search

m1k1o / neko-rooms

Selfhosted collaborative browser - room management for n.eko
Apache License 2.0
437 stars 59 forks source link

chrome policy update #119

Closed faikmalik closed 2 days ago

faikmalik commented 6 months ago

Hi im following this tutorial

according to tutorial here is my config image

here is my policies.json @ /opt/neko-rooms/data/templates/policies.json "HomepageLocation": "my def domain", "AutoFillEnabled": false, "AutofillAddressEnabled": false, "AutofillCreditCardEnabled": false, "BrowserSignin": 0, "DefaultNotificationsSetting": 2, "DeveloperToolsAvailability": 2, "EditBookmarksEnabled": false, "FullscreenAllowed": true, "IncognitoModeAvailability": 1, "SyncDisabled": true, "AutoplayAllowed": true, "BrowserAddPersonEnabled": false, "BrowserGuestModeEnabled": false, "DefaultPopupsSetting": 2, "DownloadRestrictions": 0, "VideoCaptureAllowed": false, "AllowFileSelectionDialogs": false, "PromptForDownloadLocation": true, "BookmarkBarEnabled": false, "PasswordManagerEnabled": false, "URLBlacklist": [ ], "ExtensionInstallForcelist": [ "lpcaedmchfhocbbapmcbpinfpgnhiddi;https://clients2.google.com/service/update2/crx", "cjpalhdlnbpafiamejdnhcphjbkeiagm;https://clients2.google.com/service/update2/crx", "fjoaledfpmneenckfbpdfhkmimnjocfa;https://clients2.google.com/service/update2/crx" ], "ExtensionInstallWhitelist": [ "lpcaedmchfhocbbapmcbpinfpgnhiddi", "cjpalhdlnbpafiamejdnhcphjbkeiagm", "fjoaledfpmneenckfbpdfhkmimnjocfa" ], "ExtensionInstallBlacklist": [ "*" ] }

iv manually copied same file to /opt/neko-rooms/data/faik which is my room name. for some reason it wasnt auto created

here is my .env

NEKO_ROOMS_EPR=59000-59100 NEKO_ROOMS_TRAEFIK_DOMAIN=neko.oemnavigations.net NEKO_ROOMS_TRAEFIK_ENTRYPOINT=websecure NEKO_ROOMS_TRAEFIK_NETWORK=neko-rooms-traefik NEKO_ROOMS_TRAEFIK_CERTRESOLVER=lets-encrypt NEKO_ROOMS_NEKO_IMAGES=m1k1o/neko:firefox m1k1o/neko:chromium m1k1o/neko:google-chrome m1k1o/neko:vlc m1k1o/neko:xfce m1k1o/neko:tor-browser NEKO_ROOMS_MOUNTS_WHITELIST="/home /media /opt/neko-rooms/data/templates/ /etc/opt/chrome/policies/managed/policies.json"

here is my docker-compose.yml

version: "3.5"

networks: default: attachable: true name: "${NEKO_ROOMS_TRAEFIK_NETWORK}"

services: traefik: image: "traefik:2.4" restart: "unless-stopped" environment:

PROBLEM

if you see in config iv removed the default policy page and file path restriction from .docker folder. im trying to let users download a file to my file system. aditionally i want to add my own set of extensions in the force install extensions. but for some reason its still picking up default policies.

any help is appreciated

m1k1o commented 6 months ago

Your neko rooms mounts whitelist should only be folders on your host system. If you put /opt/neko-rooms/data everything in that folder will be allowed:

- NEKO_ROOMS_MOUNTS_WHITELIST="/home /media /opt/neko-rooms/data"`

Not sure if mistake here or in your file, but check your /opt/neko-rooms/data/templates/policies.json if its valid json e.g. using https://jsonlint.com/. I see that in the text you pasted there is missing initial {.

Your container path for the policies is wrong, it depends on the browser you are using. If it's google chrome then it should be /etc/opt/chrome/policies/managed/policies.json.

As in docs:

image
faikmalik commented 6 months ago

hi. thanks for reply. im aware of white list. did that for testing.

yeah it was a mistake here. verified the file and its ok. but i thought for a second and questioned my self.

as for the policy path. im not native to linux. i was fiddling with paths. actually the path you gave above gives me an error like this

image

thanks for the reply

m1k1o commented 6 months ago

Sounds like you are mounting directory to a file. And it does not seem to be valid path /opt/neko-rooms/data/rooms/rrr1 seems like a private path not template you wanted to use. Can you check if thats correct?