Skip to content

Instantly share code, notes, and snippets.

@mathiasbynens

mathiasbynens/unsafeWindow.user.js

Created August 13, 2011 13:21
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save mathiasbynens/1143845 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save mathiasbynens/1143845 to your computer and use it in GitHub Desktop.
Download ZIP
`unsafeWindow` polyfill (for use in user scripts)
Raw
unsafeWindow.user.js
// ==UserScript==
// @name Emulate `unsafeWindow` in browsers that don’t support it.
// ==/UserScript==
// http://mths.be/unsafewindow
window.unsafeWindow || (
unsafeWindow = (function() {
var el = document.createElement('p');
el.setAttribute('onclick', 'return window;');
return el.onclick();
}())
);
// You can now use `unsafeWindow`, ehm, safely.
console.log(unsafeWindow);
// If the current document uses a JavaScript library, you can use it in
// your user script like this:
console.log(unsafeWindow.jQuery);
@hateradio
Copy link

hateradio commented Apr 2, 2012

[Update]

Used === instead of == and finally instead of an empty catch.

var gm_win = (function(){
    var a;
    try {
        a = unsafeWindow === window ? false : unsafeWindow;
    } finally {
        return a || (function(){
            var e = document.createElement('p');
            e.setAttribute('onclick', 'return window;');
            return e.onclick();
        }());
    }
}());

console.log(gm_win.SOMEAUTHKEY);

[Original]

This snippet is helpful, and it works when used in Opera and Chrome. However, I find that GM's unsafeWindow becomes invalid if this is used in Firefox. Probably because it's not part of the window object. In other words, I can't get it to work in Firefox.

Here's my solution.

var gm_uwin = (function(){
    var a;
    try {
        a = unsafeWindow == window ? false : unsafeWindow; // Chrome: window == unsafeWindow
    } catch(e) { }
    return a || (function(){
            var el = document.createElement('p');
            el.setAttribute('onclick', 'return window;');
            return el.onclick();
        }());
}());

console.log(gm_uwin.SOMEAUTHKEY); // This works in all three browsers.

Chrome creates an anon function that wraps window as the argument for unsafeWindow so they are actually the same safe-window object. Opera will throw an error. If a is false the fill is used, otherwise the real unsafeWindow is returned for Firefox.

@nstepien
Copy link

nstepien commented Mar 23, 2013

@mathiasbynens
Is it just me or did they fix it in the latest Canary?
It returns the safe window, not the unsafe one anymore.

@mwscriptfreak
Copy link

mwscriptfreak commented Apr 14, 2013

Think there is a issue on Canary Build 28.0.1477.2

@yahelc
Copy link

yahelc commented Aug 7, 2013

It seems like this no longer works in Chrome 29.

@mathiasbynens
Copy link
Author

mathiasbynens commented Aug 7, 2013

https://code.google.com/p/chromium/issues/detail?id=222652

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment