X-Git-Url: https://git.p6c8.net/policy-templates.git/blobdiff_plain/269ce4f833b3767afe14cb78bd11d3db6c2a7c19..5e66b3edec2cdc52018f14f777ddfb6cc576b5aa:/mac/org.mozilla.firefox.plist?ds=inline

diff --git a/mac/org.mozilla.firefox.plist b/mac/org.mozilla.firefox.plist
index 1fb7f4d..493e4d1 100644
--- a/mac/org.mozilla.firefox.plist
+++ b/mac/org.mozilla.firefox.plist
@@ -3,7 +3,7 @@
 <plist version="1.0">
 <dict>
 	<key>EnterprisePoliciesEnabled</key>
-	<false/>
+	<true/>
 	<key>AppAutoUpdate</key>
 	<true/>
 	<key>AppUpdateURL</key>
@@ -39,6 +39,8 @@
 			<key>NTLM</key>
 			<true/>
 		</dict>
+		<key>PrivateBrowsing</key>
+		<true/>
 		<key>Locked</key>
 		<true/>
 	</dict>
@@ -95,6 +97,10 @@
 		<array>
 			<string>https://www.example.org/</string>
 		</array>
+		<key>Allowsession</key>
+		<array>
+			<string>https://www.example.edu/</string>
+		</array>
 		<key>Block</key>
 		<array>
 			<string>https://www.example.edu/</string>
@@ -122,11 +128,40 @@
 		<string>URL_TO_ALTERNATE_PROVIDER</string>
 		<key>Locked</key>
 		<true/>
+		<key>ExcludedDomains</key>
+		<array>
+			<string>example.com</string>
+		</array>
 	</dict>
 	<key>DisableAppUpdate</key>
 	<true/>
 	<key>DisableBuiltinPDFViewer</key>
 	<true/>
+	<key>DisabledCiphers</key>
+	<dict>
+		<key>TLS_DHE_RSA_WITH_AES_128_CBC_SHA</key>
+		<true/>
+		<key>TLS_DHE_RSA_WITH_AES_256_CBC_SHA</key>
+		<true/>
+		<key>TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA</key>
+		<true/>
+		<key>TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA</key>
+		<true/>
+		<key>TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256</key>
+		<true/>
+		<key>TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256</key>
+		<true/>
+		<key>TLS_RSA_WITH_AES_128_CBC_SHA</key>
+		<true/>
+		<key>TLS_RSA_WITH_AES_256_CBC_SHA</key>
+		<true/>
+		<key>TLS_RSA_WITH_3DES_EDE_CBC_SHA</key>
+		<true/>
+		<key>TLS_RSA_WITH_AES_128_GCM_SHA256</key>
+		<false/>
+		<key>TLS_RSA_WITH_AES_256_GCM_SHA384</key>
+		<false/>
+	</dict>
 	<key>DisableDeveloperTools</key>
 	<true/>
 	<key>DisableFeedbackCommands</key>
@@ -187,6 +222,13 @@
 			<string>https://example.com</string>
 		</array>
 	</dict>
+	<key>EncryptedMediaExtensions</key>
+		<dict>
+		<key>Enabled</key>
+		<false/>
+		<key>Locked</key>
+		<false/>
+	</dict>
 	<key>Extensions</key>
 	<dict>
 		<key>Install</key>
@@ -253,6 +295,57 @@
 		<key>Locked</key>
 		<true/>
 	</dict>
+	<key>Handlers</key>
+	<dict>
+		<key>mimeTypes</key>
+		<dict>
+			<key>application/msword</key>
+			<dict>
+				<key>action</key>
+				<string>useSystemDefault</string>
+				<key>ask</key>
+				<false/>
+			</dict>
+		</dict>
+		<key>schemes</key>
+		<dict>
+			<key>mailto</key>
+			<dict>
+				<key>action</key>
+				<string>useHelperApp</string>
+				<key>ask</key>
+				<false/>
+				<key>handlers</key>
+				<array>
+					<dict>
+						<key>name</key>
+						<string>Gmail</string>
+						<key>uriTemplate</key>
+						<string>https://mail.google.com/mail/?extsrc=mailto&amp;url=%s</string>
+					</dict>
+				</array>
+			</dict>
+		</dict>
+		<key>extensions</key>
+		<dict>
+			<key>pdf</key>
+			<dict>
+				<key>action</key>
+				<string>useHelperApp</string>
+				<key>ask</key>
+				<false/>
+				<key>handlers</key>
+				<array>
+					<dict>
+						<key>name</key>
+						<string>Adobe Acrobat</string>
+						<key>path</key>
+						<string>/System/Applications/Preview.app</string>
+					</dict>
+				</array>
+			</dict>
+		</dict>
+	</dict>
 	<key>HardwareAcceleration</key>
 	<false/>
 	<key>Homepage</key>
@@ -285,6 +378,8 @@
 		<string>http://example.org</string>
 		<string>http://example.edu</string>
 	</array>
+	<key>PrimaryPassword</key>
+	<true/>
 	<key>NetworkPrediction</key>
 	<false/>
 	<key>NewTabPage</key>
@@ -301,6 +396,13 @@
 	<string></string>
 	<key>PasswordManagerEnabled</key>
 	<false/>
+	<key>PDFjs</key>
+		<dict>
+		<key>Enabled</key>
+		<false/>
+		<key>EnablePermissions</key>
+		<false/>
+	</dict>
 	<key>Permissions</key>
 	<dict>
 		<key>Camera</key>
@@ -373,8 +475,34 @@
 			<array>
 				<string>https://example.edu</string>
 			</array>
+			<key>Default</key>
+				<string>block-audio</string>
+			<key>Locked</key>
+			<true/>
+		</dict>
+		<key>VirtualReality</key>
+		<dict>
+			<key>Allow</key>
+			<array>
+				<string>https://example.org</string>
+			</array>
+			<key>Block</key>
+			<array>
+				<string>https://example.edu</string>
+			</array>
+			<key>BlockNewRequests</key>
+			<true/>
+			<key>Locked</key>
+			<true/>
 		</dict>
 	</dict>
+	<key>PictureInPicture</key>
+	<dict>
+		<key>Enabled</key>
+		<false/>
+		<key>Locked</key>
+		<true/>
+	</dict>
 	<key>PopupBlocking</key>
 	<dict>
 		<key>Allow</key>
@@ -389,10 +517,27 @@
 	</dict>
 	<key>Preferences</key>
 	<dict>
-		<key>app.update.auto</key>
-		<true/>
-		<key>security.default_personal_cert</key>
-		<string>Ask Every Time</string>
+		<key>accessibility.force_disabled</key>
+		<dict>
+			<key>Value</key>
+			<integer>1</integer>
+			<key>Status</key>
+			<string>default</string>
+			</dict>
+		<key>browser.cache.disk.parent_directory</key>
+		<dict>
+			<key>Value</key>
+			<string>SOME_NATIVE_PATH</string>
+			<key>Status</key>
+			<string>user</string>
+		</dict>
+		<key>browser.tabs.warnOnClose</key>
+		<dict>
+			<key>Value</key>
+			<false/>
+			<key>Status</key>
+			<string>locked</string>
+		</dict>
 	</dict>
 	<key>Proxy</key>
 	<dict>
@@ -424,6 +569,8 @@
 		<false/>
 		<key>UrlbarInterventions</key>
 		<false/>
+		<key>SkipOnboarding</key>
+		<true/>
 	</dict>
 	<key>WebsiteFilter</key>
 	<dict>