Welcome to crossorigin.me, the free CORS proxy for everyone!
A CORS proxy is a service that allows developers (probably you) to access resources from other websites, without having to own that website.
Most of what you need to know is on this page, but you can find links to more detailed information in each section.
How do I use it?
When you need to access a resource from a website that isn't CORS-enabled, add 'http://crossorigin.me' to the beginning of that URL.
For example, if you wanted to grab the Google homepage, your code would request
There are a few limitations on how you can use it, so be sure to read the below section carefully.
A few caveats
PLEASE DO NOT USE THE PROXY ON A PRODUCTION SITE.
I cannot guarantee the stability of the service, and you will probably experience service interruptions.
There is a 2MB size limit on files passed through the proxy, due to bandwidth concerns. If you attempt to access a larger file, you will get a 413 error and the proxy will simply stop sending data.
The CORS specification
requires all CORS requests to include an Origin header in every request,
so crossorigin.me will respond to requests that do not include it with
Origin: header is required
Most HTTP request libraries add this header for you, but this means that you cannot test crossorigin.me
by using your browser.
Currently, crossorigin.me only supports GET requests. Supporting PUT and POST requests is planned, but I'm trying to get the proxy running consistently first.
And, as always, don't send sensitive information through the proxy. This is a good rule of thumb for any third party service.
If you need help using the proxy, tweet at @corsproxy
or send me an email at
connor (at) crossorigin (dot) me and I'll do my best to assist you.
Please be nice, I do all of this in my free time and being rude doesn't make me want to help you more.
If you would like to contribute to crossorigin.me or view the source code, it is available on GitHub.