Geolocation

W3C Editor's Draft 05

More details about this document
This version:
https://w3c.github.io/geolocation/
Latest published version:
https://www.w3.org/TR/geolocation/
Latest editor's draft:
https://w3c.github.io/geolocation/
History:
https://www.w3.org/standards/history/geolocation/
Commit history
Test suite:
https://wpt.live/geolocation/
Implementation report:
https://w3c.github.io/geolocation/reports/implementation.html
Editors:
Marcos Cáceres ( Apple Inc. )
Reilly Grant ( Google )
Former editor:
Andrei Popescu ( Google Inc. )
Feedback:
GitHub w3c/geolocation ( pull requests , new issue , open issues )
Errata:
Errata exists .
Browser support:
caniuse.com

Copyright © 2025 World Wide Web Consortium . W3C ® liability , trademark and permissive document license rules apply.

Abstract

Geolocation provides access to geographical location information associated with the hosting device.

Status of This Document

This is a preview

Do not attempt to implement this version of the specification. Do not reference this version as authoritative in any way. Instead, see https://w3c.github.io/geolocation/ for the Editor's draft.

This section describes the status of this document at the time of its publication. A list of current W3C publications and the latest revision of this technical report can be found in the W3C standards and drafts index .

Since this specification become a W3C Recommendation on 01 September 2022, the following substantive additions and/or corrections have been proposed:

A more detailed list of changes can be found in section D. Change log . Reviewers of the document can identify candidate additions and/or corrections by their distinctive styling in the document.

This document was published by the Devices and Sensors Working Group and the Web Applications Working Group as an Editor's Draft.

Publication as an Editor's Draft does not imply endorsement by W3C and its Members.

This is a draft document and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to cite this document as other than a work in progress. Future updates to this upcoming Recommendation may incorporate new features .

This document was produced by groups operating under the W3C Patent Policy . W3C maintains a public list of any patent disclosures (Devices and Sensors Working Group) and a public list of any patent disclosures (Web Applications Working Group) made in connection with the deliverables of each group; these pages also include instructions for disclosing a patent. An individual who has actual knowledge of a patent that the individual believes contains Essential Claim(s) must disclose the information in accordance with section 6 of the W3C Patent Policy .

This document is governed by the 18 August 2025 W3C Process Document .

1. Introduction

This section is non-normative.

Geolocation defines a high-level interface to location information associated only with the device hosting the implementation. Common sources of location information include Global Positioning System (GPS) and location inferred from network signals such as IP address, RFID, WiFi and Bluetooth MAC addresses, and GSM/CDMA cell IDs, as well as user input. The API itself is agnostic of the underlying location information sources, source s, and no guarantee is given that the API returns the device's actual location.

This specification provides two ways for users to share their location: a precise position and an approximate position .

A precise position is a position returned by the underlying location information source . By default, any location data is considered precise, regardless of its accuracy estimate, unless it has been explicitly coarsened by an approximate location information source to be an approximate position .

An approximate position is a less precise, privacy-preserving representation of the user's location. Instead of providing precise coordinates, the user agent MUST return a location that is intentionally coarsened to a larger area, such as the nearest city, postal code, or a predefined region. This is often sufficient for applications that don't need to know the user's precise position , for example, a weather application that only needs a city-level location. By sharing an approximate position , users can still get the benefit of a location-aware application without revealing their precise position .

An approximate location information source is a location information source that returns positions that have been intentionally obfuscated to make it more difficult to recover the true location.

If an end user grants permission , Geolocation :

1.1 Scope

This section is non-normative.

This specification is limited to providing a scripting API for retrieving geographic position information associated with a hosting device. The geographic position information is provided in terms of World Geodetic System coordinates [ WGS84 ]. It does not include providing a markup language of any kind, nor does not include defining a new URL scheme for building URLs that identify geographic locations.

2. Examples

This section is non-normative.

The API is designed to enable both "one-shot" position requests and repeated position updates. The following examples illustrate common use cases.

2.1 Get current position

This section is non-normative.

Request the user's current location. If the user allows it, you will get back a position object. The website can influence the position's accuracy by using the accuracyMode option. By default, the user agent will provide a "precise" location, but a website can request an "approximate" location if it doesn't require high accuracy, which helps protect user privacy.

2.2 Watch a position

This section is non-normative.

Request the ability to watch user's current location. If the user allows it, you will get back continuous updates of the user's position.

2.3 Stop watching a position

This section is non-normative.

