Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Cross-origin resource sharing (CORS)
Cross-origin resource sharing (CORS) is a mechanism that allows restricted resources on a web page to be accessed from another domain outside the domain from which the first resource was served. CORS also relies on a mechanism by which browsers make a “preflight” request to the server hosting the cross-origin resource, in order to check that the server will permit the actual request. In that preflight, the browser sends headers that indicate the HTTP method and headers that will be used in the actual request. For security reasons, browsers restrict cross-origin HTTP requests initiated from scripts. For example, fetch() and XMLHttpRequest follow the same-origin policy. This means that a web application using those APIs can only request resources from the same origin the application was loaded from unless the response from other origins includes the right CORS headers.
Resource types
- Invocations of
fetch()orXMLHttpRequest - Web Fonts (for cross-domain font usage in
@font-facewithin CSS), so that servers can deploy TrueType fonts that can only be loaded cross-origin and used by websites that are permitted to do so - WebGL textures
- Images/video frames drawn to a canvas using
drawImage() - CSS shapes from images
- scripts
- iframes
- GitHub: https://github.com/topics/cors
- Wikipedia: https://en.wikipedia.org/wiki/Cross-origin_resource_sharing
- Created by: WHATWG, Matt Oshry, Brad Porter, Michael Bodell, Tellme Networks
- Released: May 2006
- Related Topics: xhr, ajax, jsonp, content-security-policy,
- Last updated: 2024-11-12 00:06:01 UTC
- JSON Representation
https://github.com/baroshem/next-security
🛡 Security plugin for Next.js based on OWASP and Helmet
basicauthentication cors csrf ddos headers helmet nextjs owasp rate-limiting security xss
Last synced: 27 Oct 2024
https://github.com/Baroshem/next-security
🛡 Security plugin for Next.js based on OWASP and Helmet
basicauthentication cors csrf ddos headers helmet nextjs owasp rate-limiting security xss
Last synced: 03 Sep 2024
https://github.com/martinkr/corsify
A tiny transparent proxy. The benefit: it adds the CORS-headers! Why? It prevents Cross Domain Errors.
ajax ajax-request cors cors-headers cors-middleware cors-proxy cors-request cross-domain development docker node nodejs xhr
Last synced: 28 Oct 2024
https://github.com/ionutbalosin/java-application-security-practices
Application security best practices and code implementations for Java developers. This project is intended for didactic purposes only, supporting my training course.
api-security authorization-code-flow authorization-code-flow-with-pkce client-credentials-flow cors csp dast java-process-security json-web-key-set jwks oauth-grant-types password-flow roles-based-access-control sast sca security-design-principles security-logging security-testing token-introspection
Last synced: 09 Nov 2024
https://github.com/pktharindu/laravel-api-boilerplate-passport
An API Boilerplate to create a ready-to-use REST API in seconds.
api boilerplate cors dingo hacktoberfest laravel passport rest
Last synced: 22 Oct 2024
https://github.com/unbounce/encors
encors is a CORS library for ring.
clojure cors owner-platform-services ring
Last synced: 12 Oct 2024
https://github.com/adhityaramadhanus/fasthttpcors
Cors Handler for fasthttp
Last synced: 01 Nov 2024
https://github.com/chebyrash/cors
CORS proxy using Cloudflare Workers
cors cors-anywhere cors-enabled cors-middleware cors-proxy
Last synced: 07 Nov 2024
https://github.com/simonw/asgi-cors
ASGI middleware for applying CORS headers to an ASGI application
Last synced: 18 Oct 2024
https://github.com/m-nathani/node-typescript-starter
REST API using Node with typescript, KOA framework. TypeORM for SQL. Middlewares JWT (auth), CORS, Winston Logger, Error, Response
boilerplate boilerplate-node cors crud jwt koa koa2 mysql-database node node-js node-module rest sql starter ts-node tutorial-code typeorm typeorm-extension typescript winston
Last synced: 12 Nov 2024
https://github.com/evg4b/uncors
A simple dev HTTP/HTTPS reverse proxy for replacing CORS headers.
