1 files changed, 181 insertions, 0 deletions

diff --git a/webbrowser/components/preferences/security.xul b/webbrowser/components/preferences/security.xul
new file mode 100644
index 0000000..bae6cca
--- /dev/null
+++ b/webbrowser/components/preferences/security.xul
@@ -0,0 +1,181 @@
+<?xml version="1.0"?>
+
+<!-- -*- Mode: Java; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- -->
+<!-- This Source Code Form is subject to the terms of the Mozilla Public
+   - License, v. 2.0. If a copy of the MPL was not distributed with this
+   - file, You can obtain one at http://mozilla.org/MPL/2.0/. -->
+
+<!DOCTYPE overlay [
+  <!ENTITY % brandDTD SYSTEM "chrome://branding/locale/brand.dtd">
+  <!ENTITY % securityDTD SYSTEM "chrome://browser/locale/preferences/security.dtd">
+  %brandDTD;
+  %securityDTD;
+]>
+
+<overlay id="SecurityPaneOverlay"
+         xmlns="http://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul">
+
+  <prefpane id="paneSecurity"
+            onpaneload="gSecurityPane.init();"
+            helpTopic="prefs-security">
+
+    <preferences id="securityPreferences">
+      <!-- XXX buttons -->
+      <preference id="pref.privacy.disable_button.view_passwords"
+                  name="pref.privacy.disable_button.view_passwords"
+                  type="bool"/>
+      <preference id="pref.privacy.disable_button.view_passwords_exceptions"
+                  name="pref.privacy.disable_button.view_passwords_exceptions"
+                  type="bool"/>
+
+      <!-- Add-ons, malware, phishing -->
+      <preference id="xpinstall.whitelist.required"
+                  name="xpinstall.whitelist.required"
+                  type="bool"/>
+      <preference id="extensions.blocklist.level"
+                  name="extensions.blocklist.level"
+                  onchange="gSecurityPane.addonLevelNeedsSync();"
+                  type="int"/>
+
+      <!-- Passwords -->
+      <preference id="signon.rememberSignons" name="signon.rememberSignons" type="bool"/>
+      <preference id="signon.autofillForms"   name="signon.autofillForms"   type="bool"/>
+
+      <!-- Security Protocols -->
+      
+      <preference id="network.stricttransportsecurity.enabled"
+                  name="network.stricttransportsecurity.enabled"
+                  type="bool"/>
+      
+      <!-- Opportunistic Encryption -->
+                  
+      <preference id="network.http.upgrade-insecure-requests"
+                  name="network.http.upgrade-insecure-requests"
+                  type="bool"/>
+      <preference id="network.http.altsvc.oe"
+                  name="network.http.altsvc.oe"
+                  type="bool"/>
+      
+      <!-- XSS Filter -->
+      <!--
+      <preference id="security.xssfilter.enable" name="security.xssfilter.enable" type="bool"/>
+      -->
+
+    </preferences>
+    
+    <script type="application/javascript" src="chrome://browser/content/preferences/security.js"/>
+    
+    <stringbundle id="bundlePreferences" src="chrome://browser/locale/preferences/preferences.properties"/>
+
+    <!-- addons, forgery (phishing) UI -->
+    <groupbox id="addonsSecurityGroup">
+      <caption label="&addons.label;"/>
+      
+      <hbox id="addonInstallBox">
+        <checkbox id="warnAddonInstall" flex="1"
+                  label="&warnAddonInstall.label;"
+                  accesskey="&warnAddonInstall.accesskey;"
+                  preference="xpinstall.whitelist.required"
+                  onsyncfrompreference="return gSecurityPane.readWarnAddonInstall();"/>
+        <button id="addonExceptions"
+                label="&addonExceptions.label;"
+                accesskey="&addonExceptions.accesskey;"
+                oncommand="gSecurityPane.showAddonExceptions();"/>
+      </hbox>
+      <hbox id="addonSecuritySettingsBox" flex="1">
+       <vbox>
