Was this article helpful?

Permissions

Last modified 07:55, 27 Jul 2014

This page allows you to manage permissions, including general and Facebook-related permissions.

To manage the site restrictions:

  • Please go to http://www.gigya.com/ and if you are not signed in to Gigya, sign in or create a new account.

  • Click the 'Settings' link on the upper menu:
    SiteSetup.gif

 

  • Click the 'Permissions' link on the side menu:

permissions.gif

 

General Permissions

Enable Retrieving User Contacts

Check the following checkbox if you plan on using the socialize.getContacts API method to retrieve the user's email contact list:

SiteSetup_Contacts.gif

An additional advantage of checking this box is that when Sharing via Email, the email screen will provide users with an option to import contacts from their email providers.

When this box is checked, users signing in through Yahoo or Google will be asked to give permission to retrieve their contact list. Note that Google+ application definitions must enable the Contacts API to retrieve user contacts (see the Google+ setup page for more information).

The following is an example of the Google dialog that will be prompted while connecting to Google:

googlePermission.gif
 

The following is an example of the Yahoo dialog that will be prompted while connecting to Yahoo:

Yahoo-RequestPermissions-Dialog.gif

 

Using these dialogs, the user can decide whether or not to grant your application permission to retrieve his Google/Yahoo contacts. If the user presses the "Grant access"/"Agree" button, your application will receive indefinite privilege to retrieve his Google/Yahoo contacts, and the user will not be prompted by this dialog again.

Enable Mobile or Desktop Client Applications API Access

This checkbox is unchecked by default. Check this checkbox only if you plan on developing a smart client application that uses the Gigya API. Checking this checkbox allows Gigya's server to not validate your APIKey against a domain. This is necessary for non web client applications such as iPhone, Android, iPad and desktop applications.

SiteSetup_Mobile.gif

 

 

Enable Retrieving User Interests and Activities

Check the following checkboxes if you plan on using the socialize.getUserInfo API method to retrieve the user's interests and activities:

SiteSetup_Interests.gif

 

The following social networks may include interests and activities in the user's information:

  • Facebook (interests, activities)
  • LinkedIn (interests)
  • Yahoo (interests)
  • Google (interests)

Note: per Facebook API v2.0 the above permissions require review by Facebook before you can use them in your app.

Facebook Permissions

When a Facebook user authorizes your application, your application gets access to the user's public profile data. To receive access to data that is not part of the users's public profile, and to perform actions with that data (e.g publish content to Facebook on a user's behalf), your app must request permission from the user to do so.
Permissions are divided to basic permissions and extended permissions.As of version 2.0 of the Facebook API, apps that request permissions beyond the basic level permissions must be reviewed by Facebook before being published.

During the social login process, the user is presented with a UI in which the user can authorize your application to access that specific part of her profile.
 
Using this dialog, the user will decide whether or not to grant your application with the required permissions. 

Depending on the Facebook API version that your app is using. Different versions define different basic permissions.

Facebook-RequestPermissions-Dialog.gif    loginV2.png
                                    login permissions v1.0                                                                                            login permissions v2.0


With v1.0, the user can choose to allow or decline the application's requested permissions. If the user presses the "Allow" button, your application will receive indefinite privileges, and the user will not be prompted by this dialog again.
With v2.0, the user can choose specific permissions out of the ones requested by the app.
 

Under the 'Facebook Permissions' header in the permissions page in your console, you can determine which extended permissions will be requested from the user.
For each Facebook API version that your app uses, there is a slightly different set of permissions.


Facebook API v1.0 Permissions

fb_permissions.gif

Checked check boxes add permission requests to the list on Facebook's "Request for Permission" dialog.  

 

Granting the permissions will enable you to do the following:

The following options are extended profile properties which are not optional for users and do not require special user permission.  For more information see https://developers.facebook.com/docs/reference/login/extended-profile-properties/

  • Enable retrieving photos
    If the users press the "Allow" button, you will be able to retrieve their photos using the socialize.getAlbums and socialize.getPhotos API methods.

  • Enable retrieving user profile information
    If the users press the "Allow" button, you will be able to retrieve their birthday and current location using the socialize.getUserInfo API method.

  • Enable retrieving user likes
    If the users press the "Allow" button, you will be able to retrieve their "likes" using the socialize.getUserInfo API method.

  • Enable retrieving user work education and skills

    If the users press the "Allow" button, you will be able to retrieve their work, education, bio, and spoken languages using the socialize.getUserInfo API method.

  • Enable retrieving additional user contact details
    If the users press the "Allow" button, you will be able to retrieve their locale (Facebook language), timezone, and hometown using the socialize.getUserInfo API method.

