Closed amaury1093 closed 2 years ago
This is the wrong tool for your task. CORS Anywhere should only be used for fetching specific requests (possibly from other origins). It is not a generic web proxy. You shouldn't remove the Origin check, as that exists to stop direct browsing of remote content (which is a security issue, because you'd be allowing arbitrary remote content to run code on your origin).
This is a duplicate of: #61, #359, #399
Awesome library.
I just forked the code and set up my own heroku instance, and I removed the
Origin
header check (that browsers don't send), so that I can test in-browser.This works. https://sirchester-proxy.herokuapp.com/https://google.com. However, try to search for something, I get:
It's not only on google, but generally, when using this proxy, navigation is broken.