Using the asp.net-mvc4 oauth Facebook client (OAuthWebSecurity.RegisterFacebookClient) is pretty much the same as in the MVC4 template web application. The problem is that when users register in their account, they see a message:
"would like to access your public profile, friend list and email address"
The fact is, I don’t want to access their public profile, friend list and email address. I just want to let them log in to my app using my Facebook account. I see that this message will lead people (I personally won’t click "ok").
Ideally, I would like to indicate the permission level required in my MVC application, where the minimum level does not result in this message. This would increase privilege at a later stage, if necessary. But I would agree to any way so I can get a less sinister message.
I looked at the settings on the Facebook app management page, but I see nothing that could reduce the restrictions. I tried setting permissions just for me, but that didn't help. I searched the Internet and did not find anything that offered a solution to this.
Any help would be great.
Edit:
Also, I'm not sure why the “public profile” is mentioned in the public post. Can someone access your public profile (since it’s public)? So why mention this in a post? Or does the word “access” mean more than just being able to see a public profile?
source share