HTTP 307 Temporary Redirect

HTTP 307 Temporary Redirect instructs the client to repeat the request at a different URL while preserving the HTTP method and body. Unlike 302 Found, which allows (and historically caused) method changes from POST to GET, 307 guarantees the redirect preserves the exact request. This is critical for API redirects, payment processing flows, and any scenario where a POST must remain a POST through the redirect.

Debug HTTP 307 live
Analyze real 307 behavior — headers, caching, CORS, redirects
Open Inspector →

Try it (live endpoint)

Response includes the status code, standard headers (including Content-Type), and a small diagnostic JSON body describing the request and returned status.

Simulator URL (copy in the app after load — not a normal link):

https://httpstatus.com/api/status/307

Example request:

curl -i "https://httpstatus.com/api/status/307"
Try in playground

Meaning

The URL of the requested resource has been changed temporarily.

What it guarantees
  • A different URI is involved to complete the intent.
What it does NOT guarantee
  • All clients will automatically follow the redirect.
  • The redirect target is safe to cache unless headers allow it.

When to use this status

  • Temporary redirects for maintenance, experiments, or routing changes.
  • Geo-based routing where the mapping may change.
  • Short-lived redirects where long-term caching is undesirable.

When NOT to use this status (common misuses)

Redirecting without a stable Location target.
Clients fail to follow; crawlers lose canonical signals.
Using 301/302 for non-GET methods without understanding method rewriting.
Clients can drop bodies or change methods, causing data loss and client bugs.
Redirect loops or long chains.
Crawlers waste crawl budget; clients hang; retries amplify load.

Critical headers that matter

Location
Tells clients where to go next.
Redirects fail or loop; crawlers lose canonical target.
Cache-Control
Controls whether redirects are cached.
Temporary redirects become sticky; permanent redirects never stick.
Vary
Prevents caches mixing redirect variants.
CDNs serve the wrong redirect for different hosts/headers.

Tool interpretation

Browsers
Follows Location for navigations; redirect caching can make behavior sticky. Redirect code choice affects method/body handling.
API clients
May not auto-follow; strict clients require explicit redirect handling. Incorrect redirect semantics can drop bodies or change methods.
Crawlers / SEO tools
Uses redirects for canonicalization; long chains/loops waste crawl budget and dilute signals.
Uptime monitors
Typically marks success; advanced checks may flag header anomalies or latency.
CDNs / reverse proxies
Can cache redirects; Location/Vary/Cache-Control correctness drives global consistency.

Inspector preview (read-only)

On this code, Inspector focuses on semantics, headers, and correctness warnings that commonly affect clients and caches.

Signals it will highlight
  • Status semantics vs method and body expectations
  • Header sanity (Content-Type, Cache-Control, Vary) and evidence completeness
  • Redirect chain length, loops, Location presence, protocol safety
Correctness warnings
No common correctness warnings are specific to this code.

Guided Lab outcome

  • Reproduce HTTP 307 Temporary Redirect using a controlled endpoint and capture the full exchange.
  • Practice distinguishing status semantics from transport issues (redirects, caching, proxies).
  • Validate redirect correctness (Location, hop count, protocol safety) and SEO impact.

Technical deep dive

307 Temporary Redirect (RFC 7231 Section 6.4.7) was created to fix 302's method-change behavior. The client MUST NOT change the method: a POST stays POST, a PUT stays PUT. The Location header contains the temporary URL. HSTS (HTTP Strict Transport Security) uses 307 internally: when a browser with an HSTS policy encounters an http:// URL for a known HTTPS-only host, it performs an internal 307 redirect to https:// before making any network request. This is visible in browser DevTools as a '307 Internal Redirect.' Caching: not cacheable by default.