cors cors-headers cors-proxy developer-tools devtools frontend frontend-tool frontendtools http https mock-server proxy
Last synced: 31 Oct 2024
https://github.com/firesphere/silverstripe-graphql-jwt
JWT Authentication for GraphQL
anonymous-tokens authentication authentication-middleware cors graphql hacktoberfest headless jwt rsa-key security signer-key
Last synced: 15 Oct 2024
https://github.com/Dynom/TySug
A project around helping to prevent typing typos. TySug (Typo Suggestions) suggests alternative words with respect to keyboard layouts
algorithm cors docker go golang jaro jaro-winkler keyboard keyboard-layout library spelling-errors string-distance suggestions toml typing typo webservice words
Last synced: 26 Oct 2024
https://github.com/dabit3/api-gateway-lambda-in-various-runtimes
Examples of serverless Lambda functions integrated with API Gateway and CORS enabled
aws cors dotnet golang java serverless
Last synced: 09 Nov 2024
https://github.com/dynom/tysug
A project around helping to prevent typing typos. TySug (Typo Suggestions) suggests alternative words with respect to keyboard layouts
algorithm cors docker go golang jaro jaro-winkler keyboard keyboard-layout library spelling-errors string-distance suggestions toml typing typo webservice words
Last synced: 14 Oct 2024
https://github.com/holtwick/zerva
🌱 Simple event driven server
cors event-driven express http https javascript nodejs server services typed typescript zeed zerva
Last synced: 27 Oct 2024
https://github.com/kabirjaipal/react-news-app
All-in-one Tech News: Stay updated with the latest tech articles from popular websites in a user-friendly app. Built with React.js, Express.js, and Node.js
cheeriojs cors express-js full-stack-web-development html-css-javascript news newsapi nodejs nodejs-api reactjs server-side tailwindcss vitejs
Last synced: 12 Oct 2024
https://github.com/digital-blueprint/webapppassword
Nextcloud app to generate temporary app passwords and allow webdav access for SPAs
cors dbp digital-blueprint nextcloud nextcloud-app php webdav
Last synced: 07 Nov 2024
https://github.com/bzsome/gobang04
五子棋社区,前后端完全分离,SSM框架,CORS跨域访问,SSO单点登录,Bootstrap界面,RESTful构架风格,Netty即时通信,Token口令授权,Web端与客户端通信。异步请求,面向接口编程。
bootstrap cors javaee jwt-token mybatis netty-server restful-api spring spring-mvc ssm sso-server websocket
Last synced: 09 Nov 2024
https://github.com/dropwizard/dropwizard-web
Provides support for configuring various http headers that are important for web services.
cors csp dropwizard hacktoberfest headers hsts java xss
Last synced: 05 Nov 2024
https://github.com/mhsnbakhshi/shop-apis
shop apies using nodejs & express.js & mongoDB
backend bcrypt cookie-parser cors dotenv express-validator expressjs javascript jsonwebtoken mongodb mongoose multer nodejs nodemailer nodemon swagger uuid
Last synced: 11 Nov 2024
https://github.com/jangaraj/keycloak-cors-issue-debugging
Recommendations how to solve/debug CORS issues, when Keycloak IDP is used
Last synced: 09 Nov 2024
https://github.com/middlewares/cors
PSR-15 middleware to implement Cross-Origin Resource Sharing (CORS)
Last synced: 02 Aug 2024
https://github.com/btc415/mern_auth_dashboard
MERN Login & Register Dashboard (My SQL, Express, React & Nodejs)
axios cors expressjs mern-stack mysql nextjs nodejs react react-native
Last synced: 23 Oct 2024
https://github.com/chandelanish/fusionflow
FusionFLOW is a dynamic web app that boosts social connectivity and productivity. It offers blurbs for quick updates, real-time chat, video calling, email messaging, friend location tracking, and expense management, providing users with a comprehensive suite of tools to stay connected and organized.
