Added DNS over HTTPS mode & template and policy refresh interval (#620)

* Added Manifest V2 Controls * Revert apostrophe changes * Revert quotation mark conversions * Fix ordering and integer syntax on one value * Bump pfm version and last modified * Restore & tweak commented option * Restore commented out managed bookmarks * Update Brave manifeset with ChromeToBrave * Added DNS-Over-HTTPS & Policy Refresh rate * Resolved Changes: Alphabetize & DNS Template Title Resolved changes requested by kevinmcox * Edge manifest last modification date and version updates --------- Co-authored-by: AP Orlebeke <aporlebeke@gmail.com> Co-authored-by: Ari Leviatan <relgit@users.noreply.github.com>
ProfileCreator · Aug 9, 2023 · 6b8a1b0 · 6b8a1b0
1 parent a877eb3
commit 6b8a1b0
Showing 1 changed file with 93 additions and 3 deletions.
diff --git a/Manifests/ManagedPreferencesApplications/com.microsoft.Edge.plist b/Manifests/ManagedPreferencesApplications/com.microsoft.Edge.plist
@@ -15,7 +15,7 @@
 	<key>pfm_interaction</key>
 	<string>combined</string>
 	<key>pfm_last_modified</key>
-	<date>2022-11-01T10:00:33Z</date>
+	<date>2023-08-09T08:35:00Z</date>
 	<key>pfm_platforms</key>
 	<array>
 		<string>macOS</string>
@@ -304,6 +304,8 @@
 					<string>ConfigureOnlineTextToSpeech</string>
 					<string>CustomHelpLink</string>
 					<string>DNSInterceptionChecksEnabled</string>
+					<string>DnsOverHttpsMode</string>
+					<string>DnsOverHttpsTemplates</string>
 					<string>DefaultBrowserSettingEnabled</string>
 					<string>DefaultSearchProviderContextMenuAccessAllowed</string>
 					<string>DefaultDownloadDirectory</string>
@@ -376,6 +378,7 @@
 					<string>OverrideSecurityRestrictionsOnInsecureOrigin</string>
 					<string>PolicyDictionaryMultipleSourceMergeList</string>
 					<string>PolicyListMultipleSourceMergeList</string>
+					<string>PolicyRefreshRate</string>
 					<string>PromotionalTabsEnabled</string>
 					<string>PromptForDownloadLocation</string>
 					<string>ProxySettings</string>
@@ -3738,6 +3741,62 @@ If this policy is left not set, the users will be able to change whether the bui
 			<key>pfm_type</key>
 			<string>boolean</string>
 		</dict>
+		<dict>
+			<key>pfm_app_min</key>
+			<string>83</string>
+			<key>pfm_description</key>
+			<string>Controls the mode of DNS-over-HTTPS</string>
+			<key>pfm_description_reference</key>
+			<string>Control the mode of the DNS-over-HTTPS resolver. Note that this policy will only set the default mode for each query. 
+
+The mode can be overridden for special types of queries such as requests to resolve a DNS-over-HTTPS server hostname.</string>
+			<key>pfm_documentation_url</key>
+			<string>https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#dnsoverhttpsmode</string>
+			<key>pfm_name</key>
+			<string>DnsOverHttpsMode</string>
+			<key>pfm_range_list</key>
+			<array>
+				<string>off</string>
+				<string>automatic</string>
+				<string>secure</string>
+			</array>
+			<key>pfm_range_list_titles</key>
+			<array>
+				<string>Disable DNS-over-HTTPS</string>
+				<string>Enable DNS-over-HTTPS with insecure fallback</string>
+				<string>Enable DNS-over-HTTPS without insecure fallback</string>
+			</array>
+			<key>pfm_title</key>
+			<string>DNS-over-HTTPS mode</string>
+			<key>pfm_type</key>
+			<string>string</string>
+		</dict>
+		<dict>
+			<key>pfm_app_min</key>
+			<string>83</string>
+			<key>pfm_description</key>
+			<string>Specify URI template of desired DNS-over-HTTPS resolver. To specify multiple DNS-over-HTTPS resolvers, separate the corresponding URI templates with spaces.</string>
+			<key>pfm_description_reference</key>
+			<string>The URI template of the desired DNS-over-HTTPS resolver. To specify multiple DNS-over-HTTPS resolvers, separate the corresponding URI templates with spaces.
