Facebook Privacy and Apps

October 31st, 2011
facebook, privcy
Facebook's privacy system for apps is tricky. The basic system is opt in for specific apps, and opt out for apps overall. If a specific app wants to access facebook as you, it has to ask for specific permissions:

I think they do a pretty good job with this: they force the app to specify which things it wants to do, and they explain them pretty well. I would like it if I could tell facebook "automatically accept on my behalf as long as it's not going to post or publish as me," because while I don't care about privacy I don't like apps putting spam in people's newsfeeds.

There's a lot of information that your friends have access to that the general public does not. An app approved by one of your friends can access that information. This is how my comment widget works: it runs as me, and so can see your comments. The only way to keep friends' apps from seeing your stuff is to opt out of the facebook platform. When I pull all comments on a post, I don't see comments made by users who have done this. They show up when I'm on facebook, but not through the api. This does disable facebook chat, though, so its kind of annoying.

This came up because someone was worried that my comment widget would help people connect their facebook account to their offline persona. I ended up adding their userid to an internal blocklist because they didn't want to turn off chat. If you'd like me to exclude your comments from my comments page, I could add you to the blocklist too.

Comment via: google plus, facebook, substack

Recent posts on blogs I like:

Thing of Things AI use policy

dynomight recently wrote an article calling for bloggers to state publicly whether and how they use AI

via Thing of Things July 6, 2026

Agentic test processes, LLM benchmarks, and other notes on agentic coding from Galapagos Island

I've been using AI fairly heavily since last November and the whole thing is a funny experience. An agent will do something that, if a human did it, you'd immediately fire them. My reaction, of course, is to act as if this is great and spin up a t…

via Posts on July 3, 2026

Variable fonts aren't universally supported

I make a lot of webpages. I also use Lockdown Mode on iOS and MacOS for a bit of extra security. Sometimes I realize that I forgot to test on Safari and it looks like crap, or I test and don’t notice that there’s been a problem for months (as was the case…

via Home June 27, 2026

more     (via openring)