bootstrap5 cors expressjs mongodb mongoose nodejs react-redux reactjs redux-toolkit
Last synced: 09 Nov 2024
https://github.com/rluders/wn-cors-plugin
Cross-Origin Resource Sharing (CORS) for WinterCMS
cors hacktoberfest laravel php wintercms wintercms-plugin
Last synced: 28 Oct 2024
https://github.com/jabedalimollah/notebook
This is my notebook project and I am creating it using MERN stack
axios cors css3 expressjs javascript jsonwebtoken mongodb-database mongoose node nodejs react-icons react-router react-router-dom reactjs shadcn-ui tailwindcss zod-validation
Last synced: 10 Oct 2024
https://github.com/jojoee/bulk-curl
:tada: bulk cURL URLs, to fetch / call a huge url lists http://jojoee.github.io/bulk-curl/
bulk bulk-curl-urls cors cross-origin-resource-sharing curl
Last synced: 07 Nov 2024
https://github.com/ajsalemo/dotnetcoreapi-nextjs
A basic NextJS UI that connects to a ASP .NET Core API - used as a proof of concept for multicontainers/docker-compose on Azure
aspnetcore azure cloud cors csharp docker docker-compose dockerfile expressjs javascript kestrel multicontainers nextjs paas ssr
Last synced: 07 Nov 2024
https://github.com/krakend/krakend-cors
Adds CORS support to the KrakenD framework
api-gateway cors gin krakend krakend-cors mux
Last synced: 11 Oct 2024
https://github.com/niharika2k00/notes-app
axios cors expressjs mongodb-database node reactjs
Last synced: 12 Oct 2024
https://github.com/dbjohnson/zappa-quick-start
A quick walkthrough setting up a new authenticated serverless app using Zappa and Cognito
aws-lambda cognito cors serverless zappa zappa-flask
Last synced: 14 Oct 2024
https://github.com/grimmer0125/express-mongo-rest-k8s-sample
It is deployed to Google Kubernetes Engine, ver. 1.9.7-gke.6, as well as minikube v0.28.2 (with local K8s cluster v1.10.0). 1. Web (API) server: setup Load balance for it (2 K8s pods), local dev url: http://localhost:3000, deployed port in K8s yaml: 80. 2. MongoDB: No usage of sharding or replica sets for it, only a standalone K8s pod.
babel cors docker es6 jest kubernetes mongodb mongoose nodejs yarn
Last synced: 04 Nov 2024
https://github.com/avoidwork/tiny-httptest
Lightweight HTTP test framework
capture-cookies cookie cors etag http https test-automation test-framework
Last synced: 01 Nov 2024
https://github.com/tinyhttp/cors
🌐 CORS middleware for modern Node.js
cors cors-middleware http middleware nodejs
Last synced: 06 Nov 2024
https://github.com/athennaio/http
📡 The Athenna Http server application. Built on top of fastify.
athenna cors esm exception-handling fastify helmet http-server interceptors middlewares nodejs open-api rate-limiting rest-api router swagger swagger-ui terminators tracing typescript
Last synced: 07 Nov 2024
https://github.com/shubhamdutta2000/securevault
secureVault: A web app to prevent data breach. Store all your secret information here. Your secrets are safe with us
authentication bcrypt controller cors expressjs heroku jest material-ui mongoose nodejs react react-hooks react-redux react-router redux redux-thunk routes supertest testing
Last synced: 07 Nov 2024
https://github.com/highcanfly-club/nocors
noCors proxy for Servless static apps
azure-functions azure-static-web-apps cf-pages cloudflare cors cors-proxy
Last synced: 24 Oct 2024
https://github.com/derhuerst/parse-jsonp
Get the payload of a JSONP response.
