[GH-ISSUE #3571] Let ollama's locally started api server support cross-domain!! #27963

New Issue

GiteaMirror · 2026-04-22T05:37:54-05:00

GiteaMirror commented

2026-04-22 05:37:54 -05:00

Originally created by @kirakiray on GitHub (Apr 10, 2024).
Original GitHub issue: https://github.com/ollama/ollama/issues/3571

What are you trying to do?

I am a front-end development programmer. I found that if the api service started by ollama allows cross-domain requests, then the online web application can also directly request the localhost api, which will greatly reduce the usage threshold of ollama-related applications.

How should we solve this?

You need to add headers to the returned headers, similar to the following code
response.Header.Set("Access-Control-Allow-Origin", "*")

If you are worried about the abuse of this cross-domain interface, you can add similar instructions to enable the cross-domain function on a specific port, similar to the following operations:
ollama serve --port:5551 --cross-domain

What is the impact of not solving this?

The current ollama-related web applications must be started locally on the computer before they can be used, which is very unfriendly to users.
There are also some applications that need to expose (or proxy) the local ollama port to the public network in order to be used by these applications, which will cause greater security issues.

If this cross-domain requirement is completed, online web applications will easily use the local ollama API interface. This is a very convenient operation because users do not need to consider how to download or install the application itself.

Anything else?

I now use nodejs to expose the local ollama port (11434) to 11001, and then deceive the server's request source to achieve the desired effect I want. This allows my web application to be online and use the native ollama api. (chrome and firefox work fine)

The script address is: https://github.com/kirakiray/test-website/blob/main/scripts/proxy-server.js

Originally created by @kirakiray on GitHub (Apr 10, 2024). Original GitHub issue: https://github.com/ollama/ollama/issues/3571 ### What are you trying to do? I am a front-end development programmer. I found that if the api service started by ollama allows cross-domain requests, then the online web application can also directly request the localhost api, which will greatly reduce the usage threshold of ollama-related applications. ### How should we solve this? You need to add headers to the returned headers, similar to the following code `response.Header.Set("Access-Control-Allow-Origin", "*")` If you are worried about the abuse of this cross-domain interface, you can add similar instructions to enable the cross-domain function on a specific port, similar to the following operations: `ollama serve --port:5551 --cross-domain` ### What is the impact of not solving this? The current ollama-related web applications must be started locally on the computer before they can be used, which is very unfriendly to users. There are also some applications that need to expose (or proxy) the local ollama port to the public network in order to be used by these applications, which will cause greater security issues. If this cross-domain requirement is completed, online web applications will easily use the local ollama API interface. This is a very convenient operation because users do not need to consider how to download or install the application itself. ### Anything else? I now use nodejs to expose the local ollama port (11434) to 11001, and then deceive the server's request source to achieve the desired effect I want. This allows my web application to be online and use the native ollama api. (chrome and firefox work fine) The script address is: https://github.com/kirakiray/test-website/blob/main/scripts/proxy-server.js

GiteaMirror closed this issue

2026-04-22 05:37:54 -05:00

GiteaMirror commented

2026-04-22 05:37:55 -05:00

@erhhung commented on GitHub (Apr 12, 2024):

So that CORS support isn't always open to all domains, I'd suggest supporting an arg like --cors [domain] (or --cors[=domain]) where the optional domain value is "*" if not given, or an URI like "http://example.com".

And if CORS is enabled via --cors, the server should also send, in addition to the "Access-Control-Allow-Origin" response header, the header "Access-Control-Allow-Methods: OPTIONS, GET, HEAD, POST, DELETE" (based on currently supported APIs), and actually handle preflight OPTIONS requests.

@erhhung commented on GitHub (Apr 12, 2024): So that CORS support isn't always open to all domains, I'd suggest supporting an arg like `--cors [domain]` (or `--cors[=domain]`) where the optional `domain` value is "`*`" if not given, or an URI like "`http://example.com`". And if CORS is enabled via `--cors`, the server should also send, in addition to the "`Access-Control-Allow-Origin`" response header, the header "`Access-Control-Allow-Methods: OPTIONS, GET, HEAD, POST, DELETE`" _(based on currently supported APIs)_, and actually handle preflight `OPTIONS` requests.

