Pop-Up Blocker

Simple but effective popup window blocker. Also tries to deny unsolicited redirections.

目前为 2018-06-02 提交的版本。查看 最新版本

  1. // ==UserScript==
  2. // @name        Pop-Up Blocker
  3. // @namespace   HTML
  4. // @description Simple but effective popup window blocker. Also tries to deny unsolicited redirections.
  5. // @include     *
  6. // @version     $Id$
  7. // ==/UserScript==
  8.  
  9. (function () {
  10. 	var BLOCK_MODE = {'ALL': 0,  // Block all popups
  11. 										'CONFIRM': 2,  // Confirm each popup (not recommended, but useful for testing)
  12. 										'GRANT_PERIOD': 4,  // Block popups that are initiated after the mouse click grant period
  13. 										'ALLOW_SECURE': 8,  // Allow popups from secure (HTTPS) sites (default don't allow)
  14. 										'ALLOW_REDIRECTS': 16,  // Allow unsolicited redirects (default block)
  15. 										'CONFIRM_UNLOAD': 32}  // Confirm assumed unsolicited page unload (default don't confirm)
  16.  
  17. 	// Configuration
  18. 	var block_mode = BLOCK_MODE.ALL;
  19. 	var grant_period = 100;  // Milliseconds
  20. 	var debug = true;  // Enable debug logging
  21.  
  22. 	// DO NOT CHANGE BELOW THIS POINT
  23. 	var allowed_elements = {'a': true, 'button': {'type': 'submit'}, 'input': true, 'select': true, 'option': true};
  24. 	var ts = 0, wopen = window.open, showmodaldlg = window.showModalDialog;
  25. 	var lastInteractedElement;
  26. 	var marginTop = null;
  27. 	var notifications = 0;
  28. 	var notificationOffsetTop = 0;
  29.  
  30. 	function confirmed(msg, arguments) {
  31. 		return block_mode & BLOCK_MODE.CONFIRM ? confirmPopup(msg, arguments) : false;
  32. 	}
  33.  
  34. 	function grantperiod_exceeded() {
  35. 		return block_mode & BLOCK_MODE.GRANT_PERIOD ? Date.now() > ts + grant_period : true;
  36. 	}
  37.  
  38. 	function protocol_allowed() {
  39. 		return block_mode & BLOCK_MODE.ALLOW_SECURE ? location.protocol == 'https:' : false;
  40. 	}
  41.  
  42. 	function element_allowed(element) {
  43. 		var allowed = element.tagName && allowed_elements[element.tagName.toLowerCase()];
  44. 		if (allowed && typeof allowed == "object") {
  45. 			for (var property in allowed) if (element[property] != element[property]) return false;
  46. 		}
  47. 		return allowed;
  48. 	}
  49.  
  50. 	window.addEventListener('mousedown', function (event) {
  51. 		ts = Date.now();
  52. 		if (debug) console.info('Mouse button', event.button != null ? event.button : event.which, 'down on', event.target);
  53. 		setlastInteractedElement(event);
  54. 		//mediateEventPropagation(event);
  55. 	}, true);
  56.  
  57. 	window.addEventListener('click', function (event) {
  58. 		ts = Date.now();
  59. 		if (debug) console.info('Mouse button', event.button != null ? event.button : event.which, 'click on', event.target);
  60. 		setlastInteractedElement(event);
  61. 		//mediateEventPropagation(event);
  62. 	}, true);
  63.  
  64. 	window.addEventListener('change', function (event) {
  65. 		ts = Date.now();
  66. 		if (debug) console.info('Changed selection on', event.target);
  67. 		setlastInteractedElement(event);
  68. 		//mediateEventPropagation(event);
  69. 	}, true);
  70.  
  71. 	function setlastInteractedElement(event) {
  72. 		// Deal with tags nested in (e.g.) links
  73. 		var element = event.target;
  74. 		if (event instanceof MouseEvent && (event.button != null ? event.button != 0 : event.which != 1)) return;
  75. 		while (element.parentElement && !element_allowed(element)) {
  76. 			element = element.parentElement;
  77. 		}
  78. 		lastInteractedElement = element;
  79. 		if (debug) console.info('Last interacted element', element);
  80. 	}
  81.  