Last synced: 08 Nov 2024
https://github.com/obrm/bootcamper-api
This Node.js, Express.js, and MongoDB RESTful API offers authentication, CRUD operations, pagination, filtering, sorting, geocoding, and image uploading. Manage bootcamps, courses, reviews, and users based on different access levels. Search for bootcamps within a radius, and upload bootcamp images.
bcryptjs cookie-parser cors express express-fileupload express-mongo-sanitize express-rate-limit helmet hpp jwt mongoose node-geocoder nodemailer slugify xss-clean
Last synced: 09 Nov 2024
https://github.com/LordotU/corsyusha
Simple and fast proxy to bypass CORS issues during prototyping against existing APIs without having to worry about CORS
access-control-allow-origin cors cors-proxy cors-proxy-server fastify nodejs proxy
Last synced: 11 Nov 2024
https://github.com/ezy/seedmongo-cms
A headless CMS built in Express for MongoDB. Generally follows the wordpress post and tag schema.
cms content-management content-management-system cors es6 express express-js expressjs jsonwebtoken jwt mongo mongodb mongodb-database mongoose mongoosejs node node-js nodejs
Last synced: 11 Oct 2024
https://github.com/nithinsgowda/pass-cors
A simple proxy to load CORS blocked image - NPM module
cors cors-proxy expressjs file-proxy nodejs npm proxy
Last synced: 13 Oct 2024
https://github.com/core-go/core
authorization cache client cors crud crypto currency echo gin http-client http-handler io jwt log logrus master-data-loader redis security validator zap
Last synced: 11 Nov 2024
https://github.com/CodingDemon1/CodeConverter-GenAI
The Code Converter App is a versatile tool that allows users to convert, debug, and analyze code written in various programming languages. It utilizes the OpenAI GPT-3.5 turbo model to provide dynamic code conversion, debugging assistance, and code analysis.
cors express-js generative-ai html-css-javascript node-js openai-api
Last synced: 08 Nov 2024
https://github.com/hqarroum/proxify-url
:steam_locomotive: A YQL wrapper used to generate a proxy URL to a given resource.
Last synced: 18 Oct 2024
https://github.com/aksakalli/angular2-github-ui
Github UI using api.github.com in Angular2 TypeScript
angular boilerplate cors example github-api
Last synced: 11 Nov 2024
https://github.com/eseku/engineering-voting
HTTP Restful Services for a voting application
cors es6 express javascript mongodb mongoosejs node npm validatorjs
Last synced: 11 Oct 2024
https://github.com/stawuah/guardify
Guardify is a Node.js middleware designed to enhance the security of your web applications by setting various HTTP security headers. It is easy to integrate and customizable based on your specific security requirements.
clickjacking cors express-middleware expressjs hsts ht middleware nodejs xxs xxs-detection
Last synced: 15 Oct 2024
https://github.com/vasuadari/learn_cors
A quick guide to understand Cross-Origin Resource Sharing.
ajax cors cors-requests cors-safelisted cross-origin-resource-sharing preflight-requests xhr
Last synced: 20 Oct 2024
https://github.com/pgaskin/kfwproxy
API proxy for kobofirmware.
cache cors kobo kobo-ereader proxy
Last synced: 23 Oct 2024
https://github.com/marcominerva/awesomebackend
A sample API backend made with ASP.NET Core 5.0
aspnetcore backend bearer-authentication cors entityframeworkcore healthcheck jwt-authentication net50 openapi swagger versioning-api
Last synced: 12 Oct 2024
https://github.com/jamessembukuttiarachchi/fitness-arena
Fitness Arena: Revolutionizing Gym Management – Seamlessly manage daily operations, empower clients to personalize their fitness journey, and streamline administrative tasks with our comprehensive web-based gym management system. From scheduling appointments to inventory control, our user-friendly interface enhances efficiency for clients, trainers
axios cors expressjs jwt-authentication mern-stack mongodb nodejs reactjs
Last synced: 07 Nov 2024
https://github.com/the-manpreet-singh/capstone-travel-app
In this project we plan the trip and save, delete the trip, we also check how many days left, weatherforecast, temp for the trip. We fetch data from 4 apis to display the trip which are dependant on each other.
async-await babel body-parser bootstrap4 cors css3 express fetch-api html5 javascript jest moment sass-loader scss server service-worker supertest webpack webpack-server
Last synced: 11 Nov 2024
https://github.com/rwubakwanayo/shop-tracker
"Shop Tracker" is the is web App build to assist owners of the shop to manage and track business activities, By get real time information of every sold products,access every products in stock, Notified to products running low in stock, agenda to keep owner schedule update.