GiteaMirror commented

2026-04-22 05:37:56 -05:00

@BruceMacD commented on GitHub (May 14, 2024):

Thanks to you both for the feedback on the CORS configuration. We unfortunately can't set CORS to allow all origins by default for security reasons, but I have added allow-methods in a recent release.

It is actually possible to set CORS configuration by using the OLLAMA_ORIGINS environment variable:
https://github.com/ollama/ollama/blob/main/docs/faq.md#how-can-i-allow-additional-web-origins-to-access-ollama

I'm going to resolve this one for now, with the plan to improve the OLLAMA_ORIGINS interface continuing in #2335.

@BruceMacD commented on GitHub (May 14, 2024): Thanks to you both for the feedback on the CORS configuration. We unfortunately can't set CORS to allow all origins by default for security reasons, but I have added allow-methods in a recent release. It is actually possible to set CORS configuration by using the `OLLAMA_ORIGINS` environment variable: https://github.com/ollama/ollama/blob/main/docs/faq.md#how-can-i-allow-additional-web-origins-to-access-ollama I'm going to resolve this one for now, with the plan to improve the OLLAMA_ORIGINS interface continuing in #2335.

GiteaMirror commented

2026-04-22 05:37:57 -05:00

@matthiasgeihs commented on GitHub (Oct 25, 2024):

Thanks to you both for the feedback on the CORS configuration. We unfortunately can't set CORS to allow all origins by default for security reasons, but I have added allow-methods in a recent release.

@BruceMacD Can you elaborate on the security reasons?

@matthiasgeihs commented on GitHub (Oct 25, 2024): > Thanks to you both for the feedback on the CORS configuration. We unfortunately can't set CORS to allow all origins by default for security reasons, but I have added allow-methods in a recent release. @BruceMacD Can you elaborate on the security reasons?

GiteaMirror commented

2026-04-22 05:37:57 -05:00

@erhhung commented on GitHub (Oct 26, 2024):

@BruceMacD Can you elaborate on the security reasons?

@matthiasgeihs You surely wouldn't want just ANY website on the Internet to be able to make calls to http://localhost:11434, would you, especially since that port is becoming a well-known port number?

If the ollama server always included the response header "Access-Control-Allow-Origin: *", then ANY web app or malicious iframe can try to connect to http://localhost:11434 and query for possibly your RAG'ed private information without your consent.

Public API servers do generally allow all CORS requests, but they will also require client authentication before authorizing an API call. Since ollama provides no out-of-box API client authentication facility, it needs to play safe by default.

Here's an article I found describing ollama & auth: https://www.arsturn.com/blog/understanding-authentication-in-ollama

@erhhung commented on GitHub (Oct 26, 2024): > @BruceMacD Can you elaborate on the security reasons? @matthiasgeihs You surely wouldn't want just **ANY** website on the Internet to be able to make calls to `http://localhost:11434`, would you, especially since that port is becoming a well-known port number? If the ollama server always included the response header "`Access-Control-Allow-Origin: *`", then ANY web app or malicious iframe can try to connect to `http://localhost:11434` and query for possibly your RAG'ed private information without your consent. Public API servers do generally allow all CORS requests, but they will also require client authentication before authorizing an API call. Since ollama provides no out-of-box API client authentication facility, it needs to play safe by default. Here's an article I found describing ollama & auth: https://www.arsturn.com/blog/understanding-authentication-in-ollama

GiteaMirror commented

2026-04-22 05:37:58 -05:00

@matthiasgeihs commented on GitHub (Oct 27, 2024):

@erhhung Absolutely! Thanks for the pointer to the article. The reason why I was asking: I'm experimenting with a Chrome extension that uses Ollama. Currently, to make this work, a user has to manually set the OLLAMA_ORIGINS flag. This is way too much to ask from a regular user. (I would argue even an Ollama regular user.) So while I agree that opening up Ollama to any web page is not what we want, I'm wondering if there is a secure and easy way to make access from a Chrome extension work. I'm thinking in the direction of integrating API_KEY functionality with the Ollama REST interface. Alternatively, there could be a popup if an unknown origin queries Ollama. Then, the user could accept or deny the request. What do you think? Are there already any efforts in either of these directions?

