Facebook's Privacy Fixes Have Broken Tinder (theverge.com) 73
Since the recent Cambridge Analytica data privacy scandal, Facebook has been rolling out more security and data privacy updates. "Today, however, the company announced sweeping changes to many of its most prominent APIs, restricting develop access in a number of crucial ways," reports The Verge. "Soon after, Tinder users started noting on Twitter that they had been kicked off the dating app and couldn't log back on, as those who used Facebook Login were caught in an infinite loop that appears to be related to an unknown bug." From the report: The app has been bringing up an error message to booted users, titled Facebook Permissions, stating that users need to provide more Facebook permissions in order to create or use a Tinder account. If users tap "Ask me," which is the only given option, the app requests they log into Facebook once more and the loop starts again. Roderick Hsiao, a senior software engineer at Tinder, tweeted that users could still access the service through its web browser while engineers worked on fixing the mobile client.
Comment removed (Score:5, Insightful)
Re:Day of reckoning (Score:5, Funny)
*queries facebook to find out exactly how much butter and popcorn you have, and how that relates to your political position and buying habits*
Re: (Score:2)
Grindr (Score:5, Funny)
Re:Grindr (Score:4, Funny)
Re: Grindr (Score:1)
That means you didn't use enough lube.
Good (Score:1)
Maybe, just maybe, when it stops them from banging, people start to realize, that they double-sold their soul to facebook after starting to use facebook sign-on in 3rd party apps...
LOL ... Jesus, really (Score:5, Insightful)
Holy fuck, you use Facebook ... as your login to Tinder ... and when that breaks, you turn to Twitter to bitch about it?
Why the fuck you would use your Facebook as a login for every other site is beyond me. Sure, it's convenient, but at that point you've decided Facebook should be integrated into every aspect of your life.
Fuck, there's no hope for humanity. This social media shit has created a world full of fucking morons.
You idiots deserve what you get.
Re:LOL ... Jesus, really (Score:5, Informative)
Re:LOL ... Jesus, really (Score:4, Insightful)
LOL ... oh my fucking god, its the goddamned fucking social media apocalypse.
I'm glad I'm too old and grumpy to give a fuck about any of this social media crap, because that level of stupid is beyond my comprehension.
So the whole world has lost their collective fucking minds, and bought into the notion that Facebook should be central to your fucking lives? And you fucking morons are OK with this???
Holy fuck, but humans are fucking stupid.
Re: (Score:2)
Of course the rest of your point still stands. Non-pseudonymous social media are inherently dangerous and Facebook is about as trustworthy as a guy waving around a burning torch inside a fireworks factory.
Re: (Score:2)
Wait until Tinder and OKC realize that FOSTA makes them criminally-liable if anyone sets their age to like 20 but is really 14, or is a prostitute being pushed by a pimp.
Wait until Facebook realizes it, too, is liable.
Re: (Score:2)
Why do you think its called FecesBook by people who don't use it?
* People post their crap that no one gives a fuck about,
* Only shit-for-brains people use it
--
FaceBook Censorship: "facebook purity" will be blocked but reversing it works: purity facebook. WTF!? *facepalm*
Source: https://tech.slashdot.org/comm... [slashdot.org]
Re:LOL ... Jesus, really (Score:4, Insightful)
I agree. Losers, the lot of them. Get out of your basements and off your friggin phones and enjoy the sunshine and fresh air with some friends.
He says, by posting on Slashdot...
Re: (Score:3)
I was not involved in the conversation, but I the realities of security were explained to her quite forcefully.
I am not confident she got the message however, as she works in HR so it probably went right over her head.
Who trusts FB as an authentication provider? (Score:4, Insightful)
I know this is dumb, but why are sites trusting FB to do their gatekeeping for them? FB doesn't have any certifications or compliance. They do not sell themselves as this, but other companies use them for this purpose. We don't even know if FB does password hashing.
Re:Who trusts FB as an authentication provider? (Score:4, Informative)
Re: (Score:2)
I remember when facebook was young, and all my friends and family where signing up, and I actually visited the "Make an account" page, and had this weird unsettling sinking feeling, said to myself "I do not want or need this bullshit." and closed the page, and never loo
Re: (Score:2)
Ah yes; but at this point it doesn't matter if you made a profile yourself. While the 'shadow profile' thing gets trotted out frequently, there's a reason for that.
What would you wager the odds are of FB being able to identify you by browser signature/IP etc; and tying that to your shadow profile?
So basically you're getting the same dose of privacy rape as everyone who uses FB directly; but with none of the (questionable?) benefits of using the site.
Re: (Score:2)
I should totally make shadow profiles illegal, specifically. If you have a sign-up service and a person doesn't sign up, you can't aggregate data about them to an identity and act on it (transfer, sell, aggregate) except to allow said person to initiate a contact in which they would like to see what data you are able to collect about them from data they are allowed to collect and retain about people who have signed up.
Yes that's a weird exception. If I have a bunch of stuff about you spread out and I ju
Re: (Score:2)
Re: (Score:2)
Convenience... it gets you out of the tedium of asking users for names, DOB and photos and things, and having to build photo uploading tools, and requiring the user to actually find photos that they may not have available on the device their currently using... Or you can use Facebook login and just drag all that from their site. It's a huge timesaver for the dev and the user, if you are willing to lean on Facebook. I mean yeah it's not a great idea to be reliant on a 3rd party, but then Tinder was one of th
Re: (Score:2)
Facebook does sell themselves as a single sign on provider. Here's a photo of 2010 Zucks announcing the mobile version:
https://www.cnet.com/news/face... [cnet.com]
How good a job do they do? Probably a pretty good one. Their profitability is directly tied to getting, having, and keeping loads of data. Probably better than the random companies who would otherwise roll their own. Do they keep track of where you've signed on using the service? Of course.
Re: (Score:1)
Re: (Score:2)
Hello software programmers; its called regression testing.
Have you ever heard the expression:
"The world is my oyster!"
Facebook says:
"The world is my regression test!"
Re: (Score:2)
Re: (Score:1)
I think it's ususlly taught in CompSci 101.
Well there’s your problem. It’s not.
Re: (Score:2)
Hello software programmers; its called regression testing. You do it after making major changes to check if you have broken anything. I think it's ususlly taught in CompSci 101.
Um... I doubt that Facebook were going to test 3rd party sites when they're changing their API, they've got more important self-interest things to worry about now. And Tinder devs were caught out because the API changed.
Reminds me of when Windows locked down admin privileges and a bunch of programs broke. Probably they shouldn't have been operating like that in the first place... but that's difficult to know when it was working fine...
Re: (Score:2)
Hello software programmers; its called regression testing. You do it after making major changes to check if you have broken anything. I think it's ususlly [sic] taught in CompSci 101.
Are you talking about FB or Tinder programmers? It sounds like you are talking about FB but I hope you at least are talking about Tinder instead.
Re: (Score:1)
'Manual workaround' (Score:1)
Facebook is NOT a good federated identity provider (Score:2)
Re: Facebook is NOT a good federated identity prov (Score:2)
If you just want sign-on, FB's API is OAuth based and mostly standard. I wouldn't worry about it unless you're actually using it to scrape the user graph or somehow impersonate the user's actions on FB (like leaving a comment in their name).
Re: (Score:2)
If people used their LinkedIn profile pictures on Tinder, would anyone still get laid?
Tinder fail (Score:2)
Maybe Tinder shouldn't base their entire business model on the good graces of Facebook.