axios bycryptjs cloudinary cors dayjs emailjs expressjs heroku-deployment jsonwebtoken mongodb mongoose nodejs reactjs uuid
Last synced: 11 Nov 2024
https://github.com/dschep/geojson-viewer
A simple GeoJSON viewer that loads data via CORS
Last synced: 12 Oct 2024
https://github.com/bush1d3v/navarro_blog_api
The Navarro Blog API is built on high scalability and performance, implementing queues, cache banks, CI/CD jobs, automated code and dependency analysis, and a focus on testing and documentation.
actix-web bcrypt beekeeper cargo cicd cors docker github-actions insomnia makefile mit-license nginx postgresql queue redis regex rust swagger utoipa
Last synced: 07 Nov 2024
https://github.com/machine1337/cors_scanner
Fast CORS Misconfiguration Scanner
bugbounty cors hacking misconfiguration pentesting
Last synced: 10 Nov 2024
https://github.com/fraigo/python-cors-proxy
A simple CORS proxy to fetch content from remote sites without CORS policy.
cors cors-proxy django fetch python
Last synced: 09 Nov 2024
https://github.com/michaelkolesidis/scratch-bonanza-server
The server of Scratch Bonanza, an instant lottery game.
api backend cors express game-server instant-lottery instant-win lottery lottery-game node nodejs number-generator online-game restful-api scratch-and-win scratchcard scratchcard-game
Last synced: 12 Nov 2024
https://github.com/nyancodeid/cors-everywhere
Fork Cors Everywhere
cors cors-headers nodejs proxy-requests
Last synced: 31 Oct 2024
https://github.com/bcapathshala/chatgpt-app-clone
ChatGPT is all overall social media web based application
chatgpt-api cors css expressjs html html-css-javascript javascript nodejs openai vitejs
Last synced: 08 Nov 2024
https://github.com/chubbyphp/chubbyphp-cors
A minimal CORS middleware for PSR 15.
chubbyphp-framework cors mezzio middleware psr-15 psr-7 slim-framework zend-expressive
Last synced: 08 Nov 2024
https://github.com/kanishk3813/intel_sentiment_analysis
Intel Review Analyzer is a powerful tool designed to help businesses understand customer sentiments through automated analysis of reviews. This project leverages state-of-the-art NLP techniques to classify reviews, highlight key sentiments, generate word clouds, and visualize trends over time.
axios bert-model cors deep-learning flask pandas python react spacy
Last synced: 14 Oct 2024
https://github.com/shahinuralambhuiyan/memories-server
more features will arrive very soon...
bcyrpt cors expressjs jsonwebtoken mongodb-atlas mongoose
Last synced: 07 Nov 2024
https://github.com/fiatjaf/trello-web
Promised and browserify-compatible CORS Trello client.
cors promise trello trello-client
Last synced: 27 Oct 2024
https://github.com/gabrielweyer/cors
Illustrates CORS preflight and impact of Access-Control-Max-Age header.
azure-static-web-apps cors github-actions
Last synced: 07 Nov 2024
https://github.com/syedzawwarahmed/hotel-booking-web-app
A Hotel Booking Web App built on the MERN stack.
antdesign cors expressjs javascript mongodb mongoose nodejs react restapi
Last synced: 12 Nov 2024
https://github.com/elmurodvokhidov/lor-academy-backend
Loyiha Lor Academy nomidagi shifoxona uchun mahsus ishlab chiqilgan, ushbu repository loyihaning backend qismini tashkil qiladi. Loyiha to'laqonli offline rejimda ishlaydi
bcryptjs cors dotenv exceljs express jsonwebtoken mongodb mongoose nodejs
Last synced: 07 Nov 2024
https://github.com/kamranayub/pluralsight-azure-cors-storage
Pluralsight course materials for Microsoft Azure Developer: Configuring CORS with Storage
azure azure-storage cors pluralsight
Last synced: 15 Oct 2024
https://github.com/usmansbk/file-proxy-server
A proxy server for serving files with CORS enabled
Last synced: 18 Oct 2024
https://github.com/AMSpears/contact-form-backend
Contact Form Backend Clean Template
cors express express-handlebars nodejs nodemailer
Last synced: 04 Nov 2024
https://github.com/5655565/office-inventory-web
📚 About Office Inventory Web by The Lost Packets offers a user-friendly platform for efficient office supply management, featuring advanced search, role-based access, and detailed reporting. Built with React.js, Node.js, and MySQL, it enhances accuracy and productivity for offices of all sizes.