@matthiasgeihs commented on GitHub (Oct 27, 2024): @erhhung Absolutely! Thanks for the pointer to the article. The reason why I was asking: I'm experimenting with a Chrome extension that uses Ollama. Currently, to make this work, a user has to manually set the `OLLAMA_ORIGINS` flag. This is way too much to ask from a regular user. (I would argue even an Ollama regular user.) So while I agree that opening up Ollama to any web page is not what we want, I'm wondering if there is a secure and easy way to make access from a Chrome extension work. I'm thinking in the direction of integrating API_KEY functionality with the Ollama REST interface. Alternatively, there could be a popup if an unknown origin queries Ollama. Then, the user could accept or deny the request. What do you think? Are there already any efforts in either of these directions?

GiteaMirror commented

2026-04-22 05:37:59 -05:00

@erhhung commented on GitHub (Oct 27, 2024):

@matthiasgeihs Ollama being, at this point, NOT yet a turnkey desktop app but a CLI app, IMO having to provide some instructions to users to set the OLLAMA_ORIGINS environment variable before launch should they want to use your Chrome extension with their locally hosted Ollama endpoint isn't too much to ask, like:

OLLAMA_ORIGINS="chrome-extension://abcdefghijklmnopqrstuvwxy" ollama serve

That said, having to set that variable each time to an unmemorable chrome-extension URL is certainly not ideal. I would push the community here to get the sought-after "config file" feature (see #7089 for example) implemented that includes setting defaults for all supported environment variables (ollama serve --help) while values actually defined in the environment should override those in the config file.

Then a one-time addition of your chrome-extension URL into the config file would be less painful.

As for implementing "proper" authentication directly into Ollama core, I doubt that would get much traction as there are so many ways to implement authn & authz that I would think wrapper applications to proxy Ollama REST API calls, or sidecars (as in service mesh), or an Ollama-supported plugin framework would be the best ways to support it.

Anyway, given that this issue is closed, I'd create a new discussion or push for existing requests.

@erhhung commented on GitHub (Oct 27, 2024): @matthiasgeihs Ollama being, at this point, NOT yet a turnkey desktop app but a CLI app, IMO having to provide some instructions to users to set the `OLLAMA_ORIGINS` environment variable before launch should they want to use your Chrome extension with their locally hosted Ollama endpoint isn't too much to ask, like: ```bash OLLAMA_ORIGINS="chrome-extension://abcdefghijklmnopqrstuvwxy" ollama serve ``` That said, having to set that variable each time to an unmemorable `chrome-extension` URL is certainly not ideal. I would push the community here to get the sought-after "config file" feature (see #7089 for example) implemented that includes setting **defaults** for all supported environment variables (`ollama serve --help`) while values actually defined in the environment should override those in the config file. Then a one-time addition of your `chrome-extension` URL into the config file would be less painful. As for implementing "proper" authentication directly into Ollama core, I doubt that would get much traction as there are so many ways to implement authn & authz that I would think wrapper applications to **proxy** Ollama REST API calls, or sidecars (as in service mesh), or an Ollama-supported **plugin** framework would be the best ways to support it. Anyway, given that this issue is closed, I'd create a new discussion or push for existing requests.

GiteaMirror commented

2026-04-22 05:37:59 -05:00

@matthiasgeihs commented on GitHub (Oct 28, 2024):

@erhhung thanks for discussing this with me. i think i got a bunch of insights from your explanations. agreed that the config file option might be a good middle ground. (even for me as a developer, it's currently a bit annoying to have to manually start the ollama with the right flags every time i want to work on the project.) and yeah, opening a new discussion around that would eventually be the right thing to do. for now, i'm satisfied with the outcome. thank you.

