Skip to content

Apply file transfer restrictions to the integrated browser #7884

Description

@gogo25171

What is your suggestion?

I would like code-server to apply the same file transfer restrictions to the integrated browser available directly inside the VS Code/code-server interface.

Today, code-server can restrict actions such as drag-and-drop, file download, and file upload between the user's local machine and the remote code-server environment. However, the integrated browser inside the interface should also respect these restrictions.

If file transfer is disabled, the integrated browser should not allow users to bypass the restriction by downloading files to their local machine or uploading files from their local machine.

However, the browser should still be allowed to download or upload files only within the remote server environment. For example:

  • downloading a file from a website should be allowed only if the destination is a folder on the remote server;
  • uploading a file should be allowed only if the file comes from the remote server filesystem;
  • uploading or downloading directly between the integrated browser and the local client machine should remain blocked when file transfer restrictions are enabled.

In short, the restriction should prevent transfers outside of the server, but should still allow file operations that stay entirely inside the server environment.

Why do you want this feature?

This would improve security and make file transfer restrictions consistent across the whole code-server interface.

In managed or restricted environments, administrators may disable drag-and-drop, file downloads, and file uploads to prevent data from being moved between the remote server and the local user device.

If the integrated browser can still upload files from the local machine or download files to the local machine, users may be able to bypass these restrictions. This weakens the security model and makes the existing restrictions less effective.

The expected behavior would be:

  • local machine to server transfer: blocked when upload is disabled;
  • server to local machine transfer: blocked when download is disabled;
  • server-only file operations through the integrated browser: allowed.

This would be useful for enterprise, education, sandbox, and controlled development environments where administrators need strong control over data movement.

Are there any workarounds to get this functionality today?

There does not seem to be a clean native workaround today.

Possible workarounds may include disabling the integrated browser entirely, using proxy or network-level restrictions, or maintaining custom patches, but these approaches are not ideal. They can be difficult to maintain, may break legitimate workflows, and do not provide a clear policy-based way to enforce the same restrictions everywhere in code-server.

A native option would be much better because it would make the behavior predictable and consistent with the existing file transfer restrictions.

Are you interested in submitting a PR for this?

Not at the moment, but I would be happy to provide more details, test the behavior, or validate a proposed implementation in a restricted code-server environment.

Metadata

Metadata

Assignees

No one assigned

    Labels

    enhancementSome improvement that isn't a feature

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions