X-Git-Url: https://git.p6c8.net/policy-templates.git/blobdiff_plain/58c13b28137791470d7dae30abdb11604150e106..fed2d13654bd7dd692823182a4108bac0fc1d05d:/mac/org.mozilla.firefox.plist?ds=inline

diff --git a/mac/org.mozilla.firefox.plist b/mac/org.mozilla.firefox.plist
index 8405a89..232504f 100644
--- a/mac/org.mozilla.firefox.plist
+++ b/mac/org.mozilla.firefox.plist
@@ -3,7 +3,9 @@
 <plist version="1.0">
 <dict>
 	<key>EnterprisePoliciesEnabled</key>
-	<false/>
+	<true/>
+	<key>AppAutoUpdate</key>
+	<true/>
 	<key>AppUpdateURL</key>
 	<string>https://www.example.com/update.xml</string>
 	<key>Authentication</key>
@@ -30,6 +32,17 @@
 			<key>NTLM</key>
 			<true/>
 		</dict>
+		<key>AllowProxies</key>
+		<dict>
+			<key>SPNEGO</key>
+			<true/>
+			<key>NTLM</key>
+			<true/>
+		</dict>
+		<key>PrivateBrowsing</key>
+		<true/>
+		<key>Locked</key>
+		<true/>
 	</dict>
 	<key>BlockAboutAddons</key>
 	<true/>
@@ -84,6 +97,10 @@
 		<array>
 			<string>https://www.example.org/</string>
 		</array>
+		<key>Allowsession</key>
+		<array>
+			<string>https://www.example.edu/</string>
+		</array>
 		<key>Block</key>
 		<array>
 			<string>https://www.example.edu/</string>
@@ -99,6 +116,10 @@
 		<key>Locked</key>
 		<true/>
 	</dict>
+	<key>DefaultDownloadDirectory</key>
+	<string>${home}/Downloads</string>
+	<key>DownloadDirectory</key>
+	<string>${home}/Downloads</string>
 	<key>DNSOverHTTPS</key>
 	<dict>
 		<key>Enabled</key>
@@ -107,11 +128,40 @@
 		<string>URL_TO_ALTERNATE_PROVIDER</string>
 		<key>Locked</key>
 		<true/>
+		<key>ExcludedDomains</key>
+		<array>
+			<string>example.com</string>
+		</array>
 	</dict>
 	<key>DisableAppUpdate</key>
 	<true/>
 	<key>DisableBuiltinPDFViewer</key>
 	<true/>
+	<key>DisabledCiphers</key>
+	<dict>
+		<key>TLS_DHE_RSA_WITH_AES_128_CBC_SHA</key>
+		<true/>
+		<key>TLS_DHE_RSA_WITH_AES_256_CBC_SHA</key>
+		<true/>
+		<key>TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA</key>
+		<true/>
+		<key>TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA</key>
+		<true/>
+		<key>TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256</key>
+		<true/>
+		<key>TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256</key>
+		<true/>
+		<key>TLS_RSA_WITH_AES_128_CBC_SHA</key>
+		<true/>
+		<key>TLS_RSA_WITH_AES_256_CBC_SHA</key>
+		<true/>
+		<key>TLS_RSA_WITH_3DES_EDE_CBC_SHA</key>
+		<true/>
+		<key>TLS_RSA_WITH_AES_128_GCM_SHA256</key>
+		<false/>
+		<key>TLS_RSA_WITH_AES_256_GCM_SHA384</key>
+		<false/>
+	</dict>
 	<key>DisableDeveloperTools</key>
 	<true/>
 	<key>DisableFeedbackCommands</key>
@@ -128,6 +178,8 @@
 	<true/>
 	<key>DisableMasterPasswordCreation</key>
 	<true/>
+	<key>DisablePasswordReveal</key>
+	<true/>
 	<key>DisablePocket</key>
 	<true/>
 	<key>DisablePrivateBrowsing</key>
@@ -161,6 +213,21 @@
 		<true/>
 		<key>Locked</key>
 		<true/>
+		<key>Cryptomining</key>
+		<true/>
+		<key>Fingerprinting</key>
+		<true/>
+		<key>Exceptions</key>
+		<array>
+			<string>https://example.com</string>
+		</array>
+	</dict>
+	<key>EncryptedMediaExtensions</key>
+		<dict>
+		<key>Enabled</key>
+		<false/>
+		<key>Locked</key>
+		<false/>
 	</dict>
 	<key>Extensions</key>
 	<dict>
@@ -175,8 +242,44 @@
 			<string>firefox@ghostery.com</string>
 		</array>
 	</dict>
+	<key>ExtensionSettings</key>
+	<dict>
+		<key>*</key>
+		<dict>
+			<key>blocked_install_message</key>
+			<string>Custom error message.</string>
+			<key>install_sources</key>
+			<array>
+				<string>https://addons.mozilla.org/</string>
+			</array>
+			<key>installation_mode</key>
+			<string>blocked</string>
+		</dict>
+		<key>uBlock0@raymondhill.net</key>
+		<dict>
