Public Sessions whitelisting - removed privacy sensitive permissions

BUG=649726

Review-Url: https://codereview.chromium.org/2394243002
Cr-Commit-Position: refs/heads/master@{#423827}

chrome/browser/chromeos/extensions/device_local_account_management_policy_provider.cc

@@ -437,8 +437,8 @@ const char* const kSafePermissionStrings[] = {
 
     "contentSettings",
 
-    // Provides access to URLs.
-    "contextMenus",
+    // Privacy sensitive URL access.
+    // "contextMenus",
 
     // This would provie access to auth cookies, so needs to be blocked.
     // "cookies",
@@ -512,8 +512,8 @@ const char* const kSafePermissionStrings[] = {
     // However, keyboards and mice are apparently not surfaced via this API.
     "hid",
 
-    // Just URLs and meta data.
-    "history",
+    // Privacy sensitive URL access.
+    // "history",
 
     // Not really useful as there's no signed-in user, so OK to allow.
     "identity",
@@ -598,8 +598,8 @@ const char* const kSafePermissionStrings[] = {
     // that serial input devices are exceedingly rare, OK to allow.
     "serial",
 
-    // Access to URLs.
-    "sessions",
+    // Privacy sensitive URL access.
+    // "sessions",
 
     "socket",
 
@@ -629,11 +629,11 @@ const char* const kSafePermissionStrings[] = {
     // for user consent or (2) return blank capture.
     // "tabCapture",
 
-    // URLs and page titles.
-    "tabs",
+    // Privacy sensitive URL access.
+    // "tabs",
 
-    // URLs and page titles.
-    "topSites",
+    // Privacy sensitive URL access.
+    // "topSites",
 
     // Allows to generate TTS, but no content access. Just UX.
     "tts",
@@ -660,8 +660,8 @@ const char* const kSafePermissionStrings[] = {
     // Just UX.
     "wallpaper",
 
-    // Access to URLs.
-    "webNavigation",
+    // Privacy sensitive URL access.
+    // "webNavigation",
 
     // Provides access to cookies and form upload data. Options: (1) block,
     // (2) strip all content in events.