Documentation for controlling and preserving Bose SoundTouch devices
This document provides a comprehensive overview of the upstream Bose cloud services and domains that SoundTouch devices communicate with. These details were gathered from firmware analysis of ST10/ST20 devices, binary string extraction, and community research from the SoundCork project (Issue #128).
SoundTouch devices use a set of primary domains for their operation. These are often configurable via the SoundTouchSdkPrivateCfg.xml file.
| Service | Primary Domain | Purpose |
|---|---|---|
| Marge | streaming.bose.com |
Account management, streaming source providers, and preset sync. |
| BMX Registry | content.api.bose.io |
Bose Media eXchange service discovery and registry. |
| Stats/Analytics | events.api.bosecm.com |
Telemetry, device events, and usage statistics. |
| Software Update | worldwide.bose.com |
Firmware update checks and downloads (path: /updates/soundtouch). |
| Voice/Alexa | voice.api.bose.io |
Token management for Amazon Alexa integration. |
Analysis of device binaries (BoseApp, IoT) and community findings revealed several internal, integration, and development domains used by Bose.
bose-test.apigee.net/margeproxy (Integration/Test proxy)bose-test.apigee.net/margeproxyefestreamingstg.bose.com (Staging)streamingintoauth.bose.com (Internal Auth)streamingefeintoauth.bose.com (Internal EFE Auth)streamingefeint.bose.comtest.content.api.bose.iocontent.api.bose.io/bmx/registry/v1/servicestest.content.api.bose.io/bmx/int-registry/v1/servicestest.content.api.bose.io/bmx/efe-registry/v1/serviceseventsdev.api.bosecm.comeventsefe.api.bosecm.comeventsdev.bosecm.comworldwide.bose.com/updates/soundtouch-intworldwide.bose.com/updates/soundtouch-efeDevices also communicate directly with third-party providers for specific features.
device-tuner.pandora.comdevice-tuner-beta.savagebeast.comavs.na.amazonalexa.comAs documented in DEVICE-REDIRECT-METHODS.md, the libBmxAccountHsm.so library contains a hardcoded regex to validate these URLs:
^https:\/\/bose-[a-zA-Z0-9\.\_\-\$\%]\+\.apigee\.net\/
This regex ensures that certain critical services must reside on the apigee.net domain under a bose- prefix, unless patched.
On-device, these URLs are primarily managed in the following files:
/opt/Bose/etc/SoundTouchSdkPrivateCfg.xml:
<margeServerUrl><statsServerUrl><swUpdateUrl><bmxRegistryUrl>/opt/Bose/etc/Voice.xml:
<TPDATokenUrl> (Points to voice.api.bose.io)/opt/Bose/etc/HandCraftedWebServer-SoundTouch.xml:
To achieve full offline operation or redirection to a custom service (like soundtouch-service), all of the above domains must either be redirected via DNS (/etc/hosts) or updated in the device’s XML configuration files. For domains not exposed in XML, binary patching or DNS-level redirection is the only option.