@matthiasgeihs commented on GitHub (Oct 28, 2024): @erhhung thanks for discussing this with me. i think i got a bunch of insights from your explanations. agreed that the config file option might be a good middle ground. (even for me as a developer, it's currently a bit annoying to have to manually start the ollama with the right flags every time i want to work on the project.) and yeah, opening a new discussion around that would eventually be the right thing to do. for now, i'm satisfied with the outcome. thank you.

GiteaMirror commented

2026-04-22 05:38:00 -05:00

@clearsitedesigns commented on GitHub (Jul 13, 2025):

Why cant there be an option to just turn this on since I start the app on my mac - just let me flip a switch

@clearsitedesigns commented on GitHub (Jul 13, 2025): Why cant there be an option to just turn this on since I start the app on my mac - just let me flip a switch

Sign in to join this conversation.

Branches Tags

main

dhiltgen/ci

parth-launch-plan-gating

hoyyeva/anthropic-reference-images-path

parth-anthropic-reference-images-path

brucemacd/download-before-remove

hoyyeva/editor-config-repair

parth-mlx-decode-checkpoints

parth-launch-codex-app

hoyyeva/fix-codex-model-metadata-warning

hoyyeva/qwen

parth/hide-claude-desktop-till-release

hoyyeva/opencode-image-modality

parth-add-claude-code-autoinstall

release_v0.22.0

pdevine/manifest-list

codex/fix-codex-model-metadata-warning

pdevine/addressable-manifest

brucemacd/launch-fetch-reccomended

jmorganca/llama-compat

launch-copilot-cli

hoyyeva/opencode-thinking

release_v0.20.7

parth-auto-save-backup

parth-test

jmorganca/gemma4-audio-replacements

fix-manifest-digest-on-pull

hoyyeva/vscode-improve

brucemacd/install-server-wait

parth/update-claude-docs

brucemac/start-ap-install

pdevine/mlx-update

pdevine/qwen35_vision

drifkin/api-show-fallback

mintlify/image-generation-1773352582

hoyyeva/server-context-length-local-config

jmorganca/faster-reptition-penalties

jmorganca/convert-nemotron

parth-pi-thinking

pdevine/sampling-penalties

jmorganca/fix-create-quantization-memory

dongchen/resumable_transfer_fix

pdevine/sampling-cache-error

jessegross/mlx-usage

hoyyeva/openclaw-config

hoyyeva/app-html

pdevine/qwen3next

brucemacd/sign-sh-install

brucemacd/tui-update

brucemacd/usage-api

jmorganca/launch-empty

fix-app-dist-embed

mxyng/mlx-compile

mxyng/mlx-quant

mxyng/mlx-glm4.7

mxyng/mlx

brucemacd/simplify-model-picker

jmorganca/qwen3-concurrent

fix-glm-4.7-flash-mla-config

drifkin/qwen3-coder-opening-tag

brucemacd/usage-cli

fix-cuda12-fattn-shmem

ollama-imagegen-docs

parth/fix-multiline-inputs

brucemacd/config-docs

mxyng/model-files

mxyng/simple-execute

fix-imagegen-ollama-models

mxyng/async-upload

jmorganca/lazy-no-dtype-changes

imagegen-auto-detect-create

parth/decrease-concurrent-download-hf

fix-mlx-quantize-init

jmorganca/x-cleanup

usage

imagegen-readme

jmorganca/glm-image

mlx-gpu-cd

jmorganca/imagegen-modelfile

parth/agent-skills

parth/agent-allowlist

parth/signed-in-offline

parth/agents

parth/fix-context-chopping

improve-cloud-flow

parth/add-models-websearch

parth/prompt-renderer-mcp

jmorganca/native-settings

jmorganca/download-stream-hash

jmorganca/client2-rebased

brucemacd/oai-chat-req-multipart

jessegross/multi_chunk_reserve

