search

FedStoa / moa

A Mastodon, Twitter, and Instagram Cross-poster
https://moa.party
MIT License
355 stars 19 forks source link

Use more restricted OAuth scopes #125

Open unascribed opened 4 years ago

unascribed commented 4 years ago

Mastodon added a bunch of new OAuth scopes in 2.4.3. Moa still requests the full "read" and "write" permissions, which are now far too broad.

write:statuses, write:media, read:accounts, and read:statuses should be enough.

foozmeat commented 4 years ago

Seems reasonable

foozmeat commented 4 years ago

OK I've made this change.

bcye commented 3 years ago

Why did you revert the change? Is there something that doesn't work with this?