From: Michael Kaply <345868+mkaply@users.noreply.github.com>
Date: Mon, 21 Sep 2020 20:02:51 +0000 (-0500)
Subject: Merge pull request #680 from jkriss/patch-1
X-Git-Tag: v2.3~3
X-Git-Url: https://git.p6c8.net/policy-templates.git/commitdiff_plain/4c206678d5157877b9a73654e7fdbfcf11cd42ea?hp=a10c55967783476ef159011787384f46cefa69ff
Merge pull request #680 from jkriss/patch-1
Fixing typo
---
diff --git a/README.md b/README.md
index 698116c..9fbfc36 100644
--- a/README.md
+++ b/README.md
@@ -75,7 +75,8 @@ Policies can be specified using the [Group Policy templates on Windows](https://
| **[`Permissions`](#permissions)** | Set permissions associated with camera, microphone, location, and notifications.
| **[`PictureInPicture`](#pictureinpicture)** | Enable or disable Picture-in-Picture.
| **[`PopupBlocking`](#popupblocking)** | Configure the default pop-up window policy as well as origins for which pop-up windows are allowed.
-| **[`Preferences`](#preferences)** | Set and lock some preferences.
+| **[`Preferences`](#preferences)** | Set and lock preferences.
+| **[`Preferences (Deprecated)`](#preferences--deprecated)** | Set and lock some preferences.
| **[`PromptForDownloadLocation`](#promptfordownloadlocation)** | Ask where to save each file before downloading.
| **[`Proxy`](#proxy)** | Configure proxy settings.
| **[`RequestedLocales`](#requestedlocales)** | Set the the list of requested locales for the application in order of preference.
@@ -2257,7 +2258,7 @@ The configuration for each extension is another dictionary that can contain the
| `normal_installed`| The extension is automatically installed but can be disabled by the user. This option is not valid for the default configuration and requires an install_url.
| `install_url`| Maps to a URL indicating where Firefox can download a force_installed or normal_installed extension. If installing from the addons.mozilla.org, use the following URL (substituting SHORT_NAME from the URL on AMO), https://addons.mozilla.org/firefox/downloads/latest/SHORT_NAME/latest.xpi. If installing from the local file system, use a file:/// URL. Languages packs are available from https://releases.mozilla.org/pub/firefox/releases/VERSION/PLATFORM/xpi/LANGUAGE.xpi. If you need to update the extension, you can change the name of the extension and it will be automatically updated. Extensions installed from file URLs will additional be updated when their internal version changes.
| `install_sources` | A list of sources from which installing extensions is allowed. **This is unnecessary if you are only allowing the installation of certain extensions by ID.** Each item in this list is an extension-style match pattern. Users will be able to easily install items from any URL that matches an item in this list. Both the location of the *.xpi file and the page where the download is started from (i.e. the referrer) must be allowed by these patterns. This setting can be used only for the default configuration. If you want to allow the install of extensions from the recommended add-ons page, you must add `about:addons` to this list.
-| `allowed_types` | This setting whitelists the allowed types of extension/apps that can be installed in Firefox. The value is a list of strings, each of which should be one of the following: "extension", "theme", "dictionary", "langpack" This setting can be used only for the default configuration.
+| `allowed_types` | This setting whitelists the allowed types of extension/apps that can be installed in Firefox. The value is a list of strings, each of which should be one of the following: "extension", "theme", "dictionary", "locale" This setting can be used only for the default configuration.
| `blocked_install_message` | This maps to a string specifying the error message to display to users if they're blocked from installing an extension. This setting allows you to append text to the generic error message displayed when the extension is blocked. This could be be used to direct users to your help desk, explain why a particular extension is blocked, or something else. This setting can be used only for the default configuration.
| `restricted_domains` | An array of domains on which content scripts can't be run. This setting can be used only for the default configuration.
@@ -3749,6 +3750,149 @@ Value (string):
}
```
### Preferences
+Set and lock preferences.
