Regardless of your privacy choices, if you are using a shared login, that activity it is connected with your broader profile.
Comment on Why?
artwork@lemmy.world 1 day agoThey do not, normally, unless you specifically allow that. Yet, indeed, many services enable/require quite permissive scopes by default.
valar@lemmy.ca 1 day ago
Jhex@lemmy.world 1 day ago
so they mostly do…
iltg@sh.itjust.works 23 hours ago
per oauth spec you get told what is shared. usually it’s just your user id (which often is email or username), i haven’t seen crazy scopes in the wild in a while
Tanoh@lemmy.world 16 hours ago
Some services even have an option to only share a dummy email and not your real. Apple for example does this, so all the site gets is “36382618161@apple.com” (don’t know the exact format). And it is only tied to your real email address on apple’s side