Add a preference (and policy) for the new Windows 10 SSO pref
Categories
(Firefox :: Settings UI, task, P1)
Tracking
()
| Tracking | Status | |
|---|---|---|
| relnote-firefox | --- | 91+ |
People
(Reporter: mkaply, Assigned: mkaply)
Details
Attachments
(12 files)
|
19.80 KB,
image/png
|
Details | |
|
41.42 KB,
image/png
|
Details | |
|
48 bytes,
text/x-phabricator-request
|
Details | Review | |
|
48 bytes,
text/x-phabricator-request
|
Details | Review | |
|
1.99 KB,
text/plain
|
chutten
:
data-review+
|
Details |
|
41.47 KB,
image/png
|
Details | |
|
623.36 KB,
image/png
|
Details | |
|
33.25 KB,
image/png
|
Details | |
|
32.86 KB,
image/png
|
Details | |
|
93.02 KB,
image/png
|
Details | |
|
48.77 KB,
image/png
|
Details | |
|
380.29 KB,
image/png
|
Details |
image (1).png
In bug 1695693, we're adding support for Windows 10 SSO autologin.
I'd like to add a pref to enable it (similar to what Edge has and Chrome will soon as well).
Attachment shows what it looks like on Edge. We won't be so rwordy.
Probably something like :
Allow Windows single sign-on for work or school sites
|
Assignee | |
Comment 1•3 years ago
|
||
It should probably go at the bottom here.
|
|
Assignee | |
Comment 2•3 years ago
|
||
|
|
Assignee | |
Updated•3 years ago
|
|
|
Assignee | |
Comment 3•3 years ago
|
||
|
|
Assignee | |
Comment 4•3 years ago
|
||
Requesting data review for adding a pref to Telemetry Environment.
|
|
Assignee | |
Comment 5•3 years ago
|
||
I'm not sure of the correct wording to use here.
When this preference is checked, any Microsoft accounts you have added to Settings->Email & Accounts will automatically login to their respectivesites.
So a Microsoft account will login to login.live.com and a work or school account will login to login.microsoftonline.com or whatever your work specific login is.
In the UI of Windows, these are distinguished as "Microsoft Account" and "Work or school account"
FYI, the Edge preference is incorrect in that it says "Allow single sign-on for work or school sites using this profile" but it also works for Microsoft accounts.
|
||
Comment 6•3 years ago
|
||
Comment on attachment 9227543 [details]
windows10sso_data_review.md
DATA COLLECTION REVIEW RESPONSE:
Is there or will there be documentation that describes the schema for the ultimate data set available publicly, complete and accurate?
Yes.
Is there a control mechanism that allows the user to turn the data collection on and off?
Yes. This collection is Telemetry so can be controlled through Firefox's Preferences.
If the request is for permanent data collection, is there someone who will monitor the data over time?
Yes, Mike Kaply is responsible.
Using the category system of data types on the Mozilla wiki, what collection type of data do the requested measurements fall under?
Category 2, Interaction.
Is the data collection request for default-on or default-off?
Default on for all channels.
Does the instrumentation include the addition of any new identifiers?
No.
Is the data collection covered by the existing Firefox privacy notice?
Yes.
Does the data collection use a third-party collection tool?
No.
Result: datareview+
|
||
Updated•3 years ago
|
|
|
Assignee | |
Comment 7•3 years ago
•
|
||
Text settled on at this point:
Allow Windows single sign-on for work, school, or consumer sites.
doing content review.
|
||
Comment 8•3 years ago
|
||
Hey Mike, some follow-up questions:
- Are all the accounts that someone can add Microsoft accounts? In other words, why does the Windows UI differentiate between "Microsoft" and "Work or school account"? Asking because I am considering these options:
Allow single sign-on for Microsoft accounts
Allow single sign-on for Microsoft, work, and school sites [Rationale: align with what user sees in Windows UI]
-
How does a Windows user discover this feature? What's the flow leading up to adding accounts?
-
Can someone enable the checkbox in Prefs before they have added accounts in the Windows UI (I assume not)?
-
Will a SUMO article be created for this? If the checkbox is disabled in Prefs (prior to having added accounts), having a SUMO article may be warranted so someone can understand how to enable.
|
|
Assignee | |
Comment 9•3 years ago
|
||
(In reply to Meridel [:meridel] from comment #8)
Hey Mike, some follow-up questions:
- Are all the accounts that someone can add Microsoft accounts?
No, they are not all Microsoft accounts, they can be 3rd party accounts.
In other words, why does the Windows UI differentiate between "Microsoft" and "Work or school account"?
A Microsoft account would be like your normal outlook account. If a user had a school account or work account, they wouldn't necessarily consider that a "Microsoft account". For instance, we have @mozilla.com accounts, but we wouldn't consider those "Google accounts" even though a lot of what they access behind the scenes are Google things.
Asking because I am considering these options:
Allow single sign-on for Microsoft accounts
Allow single sign-on for Microsoft, work, and school sites [Rationale: align with what user sees in Windows UI]
That sounds good to me, but I think we might still want to use accounts since that aligns with the UI.
