No more cors error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled.
This extension provides control over the "XMLHttpRequest" and "fetch" methods by providing custom "access-control-allow-origin" and "access-control-allow-methods" headers to every request that the browser receives. A user can toggle the extension on and off from the toolbar button. To modify how these headers are altered, use the right-click context menu items. You can customize what methods are allowed. The default option is to allow "WEBDAV", "GET", "PUT", "POST", "DELETE", "HEAD", "OPTIONS", "PATCH" methods. You can also ask the extension not to overwrite these headers when the server already fills them. This extension also fixes cors policies of redirected URLs.
Default values:
Access-Control-Allow-Origin: request initiator or "*"
Access-Control-Allow-Methods: 'GET, PUT, POST, DELETE, HEAD, OPTIONS, PATCH, PROPFIND, PROPPATCH, MKCOL, COPY, MOVE, LOCK'
Access-Control-Allow-Methods: request initiator or "*"
Access-Control-Allow-Credentials: 'true'
Access-Control-Expose-Headers: request initiator or "*"
Content-Security-Policy:
As of version 0.3.4, you can enable wiping the following CSP-related headers: "Content-Security-Policy", "Content-Security-Policy-Report-Only", "X-WebKit-CSP" and "X-Content-Security-Policy".
Notes:
1. When enabled, this extension fixes preflight[1] requests to permit access to any custom header.
2. When enabled, the extension removes the "X-Frame-Options" header (optional feature). So you can embed any website in your HTML document for testing purposes.
3. To unblock csp (content-security-policy) related headers use my https://chrome.google.com/webstore/detail/csp-unblock/lkbelpgpclajeekijigjffllhigbhobd
To report bugs, please use:
https://github.com/balvin-perrie/Access-Control-Allow-Origin---Unblock
[1] A preflight request is a small request that is sent by the browser before the actual request. It contains information like which http method is used, as well as if any custom http headers are present. The preflight gives the server a chance to examine what the actual request will look like before it?s made. The server can then indicate whether the browser should send the actual request, or return an error to the client without sending the request.
You can Follow the below Step By Step procedure to install the CORS Unblock Chrome Extension to your Chrome Web browser.
It is the CORS Unblock Chrome extension download link you can download and install Chrome Browser.
Tags: Custom Header , Preflight Request , Custom Access Control , Access Control , Default Option , Http Method , Preflight Requests , Origin Request , Remote Web Requests , Origin Header , Methods Headers , Toolbar Button , Rightclick Context Menu Items , Methods Request , Options Header , Related Headers , Custom Http Headers , Fixes Cors Policies , Csp Related Headers Content , Default Values , Origin Unblock , Unblock Csp Content , Headers Request ,
Allows CORS requests from your localhost to any API by setting 'Access-Control-Allow-Origin: *' header
Make requests to domains without having to worry about CORS.
GDAMS Unblocker for intranet use.
Free to unblock bilibili unlimited.
Help bypass CORS when making requests from Restfox
Unofficial browser extension for Gotify
Testfully.io Extension
This is a helper plugin for apic (https://apic.app) to enable CORS requests by adding 'Allow-Control-Allow-Origin: *' header.
IP Unblock vpn offers free, anonymous, secure, unlimited VPN services to unlock any website and internet service.
The Best Free VPN to Unblock websites and secure your traffic. Unblock sites and browse the web privately and securely.