I like the idea. It's like OpenID, but with a website that people actually use.
F8 doesn't have the best reputation when it comes to privacy, so let's dig into the documentation and implementation and see if there are any flaws. Is this much different from the F8 API?
With my sceptical head on, I wonder if people would trust plugging their login details into a 3rd party site on the promise of being able to access their Facebook details.
|"Facebook Connect" will transform the social network from a private site where activity occurs entirely within a "walled garden" to a Web-wide phenomenon where software makers, with user permission, can tap member data for use on their sites. |
(emphasis by me)
I think this is a "left turn"...
[edited by: Tastatura at 2:59 pm (utc) on July 24, 2008]
Facebook user name and password
I hope they mean username and an access key or something similar (not their actual password).
Hmm, MySpace just announced [webmasterworld.com] that they'll start using OpenID. Would be better if Facebook joined them...
>>I hope they mean username and an access key
Probably not. There's certainly precedent for sites getting your webmail access info to import those contacts. I don't recall if Facebook is one of them. As a user, though, I'd be really careful with this - I'd provide that info only to a small number of large sites, and only with their assurance that the information wouldn't be stored.
Then again, maybe it's a generational thing. Many FB users expose huge amounts of personal info on the site. Are these people going to think twice about third party site security?
I guess they wouldn't be too troubled about it. When it's easy, with a click or two, not much thought is applied to the process and access information. Risky business, imho.
I'm with rogerd, I don't like sharing that easily.
Good points. But if Facebook wants to save face regarding security issues they can do better. I.e. not allow automated logins and instead only allow companies to, for example, let users give them their Facebook username and their email. A query is then sent from the 3rd party to FB saying that this user wanted to share some FB info. FB then emails the user who clicks a confirmation link, allowing the access. Finally, FB keeps a list of companies you've allowed access in your settings area and lets you revoke that privilege at any time if you so choose.
There's my free advice to FB to the day. Mark, sticky mail me if you want to pay up ;)