- How does a Windows user discover this feature? What's the flow leading up to adding accounts?
They would go into their user settings and select "Email & Accounts"
- Can someone enable the checkbox in Prefs before they have added accounts in the Windows UI (I assume not)?
They can, it would just have no effect. We can't detect if there are accounts setup.
- Will a SUMO article be created for this? If the checkbox is disabled in Prefs (prior to having added accounts), having a SUMO article may be warranted so someone can understand how to enable.
Yes, I am planning to create a SUMO article.
|
|
Assignee | |
Comment 10•3 years ago
|
||
Bigger screenshot of windows settings
|
|
||
Comment 11•3 years ago
|
||
Thanks, Mike.
- If we can't detect whether someone has added an account, and thus whether the feature is actually being used, what's the purpose of including this setting in Prefs? Is it to be able to get consent to collect telemetry? To make them aware of the feature?
- And, here is the proposed draft — thoughts on this?
|
|
||
Comment 12•3 years ago
|
||
|
|
Assignee | |
Comment 13•3 years ago
|
||
If we can't detect whether someone has added an account, and thus whether the feature is actually being used, what's the purpose of including this setting in Prefs? Is it to be able to get consent to collect telemetry? To make them aware of the feature?
Yes, to make them aware of the feature.
And that looks great.
|
|
||
Comment 14•3 years ago
|
||
Is it only feature discovery? Is there also a consent piece to this? Asking because the things we include in Preferences usually have something to do with management or consent.
|
|
Assignee | |
Comment 15•3 years ago
|
||
Is it only feature discovery? Is there also a consent piece to this? Asking because the things we include in Preferences usually have something to do with management or consent.
By checking this, you are consenting to the feature. There's no other way to turn it on except via this mechanism.
|
|
||
Comment 16•3 years ago
|
||
Got it, thank you.
|
|
||
Comment 17•3 years ago
|
||
Hi Flod, any concerns about the proposed copy? Landing in 91.
|
||
Comment 18•3 years ago
|
||
No issue on my side, thanks for checking.
|
|
||
Comment 19•3 years ago
|
||
Thank you. Next steps: I will loop Michelle in this week, get sign-off from legal, and then we will be good to go.
|
|
Assignee | |
Comment 20•3 years ago
|
||
|
||
Comment 21•3 years ago
|
||
|
||
Comment 22•3 years ago
|
||
| bugherder | ||
|
||
Updated•3 years ago
|
|
|
||
Comment 23•3 years ago
|
||
Romain, no actual need-info here but wanted to loop you in on an addition to Preferences.
|
|
||
Comment 24•3 years ago
|
||
Hi Emily, I doubt legal review of copy here is necessary but I wanted to make you aware of the addition of this new feature. We don't have our legal review meeting for a bit and I couldn't find time on our cals so I am using Bugzilla.
Here's the summary:
What: Adding a new Pref for Windows users so they can use single sign-on for Microsoft, school, and work accounts. Edge already offers this feature and Chrome may soon. Accounts are added via the Window's device settings, and consent is given in Preferences.
Who: Windows10 users to start. Based on telemetry (if enough people turn it on), will expand to other Windows users).
When: 91 for all Windows10 users
New copy: See the last part in this screenshot, beginning with "Allow Windows users..."
Please let me know if have concerns, questions, or want to meet. Thank you!
|
|
||
Comment 26•3 years ago
|
||
|
||
Comment 27•3 years ago
|
||
| bugherder | ||
|
||
Comment 28•3 years ago
|
||
That looks like something we probably want in our release notes, Mike could you request a release note addition and provide a snippet of test for the note please? Thanks.
|
|
Assignee | |
Comment 29•3 years ago
|
||
How do you request a relnote addition? I can't find a keword for that.
The note will be:
"Firefox now supports using logging into Microsoft, work and school sites using Window SSO. For more information, see:
https://support.mozilla.org/en-US/kb/windows-sso
(that article isn't live yet, working on it this week)
|
|
||
Comment 30•3 years ago
|
||
(In reply to Mike Kaply [:mkaply] from comment #29)
How do you request a relnote addition? I can't find a keword for that.
It' s a tracking flag:
https://wiki.mozilla.org/Release_Management/Release_Notes#Nomination_in_Bugzilla
|
|
Assignee | |
Comment 31•3 years ago
|
||
Release Note Request (optional, but appreciated)
[Why is this notable]: Visible new feature in preference, makes Windows login work better/
[Affects Firefox for Android]: No
[Suggested wording]:
Firefox now supports using logging into Microsoft, work and school sites using Window SSO. For more information, see:
[Links (documentation, blog post, etc)]:
|
|
||
Comment 32•3 years ago
|
||
Note added to 91 Beta release notes without the link, I will add the support link when the article is published.
|
||
Updated•3 years ago
|
|
||
Updated•3 years ago
|
|
|
Assignee | |
Updated•3 years ago
|
Description
•