You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
As a part of the MLS sunset process, we are migrating the functionality of one endpoint to classify-client for backwards compatibility: /v1/country. Firefox currently uses this to identify the current region the browser is in (for preferences and defaults).
Previously, downstream builds of Firefox (ex: package maintainer builds for linux distros) would use their MLS key to reach this endpoint. Maintainers and downstream devs would need to apply for a key, Mozilla would need to approve and issue the key, and then MLS would need to authorize every request coming in against the set of known keys.
Going forward we would prefer to allow downstream builds to self-identify. We will allow requests to /v1/country that provide an API key that are either:
An existing known MLS key for a Firefox build, including existing downstream keys
Follow the pattern /^firefox\-downstream\-\w{1,40}$/ . Example: firefox-downstream-debian_13_0.
The text was updated successfully, but these errors were encountered:
Requiring an email address or domain to be provided is good.
But I don't think we should/could have true validation. If downstream build is popular but we're unable to verify that record one day for whatever reason (maybe they moved domains), then that would leave existing users unable to hit the endpoint.
As a part of the MLS sunset process, we are migrating the functionality of one endpoint to classify-client for backwards compatibility:
/v1/country
. Firefox currently uses this to identify the current region the browser is in (for preferences and defaults).Previously, downstream builds of Firefox (ex: package maintainer builds for linux distros) would use their MLS key to reach this endpoint. Maintainers and downstream devs would need to apply for a key, Mozilla would need to approve and issue the key, and then MLS would need to authorize every request coming in against the set of known keys.
Going forward we would prefer to allow downstream builds to self-identify. We will allow requests to
/v1/country
that provide an API key that are either:/^firefox\-downstream\-\w{1,40}$/
. Example:firefox-downstream-debian_13_0
.The text was updated successfully, but these errors were encountered: