[OSM-dev] Using OAuth

Tom Hughes tom at compton.nu
Mon Aug 31 19:09:51 BST 2009


On 31/08/09 18:45, Sven Anders wrote:
> Am Monday 31 August 2009 16:46:38 schrieben Sie:
>> On 30/08/09 18:36, Sven Anders wrote:
>>> Perhabs someone could add a username and mailaddress api call?
>>
>> We are not going to be giving out email addresses to OAuth API users
>> anymore than we do to anybody else.
>
> I think there is no problem in privacy if the user is asked if OSM is allowed
> to transfer his mailaddress. But no problem, I will ask the user to typein
> his password again.

Unless you're going to screen scrape having the user's password won't 
help you at all.

Yes, we could create a special OAuth permission to allow the email 
address to be revealed. It would have to be entirely separate however as 
it's a very significant step to reveal it.

What are you trying to do that requires the user's email address anyway?

Tom

-- 
Tom Hughes (tom at compton.nu)
http://www.compton.nu/




More information about the dev mailing list