Hi All, This week we'll be rolling FxA train-41 to production. It had a shortened one-week dev cycle designed to get our trains back on their usual schedule, and it ships with the following highlights:
* The OAuth flow now supports "refresh tokens", improving security by allowing the default flavour of access token to be short-lived. * The "mailcheck" feature, which suggests corrections if you appear to have typoed a common email domain, is now enabled via A/B testing to see if it improves signup success rate. * Uncaught errors in our front-end code will now be captured via Sentry. * Several important bugfixes: * Fix an error when cropping certain sizes od avatar picture * Ensure the marketplace payments flow is not considered an iframe The refresh tokens feature brings some changes to behaviour of out existing OAuth tokens, which I'll say more about in a follow-up email. As always, you can dig into the details through the CHANGELOG files in each individual repo: https://github.com/mozilla/fxa-oauth-server/blob/master/CHANGELOG.md https://github.com/mozilla/fxa-content-server/blob/master/CHANGELOG.md Cheers, Ryan _______________________________________________ Dev-fxacct mailing list [email protected] https://mail.mozilla.org/listinfo/dev-fxacct
