Cross Domain - CORS

How to install an extension Open in Chrome Web Store

CRX ID

mjhpgnbimicffchbodmgfnemoghjakai

Status

Extension status: Featured
Live on Store

Description from extension meta

Cross Domain will help you to deal with cross domain - CORS problem. This is tool helpful when face with cross domain issue.

Image from store

Description from store

Visit out website: https://devratroom.blogspot.com/p/cross-domain-cors-extension.html
Cross Domain will help you to deal with cross domain - Cross-Origin Resource Sharing (CORS) problem. This is a small tool will helpful for web developer and related domain that face with cross domain issue.

List of feature:
- Allow cross domain
- Customize Url pattern base on Javascript Regex
- Allow enable, disable
- Very friendly interface

Under the hood:
This extension allow Cross-Origin Resource Sharing (CORS) by modify header response from server and add more header to allow CORS request:
Access-control-allow-origin
Access-control-allow-methods
Access-control-allow-headers
Access-control-expose-headers
This is for development purpose only.

Latest reviews

Rick Kerry 2025-10-13: Doesn't Work document.getElementsByClassName('myiframe')[0].contentWindow.document Uncaught SecurityError: Failed to read a named property 'document' from 'Window': Blocked a frame with origin "https://xxxxxxxx.com" from accessing a cross-origin frame.
Manas Tripathi 2025-10-08: Love it. Use it almost everyday for development.
Mykyta Shchypylov 2024-12-31: Good extension, but please, make it disabled by default. Whenever I reopen Chrome, extensions turns on, which makes browsing Internet unsafe (because, well, that's what this extension about).
Cristan Meijer 2024-11-25: It's disabled by default, but when you click the big green enable button, it works like a dream.
Nick Welsh 2024-09-27: Lacks documentation and examples. When it doesn't work you have no way of knowing why. There's no easy way to tell if your URL patterns configured are working. It's not clear what types of CORS it's allowing or denying. It's not clear if regex in URL patterns works or what regex will work and what won't.
Mark Blakeney 2024-05-31: Version 0.3.0 updated on 28-May-24 is broken. I have used the extension for many years with the default wildcard rule deleted and only a single local IP address rule but as of today's version many sites such as youtube do not now work at all when the extension is loaded. Edit 01-Jun-24: New version 0.3.2 fixes Youtube but other sites (e.g. Feedly) are still broken. I have been using another CORS extension which works fine everywhere.
Démar Grant 2024-05-29: I've had the extension for years without any incident until May 28, 2024. When this extension is turned on it's broken the account login page for: The Globe and Mail, Twitter, The Athletic, The Atlantic, American Express, The New York Times and has made it so videos on YouTube never load. This is extension is effectively broken now
Spencer Hutchinson 2023-07-10: This extension blocks my ability to use Google Maps satellite view. I have removed the extension tested, reinstalled the extension and tested again. This extension is the only variable to Google Maps not working. May not be an issue for you, just wanted to let others know if you're experiencing issues.
Spencer Hutchinson 2023-07-10: This extension blocks my ability to use Google Maps satellite view. I have removed the extension tested, reinstalled the extension and tested again. This extension is the only variable to Google Maps not working. May not be an issue for you, just wanted to let others know if you're experiencing issues.
Chris 2023-04-11: thank you!!! I was going crazy trying to build react project, finally im able to fetch everything! many thanks!!!
Chris 2023-04-11: thank you!!! I was going crazy trying to build react project, finally im able to fetch everything! many thanks!!!
Frederik Henriksen 2023-04-03: This extension causes server errors when working in Google Drive or Google Docs.
Frederik Henriksen 2023-04-03: This extension causes server errors when working in Google Drive or Google Docs.
Prakash Raiya 2023-03-31: Great Extension, Please Convert it minifest v3
Prakash Raiya 2023-03-31: Great Extension, Please Convert it minifest v3
Stephen Bassett 2023-03-02: Couldn't connect to a REST API that a program sets up and also don't have any way to modify the headers on the server side. Only other thing that worked was opening Chrome with web security turned off however this was a much more convenient solution.
Stephen Bassett 2023-03-02: Couldn't connect to a REST API that a program sets up and also don't have any way to modify the headers on the server side. Only other thing that worked was opening Chrome with web security turned off however this was a much more convenient solution.
Marcos Vinicius Ferreira 2022-08-02: Funcionou para mim. Por ora uso apenas para rodar testes de estudos em localhost
Nicholas 2022-06-23: interferes with Instagram when enabled
Nicholas 2022-06-23: interferes with Instagram when enabled
