[OSM-dev] Using OAuth

Sven Anders sven at anders-hamburg.de
Mon Aug 31 19:15:08 BST 2009


Am Monday 31 August 2009 20:09:51 schrieb Tom Hughes:
> On 31/08/09 18:45, Sven Anders wrote:
> > Am Monday 31 August 2009 16:46:38 schrieben Sie:
> >> On 30/08/09 18:36, Sven Anders wrote:
> >>> Perhabs someone could add a username and mailaddress api call?
> >>
> >> We are not going to be giving out email addresses to OAuth API users
> >> anymore than we do to anybody else.
> >
> > I think there is no problem in privacy if the user is asked if OSM is
> > allowed to transfer his mailaddress. But no problem, I will ask the user
> > to typein his password again.

sorry its late I mean e-mail.
>
> Unless you're going to screen scrape having the user's password won't
> help you at all.

oh thats no problem, i can hack such a page faster than implement oauth, but i 
do not want this, I'm interessted in OAuth.

> Yes, we could create a special OAuth permission to allow the email
> address to be revealed. It would have to be entirely separate however as
> it's a very significant step to reveal it.

I agree it is better to have special permission for this.

> What are you trying to do that requires the user's email address anyway?

Send the user e-mail about street-lists changes.

Sven






More information about the dev mailing list