Sep 27, 2017 Web Development + Tech

Using DevTools to Sidestep Obnoxious Websites

Modern browser DevTools, besides being gosh-darned amazing for doing our jobs as front end web developers, can be used to strong arm our way through problems we encounter on the web through our day-to-day normal usage of it.

I bet most of you have run across a paywall on a publication. It tried to get you to pay for the site before you could read the article. But if they did a superficial job, by just laying some elements on top of the article underneath, DevTools to the rescue!

https://twitter.com/coderado/status/913092672948015105

Jeremy there is aware of the potential morality implications of this. Businesses have to do business activities, after all. Charles says he’ll only do it if there isn’t money involved but just a login hurdle:

I try to respect paywalls; journalists are trying to make a living. That said, I've used DevTools to access free content locked behind login

— $ cd ./doing-it-anyways (@cdvillard) September 27, 2017

https://twitter.com/cdvillard/status/913105120761716737

To reverse the morality, some might say, you sometimes need to fix a site that is preventing you from doing the thing you need to do. Wes Bos has done a little form hacking to make sure his Canadian address was accepted:

US post office didn’t allow Canadian billing address CC so I dev tools'd the state dropdown to add Ontario and it passed + made the charge!

— Wes Bos (@wesbos) September 5, 2017

https://twitter.com/wesbos/status/905076678547951617

That seems like fair play to me! Tim Murtaugh says he’s used it to get a badly-validated email through a system.

https://twitter.com/murtaugh/status/913091660367765504

I know plus signs are particularly useful for Gmail, where using a plus sign at the end of your name (like chriscoyier+mediatemple@gmail.com) will automatically tag that email with “mediatemple” when it comes into the inbox.

Using DevTools like this can be an education moment as well. In a sense, you’re doing light “hacking” to a website, so that can be eye opening for students and novices alike. It goes a long way toward teaching why your servers need to validated inputs too, not just the browser:

https://twitter.com/jcasabona/status/913092088941744133

You could use DevTools in increase security too, if you were so inclined. Like those annoying sites where you can’t paste a password:

On a site that blocked pasting passwords. No way I was going to type my 20-char pw! So MacGyver/DevTool'd the input's value attribute.

— Olivier Forget (@teleclimber) September 27, 2017

https://twitter.com/teleclimber/status/913094173892517890

Pasting a password often means you’re using something so complex it’s more secure, not less.

Or how about making sure you pay your bills ontime, by fixing their dang site for them?

https://twitter.com/apolakos/status/913098793633140736

Playing a joke is a fun idea as well! I love this idea, where he gamed his employer’s little health incentive system, but then declined the prize anyway:

Company I worked for rewarded employees for exercise. I devtool’d that I ran 5 marathons that weekend. Got me a $100 gift card, I declined.

— yo boy bryan (@beeg_smith) September 27, 2017

https://twitter.com/BGSIII/status/913093868693757953

Or sneaking a few extra kids into your dorm room:

A college website validated in js only 2 guests allowed. I disabled the check and submitted; all 4 friends had name tags when we arrived.

— ï»¿Sam Rueby (Taylor's Version) 🔜 #MSBuild (@SamRueby) September 27, 2017

https://twitter.com/SamRueby/status/913096875334557696

Thinking about this from the flip side… Let’s say you’re a company that really doesn’t want people messing with things via DevTools. My general advice would be “let it go, this isn’t a fight you wanna start”, but it’s still an interesting thing to think about from a technical perspective. Ana Tudor recently wrote about this in How to be evil (but please don’t!) – the modals & overlays edition. In this article, Ana talks about a number of weird and interesting ways to prevent users from doing things in DevTools, starting with things like blocking keyboard commands and ending with interesting things like using MutationObserver to watch from DOM changes.

DevTools

About the Author Chris is a web designer and developer. He writes about all things web at CSS-Tricks, talks about all things web at conferences around the world and on his podcast ShopTalk, and co-founded the web coding playground CodePen. More by this Author

Dec 5, 2022 News

A New Chapter For Media Temple

For the past 24 years, Media Temple dedicated itself to serving the needs of the digital creative community.

Joseph Palumbo

Mar 8, 2022 Web Development + Tech

How to Prevent Emails from Being Marked as Spam

According to statistics from DataProt, about 122.3 billion email spam messages are sent daily.

Alex Alabbas

Feb 22, 2022 Web Development + Tech

6 Domain Name Trends for 2022

In the simplest terms, a domain name is your web address, but you can also think of it as the main entrance to your online space.

Alex Alabbas

Feb 15, 2022 Web Development + Tech

The 5 Elements (or Components) of WordPress

A Captain Planet Metaphor for the 5 Components of WordPress WorkPress is an open-source, dynamic, content management system (CMS powering over one third of the world’s websites.

Allison Bondi

Using DevTools to Sidestep Obnoxious Websites

Related Posts