extension ExtPose

Allow CORS: Access-Control-Allow-Origin

CRX id


Description from extension meta

Easily add (Access-Control-Allow-Origin: *) rule to the response header.

Image from store Allow CORS: Access-Control-Allow-Origin
Description from store Allow CORS: Access-Control-Allow-Origin lets you easily perform cross-domain Ajax requests in web applications. Simply activate the add-on and perform the request. CORS or Cross Origin Resource Sharing is blocked in modern browsers by default (in JavaScript APIs). Installing this add-on will allow you to unblock this feature. Please note that, when the add-on is added to your browser, it is in-active by default (toolbar icon is grey C letter). If you want to activate the add-on, please press on the toolbar icon once. The icon will turn to orange C letter. If you have a feature request, or found a bug to report, please fill the bug report form in the add-on's homepage (https://mybrowseraddon.com/access-control-allow-origin.html).

Latest reviews

  • (2022-01-09) gustavo tedesco: its not work since 2019. 09/01/2022
  • (2021-11-24) Ivan Mendez: Muy bueno para desarrollar aplicaciones
  • (2021-11-19) Marc Muller: Not working, despite activating it as documentation suggests.
  • (2021-11-16) h cloudupper: post still have cors problem
  • (2021-11-15) Garry Passarella: Worked perfectly, single click to enable. Exactly what I was looking for.
  • (2021-11-14) Abdelrahman Hassan: NOT WORKING AT ALL !
  • (2021-10-21) Isaac Ibiapina: Doesn't work even after following the instruction video, and of course activating it
  • (2021-10-20) Tudor Carean: doesn't work
  • (2021-10-07) Preechai Mekbungwan: doesn't work. https://www.chromestatus.com/feature/5629709824032768 https://anforowicz.github.io/xsdb-demo/index.html
  • (2021-10-06) Rajat Gupta: Not working after chrome update. any suggestion
  • (2021-10-06) John Williams: Yes this actually works fine (unlike some CORS extensions), however... IF YOU ARE THE DEVELOPER, DON'T YOU READ YOUR REVIEWS? Users are not realising they need to switch on the extension by clicking on the "C" logo. Therefore many think your product is broken, which is the reason for most of your 1 star reviews. Just add an obvious On/Off switch instead of using the logo.
  • (2021-09-17) Vladut Constantin Stegariu: Has no effect. Just waste of time.
  • (2021-09-08) Arpit Falcon: Awesome!!
  • (2021-09-07) Trevor Devalle: Simply it doesn't work
  • (2021-08-19) Alexey Selin: thanks man really helpful!
  • (2021-08-19) Shu: Good!
  • (2021-08-12) Jesse Nauman: Worked perfectly for my issue
  • (2021-08-11) Luiz Henrique Rios: Not working
  • (2021-08-03) Tim Rasim: Not working
  • (2021-07-20) Noteworm NW: the idea is good, but the extension itself is not functional.
  • (2021-07-17) hongkilldong: Позволил мне скопировать запрос, который делает приложение, в консоль, затем изменить и выполнить его. Все CORS заморочки при помощи это расширения были благополучно преодолены )
  • (2021-07-08) 看看随便: Cool !
  • (2021-06-19) Peter de Bruin-Trautmann: It doesn't work in the current Chrome version (91.0.4472.114).
  • (2021-05-11) Phong Trần: good
  • (2021-05-11) eicto me: Not works in the following case, header should be origin of request, if exists The value of the 'Access-Control-Allow-Origin' header in the response must not be the wildcard '*' when the request's credentials mode is 'include'. The credentials mode of requests initiated by the XMLHttpRequest is controlled by the withCredentials attribute --- seems dev fixed it. Thanks!
  • (2021-05-02) Dave B: 写了个 html+js 东东,因为出现这个 from origin 'null' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. 现在用了这个 Allow CORS: Access-Control-Allow-Origin 插件,我放在本地服务器还有上传到网站服务器上都可以用了,至少是一个可行的策略。另外,用油猴脚本来写要实现的内容也是个选择,GM_xmlhttpRequest 杠杠滴能跨域!
  • (2021-05-01) bedoui wejdene: Avoid this app , it doesn't work
  • (2021-04-16) Sandy Haung: not working
  • (2021-04-14) harry skh: Not working
  • (2021-04-12) Mr White: 还不错了。。至少我们调试的时候用了这个插件解决了目前的问题。哈哈哈。
  • (2021-04-11) Tank Min: Before is ok, but now do not work
  • (2021-04-08) WobbyChip: not working
  • (2021-03-16) arief iman santoso: doesn't work at all
  • (2021-03-10) Bin Wu: 好用,省去了每次都要输入命令行的操作
  • (2021-03-07) Ahmed Salah: Doesn't work, will screw up your browser
  • (2021-03-04) Jorge C: It would be better if you could actually have a blacklist of domains instead of whitelist. I want to use it on localhost, and not anywhere else
  • (2021-03-02) nik pol: Very nice and simple extension that lets you bypass most of CORS limitations. It fails in cases when specific HTTP methods are used (such as PATCH, etc), but practically it will cover 99.9999% of all cases when you need to get rid of CORS
  • (2021-02-28) Iman Nurmansyah: It works! This extension is NOT PLUG N PLAY! You need to ENABLE IT MANUALLY. Watch video tutorial before you use this. You can find video tutorial on the 'overview' section on this page
  • (2021-02-04) 風林燚山: the advance setting is quite helpful in this plugin
  • (2021-01-29) Li Kailin: not working
  • (2021-01-09) S.M.K.H: This extension is using around 6 GB OF ram on my macbook pro, the developer must be using some kind of crypto script. If so this is illegal and fraud please take action.
  • (2020-12-20) David Kočenda: works
  • (2020-12-16) Vidura Prasangana: Saved my day. Watch tutorial video before down-vote
  • (2020-12-10) Rubén Del Olmo: So easy to use and very very usefull.
  • (2020-12-09) Vicky Malhotra: It no longer works for chrome 87+
  • (2020-12-02) Grasella Visancia: NOT WORKING
  • (2020-12-01) El Perro :D: GRACIASSS
  • (2020-11-27) Braulio Hernández: Excelente!
  • (2020-11-26) Yatbaa Al Ameri: WORKING LIKE A CHARM, DO NOT LISTEN TO WHO'S SAYING IT'S NOT.............
  • (2020-11-26) Nick Kuhn: Didn't work


500,000 history
3.2 (183 votes)
Last update / version
2021-04-08 / 0.1.6
Listing languages