Stop watching for position changes by calling the clearWatch () method.

2.4 Handling errors

This section is non-normative.

When an error occur, the second argument of the watchPosition () or getCurrentPosition () method gets called with a GeolocationPositionError error, which can help you figure out what might have gone wrong.

2.5 Using maximumAge as cache control

This section is non-normative.

By default, the API always attempts to return a cached position so long as it has a previously acquired position. position that matches the requested accuracyMode . In this example, we accept a precise position whose age is no greater than 10 minutes. If the user agent does not have a fresh enough cached position object, object of the correct accuracy, it automatically acquires a new position.

Similarly, you can request a cached approximate position.

2.6 Using timeout

This section is non-normative.

If you require location information in a time sensitive manner, you can use the PositionOptions timeout member to limit the amount of time you are willing to wait to acquire a position .

2.7 Enabling the API in third-party contexts

This section is non-normative.

The default allowlist of 'self' allows API usage in same-origin nested frames but prevents third-party content from using the API.

Third-party usage can be selectively enabled by adding the allow ="geolocation" or allow="geolocation-approximate" attribute to an iframe element: element. Note that if geolocation is allowed, geolocation-approximate is also implicitly allowed.

Alternatively, the API can be disabled in a first-party context by specifying an HTTP response header: header. Disabling geolocation-approximate will also disable geolocation .

See Permissions Policy for more details about the Permissions-Policy HTTP header.

3. Privacy considerations

This section is non-normative.

The API defined in this specification is used to retrieve the geographic location of a hosting device. In almost all cases, this information also discloses the location of the user of the device, thereby potentially compromising the user's privacy.

To mitigate this privacy risk, this specification introduces the accuracyMode option, which allows the application to request an approximate position . This allows applications to function without needing the user's precise position , thus offering a more privacy-friendly alternative. When an application requests an approximate position , the user agent can provide a less precise location that still meets the application's needs while protecting the user's precise position . Even when a precise position is requested, the user agent can provide an approximate position instead, for example, if the user has only granted permission for approximate accuracy.

3.2 Privacy considerations for recipients of location information

This section is non-normative.

Note : Developers' responsibility with this sensitive data

This section applies to "recipients", which generally means developers utilizing Geolocation . Although it's impossible for the user agent, or this specification, to enforce these requirements, developers need to read this section carefully and do their best to adhere to the suggestions below. Developers need to be aware that there might be privacy laws in their jurisdictions that can govern the usage and access to users' location data.

Recipients ought to only request position information when necessary, and only use the location information for the task for which it was provided to them. Recipients ought to dispose of location information once that task is completed, unless expressly permitted to retain it by the user. Recipients need to also take measures to protect this information against unauthorized access. If location information is stored, users need to be allowed to update and delete this information.

In line with this principle, recipients are strongly encouraged to request the lowest level of location accuracy that is sufficient for their application's functionality. For instance, if an application only needs to know the user's city, it should request an approximate position by setting the accuracyMode option to "approximate" . This is preferable to requesting a precise position , which is done by either setting accuracyMode to "precise" or by leaving the option unset. This practice of data minimization is a key aspect of respecting user privacy.

The recipients of location information need to refrain from retransmitting the location information without the user’s express permission. Care needs to be taken when retransmitting and the use of encryption is encouraged.

Recipients ought to clearly and conspicuously disclose the fact that they are collecting location data, the purpose for the collection, how long the data is retained, how the data is secured, how the data is shared if it is shared, how users can access, update and delete the data, and any other choices that users have with respect to the data. This disclosure needs to include an explanation of any exceptions to the guidelines listed above.

3.3 Implementation considerations

This section is non-normative.

Implementers are advised to consider the following aspects that can negatively affect the privacy of their users: in certain cases, users can inadvertently grant permission to the user agent to disclose their location to websites. In other cases, the content hosted at a certain URL changes in such a way that the previously granted location permissions no longer apply as far as the user is concerned. Or the users might simply change their minds.

Predicting or preventing these situations is inherently difficult. Mitigation and in-depth defensive measures are an implementation responsibility and not prescribed by this specification. However, in designing these measures, implementers are advised to enable user awareness of location sharing, and to provide access to user interfaces that enable revocation of permissions.

3.4 Checking permission to use the API

Geolocation is a default powerful feature identified by the name s "geolocation" . for precise position and "geolocation-approximate" for approximate position .

When checking To request geolocation permission for a given PermissionDescriptor descriptor , the user agent MUST run the following steps. These steps override the default behavior of request permission to use for these features.