  82. 	function mediateEventPropagation(event) {
  83. 		// Stop event propagation if element has a 'href' attribute that does not point to the current document
  84. 		// (prevents click hijacking)
  85. 		if (!protocol_allowed() &&
  86. 			lastInteractedElement &&
  87. 			lastInteractedElement.href &&
  88. 			boildown(lastInteractedElement.href) != boildown(window.location.href) &&
  89. 			lastInteractedElement.href.indexOf('javascript:') !== 0) {
  90. 			event.stopPropagation();
  91. 			console.warn('Pop-Up Blocker stopped event propagation for', event);
  92. 		}
  93. 	}
  94.  
  95. 	function regExpEscape(s) {
  96. 		return String(s).replace(/([-()\[\]{}+?*.$\^|,:#<!\\])/g, '\\$1').
  97. 			replace(/\x08/g, '\\x08');
  98. 	};
  99.  
  100. 	var regExpProtHostPathQ = new RegExp('^((' + regExpEscape(location.protocol) + '//' + regExpEscape(location.host) + ')?' +
  101. 										    '(' + regExpEscape(location.pathname) + ')?)?');
  102.  
  103. 	function boildown(uri) {
  104. 		var uri_boileddown = uri.replace(regExpProtHostPathQ, '');  // Strip current protocol + host + path
  105. 		uri_boileddown = uri_boileddown.replace(/#.*$/, '');  // Strip any hash
  106. 		// Sort query vars
  107. 		var query = uri_boileddown.match(/\?[^?]+/);
  108. 		if (query)
  109. 			query = '?' + query[0].substr(1).split('&').sort().join('&');
  110. 		uri_boileddown = uri_boileddown.replace(/\?[^?]+/, query || '');
  111. 		return uri_boileddown;
  112. 	};
  113.  
  114. 	// Deny unsolicited redirection
  115. 	if (!(block_mode & BLOCK_MODE.ALLOW_REDIRECTS) && typeof window.location.watch == 'function') window.location.watch(
  116. 		'href',
  117. 		function (id, oldval, newval) {
  118. 			var href_boileddown, newval_boileddown = boildown(newval);
  119. 			console.info('location.' + id, '->', newval);
  120. 			if (lastInteractedElement && lastInteractedElement.tagName &&
  121. 				lastInteractedElement.tagName.toLowerCase() == 'a')
  122. 				href_boileddown = boildown(lastInteractedElement.href);
  123. 			var link_hijacked = href_boileddown != undefined && newval.indexOf('#') !== 0 && newval_boileddown != href_boileddown;
  124. 				
  125. 			if (debug) {
  126. 				console.info('Page secure?', location.protocol == 'https:');
  127. 				if (block_mode & BLOCK_MODE.ALLOW_SECURE) console.info('Allowed protocol?', protocol_allowed());
  128. 				console.info('Last interacted element?', lastInteractedElement);
  129. 				if (lastInteractedElement) {
  130. 					console.info('Last interacted element tag name?', lastInteractedElement.tagName);
  131. 					if (lastInteractedElement.tagName) {
  132. 						console.info('Allowed element?', !!element_allowed(lastInteractedElement));
  133. 						console.info('Last interacted element is link?', lastInteractedElement.tagName.toLowerCase() == 'a');
  134. 						if (lastInteractedElement.tagName.toLowerCase() == 'a') {
  135. 							console.info('New location (boiled down) =', newval_boileddown);
  136. 							console.info('Link HREF (boiled down) =', href_boileddown);
  137. 							console.info('New location is the same as link HREF?', newval_boileddown == href_boileddown);
  138. 							console.info('Link target is a new window?', lastInteractedElement.target == '_blank');
  139. 						}
  140. 					}
  141. 				}
  142. 				if (block_mode & BLOCK_MODE.GRANT_PERIOD) console.info('Grant period exceeded?', grantperiod_exceeded());
  143. 			}
  144. 			if ((!protocol_allowed() || grantperiod_exceeded()) &&
  145. 				(!lastInteractedElement ||
  146. 				 (!element_allowed(lastInteractedElement) ||
  147. 				  (/*lastInteractedElement.tagName.toLowerCase() == 'a' &&*/
  148. 				   (link_hijacked ||
  149. 				    lastInteractedElement.target == '_blank'))))) {
  150. 				notify('Denied redirection to', newval, null, 0, null, '_self');
  151. 				console.error('Pop-Up Blocker denied redirection to ' + newval);
  152. 				return '#' + location.hash.replace(/^#/, '');
  153. 			}
  154. 			return newval;
  155. 		}
  156. 	);
  157.  
