From d02cf11b707fba86acca87b20552c627ce600adf Mon Sep 17 00:00:00 2001
From: glitsj16 <glitsj16@users.noreply.github.com>
Date: Sat, 21 Dec 2019 22:46:10 +0000
Subject: Update brave.profile to support native sandboxing

---
 etc/brave.profile | 13 +++++++++----
 1 file changed, 9 insertions(+), 4 deletions(-)

(limited to 'etc/brave.profile')

diff --git a/etc/brave.profile b/etc/brave.profile
index 7cd925a4c..35c59f5a3 100644
--- a/etc/brave.profile
+++ b/etc/brave.profile
@@ -1,6 +1,6 @@
 # Firejail profile for brave
-# This file is overwritten after every install/update
 # Description: Web browser that blocks ads and trackers by default.
+# This file is overwritten after every install/update
 # Persistent local customizations
 include brave.local
 # Persistent global definitions
@@ -9,15 +9,20 @@ include globals.local
 # noexec /tmp is included in chromium-common.profile and breaks Brave
 ignore noexec /tmp
 
-noblacklist ${HOME}/.config/brave
+noblacklist ${HOME}/.cache/BraveSoftware
 noblacklist ${HOME}/.config/BraveSoftware
+noblacklist ${HOME}/.config/brave
+noblacklist ${HOME}/.config/brave-flags.conf
 # brave uses gpg for built-in password manager
 noblacklist ${HOME}/.gnupg
 
-mkdir ${HOME}/.config/brave
+mkdir ${HOME}/.cache/BraveSoftware
 mkdir ${HOME}/.config/BraveSoftware
-whitelist ${HOME}/.config/brave
+mkdir ${HOME}/.config/brave
+whitelist ${HOME}/.cache/BraveSoftware
 whitelist ${HOME}/.config/BraveSoftware
+whitelist ${HOME}/.config/brave
+whitelist ${HOME}/.config/brave-flags.conf
 whitelist ${HOME}/.gnupg
 
 # Brave sandbox needs read access to /proc/config.gz
-- 
cgit v1.2.3-70-g09d2