CORS Unblock

No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled

什麼是CORS Unblock?

CORS Unblock是由balvin.perrie開發的Chrome擴展程式,該擴展的主要功能是“No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled”。

擴展截圖

screenshot
screenshot

下載CORS Unblock擴展crx文件

下載CORS Unblock擴展crx格式的文件,手動將Chrome擴充功能安裝到瀏覽器中,也可以將crx文件分享給朋友,輕鬆安裝Chrome擴充功能。

擴展使用說明

                        This extension bypasses the "XMLHttpRequest" and "fetch" rejections by altering the "Access-Control-Allow-Origin" and "Access-Control-Allow-Methods" headers for every request that the browser receives. You can activate the extension by pressing the action button. Also, use the right-click context menu over the action button to modify which headers the extension manipulates. You can also ask the extension not to overwrite these headers when the server returns values for them.

The default values for the headers:

Access-Control-Allow-Origin: request initiator or empty
Access-Control-Allow-Methods": GET, PUT, POST, DELETE, HEAD, OPTIONS, PATCH, PROPFIND, PROPPATCH, MKCOL, COPY, MOVE, LOCK
Access-Control-Allow-Methods: request initiator or empty 
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: request initiator or *

Additional Features:
1. It can remove the following CSP-related headers: 
"Content-Security-Policy", "Content-Security-Policy-Report-Only", "X-WebKit-CSP" and "X-Content-Security-Policy".

2. It can overwrite the returned 4xx status code from the server. Use this feature when a server does not support a method, but you want to pretend it does. 

3. It can append necessary headers to pretend websites (local or remote hosts) support SharedArrayBuffer class. 

4. It can permit cross-origin frame embedding (by removing the "X-Frame-Options" header) to simplify remote page embedding during local development.

5. It can include or exclude the "referer" and "origin" headers when a server is sensitive to them to work appropriately.

6. The extension optionally uses the "chrome.debugger" to overwrite 4xx status codes (in case a server does not support a method, you can use this feature to pretend the server accepts a response or supports an unsupported method).

7. The extension also optionally fixes CORS policies of redirected URLs.

--
It is important to note that this extension fixes preflight requests to permit access to any custom header (when enabled). 

Links:
1. For reporting bugs, please use the link https://github.com/balvin-perrie/Access-Control-Allow-Origin---Unblock.

2. To have better control over CSP (content-security-policy), try my https://chrome.google.com/webstore/detail/csp-unblock/lkbelpgpclajeekijigjffllhigbhobd.                    

擴展基本資訊

名稱 CORS Unblock CORS Unblock
ID lfhmikememgdcahcdlaciloancbhjino
官方網址 https://chromewebstore.google.com/detail/cors-unblock/lfhmikememgdcahcdlaciloancbhjino
簡介 No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled
檔案大小 203 KB
安裝次數 216,096
目前版本 0.3.8
更新時間 2024-02-11
上架時間 2020-05-27
評分 4.18/5 共 136 次評分
開發者 balvin.perrie
電子郵箱 [email protected]
付費類型 free
擴展官網 https://webextension.org/listing/access-control.html
說明頁面URL https://webextension.org/listing/access-control.html
隱私政策頁面URL https://add0n.com/policies/balvin.perrie.txt
支援的語言 en
manifest.json
{
    "update_url": "https:\/\/clients2.google.com\/service\/update2\/crx",
    "manifest_version": 2,
    "version": "0.3.8",
    "name": "CORS Unblock",
    "description": "__MSG_description__",
    "default_locale": "en",
    "permissions": [
        "storage",
        "",
        "webRequest",
        "webRequestBlocking",
        "declarativeNetRequest",
        "contextMenus",
        "debugger"
    ],
    "declarative_net_request": {
        "rule_resources": [
            {
                "id": "x-frame",
                "enabled": false,
                "path": "rulesets\/x-frame.json"
            },
            {
                "id": "overwrite-origin",
                "enabled": false,
                "path": "rulesets\/overwrite-origin.json"
            },
            {
                "id": "allow-credentials",
                "enabled": false,
                "path": "rulesets\/allow-credentials.json"
            },
            {
                "id": "allow-headers",
                "enabled": false,
                "path": "rulesets\/allow-headers.json"
            },
            {
                "id": "referer",
                "enabled": false,
                "path": "rulesets\/referer.json"
            },
            {
                "id": "csp",
                "enabled": false,
                "path": "rulesets\/csp.json"
            },
            {
                "id": "allow-shared-array-buffer",
                "enabled": false,
                "path": "rulesets\/allow-shared-array-buffer.json"
            }
        ]
    },
    "icons": {
        "16": "\/data\/icons\/16.png",
        "32": "\/data\/icons\/32.png",
        "48": "\/data\/icons\/48.png",
        "64": "\/data\/icons\/64.png",
        "128": "\/data\/icons\/128.png",
        "256": "\/data\/icons\/256.png",
        "512": "\/data\/icons\/512.png"
    },
    "homepage_url": "https:\/\/webextension.org\/listing\/access-control.html",
    "browser_action": [],
    "background": {
        "scripts": [
            "worker.js",
            "context.js",
            "v2.js"
        ]
    }
}