Where to disable cross-network protection in Opera?

Question

In JS security issue with Opera 11.01, after moving from server A to B I learned that opera has some "cross-network" protection.

I encountered the same js security problem and I found that Opera 11.10 (“Barracuda”) added a preference to disable cross-network protection. My Opera is 11.50 but I can't find the specific preference.

Do I misunderstand the meaning of the "cross-network"?

Thanks a lot.

Answer 1

Nowadays Opera is based on chromium, so you shoud use chromium way to disable SOP and process requests without CORS headers:

cd c:\Program Files\Opera\
launcher.exe --disable-web-security --user-data-dir="c:\nocorsbrowserdata"

Of course like in chromium, to make this work you should kill all your instances of opera.exe before starting with --disable-web-security flag. If you want more details how to automate this, see tip on my website

Answer 2

I believe opera:config#Network|AllowCrossNetworkNavigation is the right preference.

Answer 3

Disabling it entirely has security implications though - see this: Opera won't load some JavaScript files for a safer workaround :)

Answer 4

If you are on a Unix system be careful when using "~/emptydir" for the argument value in --user-data-dir= from @palaniraja's comment on Make Tips's answer. Depending on your environment '~' might not be converted to your home directory and end up making a new directory wherever you are named '~'

I went to delete this mistake '~' directory and accidentally almost deleted my entire home directory instead out of negligence.

Try using --user-data-dir=$HOME/emptydir instead if you are on a Unix system.