Helient Systems :

Author:  Will  Fulmer, Chief Engineering Officer

NPAPI, or the Netscape Plugin API, is a framework used by many browsers for 3^rd party plugin integration. When a webpage contains content that cannot be handled natively within the browser, a third-party plugin is enabled and it then becomes responsible for interpreting and executing that content.

Over the last 12 months, Google has changed the default behavior of NPAPI plugins within the Google Chrome browser. Over the course of the next 8 months, Google will continue their disabling and full-removal of NPAPI plugins.

Since early 2014, Google Chrome users have experienced these issues allowing various plugins within the browser.

Here is a timeline of the Google Chrome and NPAPI deprecation.

What does this mean for me and/or my users?

In the very short term – April 2015 – users are going to require a change in order to support applications that still leverage NPAPI plugins. Some of these plugins include functionality for  addins such as Adobe Flash, Microsoft Silverlight, and Citrix Receiver.

In order to support NPAPI plugins after the April 2015 Google Crome release, one of two methodologies will be required:

User Override

Google plans to implement an override, accessible on the browser’s experimental page: chrome://flags/#enable-npapi
When set to enabled, it will re-enable support for NPAPI plugins.

Enterprise Policy

Go to HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google\Chrome and, create a new key called ‘EnabledPlugins’

Create string values (REG_SZ) for all plugins that should be enabled by Enterprise Policy

Software\Policies\Chromium\EnabledPlugins\1 = “Java”
Software\Policies\Chromium\EnabledPlugins\2 = “Shockwave Flash”
Software\Policies\Chromium\EnabledPlugins\3 = “Chrome PDF Viewer”

Citrix has released a blog post detailing what changes are required to circumvent this disabling of NPAPI extenstions. This will yield temporarily relief until September 2015, when NPAPI support will be completely removed from Chrome.

The workarounds provided by Citrix include

–          Re-enabling support for NPAPI plugins
–          Customizing Citrix Receiver for Web
–          Enabling Google Chrome To Open Citrix ICA files Automatically

http://blogs.citrix.com/2015/03/09/preparing-for-npapi-being-disabled-by-google-chrome/

In the months leading up to September 2015, it will be entirely up to application developers to engineer a non-NPAPI plugin to support their content. HTML, CSS, and JavaScript content along with a significant increase of HTML5 content will be the future of web browsing.

To recap the Google Chrome Timeline:

Phase 1 Behavior – January 2015
–         NPAPI Plugins disabled by default.
–         Users prompted to ‘Allow’ the plugin to run if plugin is currently disabled

Phase 2 Behavior – April 2015
–         Google Chrome disabling all NPAPI Plugins
–         NPAPI plugins can be re-enabled by using chrome://flags/#enable-npapi
–         Enterprise users can enable plugins through an Enterprise Policy

Phase 3 Behavior – September 2015
–         NPAPI Plugins completely disabled with no functionality to re-enable

About the Author

Will Fulmer is the Chief Engineering Officer of Helient and a Solutions Architect with 10 plus years of industry experience. His designs establish the technical infrastructure and implementation standards including heavy concentrations on virtualization, storage, cloud-based solutions and business continuity. Will continues forward movement with an innovative view of redeveloping the highly available datacenter while realizing optimal operational performance and delivering greater manageability. Recent projects include NetApp and Nutanix storage platforms, utilizing VMware and Citrix infrastructure to support Site Recovery Manager, Exchange 2010 and fully redundant Virtual Desktop Infrastructures.

If you have any questions or need more information, please do not hesitate to contact wfulmer@helient.com.