Open Bug 1904061 Opened 5 months ago Updated 5 months ago

Allow fine grained control of permissions via ExtensionSettings policy

Tracking

(Not tracked)

Status:

NEW

People

(Reporter: mkaply, Unassigned)

References

(Blocks 1 open bug)

Details

Mike Kaply [:mkaply]

Reporter

Description

•

5 months ago

This might end up in enterprise policies, but I wanted to start it here.

On Chrome and Edge, you can use enterprise policy to override extension permissions. So an extension might ask to have access to all sites, but you can prevent it from accessing specific sites or lock it to specific sites.

You can also prevent an extension from having a specific permission even if it wants it.

The specific settings are:
blocked_permissions
runtime_blocked_hosts
runtime_allowed_hosts

See:

https://support.google.com/chrome/a/answer/9867568?hl=en

I imagine this would work similar to the existing addon policy where you would ask the policy engine what permissions/hosts were allowed, not allowed.

Luca Greco [:rpl] [:luca] [:lgreco]

Updated

•

5 months ago

Severity: -- → N/A

Priority: -- → P5

You need to log in before you can comment on or make changes to this bug.

Bugzilla

Allow fine grained control of permissions via ExtensionSettings policy

Categories

(WebExtensions :: General, enhancement, P5)

Tracking

(Not tracked)

People

(Reporter: mkaply, Unassigned)

References

(Blocks 1 open bug)

Details

Crash Data

Security

(public)

User Story

Description

Updated