  1. If descriptor . name is "geolocation":
    1. Prompt the user to choose between granting permission for precise position , granting permission for approximate position , or denying permission.
    2. If the user grants permission for precise position :
      1. Set the permission state of "geolocation" to "granted".
      2. Set the permission state of "geolocation-approximate" to "granted".
      3. Return "granted".
    3. If the user grants permission for approximate position :
      1. Set the permission state of "geolocation-approximate" to "granted".
      2. Return "prompt".
    4. If the API, a user denies permission:
      1. Set the permission state of "geolocation" to "denied".
      2. Set the permission state of "geolocation-approximate" to "denied".
      3. Return "denied".
  2. If descriptor . name is "geolocation-approximate":
    1. Prompt the user to choose between granting permission for approximate position or denying permission.
    2. If the user grants permission for approximate position :
      1. Set the permission state of "geolocation-approximate" to "granted".
      2. Return "granted".
    3. If the user denies permission:
      1. Set the permission state of "geolocation" to "denied".
      2. Set the permission state of "geolocation-approximate" to "denied".
      3. Return "denied".

A user agent MAY also suggest time-based permission lifetimes , such as "24 hours", "1 week", or choose to remember the permission grant indefinitely. However, it is RECOMMENDED that a user agent prioritize restricting the permission lifetime to a single session: This can be, for example, until the realm is destroyed, the end-user navigates away from the origin , or the relevant browser tab is closed.

3.5 Preventing Precise Location Reconstruction

A malicious actor could potentially infer a user's precise position by collecting and correlating multiple, distinct approximate position s. To mitigate this risk of a refinement attack, when a site receives an approximate position , any subsequent calls from that same site within a user-agent-defined time window SHOULD return the exact same, cached approximate position data. A user agent might, for example, use a time window of 15 minutes.

4. Security considerations

There are no security considerations associated with Geolocation at the time of publication. However, readers are advised to read the 3. Privacy considerations .

6. Geolocation interface and callbacks 

WebIDL[Exposed=Window]
interface Geolocation {
  undefined getCurrentPosition (
    PositionCallback successCallback,
    optional PositionErrorCallback? errorCallback = null,
    optional PositionOptions options = {}
  );
  long watchPosition (
    PositionCallback successCallback,
    optional PositionErrorCallback? errorCallback = null,
    optional PositionOptions options = {}
  );
  undefined clearWatch (long watchId);
};
callback PositionCallback = undefined (
  GeolocationPosition position
);
callback PositionErrorCallback = undefined (
  GeolocationPositionError positionError
);

6.1 Internal slots

Instances of Geolocation are created with the internal slots in the following table:

Internal slot Description
[[cachedPrecisePosition]] A GeolocationPosition , initialized to null. It's a reference to the last acquired precise position and serves as a cache. A user agent MAY evict [[cachedPrecisePosition]] by resetting it to null at any time for any reason.
[[cachedApproximatePosition]] A GeolocationPosition , initialized to null. It's a reference to the last acquired approximate position and serves as a cache. A user agent MAY evict [[cachedApproximatePosition]] by resetting it to null at any time for any reason.
[[cachedPosition]] A GeolocationPosition , initialized to null. It's a reference to the last acquired position and serves as a cache. A user agent MAY evict [[cachedPosition]] by resetting it to null at any time for any reason.
[[watchIDs]] Initialized as an empty list of unsigned long items .

6.2 getCurrentPosition() method

The getCurrentPosition ( successCallback , errorCallback , options ) method steps are:

  1. If the current settings object 's relevant global object 's associated Document is not fully active : If this 's relevant global object 's associated Document is not fully active :
    1. Call back with error errorCallback and POSITION_UNAVAILABLE .
    2. Terminate this algorithm.
  2. Request a position passing this , successCallback , errorCallback , and options .

6.3 watchPosition() method

The watchPosition ( successCallback , errorCallback , options ) method steps are:

  1. If the current settings object 's relevant global object 's associated Document is not fully active : If this 's relevant global object 's associated Document is not fully active :
    1. Call back with error passing errorCallback and POSITION_UNAVAILABLE .
    2. Return 0.
  2. Let watchId be an implementation-defined unsigned long that is greater than zero.
  3. Append watchId to this 's [[watchIDs]] .
  4. Request a position passing this , successCallback , errorCallback , options , and watchId .
  5. Return watchId .

