Upgrade
Merlin
ForceCORS

ForceCORS

Allows forcing Cross-Origin Resource Sharing headers on any desired URL; helpful when accessing remote services from a local host.

What is ForceCORS?
ForceCORS is a Google Chrome extension that allows you to selectively apply Cross-Origin Resource Sharing (CORS) Headers to web server responses of your choice. It helps in developing web applications that make Ajax/XHR requests by providing a way to add headers without disabling XHR security. The extension requires specifying monitored domains and explicit definition of headers to be added.
Download
Merlin
Stats
This extension was removed from Chrome Web Store on 2021-12-07
By: cdeely
Users: 2,000+
Rating: 3.81 (16)
Version: 1.1 (Last updated: 2014-03-21)
Creation date: 2014-03-21
Risk impact: High risk impact
Risk likelihood: High risk likelihood
Manifest version: 2
Permissions:
  • webRequest
  • webRequestBlocking
  • http://*/*
  • https://*/*
Size: 81.24K
URLs: Website
Stats date:

Other platforms

Not available on Firefox
Not available on Edge
Want to check extension ranking and stats more quickly for other Chrome extensions? Install Chrome-Stats extension to view Chrome-Stats data as you browse the Chrome Web Store.
Chrome-Stats extension
Merlin
Summary
Analyze keywords

ForceCORS is a Google Chrome extension which allows you to selectively apply CORS Headers to any web server responses you choose. This is extremely helpful when developing a web application that makes Ajax/XHR requests.

The extension requires you to specify the domains that you wish to monitor and allows you to explicitly define the headers to be added. This is preferable to completely disabling XHR security in your browser, which is a big security hole.

Regarding Permissions In order to allow you to append headers to ANY arbitrary location, this extension requires access to intercept ANY web request. However, by default the extension does NOT monitor any web traffic. Only URLs you specifically whitelist will be read by the extension, and only headers that YOU specify will be appended.

Note: Headers added by this extension will not appear in the DevTools "Network" panel due to a known Chrome bug: https://code.google.com/p/chromium/issues/detail?id=258064

This extension is open source under the MIT License and can be found on GitHub: https://github.com/chrisdeely/ForceCORS

User reviews
Very useful extension, thanks! Own settings for specific url patterns are great, and all works fine.
by Николай Калинин Николай Калинин, 2018-06-28
This extension made my developer's life MUCH easier. The competing extensions worked OK on some points but failed at customizability (e.g. setting Access-Control-Allow-Origin to a non-default value).
by Frédéric Bonnet Frédéric Bonnet, 2016-10-25
Doesn't work. No instructions. No explanation. Entering items does nothing. Links to docs are broken. Don't know what to say. Tried it three times now.
by Joshua Foxworth Joshua Foxworth, 2016-09-23
View all user reviews
Safety
Risk impact

ForceCORS is risky to use as it requires a number of sensitive permissions that can potentially harm your browser and steal your data. Exercise caution when installing this extension. Review carefully before installing. We recommend that you only install ForceCORS if you trust the publisher.

Risk likelihood

ForceCORS may not be trust-worthy. Avoid installing if possible unless you really trust this publisher.

Upgrade to see risk analysis details
Similar extensions

Here are some Chrome extensions that are similar to ForceCORS:

EASY CORS
EASY CORS
Ikeq Cheng
4.40
1,000+
Block Cross Domain protection
Block Cross Domain protection
Albert Sputa
N/A
30
CORS Unblock
CORS Unblock
balvin.perrie
4.03
100,000+
dyna CORS
dyna CORS
dennisat
4.40
841
Cross Domain - CORS
Cross Domain - CORS
Mai Tan
4.28
30,000+
Cacao CORS Proxy
Cacao CORS Proxy
Michael FIG
N/A
168
Who CORS?
Who CORS?
whocors
4.08
2,000+
CORS Helper
CORS Helper
Atom
5.00
1,000+
ng-inspector for AngularJS
ng-inspector for AngularJS
http://ng-inspector.org
3.70
50,000+
Local-CORS
Local-CORS
Of cors
1.17
2,000+
Moesif Origin & CORS Changer
Moesif Origin & CORS Changer
https://www.moesif.com
3.82
200,000+
Enables CORS within corp.google.com
Enables CORS within corp.google.com
kelvin.hwpoon
N/A
37
AngularJS Batarang
AngularJS Batarang
AngularJS
2.59
100,000+
Jakcodex/Muledump CORS Adapter
Jakcodex/Muledump CORS Adapter
https://jakcodex.github.io
4.69
4,000+
Allow CORS: Access-Control-Allow-Origin
Allow CORS: Access-Control-Allow-Origin
Muyor
3.24
500,000+
Cross-Origin-AJAX-Bridge
Cross-Origin-AJAX-Bridge
kjlmfe
5.00
310
Access-Control-Allow-Credentials: true
Access-Control-Allow-Credentials: true
Amit Soman
4.86
2,000+
CORS FreeIPTV
CORS FreeIPTV
Agência Ideias
5.00
1,000+
Angular watchers
Angular watchers
tiagojsalmeida
4.24
9,000+
Swoosh Cookie and Local Storage Specialist
Swoosh Cookie and Local Storage Specialist
https://steampunck.github.io
3.83
10,000+
Requestly: Modify Headers, Mock API, Redirect
Requestly: Modify Headers, Mock API, Redirect
http://requestly.io
4.46
100,000+
Simple WebSocket Client
Simple WebSocket Client
hakobera
3.98
100,000+
Disable Content-Security-Policy
Disable Content-Security-Policy
Phil Grayson
3.73
40,000+
ng-inspect for AngularJS
ng-inspect for AngularJS
Vinay Kaparthi
4.40
10,000+