Privacy?
SteveInWA:
That is a perfect example of reading comprehension being distorted by a pre-conceived belief, or expectation of sinister intent. The Google developer page is discussing information that the user voluntarily authors and posts in their public Google+ profile. Google+ is a social media platform.
You can see whatever you may have entered in the past, and then add/delete/edit it as you wish, here: https://aboutme.google.com/ You are in complete control, and no, this is not allowing some stranger to discover anything about you other than what you enter for the public to read, much like a resume/CV or business card.
OBiTALK is accessing that scope so that it can read your email address and Google Voice phone number, again, with your permission, to use the service.
GPz1100:
Steve, my point is that google's basic profile info is *not* needed for the obi device to function.
The only permission needed is hangouts. I much prefer to keep my information or as much of it as possible private. If you recall, I asked in one of the other threads if manually generated oauth 2 refresh tokens can could used. Obihai already has all the information they need from the obitalk account registration. I suppose one could argue there is sinister intent since Obihai provides no mechanism for obtaining these credentials without the use of obitalk and requiring access to your information.
If I'm in error above, please indicate how my google basic profile is necessary in obi device operation. From what I can see only 3 pieces of info are needed; google email address, google voice number, and refresh token (password).
We see this with many smartphone apps too. Apps asking for unneeded permissions. A calculator app should not need access to my contact list.
SteveInWA:
You are making a point purely for pedantic reasons. There's no real-world issue here. I'm not going to debate with you how the security and authenticity of Google accounts is protected by this procedure. If you don't like how Obihai and Google have worked out their authentication procedure, then use a SIP ITSP instead
GPz1100:
Amen brother!
Rather than belittling my comments, why don't you support your position. Why does obi need access to my basic google profile when they already have my information from the obitalk registration??
I have several apps linked to the google account that need access to google drive. Looking at permission details under connected apps & sites (https://myaccount.google.com/permissions) only google drive is listed next to "Has access to".
Navigation
[0] Message Index
[*] Previous page