+			<key>installation_mode</key>
+			 <string>force_installed</string>
+			<key>install_url</key>
+			<string>https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi</string>
+		</dict>
+	</dict>
 	<key>ExtensionUpdate</key>
 	<false/>
+	<key>FirefoxHome</key>
+	<dict>
+		<key>Search</key>
+		<true/>
+		<key>TopSites</key>
+		<true/>
+		<key>Highlights</key>
+		<true/>
+		<key>Pocket</key>
+		<false/>
+		<key>Snippets</key>
+		<false/>
+		<key>Locked</key>
+		<true/>
+	</dict>
 	<key>FlashPlugin</key>
 	<dict>
 		<key>Allow</key>
@@ -192,6 +295,57 @@
 		<key>Locked</key>
 		<true/>
 	</dict>
+	<key>Handlers</key>
+	<dict>
+		<key>mimeTypes</key>
+		<dict>
+			<key>application/msword</key>
+			<dict>
+				<key>action</key>
+				<string>useSystemDefault</string>
+				<key>ask</key>
+				<false/>
+			</dict>
+		</dict>
+		<key>schemes</key>
+		<dict>
+			<key>mailto</key>
+			<dict>
+				<key>action</key>
+				<string>useHelperApp</string>
+				<key>ask</key>
+				<false/>
+				<key>handlers</key>
+				<array>
+					<dict>
+						<key>name</key>
+						<string>Gmail</string>
+						<key>uriTemplate</key>
+						<string>https://mail.google.com/mail/?extsrc=mailto&amp;url=%s</string>
+					</dict>
+				</array>
+			</dict>
+		</dict>
+		<key>extensions</key>
+		<dict>
+			<key>pdf</key>
+			<dict>
+				<key>action</key>
+				<string>useHelperApp</string>
+				<key>ask</key>
+				<false/>
+				<key>handlers</key>
+				<array>
+					<dict>
+						<key>name</key>
+						<string>Adobe Acrobat</string>
+						<key>path</key>
+						<string>/System/Applications/Preview.app</string>
+					</dict>
+				</array>
+			</dict>
+		</dict>
+	</dict>
 	<key>HardwareAcceleration</key>
 	<false/>
 	<key>Homepage</key>
@@ -219,16 +373,36 @@
 		<key>Default</key>
 		<false/>
 	</dict>
+	<key>LocalFileLinks</key>
+	<array>
+		<string>http://example.org</string>
+		<string>http://example.edu</string>
+	</array>
+	<key>PrimaryPassword</key>
+	<true/>
 	<key>NetworkPrediction</key>
 	<false/>
+	<key>NewTabPage</key>
+	<false/>
 	<key>NoDefaultBookmarks</key>
 	<true/>
 	<key>OfferToSaveLogins</key>
 	<false/>
+	<key>OfferToSaveLoginsDefault</key>
+	<true/>
 	<key>OverrideFirstRunPage</key>
 	<string>https://www.example.com</string>
 	<key>OverridePostUpdatePage</key>
 	<string></string>
+	<key>PasswordManagerEnabled</key>
+	<false/>
+	<key>PDFjs</key>
+		<dict>
+		<key>Enabled</key>
+		<false/>
+		<key>EnablePermissions</key>
+		<false/>
+	</dict>
 	<key>Permissions</key>
 	<dict>
 		<key>Camera</key>
@@ -291,7 +465,24 @@
 			<key>Locked</key>
 			<true/>
 		</dict>
+		<key>Autoplay</key>
+		<dict>
+			<key>Allow</key>
+			<array>
+				<string>https://example.org</string>
+			</array>
+			<key>Block</key>
+			<array>
+				<string>https://example.edu</string>
+			</array>
+			<key>Default</key>
+				<string>block-audio</string>
+			<key>Locked</key>
+			<true/>
+		</dict>
 	</dict>
+	<key>PictureInPicture</key>
+	<false/>
 	<key>PopupBlocking</key>
 	<dict>
 		<key>Allow</key>
@@ -304,6 +495,13 @@
 		<key>Locked</key>
 		<true/>
 	</dict>
+	<key>Preferences</key>
+	<dict>
+		<key>app.update.auto</key>
+		<true/>
+		<key>security.default_personal_cert</key>
+		<string>Ask Every Time</string>
+	</dict>
 	<key>Proxy</key>
 	<dict>
 		<key>SocksVersion</key>
@@ -324,6 +522,17 @@
 	<true/>
 	<key>SearchBar</key>
 	<string>separate</string>
+	<key>UserMessaging</key>
+	<dict>
+		<key>WhatsNew</key>
+		<false/>
+		<key>ExtensionRecommendations</key>
+		<false/>
+		<key>FeatureRecommendations</key>
+		<false/>
+		<key>UrlbarInterventions</key>
+		<false/>
+	</dict>
 	<key>WebsiteFilter</key>
 	<dict>
 		<key>Block</key>