Professional Documents
Culture Documents
No More CORS
No More CORS
This extension bypasses the "XMLHttpRequest" and "fetch" rejections by altering the "Access-
Control-Allow-Origin" and "Access-Control-Allow-Methods" headers for every request that the
browser receives. You can activate the extension by pressing the action button. Also, use the right-
click context menu over the action button to modify which headers the extension manipulates. You
can also ask the extension not to overwrite these headers when the server returns values for them.
Additional Features:
1. It can remove the following CSP-related headers:
"Content-Security-Policy", "Content-Security-Policy-Report-Only", "X-WebKit-CSP" and "X-
Content-Security-Policy".
2. It can overwrite the returned 4xx status code from the server. Use this feature when a server does
not support a method, but you want to pretend it does.