On Wed, Jan 28, 2015 at 12:14 AM, Pierre Lamot <pierre.la...@yahoo.fr> wrote: > - you *don't* enter your password within dartable, you ask for a token > with a certain valididy over time, wich is given to by facebook
Yes you *do*. By launching a webkit session embedded inside darktable and asking for permissions the user will have to authenticate with facebook somehow. Since this is not his usual browser he will have to input his username and password into a window we control completely and thus the user is trusting darktable with his password. The security model is completely bonkers and having to embed a browser in all apps awful engineering. I don't know what the security guys at Facebook are smoking but it must be good stuff. Cheers, Pedro ------------------------------------------------------------------------------ Dive into the World of Parallel Programming. The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/ _______________________________________________ darktable-devel mailing list darktable-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/darktable-devel