  158. 	var onbeforeunload = window.onbeforeunload;
  159. 	if (block_mode & BLOCK_MODE.CONFIRM_UNLOAD) window.onbeforeunload = function (e) {
  160. 		if (debug) console.info('window.', e);
  161. 		if (!protocol_allowed()) {
  162. 			if (debug) {
  163. 				console.info('Page secure?', location.protocol == 'https:');
  164. 				if (block_mode & BLOCK_MODE.ALLOW_SECURE) console.info('Allowed protocol?', protocol_allowed());
  165. 					console.info('Last interacted element?', lastInteractedElement);
  166. 					if (lastInteractedElement) {
  167. 						console.info('Last interacted element tag name?', lastInteractedElement.tagName);
  168. 						if (lastInteractedElement.tagName) {
  169. 							console.info('Allowed element?', !!element_allowed(lastInteractedElement));
  170. 						}
  171. 					}
  172. 					if (block_mode & BLOCK_MODE.GRANT_PERIOD) console.info('Grant period exceeded?', grantperiod_exceeded());
  173. 			}
  174. 			console.warn('You are possibly involuntarily being redirected to another page.');
  175. 			(e || window.event).returnValue = 'You are possibly involuntarily being redirected to another page. Do you want to leave ' + location.href + ' or stay?';
  176. 			return (e || window.event).returnValue;
  177. 		}
  178. 		else if (typeof onbeforeunload === 'function')
  179. 			return onbeforeunload.apply(window, arguments);
  180. 	};
  181.  
  182. 	//var onkeydown = window.onkeydown;
  183. 	//window.onkeydown = function (e) {
  184. 		//lastInteractedElement = null;
  185. 		//if (typeof onkeydown === 'function')
  186. 			//return onkeydown.apply(window, arguments);
  187. 	//};
  188.  
  189. 	//var onmouseleave = document.body.onmouseleave;
  190. 	//document.body.onmouseleave = function (e) {
  191. 		//lastInteractedElement = null;
  192. 		//if (typeof onmouseleave === 'function')
  193. 			//return onmouseleave.apply(document.body, arguments);
  194. 	//};
  195.  
  196. 	function confirmPopup(msg, args) {
  197. 		return confirm(msg + ' (' + Array.prototype.slice.apply(arguments).join(', ') + ')');
  198. 	}
  199.  
  200. 	window.open = function () {
  201. 		var oargs = arguments;
  202. 		if (debug) {
  203. 			console.info('Page secure?', location.protocol == 'https:');
  204. 			if (block_mode & BLOCK_MODE.ALLOW_SECURE) console.info('Allowed protocol?', protocol_allowed());
  205. 			if (block_mode & BLOCK_MODE.GRANT_PERIOD) console.info('Grant period exceeded?', grantperiod_exceeded());
  206. 		}
  207. 		if (/*['_self', '_parent', '_top'].includes(arguments[1]) ||*/
  208. 			(confirmed('Allow popup?', arguments) &&
  209. 			 (protocol_allowed() || !grantperiod_exceeded()))) {
  210. 			console.info('Pop-Up Blocker allowed window.open', Array.prototype.slice.apply(arguments));
  211. 			return wopen.apply(window, arguments);
  212. 		}
  213. 		else {
  214. 			console.error('Pop-Up Blocker blocked window.open', Array.prototype.slice.apply(arguments));
  215. 			notify('Blocked popup window', arguments[0], arguments[1], 0, function() {
  216. 				console.info('Pop-Up Blocker user clicked window.open', Array.prototype.slice.apply(oargs));
  217. 				wopen.apply(window, oargs);
  218. 			});
  219. 		}
  220. 		return {}
  221. 	};
  222.  
