. When you seek forward during HTML5 video playback, the browser only requests the starting point. For example:

Range: bytes=3744-

So, in order for the client to play video properly, your server must be able to handle these incomplete range requests.

You can handle the type of ‘range’ you specified in your question in two ways:

First, You could reply with the requested starting point given in the response, then the total length of the file minus one (the requested byte range is zero-indexed). For example:

Request:

GET /BigBuckBunny_320x180.mp4 
Range: bytes=100-

Response:

206 Partial Content
Content-Type: video/mp4
Content-Length: 64656927
Accept-Ranges: bytes
Content-Range: bytes 100-64656926/64656927

Second, you could reply with the starting point given in the request and an open-ended file length (size). This is for webcasts or other media where the total length is unknown. For example:

Request:

GET /BigBuckBunny_320x180.mp4
Range: bytes=100-

Response:

206 Partial Content
Content-Type: video/mp4
Content-Length: 64656927
Accept-Ranges: bytes
Content-Range: bytes 100-64656926/*

Tips:

You must always respond with the content length included with the range. If the range is complete, with start to end, then the content length is simply the difference:

Request:
Range: bytes=500-1000

Response:
Content-Range: bytes 500-1000/123456

Remember that the range is zero-indexed, so Range: bytes=0-999 is actually requesting 1000 bytes, not 999, so respond with something like:

Content-Length: 1000
Content-Range: bytes 0-999/123456

Or:

Content-Length: 1000
Content-Range: bytes 0-999/*

But, avoid the latter method if possible because some media players try to figure out the duration from the file size. If your request is for media content, which is my hunch, then you should include its duration in the response. This is done with the following format:

X-Content-Duration: 63.23

This must be a floating point. Unlike Content-Length, this value doesn’t have to be accurate. It’s used to help the player seek around the video. If you are streaming a webcast and only have a general idea of how long it will be, it’s better to include your estimated duration rather than ignore it altogether. So, for a two-hour webcast, you could include something like:

X-Content-Duration: 7200.00

With some media types, such as webm, you must also include the content-type, such as:

Content-Type: video/webm

All of these are necessary for the media to play properly, especially in HTML5. If you don’t give a duration, the player may try to figure out the duration (to allow for seeking) from its file size, but this won’t be accurate. This is fine, and necessary for webcasts or live streaming, but not ideal for playback of video files. You can extract the duration using software like FFMPEG and save it in a database or even the filename.

X-Content-Duration is being phased out in favor of Content-Duration, so I’d include that too. A basic, response to a “0-” request would include at least the following:

HTTP/1.1 206 Partial Content
Date: Sun, 08 May 2013 06:37:54 GMT
Server: Apache/2.0.52 (Red Hat)
Accept-Ranges: bytes
Content-Length: 3980
Content-Range: bytes 0-3979/3980
Content-Type: video/webm
X-Content-Duration: 2054.53
Content-Duration: 2054.53

One more point: Chrome always starts its first video request with the following:

Range: bytes=0-

Some servers will send a regular 200 response as a reply, which it accepts (but with limited playback options), but try to send a 206 instead to show than your server handles ranges. RFC 2616 says it’s acceptable to ignore range headers.

More Related Contents:

  1. application/x-www-form-urlencoded or multipart/form-data?
  2. Do I need Content-Type: application/octet-stream for file download?
  3. Maximum on HTTP header values?
  4. Uses of content-disposition in an HTTP response header
  5. ‘Refresh’ HTTP header
  6. Is there a practical HTTP Header length limit?
  7. Detecting the character encoding of an HTTP POST request
  8. What are all the possible values for HTTP “Content-Type” header?
  9. Ideal HTTP cache control headers for different types of resources
  10. How can I get the clients IP address from HTTP headers?
  11. What is the difference between HTTP_CLIENT_IP and HTTP_X_FORWARDED_FOR?
  12. Content-Length header with HEAD requests?
  13. Difference between Content-Range and Range headers?
  14. How does “304 Not Modified” work exactly?
  15. How big can a user agent string get?
  16. What is Cache-Control: private?
  17. Save cookies between two curl requests
  18. How can I find out whether a server supports the Range header?
  19. What is a full specification of X-Forwarded-Proto HTTP header?
  20. Custom HTTP Authorization Header
  21. What HTTP response headers are required
  22. Does the HTTP Protocol support multiple content types in response headers?
  23. What is the http-header “X-XSS-Protection”?
  24. What is HTTP “Host” header?
  25. What does HTTP/1.1 302 mean exactly?
  26. HTTP Cache Control max-age, must-revalidate
  27. Is the Content-Length header required for a HTTP/1.0 response?
  28. Is REST DELETE really idempotent?
  29. Avoid caching of the http responses
  30. Keep-alive header clarification

Leave a Comment