As far as permissions are concerned, I'm asking for email only (apart from the basic info).
Now, I can use an application access token to query https://graph.facebook.com/FB-USER-ID/movies and get the list of movies the user likes, but this only works for some users and not others.
You're supposed to have to ask for the user_likes and/or friends_likes permission to be able to see this info. Because I can see it for some users, my first guess was they have that information public, and others don't. But I can't find such a setting on Facebook.
Anyone knows what's going on here?
The settings are in the gear cog on this page http://www.facebook.com/editprofile.php?sk=activities so you can set who can view what.
What you want to do is ask for your user_likes permission so that you can get that access to private profiles too.
Related
We are using AEM 6.4.8 version.
Tried to lock a page through AEM interface as an admin and that was successfull
Tried to unlock the same page as an admin and it is not working. Unable to unlock the page eventhough I am part of admin group.
This is happening in all our environment across al projects. So seems like a instance wide issue.
Can anyone shed some light whats happening here?
Have read in many threads that admin should be able to unloack in any case. But in this scenario, thats also not working
Any specific permissions or so we need to check ?
As far as I know, an admin account won't cut it. You need the built-in admin account. As per Adobe's help pages.
The original user holding the lock does have permission to unlock the page. However, other users, even if a member of the administrators group, DO NOT have the right to unlock pages that have been locked. Only the "admin" account has this right.
Emphasis mine.
I use the Clockify API to sync objects to and from our other databases.
I try to update the user image from our LDAP user repo; works fine on my own account, but when I try to update the image for someone else I get a 403.
That leads me to the conclusion that everything under /users is only available for the current user (even if the current user is admin of the workspace). If so, can that be clarified in the documentation?
https://clockify.github.io/clockify_api_docs/#tag-User
Is there a way to update user settings/profile for someone else?
That's right. By design, you can't edit other people's User Settings.
This is because the person in your workspace might have other workspaces (be it their own or someone else's). You're only someone's admin in your particular workspace, and they're free to have other workspaces beside yours.
Looks like you are right, I can't GET users/{userId} except for my own user ID. Attempting to get it for other user IDs, even those users on my team and I'm the owner/admin, gives the 403 Forbidden.
I would recommend reaching out to support#clockify.me, they may be able to fix it - or at least they can be made aware of the issue. I've had success in contacting them and they respond relatively quickly.
I've followed through the InteractiveConsole and FriendsSmash example in Unity and learnt how to request permissions during login and get the friend list of the user.
But there's one little problem bothering me a lot.
When FB.Login("email,user_birthday", LoginCallback) is called for an authorized user. The user will be redirected to the Facebook page saying "You have already authorized App-Name".
I'm thinking to only call FB.Login("",LoginCallback) to every user, and then use the FB.API to check if the correct permissions exist, and after that call the original FB.Login method. However, this doesn't seem a very wise way to do this to me.
I did a bit of research but still can't seem to find a nice way to solve this. Can anyone please help me out on this?
Thanks.
If you have status=true in your FB.Init(), it should come back with login info if the user is logged in. You can then use FB.API() and do your permissions check.
I had PlayerPrefs.DeleteAll being called for testing purposes. I found that it was removing the Facebook data so it wasn't authorising on initialisation.
Make sure you don't call PlayerPrefs.DeleteAll()
I am new to coding for the iphone. I have coded a lsogin page which communicates with my server and checks if the user exists and logs them in if the uername and password are correct.
But how do i know which user has logged in so i know which user profile to retrieve?
Does anyone know any good tutorials or documentation on this please.
You can store any value you get back from the server on the device using several methods. Two that come to mind are.
Store the member information in NSUserDefaults.
Store the member information in shared cookie storage.
I think you should look into proper user session tracking on the iPhone since lack of knowledge here can lead to security holes.
I made a application which shows facebook group wall on the other website. I would like to know if it is possible that users which comes to this other website don't have to grant their permissions. The facebook group is public and everything is shared without any special permissions. Also would like to know if it is possible to show group wall feed without user logged in?
Do you have any solutions?
"The facebook group is public and everything is shared without any special permissions."
One of the strange things about the Graph API, to get public information from much of it, will require an access token, even though that information is "public". I've scratched my head about that for a long time, and haven't come up with any other answer than "the API is provided by Facebook and we must play by their rules when in their sandbox".
So, you will need to get an access token from at least one person to do what you are requesting. (At least you wouldn't have to ask every user!)
You will need to ask your user for user_group access and then you can grab {group_id}/feed. What you might want to do is get a non-expiring token from one of the original members or even yourself by requesting offline_access. Then always use that token to get the feed. (Remember, when you change your password, the offline_access token will be invalidated and will need to get a new one).