- Cross-origin requests are requests sent from a location that does not belong to the website you're visiting.
- Using enhanced security measures is crucial nowadays taken into account the huge number of cyber attacks unfolding every day.
- If your browser rejects cross-origin requests but you wish to enable them, use the solutions listed in this guide to fix the issue once and for all.
- Don't forget to bookmark our huge collection of browser troubleshooting guides just in case you need to fix other issues later on.
CROS (Cross-Origin Resource Sharing) is an important mechanism that allows users to keep their website secure and protect their site visitors. However, at times the users may face browser does not support cross-origin requests issues.
This issue can be caused by multiple reasons including incorrect policy configuration as well as browser bugs.
Follow the steps give in this article to fix the browser does not support cross-origin requests issue in your computer.
How do I enable cross-origin in Chrome?
1. Fix Cross-Origin Issues in Firefox
Change Origin Policy Preference
- Launch the Firefox browser on your computer.
- In the address bar type about:config and press OK.
- Now you will see “This will void your warranty” page.
- Click on I accept the risk! button.
- In the configuration page, search for security.fileuri.strict_origin_policy.
- Double-click on security.fileuri.strict_origin_policy.
- The Value column will change from True to False.
- Close and relaunch Firefox browser. Try to make the request again and check for any improvements.
If the issue persists, try the next set of steps.
Use Firebug Add-on / Developer Tools
- Launch Firefox and load the page.
- Now try to access the page or perform the action that has resulted in Cross-Origin Request Security issue.
- Now open Firebug and copy the URL of the page with the error.
- Load the page again in another tab on Firefox.
- Now the page will ask you to add the required certificate.
- Add the certificate and that should help you to resolve the Cross-Origin Request.
2. Fix Cross-Origin Request Security Issue in Chrome
- Save any open tabs and close the Chrome browser if running.
- Click on start and type Chrome in the search box.
- Right-click on Google Chrome icon and select Open File Location.
- Right-click on the Google Chrome icon again in the File Explorer and select Properties.
- In the Shortcut tab, for Target, add –disable-web-security at the end.
- Click on Apply button to save the changes. If asked to provide the system password, enter your password and click OK.
- Close the Properties window.
- Now open the Chrome browser and check the URL that was giving Cross-Origin Request issue.
3. Fix Cross-Origin Error in Internet Explorer
- Launch Internet Explorer and click Tools (Gear icon).
- Click on Internet Options.
- Go to the Security tab and click on the Custom Level button.
- In the Security Settings window, look for “Access data sources across domain” option under “Miscellaneous” section.
- Select the Enable button.
- Click OK to save the changes. Click OK again to close the window.
- Close and relaunch Internet Explorer again and check for any improvements.
And this is how you can fix this issue.
FAQ: Learn more about cross-origin requests
- What is a cross-origin request?
A cross-original request is an HTTP request originating from a source that does not belong to the website you’re visiting. Most browsers block cross-origin requests mainly for security reasons.
- How do I enable CORS on my browser?
Follow these steps to turn on cross-origin access on your browser:
- Launch the Control Panel and go to Network and Internet
- Click on Internet Options and go to the Security tab
- Click on the Custom Level button
- Under Miscellaneous locate the Access data sources across domains option
- Enable this option to turn on CORS access.
- Can CORS prevent CSRF?
CORS cannot prevent CSRF (cross-site request forgery). One-click attacks cannot be prevented or blocked by CORS. Instead, users should take the following precaution measures: update your antivirus software, don’t save your Internet banking username and password in your browser, don’t open suspicious or unrequested emails and disable scripting in your browser.
Editor’s Note: This post was originally published in August 2019 and has since been updated for freshness and accuracy.