Qu'est-ce que CORS Unblock ?

CORS Unblock est une extension Chrome développée par balvin.perrie, et sa fonction principale est "No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled".

Captures d'Écran de l'Extension

Télécharger le fichier CRX de l'extension CORS Unblock

Téléchargez les fichiers d'extension CORS Unblock au format crx, installez manuellement les extensions Chrome dans le navigateur ou partagez les fichiers crx avec des amis pour installer facilement les extensions Chrome.

Instructions d'Utilisation de l'Extension

This extension bypasses the "XMLHttpRequest" and "fetch" rejections by altering the "Access-Control-Allow-Origin" and "Access-Control-Allow-Methods" headers for every request that the browser receives. You can activate the extension by pressing the action button. Also, use the right-click context menu over the action button to modify which headers the extension manipulates. You can also ask the extension not to overwrite these headers when the server returns values for them.

The default values for the headers:

Access-Control-Allow-Origin: request initiator or empty
Access-Control-Allow-Methods": GET, PUT, POST, DELETE, HEAD, OPTIONS, PATCH, PROPFIND, PROPPATCH, MKCOL, COPY, MOVE, LOCK
Access-Control-Allow-Methods: request initiator or empty
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: request initiator or *

Additional Features:
1. It can remove the following CSP-related headers:
"Content-Security-Policy", "Content-Security-Policy-Report-Only", "X-WebKit-CSP" and "X-Content-Security-Policy".

2. It can overwrite the returned 4xx status code from the server. Use this feature when a server does not support a method, but you want to pretend it does.

3. It can append necessary headers to pretend websites (local or remote hosts) support SharedArrayBuffer class.

4. It can permit cross-origin frame embedding (by removing the "X-Frame-Options" header) to simplify remote page embedding during local development.

5. It can include or exclude the "referer" and "origin" headers when a server is sensitive to them to work appropriately.

6. The extension optionally uses the "chrome.debugger" to overwrite 4xx status codes (in case a server does not support a method, you can use this feature to pretend the server accepts a response or supports an unsupported method).

7. The extension also optionally fixes CORS policies of redirected URLs.

--
It is important to note that this extension fixes preflight requests to permit access to any custom header (when enabled).

Links:
1. For reporting bugs, please use the link https://github.com/balvin-perrie/Access-Control-Allow-Origin---Unblock.

2. To have better control over CSP (content-security-policy), try my https://chrome.google.com/webstore/detail/csp-unblock/lkbelpgpclajeekijigjffllhigbhobd.

Informations de Base sur l'Extension

Nom	CORS Unblock
ID	lfhmikememgdcahcdlaciloancbhjino
URL Officiel	https://chromewebstore.google.com/detail/cors-unblock/lfhmikememgdcahcdlaciloancbhjino
Description	No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled
Taille du Fichier	203 KB
Nombre d'Installations	216,096
Version Actuelle	0.3.8
Dernière Mise à Jour	2024-02-11
Date de Publication	2020-05-27
Évaluation	4.18/5 Total 136 Évaluations
Développeur	balvin.perrie
Email	[email protected]
Type de Paiement	free
Site Web de l'Extension	https://webextension.org/listing/access-control.html
URL de la Page d'Aide	https://webextension.org/listing/access-control.html
URL de la Page de Politique de Confidentialité	https://add0n.com/policies/balvin.perrie.txt
Langues Prises en Charge	en
manifest.json
{ "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx", "manifest_version": 2, "version": "0.3.8", "name": "CORS Unblock", "description": "__MSG_description__", "default_locale": "en", "permissions": [ "storage", "", "webRequest", "webRequestBlocking", "declarativeNetRequest", "contextMenus", "debugger" ], "declarative_net_request": { "rule_resources": [ { "id": "x-frame", "enabled": false, "path": "rulesets\/x-frame.json" }, { "id": "overwrite-origin", "enabled": false, "path": "rulesets\/overwrite-origin.json" }, { "id": "allow-credentials", "enabled": false, "path": "rulesets\/allow-credentials.json" }, { "id": "allow-headers", "enabled": false, "path": "rulesets\/allow-headers.json" }, { "id": "referer", "enabled": false, "path": "rulesets\/referer.json" }, { "id": "csp", "enabled": false, "path": "rulesets\/csp.json" }, { "id": "allow-shared-array-buffer", "enabled": false, "path": "rulesets\/allow-shared-array-buffer.json" } ] }, "icons": { "16": "\/data\/icons\/16.png", "32": "\/data\/icons\/32.png", "48": "\/data\/icons\/48.png", "64": "\/data\/icons\/64.png", "128": "\/data\/icons\/128.png", "256": "\/data\/icons\/256.png", "512": "\/data\/icons\/512.png" }, "homepage_url": "https:\/\/webextension.org\/listing\/access-control.html", "browser_action": [], "background": { "scripts": [ "worker.js", "context.js", "v2.js" ] } }