← Back to JSON Block Builder

🚫 Chrome CORS Bypass Instructions

⚠️ Important Security Warning

This method disables Chrome's security features. Only use this for development and demo purposes. Never use this configuration for regular browsing as it makes you vulnerable to malicious websites.

What is CORS?

CORS (Cross-Origin Resource Sharing) is a security feature that prevents websites from making requests to other domains without permission. While this protects users, it can block legitimate API requests during development.

How to Create a CORS-Disabled Chrome Shortcut For

1 Right-click on your Chrome desktop shortcut (or create a new one if needed)
2 Select "Properties" from the context menu
3 In the Properties dialog, find the "Target" field
4 Replace the entire Target field with:
"C:\Program Files\Google\Chrome\Application\chrome.exe" --disable-web-security --disable-gpu --disable-features=IsolateOrigins,site-per-process --user-data-dir="C://ChromeDev"
Change the path (first part) to match your own Chrome installation path.
5 Click "OK" to save the changes
6 Close all Chrome windows and use the modified shortcut
Chrome Properties Dialog showing CORS bypass configuration

Example of the Chrome Properties dialog with CORS bypass flags

What Each Flag Does

Alternative: Command Line Method

You can also run Chrome with these flags directly from the command line:

cd "C:\Program Files\Google\Chrome\Application"
chrome.exe --disable-web-security --disable-gpu --disable-features=IsolateOrigins,site-per-process --user-data-dir="C://ChromeDev"

Testing the Setup

1 Open Chrome using your modified shortcut
2 You should see a warning banner at the top saying "You are using an unsupported command-line flag: --disable-web-security. Stability and security will suffer. That's true! The better solution is to integrate CORS on your server to accept requests from blockforger."
3 Navigate to your JSON Block Builder and try making API requests
4 CORS errors should no longer appear in the browser console
Note: The warning banner is normal and expected. It confirms that CORS has been disabled.

Reverting to Normal Chrome

To use Chrome normally again:

Alternative: CORS Proxy Service

When you encounter a CORS error in the JSON Block Builder, you'll see a popup with an option to use a CORS proxy service:

1 Check the consent box in the CORS error popup
2 Click "Enable CORS Proxy" to route requests through the local CORS proxy server
3 Requests will be automatically proxied and CORS errors will be resolved. Requests are routed through the local server's CORS proxy endpoint.
Note: This routes your requests through Blockforger's CORS proxy endpoint. Only use for a quick trial or proof-of-concept blockforger integration with dev data, and avoid sending sensitive data. We do not snoop on your requests or store them, but like... Come on. You should still definitely not do this. We cannot be responsible for your own violations of security practices.

Server-Side Solution (Recommended)

For production applications, always implement proper CORS headers on your server instead of disabling browser security:

Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, DELETE, OPTIONS
Access-Control-Allow-Headers: Content-Type, Authorization, X-Requested-With
Access-Control-Allow-Credentials: true

🔒 Security Reminder

Remember to only use this CORS bypass method for development and POC purposes. Never browse the internet with these security features disabled.

← Back to JSON Block Builder
© 2025 Blockforger LLC, Wyoming. All rights reserved.