X-Git-Url: https://git.p6c8.net/policy-templates.git/blobdiff_plain/a10cf5f4bc71db2897cdb7265c11d2136354630e..fb6ac96f21310251ffda68657c8cb90da9f4c544:/mac/org.mozilla.firefox.plist diff --git a/mac/org.mozilla.firefox.plist b/mac/org.mozilla.firefox.plist index 36fde9e..a609de0 100644 --- a/mac/org.mozilla.firefox.plist +++ b/mac/org.mozilla.firefox.plist @@ -3,7 +3,13 @@ <plist version="1.0"> <dict> <key>EnterprisePoliciesEnabled</key> - <false/> + <true/> + <key>AllowedDomainsForApps</key> + <string>managedfirefox.com,example.com</string> + <key>AppAutoUpdate</key> + <true/> + <key>AppUpdatePin</key> + <string>106.</string> <key>AppUpdateURL</key> <string>https://www.example.com/update.xml</string> <key>Authentication</key> @@ -30,7 +36,29 @@ <key>NTLM</key> <true/> </dict> + <key>AllowProxies</key> + <dict> + <key>SPNEGO</key> + <true/> + <key>NTLM</key> + <true/> + </dict> + <key>PrivateBrowsing</key> + <true/> + <key>Locked</key> + <true/> </dict> + <key>AutoLaunchProtocolsFromOrigins</key> + <array> + <dict> + <key>protocol</key> + <string>zoommtg</string> + <key>allowed_origins</key> + <array> + <string>https://somesite.zoom.us</string> + </array> + </dict> + </array> <key>BlockAboutAddons</key> <true/> <key>BlockAboutConfig</key> @@ -66,6 +94,8 @@ <string>Example2Folder</string> </dict> </array> + <key>CaptivePortal</key> + <false/> <key>Certificates</key> <dict> <key>ImportEnterpriseRoots</key> @@ -76,27 +106,43 @@ <string>cert2.pem</string> </array> </dict> + <key>Default</key> + <dict> + <key>Containers</key> + <array> + <dict> + <key>name</key> + <string>My container</string> + <key>icon</key> + <string>pet</string> + <key>color</key> + <string>turquoise</string> + </dict> + </array> + </dict> <key>Cookies</key> <dict> <key>Allow</key> <array> <string>https://www.example.org/</string> </array> + <key>Allowsession</key> + <array> + <string>https://www.example.edu/</string> + </array> <key>Block</key> <array> <string>https://www.example.edu/</string> </array> - <key>Default</key> - <false/> - <key>AcceptThirdParty</key> - <string>never</string> - <key>ExpireAtSessionEnd</key> - <true/> - <key>RejectTracker</key> - <true/> + <key>Behavior</key> + <string>limit-foreign</string> <key>Locked</key> <true/> </dict> + <key>DefaultDownloadDirectory</key> + <string>${home}/Downloads</string> + <key>DownloadDirectory</key> + <string>${home}/Downloads</string> <key>DNSOverHTTPS</key> <dict> <key>Enabled</key> @@ -105,11 +151,40 @@ <string>URL_TO_ALTERNATE_PROVIDER</string> <key>Locked</key> <true/> + <key>ExcludedDomains</key> + <array> + <string>example.com</string> + </array> </dict> <key>DisableAppUpdate</key> <true/> <key>DisableBuiltinPDFViewer</key> <true/> + <key>DisabledCiphers</key> + <dict> + <key>TLS_DHE_RSA_WITH_AES_128_CBC_SHA</key> + <true/> + <key>TLS_DHE_RSA_WITH_AES_256_CBC_SHA</key> + <true/> + <key>TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA</key> + <true/> + <key>TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA</key> + <true/> + <key>TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256</key> + <true/> + <key>TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256</key> + <true/> + <key>TLS_RSA_WITH_AES_128_CBC_SHA</key> + <true/> + <key>TLS_RSA_WITH_AES_256_CBC_SHA</key> + <true/> + <key>TLS_RSA_WITH_3DES_EDE_CBC_SHA</key> + <true/> + <key>TLS_RSA_WITH_AES_128_GCM_SHA256</key> + <false/> + <key>TLS_RSA_WITH_AES_256_GCM_SHA384</key> + <false/> + </dict> <key>DisableDeveloperTools</key> <true/> <key>DisableFeedbackCommands</key> @@ -126,6 +201,8 @@ <true/> <key>DisableMasterPasswordCreation</key> <true/> + <key>DisablePasswordReveal</key> + <true/> <key>DisablePocket</key> <true/> <key>DisablePrivateBrowsing</key> @@ -159,7 +236,35 @@ <true/> <key>Locked</key> <true/> + <key>Cryptomining</key> + <true/> + <key>Fingerprinting</key> + <true/> + <key>EmailTracking</key> + <true/> + <key>Exceptions</key> + <array> + <string>https://example.com</string> + </array> + </dict> + <key>EncryptedMediaExtensions</key> + <dict> + <key>Enabled</key> + <false/> + <key>Locked</key> + <false/> </dict> + <key>ExemptDomainFileTypePairsFromFileTypeDownloadWarnings</key> + <array> + <dict> + <key>file_extension</key> + <string>jnlp</string> + <key>domains</key> + <array> + <string>example.com</string> + </array> + </dict> + </array> <key>Extensions</key> <dict> <key>Install</key> @@ -173,21 +278,112 @@ <string>firefox@ghostery.com</string> </array> </dict> - <key>FlashPlugin</key> + <key>ExtensionSettings</key> <dict> - <key>Allow</key> - <array> - <string>https://www.example.com</string> - </array> - <key>Block</key> - <array> - <string>https://www.example.org</string> - </array> - <key>Default</key> + <key>*</key> + <dict> + <key>blocked_install_message</key> + <string>Custom error message.</string> + <key>install_sources</key> + <array> + <string>https://addons.mozilla.org/</string> + </array> + <key>installation_mode</key> + <string>blocked</string> + </dict> + <key>uBlock0@raymondhill.net</key> + <dict> + <key>installation_mode</key> + <string>force_installed</string> + <key>install_url</key> + <string>https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi</string> + </dict> + </dict> + <key>ExtensionUpdate</key> + <false/> + <key>FirefoxHome</key> + <dict> + <key>Search</key> <true/> + <key>TopSites</key> + <true/> + <key>SponsoredTopSites</key> + <false/> + <key>Highlights</key> + <true/> + <key>Pocket</key> + <false/> + <key>SponsoredPocket</key> + <false/> + <key>Snippets</key> + <false/> <key>Locked</key> <true/> </dict> + <key>FirefoxHome</key> + <dict> + <key>WebSuggestions</key> + <true/> + <key>SponsoredSuggestions</key> + <false/> + <key>ImproveSuggest</key> + <false/> + <key>Locked</key> + <true/> + </dict> + <key>GoToIntranetSiteForSingleWordEntryInAddressBar</key> + <true/> + <key>Handlers</key> + <dict> + <key>mimeTypes</key> + <dict> + <key>application/msword</key> + <dict> + <key>action</key> + <string>useSystemDefault</string> + <key>ask</key> + <false/> + </dict> + </dict> + <key>schemes</key> + <dict> + <key>mailto</key> + <dict> + <key>action</key> + <string>useHelperApp</string> + <key>ask</key> + <false/> + <key>handlers</key> + <array> + <dict> + <key>name</key> + <string>Gmail</string> + <key>uriTemplate</key> + <string>https://mail.google.com/mail/?extsrc=mailto&url=%s</string> + </dict> + </array> + </dict> + </dict> + <key>extensions</key> + <dict> + <key>pdf</key> + <dict> + <key>action</key> + <string>useHelperApp</string> + <key>ask</key> + <false/> + <key>handlers</key> + <array> + <dict> + <key>name</key> + <string>Adobe Acrobat</string> + <key>path</key> + <string>/System/Applications/Preview.app</string> + </dict> + </array> + </dict> + </dict> + </dict> <key>HardwareAcceleration</key> <false/> <key>Homepage</key> @@ -215,14 +411,41 @@ <key>Default</key> <false/> </dict> + <key>LocalFileLinks</key> + <array> + <string>http://example.org</string> + <string>http://example.edu</string> + </array> + <key>PrimaryPassword</key> + <true/> + <key>NetworkPrediction</key> + <false/> + <key>NewTabPage</key> + <false/> <key>NoDefaultBookmarks</key> <true/> <key>OfferToSaveLogins</key> <false/> + <key>OfferToSaveLoginsDefault</key> + <true/> <key>OverrideFirstRunPage</key> <string>https://www.example.com</string> <key>OverridePostUpdatePage</key> <string></string> + <key>PasswordManagerEnabled</key> + <false/> + <key>PDFjs</key> + <dict> + <key>Enabled</key> + <false/> + <key>EnablePermissions</key> + <false/> + </dict> + <key>PasswordManagerExceptions</key> + <array> + <string>https://example.org</string> + <string>https://example.edu</string> + </array> <key>Permissions</key> <dict> <key>Camera</key> @@ -285,6 +508,43 @@ <key>Locked</key> <true/> </dict> + <key>Autoplay</key> + <dict> + <key>Allow</key> + <array> + <string>https://example.org</string> + </array> + <key>Block</key> + <array> + <string>https://example.edu</string> + </array> + <key>Default</key> + <string>block-audio</string> + <key>Locked</key> + <true/> + </dict> + <key>VirtualReality</key> + <dict> + <key>Allow</key> + <array> + <string>https://example.org</string> + </array> + <key>Block</key> + <array> + <string>https://example.edu</string> + </array> + <key>BlockNewRequests</key> + <true/> + <key>Locked</key> + <true/> + </dict> + </dict> + <key>PictureInPicture</key> + <dict> + <key>Enabled</key> + <false/> + <key>Locked</key> + <true/> </dict> <key>PopupBlocking</key> <dict> @@ -298,14 +558,56 @@ <key>Locked</key> <true/> </dict> + <key>Preferences</key> + <dict> + <key>accessibility.force_disabled</key> + <dict> + <key>Value</key> + <integer>1</integer> + <key>Status</key> + <string>default</string> + </dict> + <key>browser.cache.disk.parent_directory</key> + <dict> + <key>Value</key> + <string>SOME_NATIVE_PATH</string> + <key>Status</key> + <string>user</string> + </dict> + <key>browser.tabs.warnOnClose</key> + <dict> + <key>Value</key> + <false/> + <key>Status</key> + <string>locked</string> + </dict> + </dict> + <key>PrintingEnabled</key> + <false/> <key>Proxy</key> <dict> - <key>SocksVersion</key> - <string>4</string> <key>Mode</key> <string>manual</string> <key>HTTPProxy</key> <string>proxy.example.com:80</string> + <key>UseHTTPProxyForAllProtocols</key> + <true/> + <key>SSLProxy</key> + <string>proxy.example.com:80</string> + <key>FTPProxy</key> + <string>proxy.example.com:80</string> + <key>SOCKSProxy</key> + <string>proxy.example.com:80</string> + <key>SocksVersion</key> + <string>4</string> + <key>Passthrough</key> + <string><local&rt;</string> + <key>AutoConfigURL</key> + <string>URL_TO_AUTOCONFIG</string> + <key>AutoLogin</key> + <true/> + <key>UseProxyForDNS</key> + <true/> <key>Locked</key> <true/> </dict> @@ -318,6 +620,25 @@ <true/> <key>SearchBar</key> <string>separate</string> + <key>UserMessaging</key> + <dict> + <key>WhatsNew</key> + <false/> + <key>ExtensionRecommendations</key> + <false/> + <key>FeatureRecommendations</key> + <false/> + <key>UrlbarInterventions</key> + <false/> + <key>SkipOnboarding</key> + <true/> + <key>MoreFromMozilla</key> + <true/> + <key>Locked</key> + <true/> + </dict> + <key>UseSystemPrintDialog</key> + <true/> <key>WebsiteFilter</key> <dict> <key>Block</key> @@ -335,5 +656,22 @@ <key>NAME_OF_DEVICE</key> <string>PATH_TO_LIBRARY_FOR_DEVICE</string> </dict> + <key>ShowHomeButton</key> + <true/> + <key>SSLVersionMin</key> + <string>tls1.2</string> + <key>SSLVersionMax</key> + <string>tls1.3</string> + <key>StartDownloadsInTempDirectory</key> + <true/> + <key>SupportMenu</key> + <dict> + <key>Title</key> + <string>Click here for help</string> + <key>URL</key> + <string>http://example.edu/</string> + <key>AccessKey</key> + <string>C</string> + </dict> </dict> </plist>