1 files changed, 74 insertions, 73 deletions
diff --git a/hm/soispha/conf/firefox/config/policies/default.nix b/hm/soispha/conf/firefox/config/policies/default.nix
index 55fd3cff..02c740f6 100644
--- a/hm/soispha/conf/firefox/config/policies/default.nix
+++ b/hm/soispha/conf/firefox/config/policies/default.nix
@@ -58,88 +58,89 @@
     locals);
 in {
   # NOTE: See https://mozilla.github.io/policy-templates for documentation <2023-10-21>
+  policies = {
+    # NixOS manages this already
+    DisableAppUpdate = true;
 
-  # NixOS manages this already
-  DisableAppUpdate = true;
+    DisableFirefoxAccounts = true;
+    DisableFirefoxScreenshots = true;
 
-  DisableFirefoxAccounts = true;
-  DisableFirefoxScreenshots = true;
+    # KeepassXC does this for me
+    DisableMasterPasswordCreation = true;
 
-  # KeepassXC does this for me
-  DisableMasterPasswordCreation = true;
+    # I use a self-hosted services for that
+    DisablePocket = true;
 
-  # I use a self-hosted services for that
-  DisablePocket = true;
+    # I don't want to lose my data
+    DisableProfileRefresh = true;
 
-  # I don't want to lose my data
-  DisableProfileRefresh = true;
+    DisableDeveloperTools = false;
 
-  DisableDeveloperTools = false;
+    DisplayBookmarksToolbar = "newtab";
+    DisplayMenuBar = "default-off";
 
-  DisplayBookmarksToolbar = "newtab";
-  DisplayMenuBar = "default-off";
+    DNSOverHTTPS = {
+      Enabled = true;
+      Locked = false;
+    };
+    # The concept of a "default browser" does not apply to my NixOS config
+    DontCheckDefaultBrowser = true;
+
+    EnableTrackingProtection = {
+      Value = true;
+      Locked = false;
+      Cryptomining = true;
+      Fingerprinting = true;
+      EmailTracking = true;
+    };
 
-  DNSOverHTTPS = {
-    Enabled = true;
-    Locked = false;
-  };
-  # The concept of a "default browser" does not apply to my NixOS config
-  DontCheckDefaultBrowser = true;
-
-  EnableTrackingProtection = {
-    Value = true;
-    Locked = false;
-    Cryptomining = true;
-    Fingerprinting = true;
-    EmailTracking = true;
-  };
+    EncryptedMediaExtensions = {
+      # I want a _free_ config (and I can always just run another browser)
+      Enabled = false;
+      Locked = true;
+    };
 
-  EncryptedMediaExtensions = {
-    # I want a _free_ config (and I can always just run another browser)
-    Enabled = false;
-    Locked = true;
-  };
+    ExtensionSettings =
+      {
+        "*" = {
+          # Blocking the extension install here, also blocks the 'about:debugging' page
 
-  ExtensionSettings =
-    {
-      "*" = {
-        # Blocking the extension install here, also blocks the 'about:debugging' page
-
-        # blocked_install_message = ''
-        #   You can't install a extension manually,
-        #   please specify it in your NixOS configuration
-        # '';
-        installation_mode = "allowed";
-      };
-    }
-    // allowedExtensions
-    // blockedExtensions
-    // language_packs;
-
-  ExtensionUpdate = false;
-
-  # TODO: Add handlers for the default file types <2023-10-21>
-  # Handlers = {
-  # };
-
-  HardwareAcceleration = true;
-
-  # Blocking the extension install here, also blocks the 'about:debugging' page
-  # InstallAddonsPermission = {
-  #   Allowed = [];
-  #   Default = false;
-  # };
-
-  # KeepassXC and such things
-  OfferToSaveLogins = false;
-  PasswordManagerEnabled = false;
-
-  PDFjs = {
-    Enabled = true;
-    # Don't honor documents right to be un-copy-able
-    EnablePermissions = false;
-  };
+          # blocked_install_message = ''
+          #   You can't install a extension manually,
+          #   please specify it in your NixOS configuration
+          # '';
+          installation_mode = "allowed";
+        };
+      }
+      // allowedExtensions
+      // blockedExtensions
+      // language_packs;
 
-  SearchBar = "unified";
-  RequestedLocales = locals;
+    ExtensionUpdate = false;
+
+    # TODO: Add handlers for the default file types <2023-10-21>
+    # Handlers = {
+    # };
+
+    HardwareAcceleration = true;
+
+    # Blocking the extension install here, also blocks the 'about:debugging' page
+    # InstallAddonsPermission = {
+    #   Allowed = [];
+    #   Default = false;
+    # };
+
+    # KeepassXC and such things
+    OfferToSaveLogins = false;
+    PasswordManagerEnabled = false;
+
+    PDFjs = {
+      Enabled = true;
+      # Don't honor documents right to be un-copy-able
+      EnablePermissions = false;
+    };
+
+    SearchBar = "unified";
+    RequestedLocales = locals;
+  };
 }