Open source
MIT licensed- Self-host the Go binary anywhere
- No quotas, no API keys, no accounts
- Run alongside your other infra
- One-click deploy: Railway, Render, Fly, Koyeb
- Source on GitHub
A CORS proxy you can run yourself,
or just use.
Bypass CORS restrictions in development and production. Open-source Go binary or managed SaaS — your choice.
No credit card. No sign-up needed for the open-source version.
Managed
Use the hosted API
Sign up, generate a key, and start proxying. CORS headers added, rate limits enforced.
curl -H "X-API-Key: sk_live_..." \
"https://api.corsproxy.dev/proxy?url=https://api.github.com/users/octocat"Self-hosted
Run the Go binary
Single ~10MB binary. Zero dependencies. Deploys to Railway, Render, Fly, or your own box.
git clone https://github.com/melihbirim/corsproxy
cd corsproxy
go run main.go # listens on :8080Why corsproxy.dev?
Just works
Adds the right CORS headers automatically. No configuration for the common case; per-origin allowlists when you need them.
Secure by default
Blocks proxy requests to private networks (RFC 1918) so the proxy can't be used to scan your internal infra.
Per-key rate limits
Managed plan enforces daily quotas atomically via Cloudflare Durable Objects — no burst overage from eventually-consistent counters.
Bring your own infra
Don't trust a third-party proxy? Self-host the same code under MIT. Same protocol, your own deploy.
Real usage analytics
See requests per key, per day. 30-day request logs retained for debugging. Export your data anytime.
GDPR ready
One-click data export, account deletion with full erasure, EU-friendly data retention defaults.
Two ways to use it
Managed SaaS
Free tier available- No infra to maintain
- API keys, rate limiting, usage dashboard
- Email alerts when you hit your daily limit
- 100 req/day free; Pro plan for higher volume
- 30-day request logs, GDPR export