{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 够拽才男人 的问题《I set geolocation permission in the manifest, but》','https://www.manongdao.com/q-689531.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
I'm using a content-script in a chrome extension that I'm writing. I included geolocation in my list of permissions, but on every webpage I still get asked if I want to share my location.
I thought if I set geolocation in the list of permissions, I would avoid this? Here's the relevant code from my manifest.json:
"permissions": ["geolocation"],
"content_scripts": [
{
"matches": ["<all_urls>"],
"js": ["main.js"]
}
]
And how I'm using it:
navigator.geolocation.getCurrentPosition(function(position) {
console.log("latitude=" + position.coords.latitude +
", longitude=" + position.coords.longitude);
});
Because you are calling the geolocation from a content script, the context of the target page is used and the request looks like it's coming from the target page. So each different domain must be authorized. (Content scripts are essentially injected javascript with enhanced privileges.)
To avoid the need for domain-by-domain permission, call the geolocation API (which is an HTML5 API, not a chrome.* API) from an Event Page.
Here's a complete extension that demonstrates the process:
manifest.json:
main.js:
eventPage.js: