X-Git-Url: https://git.p6c8.net/policy-templates.git/blobdiff_plain/1c7b1612b68d32623da130e04cf4db8b45c27ed8..aa97363a8fc61040d15561e039b843678a36a9fc:/windows/en-US/firefox.adml diff --git a/windows/en-US/firefox.adml b/windows/en-US/firefox.adml index 00817de..193eee9 100644 --- a/windows/en-US/firefox.adml +++ b/windows/en-US/firefox.adml @@ -1,5 +1,5 @@ - + @@ -40,6 +40,14 @@ Firefox 88 or later, Firefox 78.10 ESR or later Firefox 89 or later, Firefox 78.11 ESR or later Firefox 90 or later, Firefox 78.12 ESR or later + Firefox 91 or later + Firefox 95 or later, Firefox 91.4 ESR or later + Firefox 96 or later, Firefox 91.5 ESR or later + Firefox 96 or later + Firefox 97 or later, Firefox 91.6 ESR or later + Firefox 98 or later, Firefox 91.7 ESR or later + Firefox 99 or later, Firefox 91.8 ESR or later + Firefox 100 or later, Firefox 91.9 ESR or later Firefox Permissions Camera @@ -62,7 +70,7 @@ User Messaging Disabled Ciphers Encrypted Media Extensions - PDFjs + PDF.js Picture-in-Picture Allowed Sites Allowed Sites (Session Only) @@ -315,6 +323,14 @@ If this policy is enabled or not configured, hardware acceleration is enabled.If this policy is enabled, Firefox will not try to create different profiles for installations of Firefox in different directories. This is the equivalent of the MOZ_LEGACY_PROFILES environment variable. If this policy is disabled or not configured, Firefox will create a new profile for each unique installation of Firefox. + Revert to legacy SameSite behavior + If this policy is enabled, Firefox will revert to the legacy behavior of SameSite. This means that cookies that don't explicitly specify a SameSite attribute are treated as if they were SameSite=None. + +If this policy is disabled or not configured, Firefox will enforce SameSite=lax. + Revert to legacy SameSite behavior on specific domains + If this policy is enabled, Firefox will revert to the legacy behavior of SameSite for the specified domains. This means that cookies that don't explicitly specify a SameSite attribute are treated as if they were SameSite=None. + +If this policy is disabled or not configured, Firefox will enforce SameSite=lax for all domains. Local File Links If this policy is enabled, you can specify origins where linking to local files is allowed. @@ -364,11 +380,11 @@ If this policy is disabled or not configured, the default cookie policy is follo If this policy is enabled, cookies are blocked for the origins indicated. If a top level domain is specified (http://example.org), cookies are blocked from all subdomains as well. If this policy is disabled or not configured, cookies are not blocked by default. - Accept cookies from websites + Accept cookies from websites (Deprecated) If this policy is disabled, cookies are not accepted from websites by default. If this policy is not configured or enabled, cookies are accepted from websites. - Accept third-party cookies + Accept third-party cookies (Deprecated) If this policy is enabled and cookies are allowed, you can set when to accept third-party cookies. This setting is ignored if this policy is disabled or not configured or if cookies are not allowed. @@ -379,14 +395,26 @@ This setting is ignored if this policy is disabled or not configured or if cooki If this policy is enabled and cookies are allowed, they will expire when Firefox is closed. This setting is ignored if this policy is disabled or not configured or if cookies are not allowed. - Reject trackers + Reject trackers (Deprecated) If this policy is enabled and cookies are allowed, Firefox will reject tracker cookies by default. This setting is ignored if this policy is disabled or not configured or if cookies are not allowed. Do not allow preferences to be changed - If this policy is enabled, cookie preferences cannot be changed by the user. - -If this policy is disabled or not configured, the user can change their cookie preferences. + If this policy is enabled, cookie preferences cannot be changed by the user. + Cookie Behavior + If this policy is enabled, you can configure cookie behavior. + +If this policy is not configured or disabled, cookies are rejected for known trackers. + Cookie Behavior in private browsing + If this policy is enabled, you can configure cookie behavior in private browsing. + +If this policy is not configured or disabled, in private browsing, cookies are rejected for known trackers and third-party cookies are partitioned. + Accept all cookies + Reject third party cookies + Reject all cookies + Reject third party cookies for sites you haven't visited + Reject cookies for known trackers + Reject cookies for known trackers and partition third-party cookies (Total Cookie Protection) If this policy is enabled, access to the camera is always allowed for the origins indicated. If this policy is disabled or not configured, the default camera policy is followed. @@ -788,6 +816,12 @@ If this policy is disabled or not configured, onboarding messages will be shown TLS_RSA_WITH_3DES_EDE_CBC_SHA TLS_RSA_WITH_AES_128_GCM_SHA256 TLS_RSA_WITH_AES_256_GCM_SHA384 + TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA + TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA + TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 + TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 + TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 + TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 If this policy is enabled, the corresponding cipher is disabled. If this policy is disabled, the corresponding cipher is enabled. @@ -801,7 +835,7 @@ If this policy is enabled or not configured, encrypted media extensions (like Wi If this policy is enabled and EncryptedMediaExtensions are disabled, Firefox will not download encrypted media extensions (like Widevine) or ask the user to install them. If this policy is not disabled or not configured, it has no effect. - Enable PDFjs + Enable PDF.js If this policy is disabled, the built-in PDF viewer is not used. If this policy is enabled or not configured, the built-in PDF viewer is used. @@ -837,6 +871,16 @@ If this policy is enabled, you can use JSON to configure preferences. If this policy is disabled or not configured, preferences are not modified. For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + Bookmarks (JSON) + If this policy is enabled, you can use JSON to configure bookmarks, including [] to clear all bookmarks. + +If this policy is disabled or not configured, the individual bookmark policies are used. + +If this policy is enabled along with individual bookmarks, those bookmarks will not be added. + +This policy has no effect on Managed Bookmarks. + +For detailed information on the JSON, see https://github.com/mozilla/policy-templates/blob/master/README.md#bookmarks. Managed Bookmarks If this policy is enabled, you can use JSON to configure managed bookmarks. @@ -847,6 +891,20 @@ For detailed information on creating the policy, see https://github.com/mozilla/ If this policy is enabled, users can only access Google Workspace for the specified domains (separated by a comma). To allow access to Gmail, you can add consumer_accounts. If this policy is disabled or not configured, users can access any account on Google Workspace as well as Gmail. + Background updater + If this policy disabled, the application will not try to install updates when the application is not running. + +If this policy is enabled or not configured, application updates may be installed (without user approval) in the background, even when the application is not running. The operating system might still require approval. + Auto Launch Protocols From Origins + If this policy is enabled, you can define a list of external protocols that can be used from listed origins without prompting the user. + +If this policy is disabled or not configured, any site that invokes an external protocol will ask the user for permission. + +For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#autolaunchprotocolsfromorigins. + Windows SSO + If this policy is enabled, Firefox will use credentials stored in Windows to sign in to Microsoft, work, and school accounts. + +If this policy is disabled or not configured, credentials must be entered manually. If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false. For a description of the preference, see: @@ -955,6 +1013,12 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + + + + + + @@ -1030,6 +1094,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + + + @@ -1110,6 +1177,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. + + + @@ -1126,8 +1196,10 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences. Search Top Sites + Sponsored Top Sites Download History Recommended by Pocket + Sponsored Pocket Stories Snippets Don't allow settings to be changed