DisCORS

This extension allows disabling common security headers (CORS, CSP, X-FRAME-OPTIONS...) for a selected list of targets.

This extension allows user to select and disable some common HTTP security headers for a specific site or list of sites. NOTE: Disabling HTTP security headers is NOT recommended. Please use it at your own risk for experiments/development purposes only. DisCORS comes with 2 modes: ACTIVATED or DEACTIVATED. DEACTIVATED Mode: You can DEACTIVATE the extension anytime to disable the security header bypass and go back to your normal browsing experience. DisCORS will not interfere with any of your browsing settings. ACTIVATED Mode: You can ACTIVATE the extension anytime to enable the security header bypass. DisCORS will modify/remove the appropriate security header based on your configuration. - CORS headers: If enabled, DisCORS will bypass Access-Control-Allow-Origin & Access-Control-Allow-Methods header for the responses from targeted sites. - COOP/COEP/CORP: If enabled, DisCORS will bypass Cross-Origin-Opener-Policy & Cross-Origin-Embedder-Policy & Cross-Origin-Resource-Policy header for the responses from targeted sites. - X-Frame-Options: If enabled, DisCORS will bypass X-Frame-Options header for the responses from targeted sites. - Content-Security-Policy: If enabled, DisCORS will bypass Content-Security-Policy header for the responses from targeted sites. - Permissions-Policy: If enabled, DisCORS will bypass Permissions-Policy header for the responses from targeted sites. User can specify a list of target sites (or leave the list empty to target ALL sites) and only the responses from the targeted sites will be modified.