  223. 	window.showModalDialog = function () {
  224. 		if (debug) {
  225. 			console.info('Page secure?', location.protocol == 'https:');
  226. 			if (block_mode & BLOCK_MODE.ALLOW_SECURE) console.info('Allowed protocol?', protocol_allowed());
  227. 			if (block_mode & BLOCK_MODE.GRANT_PERIOD) console.info('Grant period exceeded?', grantperiod_exceeded());
  228. 		}
  229. 		if (confirmed('Allow modal dialog?', arguments) &&
  230. 			(protocol_allowed() || !grantperiod_exceeded())) {
  231. 			console.info('Pop-Up Blocker allowed window.showModalDialog', Array.prototype.slice.apply(arguments));
  232. 			return showmodaldlg.apply(window, arguments);
  233. 		}
  234. 		else {
  235. 			console.error('Pop-Up Blocker blocked modal showModalDialog', Array.prototype.slice.apply(arguments));
  236. 			notify('Blocked modal dialog', arguments[0], null, 0, function() {
  237. 				console.info('Pop-Up Blocker user clicked window.showModalDialog', Array.prototype.slice.apply(oargs));
  238. 				showmodaldlg.apply(window, oargs);
  239. 			});
  240. 		}
  241. 		return {}
  242. 	};
  243.  
  244. 	function notify(text, uri, title, timeout, onclick, target) {
  245. 		var rootElement = document.body.parentElement,
  246. 				notification = document.createElement('div');
  247. 		notification.onclick = function () {
  248. 			return false;
  249. 		}
  250. 		if (marginTop === null) marginTop = parseFloat((rootElement.currentStyle || window.getComputedStyle(rootElement)).marginTop)
  251. 		resetStyles(notification);
  252. 		notification.style.cssText += 'background: InfoBackground !important';
  253. 		notification.style.cssText += 'border-bottom: 1px solid WindowFrame !important';
  254. 		notification.style.cssText += 'box-sizing: border-box !important';
  255. 		notification.style.cssText += 'font: small-caption !important';
  256. 		notification.style.cssText += 'padding: .15em .9em !important';
  257. 		notification.style.cssText += 'position: fixed !important';
  258. 		notification.style.cssText += 'left: 0 !important';
  259. 		notification.style.cssText += 'line-height: 2.3 !important';  // 31px
  260. 		notification.style.cssText += 'right: 0 !important';
  261. 		notification.style.cssText += 'top: -100% !important';
  262. 		notification.style.cssText += 'transition: top .25s !important';
  263. 		notification.style.cssText += 'width: 100% !important';
  264. 		notification.style.cssText += 'white-space: nowrap !important';
  265. 		notification.style.cssText += 'z-index: 2147483647 !important';
  266. 		var closeButton = document.createElement('span');
  267. 		resetStyles(closeButton);
  268. 		closeButton.style.cssText += 'cursor: pointer !important';
  269. 		closeButton.style.cssText += 'display: inline-block !important';
  270. 		closeButton.style.cssText += 'float: right !important';
  271. 		closeButton.style.cssText += 'font: inherit !important';
  272. 		closeButton.style.cssText += 'line-height: 2.1 !important';
  273. 		closeButton.style.cssText += 'margin-left: .75em !important';
  274. 		closeButton.appendChild(document.createTextNode('╳'));
  275. 		function closeNotification(event) {
  276. 			if (event) event.stopPropagation();
  277. 			//notificationOffsetTop -= notification.offsetHeight;
  278. 			if (!--notifications) rootElement.style.cssText += 'margin-top: ' + marginTop + ' !important';
  279. 			notification.style.cssText += 'top: -' + notification.offsetHeight + 'px !important';
  280. 			setTimeout(function () {
  281. 				document.body.removeChild(notification);
  282. 			}, 250);
  283. 			return false;
  284. 		}
  285. 		closeButton.onclick = closeNotification;
  286. 		notification.appendChild(closeButton);
  287. 		notification.appendChild(document.createTextNode('🚫 ' + text));
  288. 		var numLinks = target == '_self' ? 1 : 2;
  289. 		for (var i = 0; i < numLinks; i ++) {
  290. 			var popupLink = document.createElement(!i ? 'a' : 'button');
  291. 			resetStyles(popupLink);
  292. 			if (i) {
  293. 				popupLink.style.cssText += '-moz-appearance: button !important';
  294. 				popupLink.style.cssText += '-webkit-appearance: button !important';
  295. 				popupLink.style.cssText += 'appearance: button !important';
  296. 				popupLink.style.cssText += 'background: ButtonFace !important';
