X-Git-Url: https://git.p6c8.net/policy-templates.git/blobdiff_plain/8666641c193361f8e3bbcf275ac73f82a2c0eac3..d949cbfacfc218601ef671a92ca4b9cd0968e90b:/mac/org.mozilla.firefox.plist?ds=inline diff --git a/mac/org.mozilla.firefox.plist b/mac/org.mozilla.firefox.plist index 699245d..7043180 100644 --- a/mac/org.mozilla.firefox.plist +++ b/mac/org.mozilla.firefox.plist @@ -3,7 +3,13 @@ EnterprisePoliciesEnabled - + + AllowedDomainsForApps + managedfirefox.com,example.com + AppAutoUpdate + + AppUpdatePin + 106. AppUpdateURL https://www.example.com/update.xml Authentication @@ -30,7 +36,29 @@ NTLM + AllowProxies + + SPNEGO + + NTLM + + + PrivateBrowsing + + Locked + + AutoLaunchProtocolsFromOrigins + + + protocol + zoommtg + allowed_origins + + https://somesite.zoom.us + + + BlockAboutAddons BlockAboutConfig @@ -78,27 +106,43 @@ cert2.pem + Default + + Containers + + + name + My container + icon + pet + color + turquoise + + + Cookies Allow https://www.example.org/ + Allowsession + + https://www.example.edu/ + Block https://www.example.edu/ - Default - - AcceptThirdParty - never - ExpireAtSessionEnd - - RejectTracker - + Behavior + limit-foreign Locked + DefaultDownloadDirectory + ${home}/Downloads + DownloadDirectory + ${home}/Downloads DNSOverHTTPS Enabled @@ -107,13 +151,44 @@ URL_TO_ALTERNATE_PROVIDER Locked + ExcludedDomains + + example.com + DisableAppUpdate DisableBuiltinPDFViewer + DisabledCiphers + + TLS_DHE_RSA_WITH_AES_128_CBC_SHA + + TLS_DHE_RSA_WITH_AES_256_CBC_SHA + + TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA + + TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA + + TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 + + TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 + + TLS_RSA_WITH_AES_128_CBC_SHA + + TLS_RSA_WITH_AES_256_CBC_SHA + + TLS_RSA_WITH_3DES_EDE_CBC_SHA + + TLS_RSA_WITH_AES_128_GCM_SHA256 + + TLS_RSA_WITH_AES_256_GCM_SHA384 + + DisableDeveloperTools + DisableEncryptedClientHello + DisableFeedbackCommands DisableFirefoxAccounts @@ -128,6 +203,8 @@ DisableMasterPasswordCreation + DisablePasswordReveal + DisablePocket DisablePrivateBrowsing @@ -161,7 +238,35 @@ Locked + Cryptomining + + Fingerprinting + + EmailTracking + + Exceptions + + https://example.com + + EncryptedMediaExtensions + + Enabled + + Locked + + + ExemptDomainFileTypePairsFromFileTypeDownloadWarnings + + + file_extension + jnlp + domains + + example.com + + + Extensions Install @@ -175,23 +280,112 @@ firefox@ghostery.com + ExtensionSettings + + * + + blocked_install_message + Custom error message. + install_sources + + https://addons.mozilla.org/ + + installation_mode + blocked + + uBlock0@raymondhill.net + + installation_mode + force_installed + install_url + https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi + + ExtensionUpdate - FlashPlugin + FirefoxHome - Allow - - https://www.example.com - - Block - - https://www.example.org - - Default + Search + + TopSites + + SponsoredTopSites + + Highlights + Pocket + + SponsoredPocket + + Snippets + Locked + FirefoxHome + + WebSuggestions + + SponsoredSuggestions + + ImproveSuggest + + Locked + + + GoToIntranetSiteForSingleWordEntryInAddressBar + + Handlers + + mimeTypes + + application/msword + + action + useSystemDefault + ask + + + + schemes + + mailto + + action + useHelperApp + ask + + handlers + + + name + Gmail + uriTemplate + https://mail.google.com/mail/?extsrc=mailto&url=%s + + + + + extensions + + pdf + + action + useHelperApp + ask + + handlers + + + name + Adobe Acrobat + path + /System/Applications/Preview.app + + + + + HardwareAcceleration Homepage @@ -209,6 +403,13 @@ StartPage homepage + HttpAllowlist + + http://example.org + http://example.edu + + HttpsOnlyMode + disallowed InstallAddonsPermission Allow @@ -219,16 +420,41 @@ Default + LocalFileLinks + + http://example.org + http://example.edu + + PrimaryPassword + NetworkPrediction + NewTabPage + NoDefaultBookmarks OfferToSaveLogins + OfferToSaveLoginsDefault + OverrideFirstRunPage https://www.example.com OverridePostUpdatePage + PasswordManagerEnabled + + PDFjs + + Enabled + + EnablePermissions + + + PasswordManagerExceptions + + https://example.org + https://example.edu + Permissions Camera @@ -291,6 +517,43 @@ Locked + Autoplay + + Allow + + https://example.org + + Block + + https://example.edu + + Default + block-audio + Locked + + + VirtualReality + + Allow + + https://example.org + + Block + + https://example.edu + + BlockNewRequests + + Locked + + + + PictureInPicture + + Enabled + + Locked + PopupBlocking @@ -304,14 +567,58 @@ Locked + PostQuantumKeyAgreementEnabled + + Preferences + + accessibility.force_disabled + + Value + 1 + Status + default + + browser.cache.disk.parent_directory + + Value + SOME_NATIVE_PATH + Status + user + + browser.tabs.warnOnClose + + Value + + Status + locked + + + PrintingEnabled + Proxy - SocksVersion - 4 Mode manual HTTPProxy proxy.example.com:80 + UseHTTPProxyForAllProtocols + + SSLProxy + proxy.example.com:80 + FTPProxy + proxy.example.com:80 + SOCKSProxy + proxy.example.com:80 + SocksVersion + 4 + Passthrough + <local> + AutoConfigURL + URL_TO_AUTOCONFIG + AutoLogin + + UseProxyForDNS + Locked @@ -324,6 +631,47 @@ SearchBar separate + SecurityDevices + + NAME_OF_DEVICE + PATH_TO_LIBRARY_FOR_DEVICE + + ShowHomeButton + + SSLVersionMin + tls1.2 + SSLVersionMax + tls1.3 + StartDownloadsInTempDirectory + + SupportMenu + + Title + Click here for help + URL + http://example.edu/ + AccessKey + C + + TranslateEnabled + + UserMessaging + + ExtensionRecommendations + + FeatureRecommendations + + UrlbarInterventions + + SkipOnboarding + + MoreFromMozilla + + Locked + + + UseSystemPrintDialog + WebsiteFilter Block @@ -336,14 +684,5 @@ https://www.yahoo.com/* - SecurityDevices - - NAME_OF_DEVICE - PATH_TO_LIBRARY_FOR_DEVICE - - SSLVersionMin - tls1.2 - SSLVersionMax - tls1.3