Authenticated API call and 'authentication list'

Topics: Developer Forum
Jan 17, 2007 at 3:12 PM

Has anybody noticed, that if a user revokes permissions to my application (Flickr -> Your Account -> Authenticated list), he is stil able to see his private content in the application? I used Flickr.PhotosSearch() method.

The scenario goes:
I follow the authentication procedure, got Frob and Token and store both locally.
User has my application on his 'Authentication list'.
When I call PhotosSearch(), it gives a collection of all photos.

After a while (few minutes) User revokes permissions to my application.
My application is removed from his 'Authentication list'.
I call PhotoSearch() and it still gives a collection of all photos! While it should not! It should return only public photos!

I havn't checked the rest of the methods, but i definatelly should not have access to private pictures.
Can you please provide me the best method to find out if my application is still on the user's 'authenticated list'?

Jan 17, 2007 at 9:40 PM
Could this because the query is being cached?