X-Git-Url: https://git.p6c8.net/policy-templates.git/blobdiff_plain/a10cf5f4bc71db2897cdb7265c11d2136354630e..fb6ac96f21310251ffda68657c8cb90da9f4c544:/mac/org.mozilla.firefox.plist

diff --git a/mac/org.mozilla.firefox.plist b/mac/org.mozilla.firefox.plist
index 36fde9e..a609de0 100644
--- a/mac/org.mozilla.firefox.plist
+++ b/mac/org.mozilla.firefox.plist
@@ -3,7 +3,13 @@
 <plist version="1.0">
 <dict>
 	<key>EnterprisePoliciesEnabled</key>
-	<false/>
+	<true/>
+	<key>AllowedDomainsForApps</key>
+	<string>managedfirefox.com,example.com</string>
+	<key>AppAutoUpdate</key>
+	<true/>
+	<key>AppUpdatePin</key>
+	<string>106.</string>
 	<key>AppUpdateURL</key>
 	<string>https://www.example.com/update.xml</string>
 	<key>Authentication</key>
@@ -30,7 +36,29 @@
 			<key>NTLM</key>
 			<true/>
 		</dict>
+		<key>AllowProxies</key>
+		<dict>
+			<key>SPNEGO</key>
+			<true/>
+			<key>NTLM</key>
+			<true/>
+		</dict>
+		<key>PrivateBrowsing</key>
+		<true/>
+		<key>Locked</key>
+		<true/>
 	</dict>
+	<key>AutoLaunchProtocolsFromOrigins</key>
+	<array>
+		<dict>
+			<key>protocol</key>
+			<string>zoommtg</string>
+			<key>allowed_origins</key>
+			<array>
+				<string>https://somesite.zoom.us</string>
+			</array>
+		</dict>
+	</array>
 	<key>BlockAboutAddons</key>
 	<true/>
 	<key>BlockAboutConfig</key>
@@ -66,6 +94,8 @@
 			<string>Example2Folder</string>
 		</dict>
 	</array>
+	<key>CaptivePortal</key>
+	<false/>
 	<key>Certificates</key>
 	<dict>
 		<key>ImportEnterpriseRoots</key>
@@ -76,27 +106,43 @@
 			<string>cert2.pem</string>
 		</array>
 	</dict>
+	<key>Default</key>
+	<dict>
+		<key>Containers</key>
+		<array>
+			<dict>
+				<key>name</key>
+				<string>My container</string>
+				<key>icon</key>
+				<string>pet</string>
+				<key>color</key>
+				<string>turquoise</string>
+			</dict>
+		</array>
+	</dict>
 	<key>Cookies</key>
 	<dict>
 		<key>Allow</key>
 		<array>
 			<string>https://www.example.org/</string>
 		</array>
+		<key>Allowsession</key>
+		<array>
+			<string>https://www.example.edu/</string>
+		</array>
 		<key>Block</key>
 		<array>
 			<string>https://www.example.edu/</string>
 		</array>
-		<key>Default</key>
-		<false/>
-		<key>AcceptThirdParty</key>
-		<string>never</string>
-		<key>ExpireAtSessionEnd</key>
-		<true/>
-		<key>RejectTracker</key>
-		<true/>		
+		<key>Behavior</key>
+		<string>limit-foreign</string>
 		<key>Locked</key>
 		<true/>
 	</dict>
+	<key>DefaultDownloadDirectory</key>
+	<string>${home}/Downloads</string>
+	<key>DownloadDirectory</key>
+	<string>${home}/Downloads</string>
 	<key>DNSOverHTTPS</key>
 	<dict>
 		<key>Enabled</key>
@@ -105,11 +151,40 @@
 		<string>URL_TO_ALTERNATE_PROVIDER</string>
 		<key>Locked</key>
 		<true/>
+		<key>ExcludedDomains</key>
+		<array>
+			<string>example.com</string>
+		</array>
 	</dict>
 	<key>DisableAppUpdate</key>
 	<true/>
 	<key>DisableBuiltinPDFViewer</key>