grace/additional-omit-empty

grace/mistral-3-large

mxyng/tokenizer2

mxyng/tokenizer

jessegross/flash

hoyyeva/windows-nacked-app

mxyng/cleanup-attention

grace/deepseek-parser

hoyyeva/remember-unsent-prompt

parth/add-lfs-pointer-error-conversion

parth/olmo2-test2

hoyyeva/ollama-launchagent-plist

nicole/olmo-model

parth/olmo-test

mxyng/remove-embedded

parth/render-template

jmorganca/intellect-3

parth/remove-prealloc-linter

jmorganca/cmd-eval

nicole/nomic-embed-text-fix

mxyng/lint-2

hoyyeva/add-gemini-3-pro-preview

hoyyeva/load-model-list

mxyng/expand-path

mxyng/environ-2

hoyyeva/deeplink-json-encoding

parth/improve-tool-calling-tests

hoyyeva/conversation

hoyyeva/assistant-edit-response

hoyyeva/thinking

origin/brucemacd/invalid-char-i-err

parth/improve-tool-calling

jmorganca/required-omitempty

grace/qwen3-vl-tests

mxyng/iter-client

parth/docs-readme

nicole/embed-test

pdevine/integration-benchstat

parth/remove-generate-cmd

parth/add-toolcall-id

mxyng/server-tests

jmorganca/glm-4.6

jmorganca/gin-h-compat

drifkin/stable-tool-args

pdevine/qwen3-more-thinking

parth/add-websearch-client

nicole/websearch_local

jmorganca/qwen3-coder-updates

grace/deepseek-v3-migration-tests

mxyng/fix-create

jmorganca/cloud-errors

pdevine/parser-tidy

revert-12233-parth/simplify-entrypoints-runner

parth/enable-so-gpt-oss

brucemacd/qwen3vl

jmorganca/readme-simplify

parth/gpt-oss-structured-outputs

revert-12039-jmorganca/tools-braces

mxyng/embeddings

mxyng/gguf

mxyng/benchmark

mxyng/types-null

parth/move-parsing

mxyng/gemma2

jmorganca/docs

mxyng/16-bit

mxyng/create-stdin

pdevine/authorizedkeys

mxyng/quant

parth/opt-in-error-context-window

brucemacd/cache-models

brucemacd/runner-completion

jmorganca/llama-update-6

brucemacd/benchmark-list

brucemacd/partial-read-caps

parth/deepseek-r1-tools

mxyng/omit-array

parth/tool-prefix-temp

brucemacd/runner-test

jmorganca/qwen25vl

brucemacd/model-forward-test-ext

parth/python-function-parsing

jmorganca/cuda-compression-none

drifkin/num-parallel

drifkin/chat-truncation-fix

jmorganca/sync

parth/python-tools-calling

drifkin/array-head-count

brucemacd/create-no-loop

parth/server-enable-content-stream-with-tools

qwen25omni

mxyng/v3

brucemacd/ropeconfig

jmorganca/silence-tokenizer

parth/sample-so-test

parth/sampling-structured-outputs

brucemacd/doc-go-engine

parth/constrained-sampling-json

jmorganca/mistral-wip

brucemacd/mistral-small-convert

parth/sample-unmarshal-json-for-params

brucemacd/jomorganca/mistral

pdevine/bfloat16

jmorganca/mistral

brucemacd/mistral

pdevine/logging

parth/sample-correctness-fix

parth/sample-fix-sorting

jmorgan/sample-fix-sorting-extras

jmorganca/temp-0-images

brucemacd/parallel-embed-models

brucemacd/shim-grammar

jmorganca/fix-gguf-error

bmizerany/nameswork

jmorganca/faster-releases

bmizerany/validatenames

brucemacd/err-no-vocab

brucemacd/rope-config

brucemacd/err-hint

brucemacd/qwen2_5

brucemacd/logprobs

brucemacd/new_runner_graph_bench

progress-flicker

brucemacd/forward-test

brucemacd/go_qwen2

pdevine/gemma2

jmorganca/add-missing-symlink-eval

mxyng/next-debug

parth/set-context-size-openai

brucemacd/next-bpe-bench

brucemacd/next-bpe-test

brucemacd/new_runner_e2e

brucemacd/new_runner_qwen2

pdevine/convert-cohere2

