top | item 24273567

(no title)

What drives me nuts with CORS is there's no (easy) way to disable it in the browser for development purpose, e.g. when I want to run some scripts in a local HTML file to do some basic web scrapping.

discuss

chrisshroba|5 years ago

I think the --disable-web-security flag should work for you if you're using Chrome or Chromium: https://stackoverflow.com/questions/3102819/disable-same-ori...

ratww|5 years ago

Safari has an option to disable CORS in the "Develop" menu.

wilsonrocks|5 years ago

I was interested to learn about 'no-cors' where you get a sparse response. Was hoping to use it to find out if a web page was being accessed from a client's internal network or not (by trying to get a page that only existed there and inspecting the response)

In the end I didn't get to find out if it worked or not due to boring reasons.

zackify|5 years ago

just use this https://cors-anywhere.herokuapp.com/

or just set all your cors headers to * on your server

user5994461|5 years ago

* is blocked by most browsers to avoid lazy developers putting their site wild open to abuse.

timvdalen|5 years ago

Isn't that just begging for legal trouble?

quickthrower2|5 years ago

Is that a MITM?