A few hour's effort to see if HTTPS Everywhere could be ported to Safari. Inspired by EFForg/https-everywhere#5121
- Yes, you can have something similar to HTTPS Everywhere functionality in Safari
- There are problems with this functionality though (detailed in Notes section)
- There may be ways around this problem that haven't been explored yet
- You can download this repo and follow the Installation/Running instructions to see for yourself
- Open up Safari and if you haven't already actived the developer menu, go to Preferences(⌘,) -> Advanced and check the box that says "Show Develop menu in menu bar"
- Go to the Develop menu and select "Show Extension Builder"
- Click Continue when the dialog pops up
- In the bottom left-hand corner there is a plus sign, click it and click "Add Extension..."
- Select the "Test-HTTPS-Everywhere.safariextension" folder that is included in this repo
- To run, click the install button in the top right-hand corner. It will ask you to confirm and for your password
- It should work now. See Notes for what to expect when it's running and Editing Rules for how to edit the rules
- Note that you need to repeat the step 6 each time you restart Safari
- To edit the rewrite rules, simply edit the sites.json file located in the safariextension folder
- You can also create another JSON file in the same folder and get the extension to use it by selecting it under the "Content Blocker" option in the Extension Builder window
- Every time you edit the JSON file, you need to reload the extension (top right-hand corner)
- While the script can generate a JSON file with ~75% of HTTPS Everywhere's rewrite rules (~700,000 lines of JSON), Safari seems to only be able to handle small JSON files
- I got a "JSON Compilation failed" error for every JSON file generated with >=750 HTTPS Everywhere rulesets
- 500 rulesets (~13,000 lines) in one file worked so the maximum is somewhere between 500 and 750 rulesets
- I don't know if you could compile it and distribute a binary that had more than 500 rulesets
- The rewriting definitely works, it just only seems to work in certain situations
- It seems to work if there's a redirect
- Ex: http://msn.com redirects to http://www.msn.com which seems to trigger an https rewrite
- If you type http://www.msn.com in the address bar, it doesn't seem to triggger an https rewrite
- It seems to work if you refresh the page
- It seems to work if you click on a link (rather than type in the URL in the address bar)
- Once a site has been rewritten once, it seems to rewrite links more readily in the future
- Ex: After loading msn.com over https, it seems to rewrite future http://www.msn.com to https
- I don't know how long this effect lasts
- After further testing, it seems like this only affects your most recently visited site.
- Ex: You visit msn.com and then library.princeton.edu and both triggered rewrites. If you then go back to www.msn.com, it will not automatically rewrite
- After further testing, it seems like this only affects your most recently visited site.
- Basically, the only time it doesn't seem to work immediately is when you type in the address and there is no redirect
- It seems to work if there's a redirect
- I just built the Extension using Safari's Extension Builder but Apple also offers the option of building extensions with XCode
- I don't know if that could get around some of the limitations I've found here
- A link to Apple's docs about that is in the Useful Links section
- I included 5 sites that I know normally default to http but can be successfully rewritten to https at the top of the sites.json file
- After those I put the JSON output from running my script on the HTTPS Everywhere rulesets with
--limit 500
- After those I put the JSON output from running my script on the HTTPS Everywhere rulesets with
- Creating content blocking (https rewrite) rules
- Example content blocker that was helpful for learning what to do
- Tutorial about building a Content Blocker in iOS (the principles are mostly the same for iOS and macOS)
- Docs about creating extensions in XCode
- I wrote the python script to help me generate the JSON for the Safari Extension
- The script has command-line options for specifying
- A specific XML file to use
- The directory (of XML files) to use
- Where to output the JSON
- The maximum number of XML files to parse
- The options can be displayed by running
python3 gen_json.py -h
- You can change the JSON the script outputs by changing the object in the generate_json() function
- Line 108 of the script currently
- The script avoids trying to parse rulesets with exclusions or more than one rewrite rule
- I wrote the script rather quickly so there might be errors in it
- Python 3
- Beautiful Soup 4
- Can be installed with pip by running
pip install beautifulsoup4
- Can be installed with pip by running
- lxml
- Can be installed with pip by running
pip install lxml
- Can be installed with pip by running