ForceCORS

Extension Delisted

This extension is no longer available in the official store. Delisted on 2025-09-16.

How to install an extension Open in Chrome Web Store

CRX ID

oajaiobpeddomajelicdlnkeegnepbin

Status

Unpublished Long Ago
No Privacy Policy

Description from extension meta

Allows forcing Cross-Origin Resource Sharing headers on any desired URL; helpful when accessing remote services from a local host.

Image from store

Description from store

ForceCORS is a Google Chrome extension which allows you to selectively apply CORS Headers to any web server responses you choose. This is extremely helpful when developing a web application that makes Ajax/XHR requests.

The extension requires you to specify the domains that you wish to monitor and allows you to explicitly define the headers to be added. This is preferable to completely disabling XHR security in your browser, which is a big security hole.

***Regarding Permissions***
In order to allow you to append headers to ANY arbitrary location, this extension requires access to intercept ANY web request. However, by default the extension does NOT monitor any web traffic. Only URLs you specifically whitelist will be read by the extension, and only headers that YOU specify will be appended.

Note: Headers added by this extension will not appear in the DevTools "Network" panel due to a known Chrome bug: https://code.google.com/p/chromium/issues/detail?id=258064

This extension is open source under the MIT License and can be found on GitHub: https://github.com/chrisdeely/ForceCORS

Latest reviews

Николай Калинин 2018-06-28: Very useful extension, thanks! Own settings for specific url patterns are great, and all works fine.
Frédéric Bonnet 2016-10-25: This extension made my developer's life MUCH easier. The competing extensions worked OK on some points but failed at customizability (e.g. setting Access-Control-Allow-Origin to a non-default value).
Joshua Foxworth 2016-09-23: Doesn't work. No instructions. No explanation. Entering items does nothing. Links to docs are broken. Don't know what to say. Tried it three times now.
Anonymous 2016-06-04: Best solution for CORS problem when developing ionic apps
Peter Ajtai 2016-01-06: Works nicely. Very useful that you can set the Access-Control-Allow-Origin header to something other than * - so it can be used in conjunction with withCredentials true!
Alex Haynes 2015-07-09: The other reviews are correct. This extension is no longer functional.
Ashesh Ambasta 2015-02-16: Doesn't work and its a waste of time since there are no notes about the fact that it just doesn't work with the latest Chrome.
Anonymous 2014-07-10: This extension is a bit to complicated for me.
Anthony Cameron 2014-02-26: Doesn't work in latest Chrome
Laurens Rietveld 2014-02-08: Great! Instead forcing CORS for all URLs, this tool allows for better configurability, and only enable CORS for -some- URLs
Anonymous 2014-02-08: I sometimes have to make cross-domain requests to test stuff in my dev/staging environments and this works a treat. Great work.

Extension Delisted

Extension Actions