6.4 clearWatch() method

When clearWatch() is invoked, the user agent MUST :

  1. Remove watchId from this 's [[watchIDs]] .

6.5 Request a position

To request a position , pass a Geolocation geolocation , a PositionCallback successCallback , a PositionErrorCallback? errorCallback , a PositionOptions options , and an optional watchId :

  1. Let watchIDs be geolocation 's [[watchIDs]] .
  2. Let document be the geolocation 's relevant global object 's associated Document .
  3. Let permissionName be "geolocation-approximate" if options . accuracyMode is "approximate", otherwise let it be "geolocation".
  4. If document is not allowed to use the "geolocation" permissionName feature:
    1. If watchId was passed, remove watchId from watchIDs .
    2. Call back with error passing errorCallback and PERMISSION_DENIED .
    3. Terminate this algorithm.
  5. If geolocation 's environment settings object is a non-secure context :
    1. If watchId was passed, remove watchId from watchIDs .
    2. Call back with error passing errorCallback and PERMISSION_DENIED .
    3. Terminate this algorithm.
  6. If document 's visibility state is "hidden", wait for the following page visibility change steps to run:
    1. Assert : document 's visibility state is "visible".
    2. Continue to the next steps below.
  7. Let descriptor be a new PermissionDescriptor whose name is "geolocation" . permissionName .
  8. In parallel :
    1. Set permission to request geolocation permission to use for descriptor .
      2. If
    2. Let handle permission denial is "denied", then: be the following steps:
      1. If watchId was passed, remove watchId from watchIDs .
      2. Call back with error passing errorCallback and PERMISSION_DENIED .
      3. Terminate this algorithm.
    3. If permission is "denied":
      1. If options . accuracyMode is "approximate", then run handle permission denial .
      2. Otherwise:
        1. Let approximatePermission be get the current permission state of "geolocation-approximate".
        2. If approximatePermission is "denied", then run handle permission denial .
    4. Wait to acquire a position passing successCallback , errorCallback , options , and watchId .
    5. If watchId was not passed, terminate this algorithm.
    6. While watchIDs contains watchId :
      1. Wait for a significant change of geographic position . What constitutes a significant change of geographic position is left to the implementation. User agents MAY impose a rate limit on how frequently position changes are reported. User agents MUST consider invoking set emulated position data as a significant change.
      2. If document is not fully active or visibility state is not "visible", go back to the previous step and again wait for a significant change of geographic position .
        Note : Position updates are exclusively for fully-active visible documents
      3. Wait to acquire a position passing successCallback , errorCallback , options , and watchId .

6.6 Acquire a position

To acquire a position , passing PositionCallback successCallback , a PositionErrorCallback? errorCallback , PositionOptions options , and an optional watchId .

