Open Bug 1810830 Opened 3 years ago Updated 2 years ago

Add support for setting security.fileuri.strict_origin_policy by Configuration Profile on macOS

Categories

(Firefox :: Enterprise Policies, enhancement, P5)

Product:
Firefox
Component:
Enterprise Policies
Version:
Firefox 102
Type:
enhancement

Tracking

()

People

(Reporter: git, Unassigned)

References

Details

User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Firefox/102.0

Steps to reproduce:

The 360° panorama software that we use outputs a collection of files to user space that can be uploaded to a web server, but can also be viewed locally if you open the HTML "home page" in a browser. In order to do so, however, the vendor instructs you to change the configuration setting for security.fileuri.strict_origin_policy to false. Since our users are student users in a computer lab (e.g., they can't set up a local web server), we would like to set this setting via a configuration profile so we can control it. Currently, this cannot be configured by configuration profile on macOS. Alternately, a new setting where a particular local folder (e.g., /Users/Shared/Sites) would be allowed for such uses would also be acceptable (there has been some discussion on this forum that security.fileuri.strict_origin_policy might be removed in the future; we are fine with a more limited permission).

Moving to policies.

Status: UNCONFIRMED → NEW
Component: Untriaged → Enterprise Policies
Ever confirmed: true

I'm curious what their recommendation is for other browsers?

I can add this, but I can't promise how long it will work.

Their recommendation is "use Firefox." :-)

Severity: -- → N/A
Priority: -- → P5
You need to log in before you can comment on or make changes to this bug.