public/malta-workshop
2
0
Fork 0
Code Pull Requests Activity

feat: configure firefox as default browser with privacy settings

Browse Source
This commit is contained in:
Michael Czechowski
2025-09-15 19:53:58 +02:00
parent 04bca53ca7
commit 914c6fa550
2 changed files with 100 additions and 31 deletions
Download Patch File Download Diff File Expand all files Collapse all files

74
common.nix
View File

@@ -231,7 +231,7 @@ isoConfig
networking = {
networkmanager = {
enable = true;
wifi.enable = true;
#wifi.enable = true;
dns = "none"; # We use dnsmasq
ensureProfiles = {
environmentFiles = [ "/etc/NetworkManager/workshop-wifi.env" ];
@@ -374,8 +374,9 @@ isoConfig
dig
gnutar
openssl # Add this for certificate generation
chromium # Add Chromium browser
# Additional font packages for QEMU
chromium # Add Chromium browser
firefox
dejavu_fonts
liberation_ttf
fontconfig
@@ -525,6 +526,31 @@ isoConfig
};
};
# Set Firefox as default browser
systemd.services.workshop-set-default-browser = {
description = "Set Firefox as the default browser for workshop user";
wantedBy = [ "multi-user.target" ];
after = [ "network.target" ];
path = with pkgs; [
xdg-utils
coreutils
su
];
script = ''
# Set Firefox as default browser for workshop user
su - workshop -c "xdg-settings set default-web-browser firefox.desktop"
# Also set MIME types for HTML files
su - workshop -c "xdg-mime default firefox.desktop text/html"
su - workshop -c "xdg-mime default firefox.desktop x-scheme-handler/http"
su - workshop -c "xdg-mime default firefox.desktop x-scheme-handler/https"
'';
serviceConfig = {
Type = "oneshot";
RemainAfterExit = true;
User = "root";
};
};
# Enhanced Bash Configuration with All Features
programs.bash.interactiveShellInit =
let
@@ -1212,6 +1238,50 @@ isoConfig
preferences = {
"browser.fixup.fallback-to-https" = false;
"browser.urlbar.autoFill" = false;
# Disable telemetry and data collection
"datareporting.healthreport.uploadEnabled" = false;
"datareporting.policy.dataSubmissionEnabled" = false;
"toolkit.telemetry.enabled" = false;
"toolkit.telemetry.unified" = false;
"toolkit.telemetry.archive.enabled" = false;
"toolkit.telemetry.newProfilePing.enabled" = false;
"toolkit.telemetry.shutdownPingSender.enabled" = false;
"toolkit.telemetry.updatePing.enabled" = false;
"toolkit.telemetry.bhrPing.enabled" = false;
"toolkit.telemetry.firstShutdownPing.enabled" = false;
"toolkit.telemetry.coverage.opt-out" = true;
"toolkit.coverage.opt-out" = true;
"toolkit.coverage.endpoint.base" = "";
# Disable Mozilla experiments
"experiments.supported" = false;
"experiments.enabled" = false;
"experiments.manifest.uri" = "";
# Disable crash reporting
"breakpad.reportURL" = "";
"browser.tabs.crashReporting.sendReport" = false;
"browser.crashReports.unsubmittedCheck.autoSubmit2" = false;
# Disable default browser check
"browser.shell.checkDefaultBrowser" = false;
# Disable welcome tour and onboarding
"browser.aboutwelcome.enabled" = false;
"browser.onboarding.enabled" = false;
"browser.onboarding.tour-type" = "new";
"browser.onboarding.seen-tourset-version" = "999";
"browser.onboarding.hidden" = true;
# Disable pocket
"extensions.pocket.enabled" = false;
# Disable Firefox accounts
"identity.fxaccounts.enabled" = false;
# Disable sponsored content
"browser.newtabpage.activity-stream.showSponsored" = false;
"browser.newtabpage.activity-stream.showSponsoredTopSites" = false;
# Disable search suggestions
"browser.search.suggest.enabled" = false;
"browser.urlbar.suggest.searches" = false;
# Disable geolocation
"geo.enabled" = false;
# Disable webRTC
"media.peerconnection.enabled" = false;
};
};

21
flake.nix
View File

@@ -10,10 +10,10 @@
};
outputs =
{
self,
nixpkgs,
nixos-generators,
{ self
, nixpkgs
, nixos-generators
,
}:
let
system = "x86_64-linux";
@@ -40,8 +40,8 @@
# Common configuration
commonConfig =
{
isLiveIso ? false,
{ isLiveIso ? false
,
}:
import ./common.nix {
inherit pkgs cloudServerNames isLiveIso;
@@ -76,11 +76,10 @@
(commonConfig { isLiveIso = false; })
(
{
config,
pkgs,
lib,
...
{ config
, pkgs
, lib
, ...
}:
{
boot.loader.grub.enable = false;