  1. If watchId was passed and this 's [[watchIDs]] does not contain watchId , terminate this algorithm.
  2. Let acquisitionTime be a new EpochTimeStamp that represents now.
  3. Let timeoutTime be the sum of acquisitionTime and options . timeout .
  4. Let cachedPosition be this 's [[cachedPosition]] . Create an implementation-specific timeout task that elapses at timeoutTime , during which it tries to acquire the device's position by running the following steps:
    1. Let precisePermission be get the current permission state of "geolocation".
    2. Let approximatePermission be get the current permission state of "geolocation-approximate".
    3. Let effectiveAccuracy be null.
    4. If options . "geolocation" accuracyMode . is "approximate":
      1. If approximatePermission is "granted", set effectiveAccuracy to "approximate".
    5. Otherwise, if options . accuracyMode is "precise":
      1. If permission precisePermission is "denied": "granted", set effectiveAccuracy to "precise".
      2. Otherwise, if approximatePermission is "granted", set effectiveAccuracy to "approximate".
    6. If effectiveAccuracy is null:
      1. Stop timeout .
      2. Do the user or system denied permission failure case step.
      3. Terminate this algorithm.
    7. If permission is "granted": Check if an emulated position should be used by running the following steps:
      1. Let emulatedPositionData be get emulated position data passing this .
      2. If emulatedPositionData is not null:
        1. If emulatedPositionData is a GeolocationPositionError :
          1. Call back with error passing errorCallback and emulatedPositionData . code .
          2. Terminate this algorithm.
        2. Let position be a new GeolocationPosition passing emulatedPositionData , acquisitionTime and , options . enableHighAccuracy . , and effectiveAccuracy .
        3. Queue a task on the geolocation task source with a step that invokes successCallback with « position » and " report ".
        4. Terminate this algorithm.
    8. Let cachedPosition be null.
    9. If effectiveAccuracy is "precise":
      1. Set cachedPosition to this 's [[cachedPrecisePosition]] .
    10. Otherwise, if effectiveAccuracy is "approximate":
      1. Set cachedPosition to this 's [[cachedApproximatePosition]] .
    11. Let position be null.
    12. If cachedPosition is not null, and options . maximumAge is greater than 0:
      1. Let cacheTime be acquisitionTime minus the value of the options . maximumAge member.
      2. If cachedPosition 's timestamp 's value is greater than cacheTime , and ( effectiveAccuracy is "approximate" or ( effectiveAccuracy is "precise" and cachedPosition . [[isHighAccuracy]] equals options . enableHighAccuracy )) , set position to cachedPosition . :
        1. Queue a task on the geolocation task source with a step that invokes successCallback with « cachedPosition » and " report ".
        2. Terminate this algorithm.
    13. Otherwise, if position is not cachedPosition , try to acquire position data from the underlying system, with the following considerations:
      1. If effectiveAccuracy is "approximate", the user agent SHOULD acquire a position with a level of accuracy that is sufficient to protect user privacy (e.g., city-level accuracy). The enableHighAccuracy member is ignored.
      2. If effectiveAccuracy is "precise", the user agent SHOULD acquire a position, optionally taking into consideration the value of options . enableHighAccuracy during acquisition. .
    14. If the timeout elapses during acquisition, or acquiring the device's position results in failure:
      1. Stop the timeout .
      2. Go to dealing with failures .
      3. Terminate this algorithm.
    15. If acquiring the position data from the system succeeds:
      1. Let positionData be a map with the following name/value pairs based on the acquired position data:
        "longitude"
        A double that represents the longitude coordinates on the Earth's surface in degrees, using the [ WGS84 ] coordinate system. Longitude measures how far east or west a point is from the Prime Meridian.
        "altitude"
        A double? that represents the altitude in meters above the [ WGS84 ] ellipsoid, or null if not available. Altitude measures the height above sea level.
        "accuracy"
        A non-negative double that represents the accuracy value indicating the 95% confidence level in meters. Accuracy measures how close the measured coordinates are to the true position.
        "altitudeAccuracy"
        A non-negative double? that represents the altitude accuracy, or null if not available, indicating the 95% confidence level in meters. Altitude accuracy measures how close the measured altitude is to the true altitude.
        "speed"
        A non-negative double? that represents the speed in meters per second, or null if not available. Speed measures how fast the device is moving.
        "heading"
        A double? that represents the heading in degrees, or null if not available or the device is stationary. Heading measures the direction in which the device is moving relative to true north.
      2. Set position to a new GeolocationPosition passing positionData , acquisitionTime and , options . enableHighAccuracy . , and effectiveAccuracy .
      3. If effectiveAccuracy is "precise":
        1. Set this 's [[cachedPosition]] [[cachedPrecisePosition]] to position .
      4. Otherwise, if effectiveAccuracy is "approximate":
        1. Set this 's [[cachedApproximatePosition]] to position .
      1. Set position to a new GeolocationPosition passing acquisitionTime and options . enableHighAccuracy .
      2. Set this 's [[cachedPosition]] to position .
    16. Stop the timeout .
    17. Queue a task on the geolocation task source with a step that invokes successCallback with « position » and " report ".
Dealing with failures: If acquiring a position fails, do one of the following based on the condition that matches the failure: User or system denied permission: Call back with error passing errorCallback and PERMISSION_DENIED . Note : Browser permission VS OS permission On certain platforms, there can be a circumstance where the user has granted the user agent permission to use Geolocation at the browser-level, but the permission to access location services has been denied at the OS level. Timeout elapsed: Call back with error with errorCallback and TIMEOUT . Data acquisition error or any other reason: Call back with error passing errorCallback and POSITION_UNAVAILABLE .

6.7 Call back with error

When instructed to call back with error , given an PositionErrorCallback? callback and an unsigned short code :

  1. If callback is null, return.
  2. Let error be a newly created GeolocationPositionError instance whose code attribute is initialized to code .
  3. Queue a task on the geolocation task source with a step that invokes callback with « error » and " report ".