+        <label id="addonSecurity" control="addonsecurity-menu">&addonSecuritylevel;</label>
+		<menulist id="addonsecurity-menu" preference="extensions.blocklist.level" sizetopopup="always">
+		  <menupopup>
+		    <menuitem label="&addonSecurityLevel_Off;" value="99" />
+		    <menuitem label="&addonSecurityLevel_Low;" value="3" />
+		    <menuitem label="&addonSecurityLevel_High;" value="2" />
+		    <menuitem label="&addonSecurityLevel_Extreme;" value="1" />
+		  </menupopup>
+		</menulist>       
+       </vbox>
+      </hbox>
+    </groupbox>
+
+    <!-- Passwords -->
+    <groupbox id="passwordsGroup" orient="vertical">
+      <caption label="&passwords.label;"/>
+
+      <hbox id="savePasswordsBox">
+        <checkbox id="savePasswords" flex="1"
+                  label="&rememberPasswords.label;" accesskey="&rememberPasswords.accesskey;"
+                  preference="signon.rememberSignons"
+                  onsyncfrompreference="return gSecurityPane.readSavePasswords();"/>
+        <button id="passwordExceptions"
+                label="&passwordExceptions.label;"
+                accesskey="&passwordExceptions.accesskey;"
+                oncommand="gSecurityPane.showPasswordExceptions();"
+                preference="pref.privacy.disable_button.view_passwords_exceptions"/>
+      </hbox>
+      <checkbox id="autofillPasswords" flex="1"
+                label="&autofillPasswords.label;" accesskey="&autofillPasswords.accesskey;"
+                preference="signon.autofillForms"/>
+      <hbox id="masterPasswordBox">
+        <checkbox id="useMasterPassword" flex="1"
+                  oncommand="gSecurityPane.updateMasterPasswordButton();"
+                  label="&useMasterPassword.label;"
+                  accesskey="&useMasterPassword.accesskey;"/>
+        <button id="changeMasterPassword"
+                label="&changeMasterPassword.label;"
+                accesskey="&changeMasterPassword.accesskey;"
+                oncommand="gSecurityPane.changeMasterPassword();"/>
+      </hbox>
+
+      <hbox id="showPasswordsBox">
+        <spacer flex="1"/>
+        <button id="showPasswords"
+                label="&savedPasswords.label;" accesskey="&savedPasswords.accesskey;"
+                oncommand="gSecurityPane.showPasswords();"
+                preference="pref.privacy.disable_button.view_passwords"/>
+      </hbox>
+    </groupbox>
+
+    <!-- Security protocols -->
+    <groupbox id="SecProtoGroup">
+      <caption label="&SecProto.label;"/>
+    
+      <vbox id="SecProtoBox" align="start" flex="1">
+        <checkbox id="enableHSTS"
+                  label="&enableHSTS.label;"
+                  accesskey="&enableHSTS.accesskey;"
+                  preference="network.stricttransportsecurity.enabled" />
+        <checkbox id="enableHPKP"
+                  label="&enableHPKP.label;"
+                  accesskey="&enableHPKP.accesskey;"
+		  preference="security.cert_pinning.hpkp.enabled"/>
+      </vbox>
+    </groupbox>
+    
+    <groupbox id="OpportunisticEncryption">
+      <caption label="&OpEnc.label;"/>
+      <checkbox id="enableUIROpEnc"
+                label="&enableUIROpEnc.label;"
+                preference="network.http.upgrade-insecure-requests" />
+      <checkbox id="enableAltSvcOpEnc"
+                label="&enableAltSvcOpEnc.label;"
+                preference="network.http.altsvc.oe" />
+    </groupbox>    
+
+    <!-- XSS Filter -->
+    <!--
+    <groupbox id="XSSFiltGroup">
+      <caption label="&XSSFilt.label;"/>
+    
+      <hbox id="XSSFiltBox">
+        <checkbox id="enableXSSFilt" flex="1"
+                  label="&enableXSSFilt.label;"
+                  accesskey="&enableXSSFilt.accesskey;"
+                  preference="security.xssfilter.enable" />
+      </hbox>
+
+    </groupbox>
+    -->
+
+  </prefpane>
+
+</overlay>