CORS-via-GM

CORS via Greasemonkey/Tampermonkey

当前为 2023-05-01 提交的版本,查看 最新版本

作者
WeAreHighering
评分
0 0 0
版本
2.0
创建于
2023-05-01
更新于
2023-05-01
大小
2.3 KB
许可证
WTFPL
适用于

Description

This script enables web front-end developers to bypass CORS to directly access other domains in the easiest and no-fuss way.

Notice

The most important update of v2.0 compared to v1.0 is that it supports response data other than text!

Usages

(Just install this script and open the console on this page to try it out!)

  • Simplest trial

    CORSViaGM.init()
    fetch('https://example.com')
    
  • (Bad fun)
    Replace any first picture on the current page with the DuckDuckGo icon

    CORSViaGM.init()
    url = 'https://duckduckgo.com/favicon.ico'
    img = Object.assign(new Image, { src: URL.createObjectURL(await (await fetch(url)).blob()) })
    document.querySelector('img')?.replaceWith(img)
    
  • (More advanced)
    If you want to await window._CORSViaGM.inited, add the following element to the <head> of your index.html:

    <script>
    window._CORSViaGM = (inited => ({ inited: Object.assign(new Promise(r => inited = r), { done: inited }) }))()
    </script>