So I know that you can access your own photos with Instagram API, but why not the public content?
When I try to get permissions for non-sandbox mode, the it tells me,
This use case is not supported. We do not approve the public_content permission for one-off projects such as displaying hashtag based content on your website. As alternative solution, you can show your own Instagram content, or find a company that offers this type of service (content discover, moderation, and display).
So, I'm guessing that's not possible, but I am able to screen scrape all the public photos...
Is this the only way?
yes unfortunately this is the case and yes its extremely frustrating. Beyond a couple of apps the limitations of sandbox make it impossible to develop alot of apps.
My suggestion to you is to use a third parties access token from an access token generator with the scopes you need or go through the labour of getting your app approved
Related
We are working on a system which retrieves data from customers' Shopify shops and provides some services based on this data. In order to make it as convenient as possible for an end-user we would like to update this data on a daily\weekly\monthly basis.
For now we only came up with a solution of implementing unlisted app, prompt a user to provide all necessary permissions for the app to access their shops and fetch the data. But the token we get doesn't seem to be valid for a long time and we probably won't be able to reuse it a day later.
We appreciate it if you can share any success cases of implementing this kind of approach.
You provide an App to the merchant they can install using oAuth. When the merchant is prompted to approve the App, Shopify will then provide your App with a long-lived access token you can use as much as you want, for as long as you want. I use a custom App from my Partner App dashboard to create these kinds of one-off Apps. It is superior to the one where the merchant has to tick off scopes and permissions IMO.
There are two kinds of token you can ask for and receive. One is considered for offline access, or long-lived. It works for everything. It is for webhooks as an example, or other access where no person is involved. But, there is also, online access tokens! Say a person clicks into the App from Shopify to do some work. You can request an online token for them to do their thing, and that token is only good for say 24 hours.
So you have options!
In my project I want to implement a sign up with Instagram and a get user's follow list feature. However, on the Instagram developer website under login permission it says under public content and follower list that "applications no longer accepted". Does this mean that I can no longer implement these features?
For security reasons, a lot of Instagram API access was removed in 2016. You can read more about it here: http://uk.businessinsider.com/instagram-made-a-change-that-stopped-lots-of-third-party-apps-from-working-2016-6/?IR=T. This was to increase customer privacy.
I'm working for a company that displays content on big screens located on public places like GYMs or waiting rooms.
One client asked app that shows Instagram content from celebrities accounts, so I created one using the Instagram API.
The problem is that the app is in sandbox mode and it gets blank data.
It seems I can only show media from sandbox users (not Beyonce), when I submitted for review it was rejected because it doesn't meet the requirements.
Is there a way to make it work?
During tests I used a valid access token I found on internet, but I don't think that is a valid solution.
You are correct, when app is in sandbox mode you are only able to see data on Instagram from sandbox users which you have set in advance. You won't get any public data on Instagram in this mode.
According to the API, your app doesn't have the criteria required to get approved.
From the Permissions Review page:
Valid Use Cases
We will approve submissions of apps that fall into these use cases:
To help individuals share their own content with 3rd party apps
To help brands and advertisers understand and manage their audience and
digital media rights
To help broadcasters and publishers discover content, get digital > rights to media, and share media with proper attribution
They also listed use cases of applications that won't get approval and it seems like your app matches one of them:
Here are some examples of scenarios that will not be approved:
One-off projects. If you are an agency building websites or other integrations, note that we don't grant permissions to clients created
for one-off projects. If you are interested in building a product,
platform, or widget that will be used as a service across multiple
projects, then you may submit a single client_id that you can use
across multiple projects
...
To get approved you should modify your application to correspond with criteria, perhaps build multiple projects?
You can also try to pull down the data from this URL: https://www.instagram.com/<username>/media/
For Beyonce account, use: https://www.instagram.com/beyonce/media/
Lastly, the access token is unique per-app, so you can't be using a random one. Here is a tutorial on how to generate access token for your app.
So as of now Instagram changed the policy and now i can't create an access token with relationships+likes scope. But third party apps like Crowdfire still work. On official Instagram page they said that only third party apps that will receive the privilege of advanced scope are the apps that Instagram itself approved. Anyone had any experience filing the application for approval? Or can you guys give me tips of how to bypass that.
p.s.
I have an app that creates multiple access_tokens for different client, nothing spammy, just likes the feed of users and automatically follows people that followed them. (yeah, some people are into that) And mass unfollow (idk if thats bad or not)
I just discovered Instagress.com, and noticed that they ask you for your Instagram username and password to automate certain activity such as likes, comments, follows, etc. on your IG account. However they do this without using IG's official API since their service is obviously against IG's TOS.
So I'm wondering, how are they technically able to do this? I was thinking they use something like Selenium, but this only automates web browsers and (for all I know) it's impossible to perform those interaction through Instagram's web interface.
Any ideas?
I just checked..and actually you CAN Like, Comment, and Follow via Instagram's web interface. So most likely they do use a browser and/or mask it as a mobile device. Also they are not using any IG app to authenticate your profile to any api app. Otherwise it would show up here: https://instagram.com/accounts/manage_access/
the instagram web access can allow you like, comment and follow and unfollow