From b0abaaaedc723a37efb993211a9f9ae83fbecc84 Mon Sep 17 00:00:00 2001
From: netblue30 <netblue30@yahoo.com>
Date: Mon, 18 Sep 2017 09:00:47 -0400
Subject: electron profile whitelisting

---
 README                   | 2 ++
 etc/disable-programs.inc | 1 +
 etc/electron.profile     | 5 ++++-
 3 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/README b/README
index eb776514c..e3169e161 100644
--- a/README
+++ b/README
@@ -509,6 +509,8 @@ Topi Miettinen (https://github.com/topimiettinen)
 	- seccomp default list update
 	- improve loading of seccomp filter and memory-deny-write-execute feature
 	- private-lib feature
+user1024 (user1024@tut.by)
+	- electron profile whitelisting
 valoq (https://github.com/valoq)
 	- lots of profile fixes
 	- added support for /srv in --whitelist feature
diff --git a/etc/disable-programs.inc b/etc/disable-programs.inc
index ff750ecd9..e740353a6 100644
--- a/etc/disable-programs.inc
+++ b/etc/disable-programs.inc
@@ -51,6 +51,7 @@ blacklist ${HOME}/.config/Qlipper
 blacklist ${HOME}/.config/QuiteRss
 blacklist ${HOME}/.config/QuiteRssrc
 blacklist ${HOME}/.config/Riot
+blacklist ${HOME}/.config/Rocket.Chat
 blacklist ${HOME}/.config/Slack
 blacklist ${HOME}/.config/Thunar
 blacklist ${HOME}/.config/VirtualBox
diff --git a/etc/electron.profile b/etc/electron.profile
index 9b21c1bfd..e5aee4358 100644
--- a/etc/electron.profile
+++ b/etc/electron.profile
@@ -5,11 +5,14 @@ include /etc/firejail/electron.local
 # Persistent global definitions
 include /etc/firejail/globals.local
 
-
+noblacklist ~/.config/Rocket.Chat
 include /etc/firejail/disable-common.inc
 include /etc/firejail/disable-passwdmgr.inc
 include /etc/firejail/disable-programs.inc
 
+whitelist ${DOWNLOADS}
+whitelist ~/.config/Rocket.Chat
+
 caps.drop all
 netfilter
 nodvd
-- 
cgit v1.2.3-54-g00ecf