7. PositionOptions dictionary 

WebIDLenum AccuracyMode {
  "precise",
  "approximate"
};
dictionary PositionOptions {
  AccuracyMode accuracyMode = "precise";  boolean enableHighAccuracy = false;
  [Clamp] unsigned long timeout = 0xFFFFFFFF;
  [Clamp] unsigned long maximumAge = 0;
};

7.1 accuracyMode member

The accuracyMode member is used to request a specific level of accuracy. It can be set to "precise" to request the most accurate location data available, or "approximate" to receive a less accurate location that protects user privacy. The default value is "precise".

Note : Interaction with enableHighAccuracy

7.2 enableHighAccuracy member

The enableHighAccuracy member provides a hint that the application would like to receive the most accurate location data. The intended purpose of this member is to allow applications to inform the implementation that they do not require high accuracy geolocation fixes and, therefore, the implementation MAY avoid using geolocation providers that consume a significant amount of power (e.g., GPS).

Note : A word of warning about enableHighAccuracy

7.2 7.3 timeout member

The timeout member denotes the maximum length of time, expressed in milliseconds, before acquiring a position expires.

Note : When is the timeout calculated?

The time spent waiting for the document to become visible and for obtaining permission to use the API is not included in the period covered by the timeout member. The timeout member only applies when acquiring a position begins.

Note : Immediate cancellation

7.3 7.4 maximumAge member

The maximumAge member indicates that the web application is willing to accept a cached position whose age is no greater than the specified time in milliseconds.

8. GeolocationPosition interface

] 
WebIDL[Exposed=Window, SecureContext]
interface GeolocationPosition {
  readonly attribute GeolocationCoordinates coords;
  readonly attribute

  readonly attribute EpochTimeStamp timestamp;
  readonly attribute AccuracyMode accuracyMode;

  [Default] object toJSON();
};

8.1 coords attribute

The coords attribute contains geographic coordinates.

8.2 timestamp attribute

The timestamp attribute represents the time when the geographic position of the device was acquired.

8.3 accuracyMode attribute

The accuracyMode attribute indicates the accuracy level of the position, which can be either "precise" or "approximate" . This reflects the level of accuracy that was granted and used to obtain the position.

8.4 toJSON() method

The toJSON() method returns a JSON representation of the GeolocationPosition object.

8.4 8.5 Internal slots

Instances of GeolocationPositionError are created with the internal slots in the following table:

Internal slot Description
[[isHighAccuracy]] A boolean that records the value of the enableHighAccuracy member when this GeolocationPosition is created .

8.5 8.6 Task sources

The following task source is defined by this specifications.

The geolocation task source
Used by this specification to queue up non-blocking PositionCallback and PositionErrorCallback when performing position requests .

9. GeolocationCoordinates interface 

WebIDL[Exposed=Window, SecureContext]
interface GeolocationCoordinates {
  readonly attribute double accuracy;
  readonly attribute double latitude;
  readonly attribute double longitude;
  readonly attribute double? altitude;
  readonly attribute double? altitudeAccuracy;
  readonly attribute double? heading;
  readonly attribute double? speed;
  [Default] object toJSON();
};

9.1 latitude , longitude , and accuracy attributes

The latitude and longitude attributes are geographic coordinates specified in decimal degrees. The latitude and longitude attributes denote the position, specified as a real number of degrees, in the [ WGS84 ] coordinate system. The accuracy attribute denotes the position accuracy radius in meters.

9.2 altitude and altitudeAccuracy attributes

The altitude attribute denotes the height of the position, specified in meters above the [ WGS84 ] ellipsoid.

The altitudeAccuracy attribute represents the altitude accuracy in meters (e.g., 10 meters).

9.3 heading attribute

The heading attribute denotes the direction of travel of the hosting device and is specified in degrees, where 0° ≤ heading < 360°, counting clockwise relative to the true north.

9.4 speed attribute

The speed attribute denotes the magnitude of the horizontal component of the hosting device's current velocity in meters per second.

9.5 toJSON() method

The toJSON() method returns a JSON representation of the GeolocationCoordinates object.

9.6 Constructing a GeolocationPosition

A new GeolocationPosition is constructed with map positionData , EpochTimeStamp timestamp and , boolean isHighAccuracy , and string effectiveAccuracy by performing the following steps:

  1. Let coords be a newly created GeolocationCoordinates instance.
  2. For each key value in positionData :
    1. Set coords 's attribute named key to value .
  3. Return a newly created GeolocationPosition instance with its coords attribute initialized to coords and , timestamp attribute initialized to timestamp , accuracyMode attribute initialized to effectiveAccuracy , and its [[isHighAccuracy]] internal slot set to isHighAccuracy .