Real-world examples

Common 307 Temporary Redirect scenario 1
When a server returns 307 Temporary Redirect, it signals specific behavior that clients and intermediaries must handle correctly. For example, in web applications, this status is commonly encountered during URL routing, content negotiation, or resource management operations.
CDN and proxy behavior with 307
CDNs and reverse proxies handle 307 Temporary Redirect according to their configuration. The caching and forwarding behavior depends on whether the status is cacheable by default (per RFC 7231) and the presence of Cache-Control headers. Misconfigured intermediaries can cause redirect loops or cache stale redirects.
API design with 307 Temporary Redirect
In RESTful API design, 307 Temporary Redirect serves a specific semantic purpose. API gateways may intercept and modify these responses for versioning, rate limiting, or traffic management. Understanding when to use 307 versus similar status codes is critical for correct client behavior.

Framework behavior

Express.js (Node)
Express: res.redirect(307, 'https://new-url.com'). For 301/308 permanent: ensure the Location header is correct as browsers may cache it permanently.
Django / DRF (Python)
Django: return HttpResponseRedirect('/new-url/', status=307) or use the shortcut redirect() with permanent parameter for 301/308.
Spring Boot (Java)
Spring: return ResponseEntity.status(307).header("Location", "/new-url").build(). Spring's RedirectView can be configured with specific status codes.
FastAPI (Python)
FastAPI: return RedirectResponse(url='/new-url', status_code=307). For API redirects, ensure the client follows redirects with method preservation when using 307/308.

Debugging guide

  1. Check the Location header value — typos or relative URLs in Location can cause redirect loops or 404s
  2. Verify caching behavior: NOT cacheable by default — check Cache-Control headers
  3. Test with curl -v -L to follow redirects and see the full chain
  4. Check for redirect chains — each hop adds latency; aim for direct redirects
  5. Monitor for method preservation — 307 must keep the original method

Code snippets

Node.js
app.get('/old-path', (req, res) => {
  res.redirect(307, '/new-path');
});
Python
from fastapi.responses import RedirectResponse

@app.get('/old-path')
async def old_path():
    return RedirectResponse('/new-path', status_code=307)
Java (Spring)
@GetMapping("/old-path")
public ResponseEntity<Void> oldPath() {
    return ResponseEntity.status(307)
        .header("Location", "/new-path")
        .build();
}
Go
func oldPathHandler(w http.ResponseWriter, r *http.Request) {
	http.Redirect(w, r, "/new-path", 307)
}

FAQ

When should I use 307 Temporary Redirect vs other redirect codes?
307 Temporary Redirect is temporary and preserves the HTTP method. Choose based on permanence (will the redirect stay?) and method preservation (does POST need to stay POST?).
How do search engines handle 307 Temporary Redirect?
Search engines treat this as temporary and continue indexing the original URL. They do not transfer PageRank.
Is 307 Temporary Redirect cacheable?
No, 307 is NOT cacheable by default. Add Cache-Control: max-age=N if you want intermediaries to cache it.
What are common pitfalls with 307 Temporary Redirect?
Common issues include: redirect loops (A→B→A), missing Location header, relative vs absolute URLs in Location, assuming method will change when it wont, and excessive redirect chains that add latency.

Client expectation contract

Client can assume
  • A different URI is involved; Location may be required.
Client must NOT assume
  • Redirects will be followed automatically by all clients.
Retry behavior
Retries are generally unnecessary; treat as final unless domain rules require revalidation.
Monitoring classification
Redirect (policy-dependent)
Validate Location, caching headers, and chain behavior. Redirect loops/chains should alert.

Related status codes

305 Use Proxy
DEPRECATED. Originally indicated that the requested resource must be accessed through a proxy. Deprecated in RFC 7231 due to security concerns and should not be used.
308 Permanent Redirect
The URL of the requested resource has been changed permanently.
301 Moved Permanently
The URL of the requested resource has been changed permanently.
302 Found
The URL of the requested resource has been changed temporarily.
303 See Other
The response to the request can be found under another URI using a GET method.

Explore more

Related guides
Related tools
Related utilities