  • Enable retrieving extended user details
    If the users press the "Allow" button, you will be able to retrieve their URLs, personal relationship details, political views, religion, and more using the socialize.getUserInfo API method.

  • Enable retrieving friends' birthdays
    If the users press the "Allow" button, you will be able to retrieve the birth dates of the user's friends.

  • Enable retrieving friends' location
    If the users press the "Allow" button, you will be able to retrieve their friends' current locations.

 

Facebook API v2.0 Permissions

permissionsV2.png

In Facebook API v2.0, permissions are divided into basic and extended permissions. Permissions that are not listed below remain the same as in v1.0:

Basic Permissions 
  •  Enable retrieving user's friends list
    In API v2.0, this permission was removed from the default permission set. Apps that use v2.0 must explicitly request to get access to a user's friends list.


Extended Permissions

    
    'Enable to retrieve user's profile information' was divided into:

  •  Enable retrieving user's birthday
    part of the 'retrieve user's profile information' in v1.0
    Permission to receive access to a user's birthday information must be requested explicitly in v2.0

    If the users press the "Allow" button, you will be able to retrieve their birthday using the socialize.getUserInfo API method.

  • Enable retrieving user's location
    part of the 'retrieve user's profile information' in v1.0
    If the users press the "Allow" button, you will be able to retrieve their current city using the socialize.getUserInfo API method.

    'Enable retrieving user work education and skills' was divided into:

  • Enable retrieving user's work history

    If the users press the "Allow" button, you will be able to retrieve their work history using the socialize.getUserInfo API method.

  • Enable retrieving user's education history
    If the users press the "Allow" button, you will be able to retrieve their education history using the socialize.getUserInfo API method.

  • Enable retrieving user's 'About me' section
    If the users press the "Allow" button, you will be able to retrieve their 'About me' section using the socialize.getUserInfo API method.

    'Enable retrieving additional user contact details' was changed into:

  • Enable retrieving user's hometown
    If the users press the "Allow" button, you will be able to retrieve their hometown using the socialize.getUserInfo API method.

    'Enable retrieving extended user details' was divided into:

  • Enable retrieving extended user's website
    If the users press the "Allow" button, you will be able to retrieve their website URLs using the socialize.getUserInfo API method.

  • Enable retrieving user's relationships
    If the users press the "Allow" button, you will be able to retrieve the user's personal relationship details,.
     

  • Enable retrieving user's religion and political view
    If the users press the "Allow" button, you will be able to retrieve their political views and religion.

Google+ Permissions

Note: Until September 2014 it is possible to use both Google and Google+ APIs for social login.  From September 2014 Google will only support Google+ social logins.  

Users logging in with Google+ will see the following UI:

Google+ permissions

Google+ requires users to authorize access to their personal information and email separately. The settings you choose in the Admin Console are the default permissions that will be requested from users logging with Google+. 

Google plus permissions

  • Enable extended social functionality - grants access to the user's name, avatar, age range, authorized circles and to allows sharing on behalf of the user.
  • Enable retrieving additional email information - grants access to the user's verified email addresses.

LinkedIn Permissions

During the social login process, the user is presented with a UI in which the user can authorize your application to access that specific part of his profile:

linkedin_request_permission.gif

Using this dialog, the user will decide whether or not to grant your application with the required permissions. If the user presses the "Allow access" button, your application will receive indefinite privileges, and the user will not be prompted by this dialog again.

 

In this part of the site setup you can determine which extended permissions will be requested from the user.

linkedin_permissions.gif

Granting the permissions will enable you to do the following:

  • Enable retrieving email addresses

    Send emails to the users' mailbox using LinkedIn contact email. If a user chooses to press the "Allow access" button, you will receive his email address. The email address is provided as a field of the User object (named "email"), which you receive as part of the user Social Login process, or by calling the socialize.getUserInfo API method. 

    The user may choose to change his contact email to his proxied email. In such case, when calling the socialize.getUserInfo API method you will receive the user's proxied email instead of his regular email addresses. The proxied email is a field of the User object (named "proxiedEmail"), which you receive as part of the socialize.getUserInfo method response. Facebook provides proxied emails as a channel through which your application can contact your users. The proxied email address can be used just like a regular email address.

  • Enable retrieving additional user contact details

    If the users press the "Allow access" button, you will be able to retrieve their address and phone number using the socialize.getUserInfo API method.
  • Enable posting content to user stream

    If the user presses the "Allow access" button, you will be able to post content to the user's stream.
  • Enable sending notifications
    If the user presses the "Allow access" button, the user will be able to send notifications to a list of friends.

Tags

This page has no custom tags set.

Comments

You must to post a comment.

Attachments