 	<true/>
+	<key>DisabledCiphers</key>
+	<dict>
+		<key>TLS_DHE_RSA_WITH_AES_128_CBC_SHA</key>
+		<true/>
+		<key>TLS_DHE_RSA_WITH_AES_256_CBC_SHA</key>
+		<true/>
+		<key>TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA</key>
+		<true/>
+		<key>TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA</key>
+		<true/>
+		<key>TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256</key>
+		<true/>
+		<key>TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256</key>
+		<true/>
+		<key>TLS_RSA_WITH_AES_128_CBC_SHA</key>
+		<true/>
+		<key>TLS_RSA_WITH_AES_256_CBC_SHA</key>
+		<true/>
+		<key>TLS_RSA_WITH_3DES_EDE_CBC_SHA</key>
+		<true/>
+		<key>TLS_RSA_WITH_AES_128_GCM_SHA256</key>
+		<false/>
+		<key>TLS_RSA_WITH_AES_256_GCM_SHA384</key>
+		<false/>
+	</dict>
 	<key>DisableDeveloperTools</key>
 	<true/>
 	<key>DisableFeedbackCommands</key>
@@ -126,6 +201,8 @@
 	<true/>
 	<key>DisableMasterPasswordCreation</key>
 	<true/>
+	<key>DisablePasswordReveal</key>
+	<true/>
 	<key>DisablePocket</key>
 	<true/>
 	<key>DisablePrivateBrowsing</key>
@@ -159,7 +236,35 @@
 		<true/>
 		<key>Locked</key>
 		<true/>
+		<key>Cryptomining</key>
+		<true/>
+		<key>Fingerprinting</key>
+		<true/>
+		<key>EmailTracking</key>
+		<true/>
+		<key>Exceptions</key>
+		<array>
+			<string>https://example.com</string>
+		</array>
+	</dict>
+	<key>EncryptedMediaExtensions</key>
+		<dict>
+		<key>Enabled</key>
+		<false/>
+		<key>Locked</key>
+		<false/>
 	</dict>
+	<key>ExemptDomainFileTypePairsFromFileTypeDownloadWarnings</key>
+	<array>
+		<dict>
+			<key>file_extension</key>
+			<string>jnlp</string>
+			<key>domains</key>
+			<array>
+				<string>example.com</string>
+			</array>
+		</dict>
+	</array>
 	<key>Extensions</key>
 	<dict>
 		<key>Install</key>
@@ -173,21 +278,112 @@
 			<string>firefox@ghostery.com</string>
 		</array>
 	</dict>
-	<key>FlashPlugin</key>
+	<key>ExtensionSettings</key>
 	<dict>
-		<key>Allow</key>
-		<array>
-			<string>https://www.example.com</string>
-		</array>
-		<key>Block</key>
-		<array>
-			<string>https://www.example.org</string>
-		</array>
-		<key>Default</key>
+		<key>*</key>
+		<dict>
+			<key>blocked_install_message</key>
+			<string>Custom error message.</string>
+			<key>install_sources</key>
+			<array>
+				<string>https://addons.mozilla.org/</string>
+			</array>
+			<key>installation_mode</key>
+			<string>blocked</string>
+		</dict>
+		<key>uBlock0@raymondhill.net</key>
+		<dict>
+			<key>installation_mode</key>
+			 <string>force_installed</string>
+			<key>install_url</key>
+			<string>https://addons.mozilla.org/firefox/downloads/latest/ublock-origin/latest.xpi</string>
+		</dict>
+	</dict>
+	<key>ExtensionUpdate</key>
+	<false/>
+	<key>FirefoxHome</key>
+	<dict>
+		<key>Search</key>
 		<true/>
+		<key>TopSites</key>
+		<true/>
+		<key>SponsoredTopSites</key>
+		<false/>
