CORS Tester

Use this little website to test if a URL is setup correctly to work with CORS.




If your CORS setup is not using a wildcard then this should be a domain that matches your AllowedOrigins


Shareable link:

Results

This URL will only work for specific domains.

What's that mean?

This url can only be loaded by pages that match https://isso.bonnebulle.xyz. If you're trying to load it from a different origin and it's not working, you'll need to change it so the access-control-allow-origin header is set to *.

Headers

These are the response headers received when making the request.

access-control-allow-credentials: true
access-control-allow-headers: Origin, Referer, Content-Type
access-control-allow-methods: HEAD, GET, POST, PUT, DELETE
access-control-allow-origin: https://isso.bonnebulle.xyz
access-control-expose-headers: X-Set-Cookie, Date
cf-cache-status: DYNAMIC
cf-ray: 8d26698df78187ac-IAD
connection: keep-alive
content-type: text/html; charset=utf-8
date: Mon, 14 Oct 2024 09:06:15 GMT
server: cloudflare
transfer-encoding: chunked
  

CORS tester was built by @mscccc. The code is available on GitHub. Sponsored by HTML/CSS to Image.