I’m using the server-side SDK to access Facebook Authentication.
After authorizing my app – even with the included example.php, I can go to App Privacy in settings then click on the app, then See Details in the Last data access section
And the dialog shows:
My App accessed the following information on your behalf:
Basic Information – Today
Likes, Music, TV, Movies, Books, Quotes, About Me, Hometown, Current City, Education History and Work History – Today
My Friends’ Current Cities – Today
All I really need from the authentication is the userid and possibly name… I don’t care about any other personal info. And yet even the example.php which is really basic seems to be requesting a lot.
Is there another way to authenticate without Facebook thinking I pulled all this data? I don’t want users to be concerned about excessive data pulling when I’m not even pulling it.
The Stack Exchange authentication does not have this issue. It might be an issue in the PHP SDK?
The additional entries in the app access log are created for requests to the /me-object without a fields-parameter. So instead of accessing /me?access_token=xxx use /me?fields=id,name,…&access_token=…
Please note that the access log is not deleted when you remove an application. This may be quite confusing during testing because you will see old entries.