  297. 				popupLink.style.cssText += 'border: 1px solid ButtonShadow !important';
  298. 				popupLink.style.cssText += 'color: ButtonText !important';
  299. 				popupLink.style.cssText += 'font: small-caption !important';
  300. 				popupLink.style.cssText += 'padding: .15em .5em !important';
  301. 			}
  302. 			else {
  303. 				popupLink.style.cssText += 'color: #00e !important';
  304. 				popupLink.style.cssText += 'color: -moz-nativehyperlinktext !important';
  305. 				popupLink.style.cssText += 'display: inline-block !important';
  306. 				popupLink.style.cssText += 'font: inherit !important';
  307. 				popupLink.style.cssText += 'max-width: 50% !important';
  308. 				popupLink.style.cssText += 'overflow: hidden !important';
  309. 				popupLink.style.cssText += 'text-decoration: underline !important';
  310. 				popupLink.style.cssText += 'text-overflow: ellipsis !important';
  311. 				popupLink.style.cssText += 'vertical-align: bottom !important';
  312. 				popupLink.style.cssText += 'white-space: nowrap !important';
  313. 				popupLink.setAttribute('href', uri);
  314. 				popupLink.setAttribute('target', target || '_blank');
  315. 			}
  316. 			if (title) popupLink.setAttribute('title', title);
  317. 			var linkText = i ? 'Open in this frame' : uri;
  318. 			popupLink.appendChild(document.createTextNode(linkText));
  319. 			popupLink.onclick = function(event) {
  320. 				event.stopPropagation();
  321. 				closeNotification();
  322. 				if (this.tagName.toLowerCase() != 'a') {
  323. 					location.href = uri;
  324. 				}
  325. 				else if (onclick) {
  326. 					onclick(event);
  327. 					return false;
  328. 				}
  329. 			};
  330. 			notification.appendChild(document.createTextNode(' '));
  331. 			notification.appendChild(popupLink);
  332. 		}
  333. 		if (!notifications) rootElement.style.cssText += 'transition: margin-top .25s !important';
  334. 		document.body.appendChild(notification);
  335. 		// Note: offsetHeight is zero while the element is not part of the document DOM tree
  336. 		notification.style.cssText += 'top: -' + notification.offsetHeight + 'px !important';
  337. 		setTimeout(function() {
  338. 			//notificationOffsetTop += notification.offsetHeight;
  339. 			notification.style.cssText += 'top: ' + notificationOffsetTop + 'px !important';
  340. 			if (!notifications) rootElement.style.cssText += 'margin-top: ' + (marginTop + notification.offsetHeight) + 'px !important';
  341. 			notifications ++;
  342. 		}, 0)
  343. 		if (timeout) {
  344. 			setTimeout(function () {
  345. 				closeNotification();
  346. 			}, timeout);
  347. 		}
  348. 	}
  349.  
  350. 	function resetStyles(element) {
  351. 		if (element.tagName.toLowerCase() != 'button') {
  352. 			element.style.cssText = 'background: transparent !important';
  353. 			element.style.cssText += 'border: none !important';
  354. 			element.style.cssText += 'border-radius: 0 !important';
  355. 			if (element.tagName.toLowerCase() == 'a')
  356. 				element.style.cssText += 'cursor: pointer !important';
  357. 		}
  358. 		else element.style.cssText += 'cursor: auto !important';
  359. 		element.style.cssText += 'bottom: auto !important';
  360. 		element.style.cssText += 'box-shadow: none !important';
  361. 		element.style.cssText += 'color: WindowText !important';
  362. 		element.style.cssText += 'font: medium serif !important';
  363. 		element.style.cssText += 'letter-spacing: 0 !important';
  364. 		element.style.cssText += 'line-height: normal !important';
  365. 		element.style.cssText += 'margin: 0 !important';
  366. 		element.style.cssText += 'opacity: 1 !important';
  367. 		element.style.cssText += 'outline: none !important';
  368. 		element.style.cssText += 'padding: 0 !important';
  369. 		element.style.cssText += 'position: static !important';
  370. 		element.style.cssText += 'text-align: left !important';
  371. 		element.style.cssText += 'text-shadow: none !important';
  372. 		element.style.cssText += 'text-transform: none !important';
  373. 		element.style.cssText += 'left: auto !important';
  374. 		element.style.cssText += 'right: auto !important';
  375. 		element.style.cssText += 'top: auto !important';
  376. 		element.style.cssText += 'white-space: normal !important';
  377. 		element.style.cssText += 'width: auto !important';
  378. 	}
  379. })();