+		<key>Highlights</key>
+		<true/>
+		<key>Pocket</key>
+		<false/>
+		<key>SponsoredPocket</key>
+		<false/>
+		<key>Snippets</key>
+		<false/>
 		<key>Locked</key>
 		<true/>
 	</dict>
+	<key>FirefoxHome</key>
+	<dict>
+		<key>WebSuggestions</key>
+		<true/>
+		<key>SponsoredSuggestions</key>
+		<false/>
+		<key>ImproveSuggest</key>
+		<false/>
+		<key>Locked</key>
+		<true/>
+	</dict>
+	<key>GoToIntranetSiteForSingleWordEntryInAddressBar</key>
+	<true/>
+	<key>Handlers</key>
+	<dict>
+		<key>mimeTypes</key>
+		<dict>
+			<key>application/msword</key>
+			<dict>
+				<key>action</key>
+				<string>useSystemDefault</string>
+				<key>ask</key>
+				<false/>
+			</dict>
+		</dict>
+		<key>schemes</key>
+		<dict>
+			<key>mailto</key>
+			<dict>
+				<key>action</key>
+				<string>useHelperApp</string>
+				<key>ask</key>
+				<false/>
+				<key>handlers</key>
+				<array>
+					<dict>
+						<key>name</key>
+						<string>Gmail</string>
+						<key>uriTemplate</key>
+						<string>https://mail.google.com/mail/?extsrc=mailto&amp;url=%s</string>
+					</dict>
+				</array>
+			</dict>
+		</dict>
+		<key>extensions</key>
+		<dict>
+			<key>pdf</key>
+			<dict>
+				<key>action</key>
+				<string>useHelperApp</string>
+				<key>ask</key>
+				<false/>
+				<key>handlers</key>
+				<array>
+					<dict>
+						<key>name</key>
+						<string>Adobe Acrobat</string>
+						<key>path</key>
+						<string>/System/Applications/Preview.app</string>
+					</dict>
+				</array>
+			</dict>
+		</dict>
+	</dict>
 	<key>HardwareAcceleration</key>
 	<false/>
 	<key>Homepage</key>
@@ -215,14 +411,41 @@
 		<key>Default</key>
 		<false/>
 	</dict>
+	<key>LocalFileLinks</key>
+	<array>
+		<string>http://example.org</string>
+		<string>http://example.edu</string>
+	</array>
+	<key>PrimaryPassword</key>
+	<true/>
+	<key>NetworkPrediction</key>
+	<false/>
+	<key>NewTabPage</key>
+	<false/>
 	<key>NoDefaultBookmarks</key>
 	<true/>
 	<key>OfferToSaveLogins</key>
 	<false/>
+	<key>OfferToSaveLoginsDefault</key>
+	<true/>
 	<key>OverrideFirstRunPage</key>
 	<string>https://www.example.com</string>
 	<key>OverridePostUpdatePage</key>
 	<string></string>
+	<key>PasswordManagerEnabled</key>
+	<false/>
+	<key>PDFjs</key>
+		<dict>
+		<key>Enabled</key>
+		<false/>
+		<key>EnablePermissions</key>
+		<false/>
+	</dict>
+	<key>PasswordManagerExceptions</key>
+	<array>
+		<string>https://example.org</string>
+		<string>https://example.edu</string>
+	</array>
 	<key>Permissions</key>
 	<dict>
 		<key>Camera</key>
@@ -285,6 +508,43 @@
 			<key>Locked</key>
 			<true/>
 		</dict>
+		<key>Autoplay</key>
+		<dict>
+			<key>Allow</key>
+			<array>
+				<string>https://example.org</string>
+			</array>
+			<key>Block</key>
+			<array>
+				<string>https://example.edu</string>
+			</array>
+			<key>Default</key>
+				<string>block-audio</string>
+			<key>Locked</key>
+			<true/>
