CORS Unblock
大小:197KiB版本:v 0.3.4更新时间:2021-12-21
No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled
CORS Unblock 的使用方法详解,最全面的教程
CORS Unblock 描述:
用户数:100000
分类:开发者工具插件
扩展大小:197 KiB
最后更新时间:2021-12-21
版本:v 0.3.4
CORS Unblock 插件简介:
这是来自Chrome商店的 CORS Unblock 浏览器插件,您可以在当前页面下载它的最新版本安装文件,并安装在Chrome、Edge等浏览器上。
CORS Unblock插件下载方法/流程:
点击下载按钮,关注“扩展迷Extfans”公众号并获取验证码,在网页弹窗中输入验证码,即可下载最新安装文件。
CORS Unblock插件安装教程/方法:
(1)将扩展迷上下载的安装包文件(.zip)解压为文件夹,其中类型为“crx”的文件就是接下来需要用到的安装文件
(2) 从设置->更多工具->扩展程序 打开扩展程序页面,或者地址栏输入 Chrome://extensions/ 按下回车打开扩展程序页面
(3) 打开扩展程序页面的“开发者模式”
(4) 将crx文件拖拽到扩展程序页面,
完成安装如有其它安装问题,
请扫描网站底部二维码与客服联系如有疑问请参考:
https://www.extfans.com/installation/This extension provides control over the "XMLHttpRequest" and "fetch" methods by providing custom "access-control-allow-origin" and "access-control-allow-methods" headers to every request that the browser receives. A user can toggle the extension on and off from the toolbar button. To modify how these headers are altered, use the right-click context menu items. You can customize what methods are allowed. The default option is to allow "WEBDAV", "GET", "PUT", "POST", "DELETE", "HEAD", "OPTIONS", "PATCH" methods. You can also ask the extension not to overwrite these headers when the server already fills them. This extension also fixes CORS policies of redirected URLs.
Default values:
Access-Control-Allow-Origin: request initiator or "*"
Access-Control-Allow-Methods: 'GET, PUT, POST, DELETE, HEAD, OPTIONS, PATCH, PROPFIND, PROPPATCH, MKCOL, COPY, MOVE, LOCK'
Access-Control-Allow-Methods: request initiator or "*"
Access-Control-Allow-Credentials: 'true'
Access-Control-Expose-Headers: request initiator or "*"
Content-Security-Policy:
As of version 0.3.4, you can enable wiping the following CSP-related headers: "Content-Security-Policy", "Content-Security-Policy-Report-Only", "X-WebKit-CSP" and "X-Content-Security-Policy".
Notes:
1. When enabled, this extension fixes preflight[1] requests to permit access to any custom header.
2. When enabled, the extension removes the "X-Frame-Options" header (optional feature). So you can embed any website in your HTML document for testing purposes.
3. To unblock CSP (content-security-policy) related headers use my https://chrome.google.com/webstore/detail/csp-unblock/lkbelpgpclajeekijigjffllhigbhobd
To report bugs, please use:
https://github.com/balvin-perrie/Access-Control-Allow-Origin---Unblock
[1] A preflight request is a small request that is sent by the browser before the actual request. It contains information like which HTTP method is used, as well as if any custom HTTP headers are present. The preflight gives the server a chance to examine what the actual request will look like before it?s made. The server can then indicate whether the browser should send the actual request, or return an error to the client without sending the request.