brucemacd/convert-cli

parth/log-probs

mxyng/next-mlx

mxyng/cmd-history

parth/templating

parth/tokenize-detokenize

brucemacd/check-key-register

bmizerany/grammar

jmorganca/vendor-081b29bd

mxyng/func-checks

jmorganca/fix-null-format

parth/fix-default-to-warn-json

jmorganca/qwen2vl

jmorganca/no-concat

parth/cmd-cleanup-SO

brucemacd/check-key-register-structured-err

parth/openai-stream-usage

parth/fix-referencing-so

stream-tools-stop

jmorganca/degin-1

brucemacd/install-path-clean

brucemacd/push-name-validation

brucemacd/browser-key-register

jmorganca/openai-fix-first-message

jmorganca/fix-proxy

jessegross/sample

parth/disallow-streaming-tools

dhiltgen/remove_submodule

jmorganca/ga

jmorganca/mllama

pdevine/newlines

pdevine/geems-2b

jmorganca/llama-bump

mxyng/modelname-7

mxyng/gin-slog

mxyng/modelname-6

jyan/convert-prog

jyan/quant5

paligemma-support

pdevine/import-docs

jmorganca/openai-context

jyan/paligemma

jyan/p2

jyan/palitest

bmizerany/embedspeedup

jmorganca/llama-vit

brucemacd/allow-ollama

royh/ep-methods

royh/whisper

mxyng/api-models

mxyng/fix-memory

jyan/q4_4/8

jyan/ollama-v

royh/stream-tools

roy-embed-parallel

bmizerany/hrm

revert-5963-revert-5924-mxyng/llama3.1-rope

royh/embed-viz

jyan/local2

jyan/auth

jyan/local

jyan/parse-temp

jmorganca/template-mistral

jyan/reord-g

royh-openai-suffixdocs

royh-imgembed

royh-embed-parallel

jyan/quant4

royh-precision

jyan/progress

pdevine/fix-template

jyan/quant3

pdevine/ggla

mxyng/update-registry-domain

jmorganca/ggml-static

mxyng/create-context

jyan/v0.146

mxyng/layers-from-files

build_dist

bmizerany/noseek

royh-ls

royh-name

timeout

mxyng/server-timestamp

bmizerany/nosillyggufslurps

royh-params

jmorganca/llama-cpp-7c26775

royh-openai-delete

royh-show-rigid

jmorganca/enable-fa

jmorganca/no-error-template

jyan/format

royh-testdelete

bmizerany/fastverify

language_support

pdevine/ps-glitches

brucemacd/tokenize

bruce/iq-quants

bmizerany/filepathwithcoloninhost

mxyng/split-bin

bmizerany/client-registry

jmorganca/if-none-match

native

jmorganca/native

jmorganca/batch-embeddings

jmorganca/initcmake

jmorganca/mm

pdevine/showggmlinfo

modenameenforcealphanum

bmizerany/modenameenforcealphanum

jmorganca/done-reason

jmorganca/llama-cpp-8960fe8

ollama.com

bmizerany/filepathnobuild

bmizerany/types/model/defaultfix

rmdisplaylong

nogogen

bmizerany/x

modelfile-readme

bmizerany/replacecolon

jmorganca/limit

jmorganca/execstack

jmorganca/replace-assets

mxyng/tune-concurrency

jmorganca/testing

whitespace-detection

jmorganca/options

upgrade-all

scratch

cuda-search

mattw/airenamer

mattw/allmodelsonhuggingface

mattw/quantcontext

mattw/whatneedstorun

brucemacd/llama-mem-calc

mattw/faq-context

mattw/communitylinks

mattw/noprune

mattw/python-functioncalling

rename

mxyng/install

pulse

remove-first

editor

mattw/selfqueryingretrieval

cgo

mattw/howtoquant

api

matt/streamingapi

format-config

mxyng/extra-args

shell

update-nous-hermes

cp-model

upload-progress

fix-unknown-model

fix-model-names

delete-fix

insecure-registry

ls

deletemodels

progressbar

readme-updates

license-layers

skip-list

list-models

modelpath

matt/examplemodelfiles

distribution

go-opts

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/ollama#27963