@weng said in OAuth is fucking cancer.:
So a friend told me about this rad new online dating whatsit called Bumble.
Sure, why not. I'll give it a try.
This is as far as I got:
What the fuck if I don't have a Facebook?
And the reason I got no farther is because I can't be arsed to remember what the hell email address and password I used back when I first got my .edu email address and could sign up. Trying a bunch of different username and password combinations on a mobile keyboard is literally the most painful thing possible. Come to think of it, it would have been that edu address, which is long dead and therefore I probably changed it. If Facebook let's you change that. What would I have changed it to? Hmm.
I get it, developers. You're fucking lazy and can't be arsed to maintain a secure database for logins. But I'm about to tell you guys what ladies I'd be interested in with, which is a lot more privacy critical than a shitty throwaway password. So why the fuck should I trust you to secure THAT?
OAuth itself is not evil, binding to particular authentication service provider is.
Btw, I think they need Facebook login to get your other personal information.