A new GeolocationPosition is constructed with EpochTimeStamp timestamp and boolean isHighAccuracy by performing the following steps:

  1. Let coords be a newly created GeolocationCoordinates instance:
    1. Initialize coord 's latitude attribute to a geographic coordinate in decimal degrees.
    2. Initialize coord 's longitude attribute to a geographic coordinate in decimal degrees.
    3. Initialize coord 's accuracy attribute to a non-negative real number. The value SHOULD correspond to a 95% confidence level with respect to the longitude and latitude values.
    4. Initialize coord 's altitude attribute in meters above the [ WGS84 ] ellipsoid, or null if the implementation cannot provide altitude information.
    5. Initialize coord 's altitudeAccuracy attribute as non-negative real number, or to null if the implementation cannot provide altitude information. If the altitude accuracy information is provided, it SHOULD correspond to a 95% confidence level.
    6. Initialize coord 's speed attribute to a non-negative real number, or as null if the implementation cannot provide speed information.
    7. Initialize coord 's heading attribute in degrees, or null if the implementation cannot provide heading information. If the hosting device is stationary (i.e., the value of the speed attribute is 0), then initialize the heading to NaN .
  2. Return a newly created GeolocationPosition instance with its coords attribute initialized to coords and timestamp attribute initialized to timestamp , and its [[isHighAccuracy]] internal slot set to isHighAccuracy .

10. GeolocationPositionError interface 

WebIDL[Exposed=Window]
interface GeolocationPositionError {
  const
  const
  const

  const unsigned short PERMISSION_DENIED = 1;
  const unsigned short POSITION_UNAVAILABLE = 2;
  const unsigned short TIMEOUT = 3;

  readonly attribute unsigned short code;
  readonly attribute DOMString message;
};

10.1 Constants

PERMISSION_DENIED (numeric value 1)
Request a position failed because the user denied permission to use the API or the request was made from an non-secure context .
POSITION_UNAVAILABLE (numeric value 2)
Acquire a position failed.
TIMEOUT (numeric value 3)
The length of time specified by the timeout member has elapsed before the user agent could successfully acquire a position .

10.2 code attribute

The code attribute returns the value it was initialized to (see 10.1 Constants for possible values).

10.3 message attribute

The message attribute is a developer-friendly textual description of the code attribute.

Note : Don't show .message to users!

11. Permissions policy

This specification defines a two policy-controlled feature features identified by the token string strings "geolocation" and "geolocation-approximate" . Its Their default allowlist is 'self' .

The "geolocation" policy controls access to precise position , while "geolocation-approximate" controls access to approximate position . Granting "geolocation" permission implicitly grants "geolocation-approximate" permission as well, while restricting "geolocation-approximate" also restricts "geolocation".

12. Emulation

For the purposes of user-agent automation and application testing, this document defines geolocation emulations.

Each top-level traversable has an associated emulated position data , which is data representing GeolocationCoordinates , GeolocationPositionError or null, initially null.

To set emulated position data , given navigable navigable and an emulatedPositionData :

  1. Assert emulatedPositionData is either null, a GeolocationCoordinates , or a GeolocationPositionError .
  2. Let traversable be navigable ’s top-level traversable .
  3. If traversable is not null:
    1. Set traversable 's associated emulated position data to emulatedPositionData .
    2. User agents MUST consider this as a "significant change" in the wait for a significant change of geographic position step.

To get emulated position data , given Geolocation geolocation :

  1. Let navigable be geolocation 's relevant global object 's associated Document 's node navigable .
  2. If navigable is null, return null.
  3. Let traversable be navigable ’s top-level traversable .
  4. If traversable is null, return null.
  5. Return traversable 's associated emulated position data .

13. Conformance

As well as sections marked as non-normative, all authoring guidelines, diagrams, examples, and notes in this specification are non-normative. Everything else in this specification is normative.

The key words MAY , MUST , RECOMMENDED , and SHOULD in this document are to be interpreted as described in BCP 14 [ RFC2119 ] [ RFC8174 ] when, and only when, they appear in all capitals, as shown here.