+		</dict>
+		<key>VirtualReality</key>
+		<dict>
+			<key>Allow</key>
+			<array>
+				<string>https://example.org</string>
+			</array>
+			<key>Block</key>
+			<array>
+				<string>https://example.edu</string>
+			</array>
+			<key>BlockNewRequests</key>
+			<true/>
+			<key>Locked</key>
+			<true/>
+		</dict>
+	</dict>
+	<key>PictureInPicture</key>
+	<dict>
+		<key>Enabled</key>
+		<false/>
+		<key>Locked</key>
+		<true/>
 	</dict>
 	<key>PopupBlocking</key>
 	<dict>
@@ -298,14 +558,56 @@
 		<key>Locked</key>
 		<true/>
 	</dict>
+	<key>Preferences</key>
+	<dict>
+		<key>accessibility.force_disabled</key>
+		<dict>
+			<key>Value</key>
+			<integer>1</integer>
+			<key>Status</key>
+			<string>default</string>
+			</dict>
+		<key>browser.cache.disk.parent_directory</key>
+		<dict>
+			<key>Value</key>
+			<string>SOME_NATIVE_PATH</string>
+			<key>Status</key>
+			<string>user</string>
+		</dict>
+		<key>browser.tabs.warnOnClose</key>
+		<dict>
+			<key>Value</key>
+			<false/>
+			<key>Status</key>
+			<string>locked</string>
+		</dict>
+	</dict>
+	<key>PrintingEnabled</key>
+	<false/>
 	<key>Proxy</key>
 	<dict>
-		<key>SocksVersion</key>
-		<string>4</string>
 		<key>Mode</key>
 		<string>manual</string>
 		<key>HTTPProxy</key>
 		<string>proxy.example.com:80</string>
+		<key>UseHTTPProxyForAllProtocols</key>
+		<true/>
+		<key>SSLProxy</key>
+		<string>proxy.example.com:80</string>
+		<key>FTPProxy</key>
+		<string>proxy.example.com:80</string>
+		<key>SOCKSProxy</key>
+		<string>proxy.example.com:80</string>
+		<key>SocksVersion</key>
+		<string>4</string>
+		<key>Passthrough</key>
+		<string>&lt;local&rt;</string>
+		<key>AutoConfigURL</key>
+		<string>URL_TO_AUTOCONFIG</string>
+		<key>AutoLogin</key>
+		<true/>
+		<key>UseProxyForDNS</key>
+		<true/>
 		<key>Locked</key>
 		<true/>
 	</dict>
@@ -318,6 +620,25 @@
 	<true/>
 	<key>SearchBar</key>
 	<string>separate</string>
+	<key>UserMessaging</key>
+	<dict>
+		<key>WhatsNew</key>
+		<false/>
+		<key>ExtensionRecommendations</key>
+		<false/>
+		<key>FeatureRecommendations</key>
+		<false/>
+		<key>UrlbarInterventions</key>
+		<false/>
+		<key>SkipOnboarding</key>
+		<true/>
+		<key>MoreFromMozilla</key>
+		<true/>
+		<key>Locked</key>
+		<true/>
+	</dict>
+	<key>UseSystemPrintDialog</key>
+	<true/>
 	<key>WebsiteFilter</key>
 	<dict>
 		<key>Block</key>
@@ -335,5 +656,22 @@
 		<key>NAME_OF_DEVICE</key>
 		<string>PATH_TO_LIBRARY_FOR_DEVICE</string>
 	</dict>
+	<key>ShowHomeButton</key>
+	<true/>
+	<key>SSLVersionMin</key>
+	<string>tls1.2</string>
+	<key>SSLVersionMax</key>
+	<string>tls1.3</string>
+	<key>StartDownloadsInTempDirectory</key>
+	<true/>
+	<key>SupportMenu</key>
+	<dict>
+		<key>Title</key>
+		<string>Click here for help</string>
+		<key>URL</key>
+		<string>http://example.edu/</string>
+		<key>AccessKey</key>
+		<string>C</string>
+	</dict>
 </dict>
 </plist>