Use custom model with tfjs-tflite CORS issue

The tfjs-tflite library allows you to run TFLite models on the web.


const tfliteModel = await tflite.loadTFLiteModel('url/to/your/model.tflite');


const objectDetector = await tflite.ObjectDetector.create(

I’m currently working on a simple Object Detection example, which works fine for the example models that are stored on Google Cloud, but I couldn’t get it to work with a custom model stored on Github.

This gives me a CORS error:

Access to fetch at '' from origin 'null' has been blocked by CORS policy: The 'Access-Control-Allow-Origin' header contains multiple values '', but only one is allowed. Have the server send the header with a valid value, or, if an opaque response serves your needs, set the request's mode to 'no-cors' to fetch the resource with CORS disabled.

Therefore, I wanted to ask what’s the simplest way to solve the error or perhaps what the best platform is to store your model on the web for free.

Any help is highly appreciated. Kind regards,
Gilbert Tanner

So CORS stands for Cross Origin Resource Sharing and in order to use anything in JavaScript on the client side you must send the asset with a server that sets the correct CORS headers so that the code is allowed to consume it - else people could take content from any site and use it without permission which could lead to unintended consequences.

If the asset is on the same domain as the webpage you are hosting then this will not be an issue. However if the asset you are trying to bring in is on a different domain (eg subdomain too) then you must explicitly set these headers with your server configuration. You also need to set the “crossorigin” attribute on the HTML too for images etc:

More details on CORS can be found here:

If you use a website like to host your demo CORS headers are set automatically.

It should also be noted that you probably need to serve your assets over https too as mixed protocols eg some assets on http and some on https will also lead to issues.

Thanks @Jason for the detailed explanations!

@Gi_T, for your use case, it is possible to use the “” link to get the model file which has “access-control-allow-origin” header set to “*”.



1 Like

Oh nice that is good to know you can use that domain to get the correct headers! Thanks for sharing Jing!

@Jing_Jin @Jason Thanks for the help. It’s greatly appreciated.