+
+If the DnsOverHttpsMode is set to "secure" then this policy must be set and not empty.
+
+If the DnsOverHttpsMode is set to "automatic" and this policy is set then the URI templates specified will be used; if this policy is unset then hardcoded mappings will be used to attempt to upgrade the user's current DNS resolver to a DoH resolver operated by the same provider.
+
+If the URI template contains a dns variable, requests to the resolver will use GET; otherwise requests will use POST.
+
+Incorrectly formatted templates will be ignored.</string>
+			<key>pfm_documentation_url</key>
+			<string>https://learn.microsoft.com/en-us/deployedge/microsoft-edge-policies#dnsoverhttpstemplates</string>
+			<key>pfm_name</key>
+			<string>DnsOverHttpsTemplates</string>
+			<key>pfm_note</key>
+			<string>Incorrectly formatted templates will be ignored.</string>
+			<key>pfm_title</key>
+			<string>DNS-over-HTTPS Template</string>
+			<key>pfm_type</key>
+			<string>string</string>
+		</dict>
 		<dict>
 			<key>pfm_app_min</key>
 			<string>77</string>
@@ -6234,6 +6293,38 @@ If a policy is not in the list, in case there is any conflict between sources, s
 			<key>pfm_type</key>
 			<string>array</string>
 		</dict> -->
+		<dict>
+			<key>pfm_app_min</key>
+			<string>79</string>
+			<key>pfm_default</key>
+			<integer>10800000</integer>
+			<key>pfm_description</key>
+			<string>Refresh rate for user policy. Specifies the period in milliseconds at which the device management service is queried for user policy information. Setting this policy overrides the default value of 3 hours. Valid values for this policy are in the range from 1800000 (30 minutes) to 86400000 (1 day).</string>
+			<key>pfm_description_reference</key>
+			<string>Specifies the period in milliseconds at which the device management service is queried for user policy information.
+
+Setting this policy overrides the default value of 3 hours. Valid values for this policy are in the range from 1800000 (30 minutes) to 86400000 (1 day). Any values not in this range will be clamped to the respective boundary. If the platform supports policy notifications, the refresh delay will be set to 24 hours because it is expected that policy notifications will force a refresh automatically whenever policy changes.
+
+Leaving this policy not set will make Edge use the default value of 3 hours.
+
+Note that if the platform supports policy notifications, the refresh delay will be set to 24 hours (ignoring all defaults and the value of this policy) because it is expected that policy notifications will force a refresh automatically whenever policy changes, making more frequent refreshes unnecessary.</string>
+			<key>pfm_documentation_url</key>
+			<string>https://learn.microsoft.com/en-us/DeployEdge/microsoft-edge-policies#policyrefreshrate</string>
+			<key>pfm_name</key>
+			<string>PolicyRefreshRate</string>
+			<key>pfm_note</key>
+			<string>The default refresh rate is 3 hrs.</string>
+			<key>pfm_range_max</key>
+			<integer>86400000</integer>
+			<key>pfm_range_min</key>
+			<string>1800000</string>
+			<key>pfm_title</key>
+			<string>Policy Refresh Rate</string>
+			<key>pfm_type</key>
+			<string>integer</string>
+			<key>pfm_value_unit</key>
+			<string>milliseconds</string>
+		</dict>
 		<dict>
 			<key>pfm_app_min</key>
 			<string>77</string>
@@ -9479,7 +9570,6 @@ If the policy DeveloperToolsAvailability is set, the value of the policy Develop
 	<key>pfm_unique</key>
 	<true/>
 	<key>pfm_version</key>
-	<integer>13</integer>
-
+	<integer>14</integer>
 </dict>
 </plist>