+
+Previously you could only set and lock a subset of preferences. Starting with Firefox 81 and Firefox ESR 78.3 you can set many more preferences. You can also set default preferences, user preferences and you can clear preferences.
+
+Preferences that start with the following prefixes are supported:
+```
+accessibility.
+browser.
+datareporting.policy.
+dom.
+extensions.
+geo.
+intl.
+layout.
+media.
+network.
+places.
+print.
+ui.
+widget.
+```
+as well as the following security preferences:
+```
+security.default_personal_cert
+security.insecure_connection_text.enabled
+security.insecure_connection_text.pbmode.enabled
+security.insecure_field_warning.contextual.enabled
+security.mixed_content.block_active_content
+security.osclientcerts.autoload
+security.ssl.errorReporting.enabled
+security.tls.hello_downgrade_check
+security.warn_submit_secure_to_insecure
+```
+Using the preference as the key, set the `Value` to the corresponding preference value.
+
+`Status` can be "default", "locked", "user" or "clear"
+
+If a value is locked, it is also set as the default.
+
+User preferences persist across invocations of Firefox.
+
+See the examples below for more detail.
+
+IMPORTANT: Make sure you're only setting a particular preference using this mechanism and not some other way.
+
+Status
+**Compatibility:** Firefox 81, Firefox ESR 78.3\
+**CCK2 Equivalent:** `preferences`\
+**Preferences Affected:** Many
+
+#### Windows (GPO)
+```
+Software\Policies\Mozilla\Firefox\Preferences (REG_MULTI_SZ) =
+{
+ "accessibility.force_disabled": {
+ "Value": 1,
+ "Status": "default"
+ },
+ "browser.cache.disk.parent_directory": {
+ "Value": "SOME_NATIVE_PATH",
+ "Status": "user"
+ },
+ "browser.tabs.warnOnClose": {
+ "Value": false,
+ "Status": "locked"
+ }
+}
+```
+#### Windows (Intune)
+OMA-URI:
+```
+./Device/Vendor/MSFT/Policy/Config/Firefox~Policy~firefox/Preferences
+```
+Value (string):
+```
+
+
+```
+#### macOS
+```
+
+ Preferences
+
+ accessibility.force_disabled
+
+ Value
+ 1
+ Status
+ default
+
+ browser.cache.disk.parent_directory
+
+ Value
+ SOME_NATIVE_PATH
+ Status
+ user
+
+ browser.tabs.warnOnClose
+
+ Value
+
+ Status
+ locked
+
+
+
+```
+#### policies.json
+```
+{
+ "policies": {
+ "Preferences": {
+ "accessibility.force_disabled": {
+ "Value": 1,
+ "Status": "default"
+ },
+ "browser.cache.disk.parent_directory": {
+ "Value": "SOME_NATIVE_PATH",
+ "Status": "user"
+ },
+ "browser.tabs.warnOnClose": {
+ "Value": false,
+ "Status": "locked"
+ }
+ }
+ }
+}
+```
+### Preferences (Deprecated)
Set and lock certain preferences.
**Compatibility:** See below\
@@ -3774,7 +3918,7 @@ Set and lock certain preferences.
| browser.fixup.dns_first_for_single_words | boolean | Firefox 68, Firefox ESR 68 | false
| If true, single words are sent to DNS, not directly to search.
| browser.newtabpage.activity-stream.default.sites | string | Firefox 72, ESR 68.4 | Locale dependent
-| If set, a list of URLs to use as the default top sites on the new tab page.
+| If set, a list of URLs to use as the default top sites on the new tab page. Due to Firefox limitations, search sites can't be added. In addition, sites with the same name but different TLDs (example.org/example.com) will not display properly.
| browser.places.importBookmarksHTML | boolean | Firefox 70, Firefox ESR 68.2
| If true, bookmarks are always imported on startup.
| browser.safebrowsing.phishing.enabled | boolean | Firefox 70, Firefox ESR 68.2 | true
diff --git a/mac/org.mozilla.firefox.plist b/mac/org.mozilla.firefox.plist
index 6b0026a..3070383 100644
--- a/mac/org.mozilla.firefox.plist
+++ b/mac/org.mozilla.firefox.plist
@@ -512,10 +512,27 @@
Preferences
- app.update.auto
-
- security.default_personal_cert
- Ask Every Time
+ accessibility.force_disabled
+
+ Value
+ 1
+ Status
+ default
+
+ browser.cache.disk.parent_directory
+
+ Value
+ SOME_NATIVE_PATH
+ Status
+ user
+
+ browser.tabs.warnOnClose
+
+ Value
+
+ Status
+ locked
+
Proxy
diff --git a/windows/de-DE/firefox.adml b/windows/de-DE/firefox.adml
index 898aca9..4e45b30 100644
--- a/windows/de-DE/firefox.adml
+++ b/windows/de-DE/firefox.adml
@@ -50,7 +50,7 @@
Flash
Startseite
Suche
- Einstellungen
+ Einstellungen (Veraltet)
Benutzer-Benachrichtigungen
Disabled Ciphers
DRM-Medien Erweiterungen
@@ -803,6 +803,12 @@ Wenn diese Richtlinieneinstellung deaktiviert oder nicht konfiguriert ist, werde
Für eine Beschreibung der Einstellung, siehe:
https://github.com/mozilla/policy-templates/blob/master/README.md#handlers (Englisch)
+ Einstellungen
+ If this policy is enabled, you can use JSON to configure preferences.
+
+If this policy is disabled or not configured, preferences are not modified.
+
+For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#preferences.
Wenn diese Richtlinieneinstellung aktiviert ist, ist die Einstellung auf true gesperrt. Wenn diese Richtlinieneinstellung deaktiviert ist, ist die Einstellung auf false gesperrt.
Für eine Beschreibung der Einstellung, siehe:
@@ -1108,6 +1114,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences (E
+
+
+
diff --git a/windows/en-US/firefox.adml b/windows/en-US/firefox.adml
index de5d5a7..4f42c02 100644
--- a/windows/en-US/firefox.adml
+++ b/windows/en-US/firefox.adml
@@ -50,7 +50,7 @@
Flash
Home page
Search
- Preferences
+ Preferences (Deprecated)
User Messaging
Disabled Ciphers
Encrypted Media Extensions
@@ -804,6 +804,12 @@ If this policy is not configured, users can choose to create a primary password.
If this policy is disabled or not configured, Firefox defaults are used.
For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#handlers.
+ Preferences
+ If this policy is enabled, you can use JSON to configure preferences.
+
+If this policy is disabled or not configured, preferences are not modified.
+
+For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#preferences.
If this policy is enabled, the preference is locked to true. If this policy is disabled, the preference is locked to false.
For a description of the preference, see:
@@ -1108,6 +1114,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences.
+
+
+
diff --git a/windows/es-ES/firefox.adml b/windows/es-ES/firefox.adml
index ab3e4b1..ff1ccf9 100644
--- a/windows/es-ES/firefox.adml
+++ b/windows/es-ES/firefox.adml
@@ -50,7 +50,7 @@
Flash
Página de inicio
Búsqueda
- Preferencias
+ Preferencias (obsoleto)
MensajerÃa del usuario
Cifrados deshabilitados
Extensiones de medios cifrados
@@ -804,6 +804,12 @@ If this policy is not configured, users can choose to create a primary password.
If this policy is disabled or not configured, Firefox defaults are used.
For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#handlers.
+ Preferencias
+ If this policy is enabled, you can use JSON to configure preferences.
+
+If this policy is disabled or not configured, preferences are not modified.
+
+For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#preferences.
Si esta polÃtica está habilitada, la preferencia se bloquea en true. Si esta polÃtica está deshabilitada, la preferencia está bloqueada en false.