cors css3 ejs googleauthenticaion jsx md middleware mui-material mysql-database nodejs reactjs redux relational-databases sequelize swagger tsconfig-json yarn-workspaces zustand
Last synced: 11 Oct 2024
https://github.com/wfinn/ucors
tool that scans for CORS bypasses
bugbounty bypass cors pentesting vulnerability-scanners
Last synced: 04 Aug 2024
https://github.com/aashrafh/vue-pagination
Article pagination component using Vuejs with a simple API using Nodejs and MongoDB
axios bootstrap corejs cors express expressjs faker fakerjs mongodb mongoose pagination pagination-component pagination-components vue vue-axios vuejs
Last synced: 24 Oct 2024
https://github.com/cleilsonandrade/game-list-api
Game List API é uma API com a proposta de que se possa gerenciar listas de jogos previamente cadastrados. Utilizando os recursos do framework Spring para web do Java em conjunto com outras ferramentas como: Spring Web, Spring Data JPA e banco de dados como MySQL e H2 Database, nos quais são utilizados para ambientes de desenvolvimentos específicos.
api backend cors domain-model games h2-database hibernate java jpa list-game mysql spring sql
Last synced: 10 Nov 2024
https://github.com/kostastepetes/burnerchat-video-call-web-app
🎦 Video Call Web App called BurnerChat. Completely safe and private video call using of unique call ID that you send to a peer and do a 1-to-1 call. Made with nodeJS + Express + ReactJS + MaterialUI + WebRTC + Socket.io
cors express material-ui nodejs react socket-io video-chat-app video-chat-meetings webrtc
Last synced: 11 Nov 2024
https://github.com/maxmilton/cors-proxy
A simple transparent proxy that adds permissive CORS headers to API responses.
bypass bypass-cors cors cors-proxy cors-request nginx nginx-proxy nodejs proxy
Last synced: 13 Oct 2024
https://github.com/idootop/tauri-plugin-cors-fetch
Enabling Cross-Origin Resource Sharing (CORS) for Fetch Requests within Tauri applications.
cors fetch tauri unofficial-tauri-plugin
Last synced: 12 Oct 2024
https://github.com/abdullah0332/ecommerce-firebase
A Complete basic E Commerce website build on MERN Stack with Firebase Authentication and Admin Panel with animations.
axios bcryptjs body-parser bootstrap cors dotenv firebase firebase-auth jsonwebtoken mongodb mongoose nodejs pdfkit react-file-base64 reactjs
Last synced: 10 Nov 2024
https://github.com/ivanjosipovic/corsproxy
A simple Proxy server which fully bypasses CORS and allow the browser to query any API.
Last synced: 10 Oct 2024
https://github.com/cstodor/mean-stack-file-upload
MEAN Stack file Upload
angular4 cors expressjs mean-stack mongodb mongoosejs multer nodejs
Last synced: 10 Nov 2024
https://github.com/swiatlon/university-bn
University management system backend (node.js)
backend-api cors crud-application dto-pattern errorhandler eslint-config expressjs middleware nodejs prettier-config typeorm typeorm-migration university
Last synced: 11 Oct 2024
https://github.com/cawfree/express-cors-anywhere
🌐 An express middleware for redirecting requests and avoiding CORS errors when hitting cross-origin APIs.
anywhere cors cors-anywhere express middleware
Last synced: 05 Nov 2024
