Roblox Friend Remover

Remove all of your friends on Roblox

這裡只顯示彼此間有代碼差異的版本。 顯示所有版本。

  • v3000 2025-07-29

    • Runs earlier in page lifecycle

      • Added @run-at document-start so the script hooks in before Roblox fires its requests.

    • Two‑pass workflow with auto‑reload

      • First pass gathers user ID & confirmation, stores CSRF token in sessionStorage, then reloads page with ?rmf=true&userId=....
      • Second pass detects rmf=true, skips prompts, and executes unfriend logic immediately.

    • Query‑string parameters

      • Uses URLSearchParams to read/write rmf and userId, keeping state across reload.

    • Header capture for extra auth context

      • Performs initial GET to friends endpoint, merges returned headers with stored token for a more complete request.

    • Credential‑aware fetch calls

      • All requests now include credentials: 'include' to ensure cookies (login) are sent.

    • Minor fixe

      • 3‑second delay before prompt to let Roblox.CurrentUser initialize.
  • v2025-03-08 2025-03-09

    Added

    • Improved User ID Handling: Automatically retrieves the current user's Roblox ID using Roblox.CurrentUser.userId. If unavailable, prompts the user to input their ID manually.
    • Error Messaging: Added an alert if no Roblox user ID is available, guiding users to reload the page.
    • Simplified Headers: Removed unnecessary headers (accept, accept-language, sec-ch-ua-*, etc.) from fetch requests, relying on browser defaults for better compatibility and performance.
    • Direct CSRF Token Retrieval: Replaced the custom getCsrfToken() function with Roblox.XsrfToken.getToken() for more reliable CSRF token handling. If unavailable, prompts the user to input their token manually.
    • Code Cleanup: Reduced redundant code and improved readability by simplifying the fetch logic.

    Removed

    • Custom CSRF Token Fetch Logic: The old implementation of fetching a CSRF token using a dummy request was replaced with Roblox's built-in method.
    • Unnecessary Headers in Fetch Requests: Removed headers that cannot be modified by fetch and are automatically handled by the browser.

    Fixed

    • Token Fetch Reliability: Resolved issues where CSRF tokens were not being retrieved reliably, causing friend removal to fail.

    Changed

    • Versioning Format: Updated versioning from a numeric format (e.g., 2.0) to a date-based format (2025-03-08) for better tracking of updates.
  • v2.0 2022-03-04

    Fix x-csrf-token auth. This script will now automatically fetch and set the required auth header.
  • v1.1 2022-02-27
  • v1.1 2022-02-27

    Fix User ID
  • v1.0 2022-02-27