在 Firefox 中禁用跨域网络安全 [英] Disable cross domain web security in Firefox

问题描述

在 Firefox 中，如何在 Chrome 中执行相当于 --disable-web-security 的操作.这已经发布了很多，但从来没有一个真正的答案.大多数是附加组件的链接(其中一些在最新的 Firefox 中不起作用或根本不起作用)和您只需要在服务器上启用支持".

In Firefox, how do I do the equivalent of --disable-web-security in Chrome. This has been posted a lot, but never a true answer. Most are links to add-ons (some of which don't work in the latest Firefox or don't work at all) and "you just need to enable support on the server".

1. 这是临时测试.我知道安全隐患.
2. 我无法在服务器上打开 CORS，尤其是我永远无法允许 localhost 或类似的.
3. 一个标志、设置或其他东西会比插件好得多.我也试过:http://www-jo.se/f.pfleger/forcecors，但一定有什么错误，因为我的请求返回时完全为空，但 Chrome 中的相同请求返回正常.

1. This is temporary to test. I know the security implications.
2. I can't turn on CORS on the server and I especially would never be able to allow localhost or similar.
3. A flag, or setting, or something would be a lot better than a plugin. I also tried: http://www-jo.se/f.pfleger/forcecors, but something must be wrong since my requests come back as completely empty, but same requests in Chrome come back fine.

同样，这仅用于在推送到 prod 之前进行测试，然后将在允许的域上.

Again, this is only for testing before pushing to prod which, then, would be on an allowable domain.

推荐答案

几乎所有你看到的地方，人们都会提到 about:config 和 security.fileuri.strict_origin_policy.有时还有 network.http.refere.XOriginPolicy.

Almost everywhere you look, people refer to the about:config and the security.fileuri.strict_origin_policy. Sometimes also the network.http.refere.XOriginPolicy.

对我来说，这些似乎都没有任何效果.

For me, none of these seem to have any effect.

这条评论暗示 Firefox 没有内置的方法来做到这一点(截至 2/8/14).

This comment implies there is no built-in way in Firefox to do this (as of 2/8/14).

这篇关于在 Firefox 中禁用跨域网络安全的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！