Allow Tor Browser to save files to Documents, Downloads, Music, Pictures, Videos and their subfolders
Plan
-
Adjust Tor Browser's AppArmor policy to allow writing to Documents, Downloads, Music, Pictures, Videos and their subfolders: https://gitlab.tails.boum.org/tails/torbrowser-launcher/-/commits/19255-allow-download-to-default-GNOME-folders -
Disable the GNOME localization code for xdg-user-dirs, so they're not renamed to a localized version anymore. They'll keep their English name for every user. - Implementation: is it enough to disable
/etc/xdg/autostart/user-dirs-update-gtk.desktop?
- Implementation: is it enough to disable
Original report
8 years after we introduced AppArmor in Tails 1.2, we haven't been able to improve on the serious UX regression introduced in how people can download files from the Tor Browser. See #15678 (closed) for details.
#10422 (closed) still seems pretty far away. Other partial solutions (#19254 (closed), #15028 (closed), #10790) also seem pretty far away still.
I propose that we temporarily work around this UX regression by allowing Tor Browser to read and write in all of $HOME, while maintaining the current AppArmor limitations on the Persistent Storage. The content of $HOME is amnesic, so should have fewer important documents and data that the Persistent Storage. We could add back some of these AppArmor limitations as we made progress on #15028 (closed), #10790, and #10422 (closed) for example.