Sarven Capadisli wrote: > So, to make it easier, Evan suggested that we use an optional widget > where a central site sets a cookie for the user at the login or > registration time. When a remote user tries to subscribe to a user, we > can either pre-fill the profile URL or automatically submit for them.
Maybe I've missed some details of the implementation, but if StatusNet/OMB-based site X can figure out your profile URL on StatusNet site Y where you're registered, what's to stop malicious (or spammy/tracking, if there's a difference) site Z from doing so? _______________________________________________ StatusNet-dev mailing list [email protected] http://lists.status.net/mailman/listinfo/statusnet-dev
