Redirection blocking

[kirill9000]

Hello.
I'd like to thank you for your outstanding work. I switched from RequestPolicy to Policeman for it's feature-richness and much much more convenient interface. You have my deepest appreciation.

But I miss one feature from RequestPolicy - blocking of redirections from (and to) non-whitelisted domains. When user clicks link that attempts to redirect him, RP displays destination URL and asks user whether he wishes to follow. It's very useful against various link shortening services.

May I suggest that such feature should be incorporated into Policeman?

[bastik-1001]

Indeed a very useful feature. It displayed an infobar on the top of the page, asking what to do.

Depending on how it is going to be implemented you may want to optionally allow http to https redirects for the same domain, despite the blocking state of the source. (e.g. http://www.example.org/ can redirect to https://www.example.org/ without Policeman interfering with it.)

Since RequestPolicy was able to either allow or reject any request, it was easy to tell what a non-white-listed domain actually is. With Policeman I can allow requests for images from github.com to imagehoster.net, but still not want to be redirected to it. Either this would mean redirects appear with their own category in the popup or that redirects are treated in a different way.

[futpib]

522dd1c and some older commits address this issue

[Halibut80]

@futpib Redirects blocking not work for me:
gif
From accounts.google.com to mail.google.com.

[futpib]

@Halibut80 What's your about:policeman#rulesets-manager setup?

[Halibut80]

@futpib Oh, sorry, my fault.. I have enabled "allow same second level domain" ruleset.

[heforfree]

just change that icon to policeman redirect icon

also example i am on http://example.com/ then in searchbar i type something
and then press enter then notification ask me allow redirect from www.example.com to www.google.com
i can create rule page anydomain to google.com
but just it happen in clean profile?
and not happen on my default profile

[rezad1393]

can I disable this?

[heforfree]

@rezad1393
no you can not,for now switch back to 0.18.1

[rezad1393]

please if you want to add this feature to stable release add an option to disable it too.

ty

I was gonna remove requestpolicy addon cause I don't want to have to use two addon but more importantly I don't like the redirect blocking always enabled.
is it not possible to have separately the ability to control page requests and the redirect of whole page?

[heforfree]

i forgot to say but i think it possible with ruleset but i dont know how,sorry
there is one ruleset for samesite
https://github.com/futpib/policeman-rulesets/blob/master/general/allow_redirects_same_site.ruleset

[futpib]

@rezad1393 You can disable it by adding "allow pages from any domain to any domain" rule.

[rezad1393]

pages?
is this the new added item in new non-stable version?

[rezad1393]

ty
it worked

[rezad1393]

oh
this is buggy.
sometimes this doesn't work.
it says blocked and the element is "others".
like when using duckduckgo web search redirect it sometimes doesn't work.
this is not always occurring and refreshing the pages works.

[Halibut80]

@rezad1393 This happens because #173