Hasan Redžović 2022-05-16: Regex doesn't work. It doesn't accept for example: ^(http:\/\/)(localhost:3006)(.*)$. Anything with "\" cannot be added. Also, some simple regex such as ^(.*localhost:3006.*)$ doesn't work. Even something like this won't match ^(.*l{1}o{1}.*)$ or ^(.*lo.*)$
Hasan Redžović 2022-05-16: Regex doesn't work. It doesn't accept for example: ^(http:\/\/)(localhost:3006)(.*)$. Anything with "\" cannot be added. Also, some simple regex such as ^(.*localhost:3006.*)$ doesn't work. Even something like this won't match ^(.*l{1}o{1}.*)$ or ^(.*lo.*)$
Guilherme de Souza Silveira 2022-05-13: Vou escrever em português porque os Brasileiros que estiverem sofrendo com cors, realmente essa extensão funciona, baixei uma dezena e essa resolveu o problema de acesso a localhost:5001 no meu caso
Christian Kilb 2022-03-05: Seems to be the only CORS unblock extension that actually works. Thanks!
Christian Kilb 2022-03-05: Seems to be the only CORS unblock extension that actually works. Thanks!
albert velasco 2021-12-14: Conflict with many services such AWS, Contentful. I don't recommend it at all.
Steven Widharma 2021-11-21: Tried many extensions but only this one works for me. Perfect!
Steven Widharma 2021-11-21: Tried many extensions but only this one works for me. Perfect!
Luiz Henrique Rios 2021-08-11: That's the only one working right now, thanks. But still have one problem "The value of the 'Access-Control-Allow-Origin' header in the response must not be the wildcard '*' when the request's credentials mode is 'include'"
Luiz Henrique Rios 2021-08-11: That's the only one working right now, thanks. But still have one problem "The value of the 'Access-Control-Allow-Origin' header in the response must not be the wildcard '*' when the request's credentials mode is 'include'"
Raja Nagendra Kumar 2021-08-11: Very simple and rocks.. not config required, enable or disabled.. Only thing as there is only button, it is difficult to know if it is enabled or disabled, better say it in text that now CORS is enabled or disabled.
Raja Nagendra Kumar 2021-08-11: Very simple and rocks.. not config required, enable or disabled.. Only thing as there is only button, it is difficult to know if it is enabled or disabled, better say it in text that now CORS is enabled or disabled.
sky zifang 2021-08-06: 不错
Sir XtC 2021-05-20: YESSSS it solved my cors issues, I LOVE IT, and I love you, who ever made this.
Sir XtC 2021-05-20: YESSSS it solved my cors issues, I LOVE IT, and I love you, who ever made this.
David Rocha 2021-05-10: Faz o Google Docs/Drive parar de carregar os itens.
Mark Blakeney 2021-04-08: Works well. Simpler and clearer to configure than other CORS extensions.
Thomas Dunford 2021-02-16: Doesn't work. Will only ever show a red X instead of a green +.
Thomas Dunford 2021-02-16: Doesn't work. Will only ever show a red X instead of a green +.
Ed Hasaba 2021-02-02: It sometimes breaks the entire connection making it pointless. Literally can't load any pages with Chrome when this is enabled (for a single site nonetheless)
Ed Hasaba 2021-02-02: It sometimes breaks the entire connection making it pointless. Literally can't load any pages with Chrome when this is enabled (for a single site nonetheless)
Nikita Savchenko 2021-01-30: Please fix: Access to fetch at X from origin Y has been blocked by CORS policy: The value of the 'Access-Control-Allow-Origin' header in the response must not be the wildcard '*' when the request's credentials mode is 'include'. One cannot just simply insert "access-control-allow-credentials" header, please refer to a CORS spec. Thanks!
Nikita Savchenko 2021-01-30: Please fix: Access to fetch at X from origin Y has been blocked by CORS policy: The value of the 'Access-Control-Allow-Origin' header in the response must not be the wildcard '*' when the request's credentials mode is 'include'. One cannot just simply insert "access-control-allow-credentials" header, please refer to a CORS spec. Thanks!
Roberto Asiel Guevara Castañeda 2020-12-10: Perfect, work in Microsoft Edge 87.0.664.57 with just install it. Great work.
Daniel Vilela 2020-11-09: This ONE actually works!!
Daniel Vilela 2020-11-09: This ONE actually works!!
Florian Auer 2020-11-06: This is a life saver for me. I would rate it 5 stars if the wording would be clearer. I would separate the status from the button. For example, if the CORS check is enabled, then the button reads "Enable", which is confusing to me. Furthermore, I would like to see the status change being applied immediately, instead of having to click the "save" button. Most extensions I use apply changes immediatly, so this is what I'm used to.
Florian Auer 2020-11-06: This is a life saver for me. I would rate it 5 stars if the wording would be clearer. I would separate the status from the button. For example, if the CORS check is enabled, then the button reads "Enable", which is confusing to me. Furthermore, I would like to see the status change being applied immediately, instead of having to click the "save" button. Most extensions I use apply changes immediatly, so this is what I'm used to.
Barbara Ciccone 2020-10-25: Useless
Barbara Ciccone 2020-10-25: Useless

Extension Actions