X
Tap here to go to the mobile version of the site.
Your Firefox is out of date and may contain a security risk! Upgrade Firefox

Support Forum

Is there a way to "whitelist" a specific plugin on the add-ons blocklist for a specific website?

Posted

All employees in my company use a website on our intranet to clock in and out. The website, provided by ADP, uses a Java plugin to facilitate the process of clocking in and out after an employee is instructed to log in.

As of recent, many (if not all) versions of Java have been added to the Firefox Add-ons Blocklist. Although I agree with this decision, I would like to "whitelist" the specific website described above on my employee's computers so that it is not affected by the blocklist.

I am aware of clicking on the red block to the left of the website's URL and selecting "Always activate plugins for this site" (http://mzl.la/VYiQ64). However, not all of my employees are. Describing or walking-through this process with several hundred of them would be very time consuming and is inefficient.

I do not want to deploy a custom blocklist or disable it altogether. A custom blocklist would allow Java to automatically run on any website and not using a blocklist is risky.

My users are all using Firefox 19 on Windows XP SP3 or Windows 7 with Java 6, Update 41 installed.

Modified by rchildress87

Additional System Details

Installed Plug-ins

  • Next Generation Java Plug-in 1.6.0_41 for Mozilla browsers
  • NPRuntime Script Plug-in Library for Java(TM) Deploy

Application

  • User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:19.0) Gecko/20100101 Firefox/19.0

More Information

finitarry 157 solutions 2177 answers

You might be able to set up a capability.policy to handle that to allow an exception for one URL for using java. The setting in about:config for java in general is "security.enable_java". This page gives instruction about how to set up capability policies.

You could create a user.js file with the settings created and add it to the profiles of the computers which will be using that policy.

Question owner

It seems security.enable_java doesn't exist anymore. See the URL below for more information:

https://bugzilla.mozilla.org/show_bug.cgi?id=322778#c9

Grad 6 solutions 51 answers

I don't think there's a way to whitelist just one website for the use of Java, but if you're worried about turning in on for every page, how about installing no-script to block everything else? http://noscript.net/features

Question owner

I appreciate the suggestion of NoScript, but I do not want to disable Java entirely nor do I want to install another plugin/extension. Ideally, I want Firefox to follow the blocklist rules and enable click-to-play for all sites using Java except for a few that I specify.

Modified by rchildress87