A. IDL Index 

WebIDLpartial interface Navigator {
  [SameObject] readonly attribute Geolocation geolocation;
};
[Exposed=Window]
interface Geolocation {
  undefined getCurrentPosition (
    PositionCallback successCallback,
    optional PositionErrorCallback? errorCallback = null,
    optional PositionOptions options = {}
  );
  long watchPosition (
    PositionCallback successCallback,
    optional PositionErrorCallback? errorCallback = null,
    optional PositionOptions options = {}
  );
  undefined clearWatch (long watchId);
};
callback PositionCallback = undefined (
  

  GeolocationPosition position
);
callback PositionErrorCallback = undefined (
  GeolocationPositionError positionError
);
  

enum AccuracyMode {
  "precise",
  "approximate"
};
dictionary PositionOptions {
  AccuracyMode accuracyMode = "precise";  boolean enableHighAccuracy = false;
  [Clamp] unsigned long timeout = 0xFFFFFFFF;
  [Clamp] unsigned long maximumAge = 0;
};
[Exposed=Window, SecureContext]
interface GeolocationPosition {
  readonly attribute GeolocationCoordinates coords;
  readonly attribute

  readonly attribute EpochTimeStamp timestamp;
  readonly attribute AccuracyMode accuracyMode;

  [Default] object toJSON();
};
[Exposed=Window, SecureContext]
interface GeolocationCoordinates {
  readonly attribute double accuracy;
  readonly attribute double latitude;
  readonly attribute double longitude;
  readonly attribute double? altitude;
  readonly attribute double? altitudeAccuracy;
  readonly attribute double? heading;
  readonly attribute double? speed;
  [Default] object toJSON();
};
[Exposed=Window]
interface GeolocationPositionError {
  const
  const
  const

  const unsigned short PERMISSION_DENIED = 1;
  const unsigned short POSITION_UNAVAILABLE = 2;
  const unsigned short TIMEOUT = 3;

  readonly attribute unsigned short code;
  readonly attribute DOMString message;
};

B. Index

B.1 Terms defined by this specification

B.2 Terms defined by reference

C. Acknowledgments

This section is non-normative.

This specification builds upon earlier work in the industry, including research by Aza Raskin, Google Gears Geolocation API, and LocationAware.org.

Thanks also to Alec Berntson, Alissa Cooper, Steve Block, Greg Bolsinga, Lars Erik Bolstad, Aaron Boodman, Dave Burke, Chris Butler, Max Froumentin, Shyam Habarakada, Marcin Hanclik, Ian Hickson, Brad Lassey, Angel Machin, Cameron McCormack, Daniel Park, Stuart Parmenter, Olli Pettay, Chris Prince, Arun Ranganathan, Carl Reed, Thomas Roessler, Dirk Segers, Allan Thomson, Martin Thomson, Doug Turner, Erik Wilde, Matt Womer, and Mohamed Zergaoui.

D. Change log

This section is non-normative.

Since First Public Working Draft in 2021, Geolocation has received the following normative changes:

Since publication of the Second Edition in 2016, this specification received the following substantive changes:

See the commit history for a complete list of changes.

E. References

E.1 Normative references

[hr-time]
High Resolution Time . Yoav Weiss. W3C. 7 November 2024. W3C Working Draft. URL: https://www.w3.org/TR/hr-time-3/
[html]
HTML Standard . Anne van Kesteren; Domenic Denicola; Dominic Farolino; Ian Hickson; Philip Jägenstedt; Simon Pieters. WHATWG. Living Standard. URL: https://html.spec.whatwg.org/multipage/
[infra]
Infra Standard . Anne van Kesteren; Domenic Denicola. WHATWG. Living Standard. URL: https://infra.spec.whatwg.org/
[Permissions]
Permissions . Marcos Caceres; Mike Taylor. W3C. 24 June 2025. W3C Working Draft. URL: https://www.w3.org/TR/permissions/
[permissions-policy]
Permissions Policy . Ian Clelland. W3C. 6 August 2025. W3C Working Draft. URL: https://www.w3.org/TR/permissions-policy-1/
[RFC2119]
Key words for use in RFCs to Indicate Requirement Levels . S. Bradner. IETF. March 1997. Best Current Practice. URL: https://www.rfc-editor.org/rfc/rfc2119
[RFC8174]
Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words . B. Leiba. IETF. May 2017. Best Current Practice. URL: https://www.rfc-editor.org/rfc/rfc8174
[webidl]
Web IDL Standard . Edgar Chen; Timothy Gu. WHATWG. Living Standard. URL: https://webidl.spec.whatwg.org/
[WGS84]
World Geodetic System 1984 (WGS 84) . Office of Geomatics, National Geospatial Intelligence Agency. 2008. URL: https://earth-info.nga.mil/index.php?dir=wgs84&action=wgs84