CORS Unlocker

Enable CORS only for the sites you choose. Whitelist-first, zero collateral damage.

CORS Unlocker helps web developers solve Cross-Origin Resource Sharing (CORS) issues during local development. Unlike traditional CORS extensions, CORS Unlocker only modifies domains explicitly added by the user and does not apply changes globally to all websites. Instead of disabling browser security globally, CORS Unlocker uses a whitelist-first approach, allowing you to enable CORS only for the domains you explicitly choose. Why CORS Unlocker? ✔ Whitelist-First Protection Unlike many CORS extensions that modify requests for every website, CORS Unlocker only works on domains you add manually. This prevents unexpected issues with services such as Google Drive, YouTube, GitHub, and other websites. ✔ Full Preflight (OPTIONS) Support Many APIs require preflight requests before POST, PUT, PATCH, or DELETE operations. CORS Unlocker handles preflight requests correctly, allowing modern applications and APIs to work as expected. ✔ Automatic Domain Detection The extension can detect cross-origin requests made by the current page and suggest domains that can be added with a single click. No need to manually inspect network requests. Features • Enable CORS per domain • Domain whitelist management • Automatic request detection • One-click domain addition • Visual status indicators • Active domain counter • Dark mode interface • Chrome Manifest V3 compliant • Lightweight and fast • No external dependencies Perfect For • Front-End Developers • React Developers • Vue Developers • Angular Developers • Next.js Developers • API Integrations • Local Development Environments • Testing and Debugging Privacy Focused CORS Unlocker works entirely on your device. No data is collected, transmitted, or shared with external services. If you frequently encounter "Access-Control-Allow-Origin" errors while developing web applications, CORS Unlocker provides a safer and more controlled alternative to traditional CORS extensions.