Allow CORS: Access-Control-Allow-Origin

Easily add (Access-Control-Allow-Origin: *) rule to the response header.
Download Install Compare

Allow CORS: Access-Control-Allow-Origin is a handy Chrome extension that simplifies enabling cross-domain Ajax requests for web developers. By adding the header Access-Control-Allow-Origin: * to response headers, it lets you bypass the default CORS restrictions imposed by modern browsers on JavaScript APIs.

Once installed, the extension remains inactive by default, indicated by a grey 'C' icon in the toolbar. Users can activate it via the toolbar popup, turning the icon orange, to start performing cross-origin requests seamlessly. It’s an essential tool for developers debugging or developing web applications that need to communicate with APIs hosted on different domains.

For feedback or bug reporting, the extension provides a form on its homepage. Overall, it offers a simple toggle solution to a common web development challenge with CORS policies.

Manifest V3 Extension Developer Tools Productivity Programming
By:
Muyor
Users:
800,000
Rating:
3.38
(282) 1 new ratings
Version:
0.2.0 Last updated: 2024-10-27
Creation date:
2020-03-08
Risk:
Moderate risk impact Low risk likelihood
Permissions:
  • storage
  • webRequest
  • declarativeNetRequest
Host permissions:
  • <all_urls>
Size:
78.31KB
Email:
mu*****@gmail.com
Full description:
See detailed description
Source:
Chrome Web Store
Updated:
a day ago

Ranking

# 403 ▲ 91
Other rankings
Upgrade to see more rankings

Other platforms

Allow CORS: Access-Control-Allow-Origin (v0.2.0)
12,265 2.99 (81)
Allow CORS: Access-Control-Allow-Origin (v0.2.0)
234,594 3.90 (7)

User reviews

The extension is praised for solving CORS issues effectively during local development and is seen as a valuable tool for developers. However, multiple users report that it sometimes fails to work or requires manual activation to take effect. Additionally, some users face blocking issues from websites or APIs like YouTube when using it, affecting access. Overall, while it helps many developers bypass CORS restrictions, users should configure it carefully and be aware of potential site blocking or security flags.
Pros
  • Effectively enables local development by resolving CORS issues for localhost projects.
  • Simple to use and works as expected when properly configured.
  • Highly appreciated by developers as a time-saver and life-saver tool.
  • Supports customization with 'Custom CORS rules' for better functionality.
Cons
  • Some users report the extension does not work or is ineffective in certain scenarios.
  • Requires manual activation or proper configuration after installation, which may not be obvious to all users.
  • In some cases, use of the extension causes sites like YouTube or other APIs to block users or their API keys, resulting in loss of access.
  • A few users experienced being blocked by websites or security services such as Cloudflare when using the extension.
Recent reviews
My local project works now. Thanks Mujo from yet another saved from agony developer - you rock!
by Ro*****, 2025-04-03
Working
by Ri*****, 2025-03-27
What a life saver for developers
by Ko*****, 2025-03-15
View all user reviews ›

Extension safety

Risk impact

Allow CORS: Access-Control-Allow-Origin requires a few sensitive permissions. Exercise caution before installing.

Risk impact analysis details
  • Critical Allows access to all websites, posing a significant security risk as it can monitor and modify data from any visited site.
  • High ****** *** ********* ** ******* *** ******* ******* ** ****** *** *** ******** ******
Risk likelihood

Allow CORS: Access-Control-Allow-Origin has earned a fairly good reputation and likely can be trusted.

Risk likelihood analysis details
  • Low This extension was updated more than 6 months ago. Older versions are more likely to be stable and safe.
  • Low **** ********* *** ***** **** **** * ****** **** ***** ********** *** **** ****** ** ** ****** *** *****
  • Low **** ********* *** **** **** ****** ******* ********** **** ****** ** ** ****** *** *****
  • Good **** ********* *** **** **** *******
Upgrade to see full risk analysis details

Promo images

Allow CORS: Access-Control-Allow-Origin marquee promo image
Marquee promo image
Small promo image

Compare extensions

Similar extensions

Here are some Chrome extensions that are similar to Allow CORS: Access-Control-Allow-Origin:

CORS Unblock
balvin.perrie
100K 4.10 (175)
Moesif Origin/CORS Changer & API Logger
https://www.moesif.com/
100K 3.79 (189)
Cross Domain - CORS
Mai Tan
50K 3.94 (69)
CORS Helper
Atom
2K 3.67 (3)
EASY CORS
Ikeq Cheng
3K 4.43 (21)
Local-CORS
Of cors
1,000 1.14 (7)
Angular DevTools
Angular
400K 3.78 (170)
JSON Viewer
tulios
1000K 4.54 (1,086)
Apollo Client Devtools
https://www.apollographql.com/
200K 2.64 (267)
React Developer Tools
Meta
4M 3.96 (1,595)
Redux DevTools
Redux DevTools
1000K 4.61 (732)
CORS Unblock
Alila Softwares
10K 4.67 (9)

Popular extensions / apps

Here are some popular extensions / apps that you might be interested in:

Bubble Shooter - Pop Bubbles
IVYGAMES
103M 4.82 (202,643)
Magalu: loja e compras online
Magazine Luiza
142M 4.41 (1,315,788)
RoboForm Password Manager
https://www.roboform.com/
600K 4.48 (3,477)
ChatGPT
OpenAI
509M 4.78 (18,642,844)
Loom – Screen Recorder & Screen Capture
https://loom.com
7M 4.61 (10,162)
WhatsApp Business
WhatsApp LLC
2B 4.45 (16,593,389)
uBlock Origin
Raymond Hill
8M 4.80 (20,469)
Enhancer for YouTube™
Maxime RF
1M 4.70 (928)
Galaxy Attack: Shooting Game
1SOFT
297M 4.66 (2,517,807)
Cooking Madness: A Chef's Game
ZenLife Games Ltd
254M 4.79 (3,192,357)
Immersive Translate - Translate Web & PDF
https://immersivetranslate.com
2M 4.55 (1,360)
Coupert - Automatic Coupon Finder & Cashback
https://www.coupert.com/
3M 4.73 (9,904)