Para una descripción de la preferencia, visita:
@@ -1108,6 +1114,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+
+
+
diff --git a/windows/firefox.admx b/windows/firefox.admx
index a63eb85..8a72161 100644
--- a/windows/firefox.admx
+++ b/windows/firefox.admx
@@ -3688,5 +3688,12 @@
+ ">
+
+
+
+
+
+
diff --git a/windows/fr-FR/firefox.adml b/windows/fr-FR/firefox.adml
index 0526f6d..0137bfe 100644
--- a/windows/fr-FR/firefox.adml
+++ b/windows/fr-FR/firefox.adml
@@ -50,7 +50,7 @@
Flash
Page d'accueil
Recherche
- Préférences
+ Préférences (Deprecated)
User Messaging
Disabled Ciphers
Encrypted Media Extensions
@@ -803,6 +803,12 @@ If this policy is not configured, users can choose to create a primary password.
If this policy is disabled or not configured, Firefox defaults are used.
For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#handlers.
+ Préférences
+ If this policy is enabled, you can use JSON to configure preferences.
+
+If this policy is disabled or not configured, preferences are not modified.
+
+For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#preferences.
Si cette stratégie est activée, la préférence est verrouillée sur true. Si cette stratégie est désactivée, la préférence est verrouillée sur false.
Pour une description de la préférence, voir:
@@ -1107,6 +1113,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+
+
+
diff --git a/windows/it-IT/firefox.adml b/windows/it-IT/firefox.adml
index 6bd975b..89a1a64 100644
--- a/windows/it-IT/firefox.adml
+++ b/windows/it-IT/firefox.adml
@@ -50,7 +50,7 @@
Flash
Pagina iniziale
Ricerca
- Preferenze
+ Preferenze (deprecata)
Messaggi utente
Cifrari disabilitati
Encrypted Media Extensions
@@ -804,6 +804,12 @@ Se questo criterio è non configurato, gli utenti possono scegliere di creare un
Se questo criterio è disabilitato o non configurato, vengono utilizzati i criteri predefiniti di Firefox.
Per informazioni dettagliate sulla creazione del criterio, si veda https://github.com/mozilla/policy-templates/blob/master/README.md#handlers.
+ Preferenze
+ If this policy is enabled, you can use JSON to configure preferences.
+
+If this policy is disabled or not configured, preferences are not modified.
+
+For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#preferences.
Se questo criterio è abilitato, la preferenza è impostata a Vero e resa non modificabile. Se questo criterio è disabilitato, la preferenza è impostata a Falso e resa non modificabile.
Per una descrizione della preferenza, si veda:
@@ -1108,6 +1114,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferences
+
+
+
diff --git a/windows/zh-TW/firefox.adml b/windows/zh-TW/firefox.adml
index b884f61..14939ec 100644
--- a/windows/zh-TW/firefox.adml
+++ b/windows/zh-TW/firefox.adml
@@ -50,7 +50,7 @@
Flash
é¦é
æå°
- å好è¨å®
+ å好è¨å®ï¼å·²æ£ç¨ï¼
顯示給使ç¨è
çè¨æ¯
åç¨å å¯æ¼ç®æ³
å å¯åªé«æ´å
åè½
@@ -802,6 +802,12 @@ Mozilla 建è°æ¨ä¸è¦åç¨ Telemetryãéé Telemetry æ¶éå°çè³è¨å¯
è¥åç¨æä¸è¨å®æ¤ååï¼åä½¿ç¨ Firefox é è¨è¨å®ã
è¥éè¦å»ºç«ååç詳細è³è¨ï¼è«åè https://github.com/mozilla/policy-templates/blob/master/README.md#handlersã
+ å好è¨å®
+ If this policy is enabled, you can use JSON to configure preferences.
+
+If this policy is disabled or not configured, preferences are not modified.
+
+For detailed information on creating the policy, see https://github.com/mozilla/policy-templates/blob/master/README.md#preferences.
è¥åç¨æ¤ååï¼å好è¨å®å°éå®çº trueãè¥åç¨æ¤ååï¼å好è¨å®åéå®çº falseã
è¥éè¦å好è¨å®ç詳細說æï¼è«åèï¼
@@ -1106,6 +1112,9 @@ https://github.com/mozilla/policy-templates/blob/master/README.md#preferencesã
+
+
+
\ No newline at end of file