help menu

Join us on the Community Forums!

  • Community Guidelines

    The Fitbit Community is a gathering place for real people who wish to exchange ideas, solutions, tips, techniques, and insight about the Fitbit products and services they love. By joining our Community, you agree to uphold these guidelines, so please take a moment to look them over.

  • Learn the Basics

    Check out our Frequently Asked Questions page for information on Community features, and tips to make the most of your time here.

  • Join the Community!

    Join an existing conversation, or start a new thread to ask your question. Creating your account is completely free, and takes about a minute.

Not finding your answer on the Community Forums?

Cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

People sharing a computer and not logging out

ANSWERED

‎11-07-2014 13:35

‎11-07-2014 13:35

My app links to the FitBit API. The users (via my portal) give my app access permission via FitBit's OAUTH API to grab data for the users. All works fine EXCEPT many of my users use a shared computer. FitBit is remembering credentials from the previous user and not prompting for a password when they request permission for access. The end result is that I get the previous user's fitbit associated with the current user. Is there a way to force the actual fitbit login screen (by erasing cookies?) instead of having fitbit remember them? Does anyone know how to do this? I'm using php with the net.manuellemos.oauth oauth package if that matters.

 

Best Answer
Labels:
0 Votes
1 BEST ANSWER

Accepted Solutions

‎11-10-2014 05:06

In response to DonDickinson

‎11-10-2014 05:06

found it ... i just added requestCredentials=true to the URL and it works fine. that's what your "Not You" button does. that's what i needed.

thanks much!

don

View best answer in original post

Best Answer
3 REPLIES 3

‎11-07-2014 13:41 - edited ‎11-07-2014 13:42

‎11-07-2014 13:41 - edited ‎11-07-2014 13:42

Hello,

 

If you application will redirect users to https://www.fitbit.com/oauth/authorize?oauth_token={YOUR_TOKEN}

then they will see log in screen regardless, if they are already logged in they will see windows that ask them to confirm that they logged in with valid account.

 Screen Shot 2014-11-07 at 1.40.01 PM.png

 

Ivan Bahdanau
Senior Software Developer at Fitbit
Best Answer
0 Votes

‎11-10-2014 04:50

In response to ibahdanau

‎11-10-2014 04:50

to be clear this is the screen they are seeing. they are NOT noticing the "not you" link. what i would like is to show the user id/password prompt instead of just showing the allow/deny buttons. or if i could forceably logout whomever is logged in on  a computer that would be fine too.

Best Answer
0 Votes

‎11-10-2014 05:06

In response to DonDickinson

‎11-10-2014 05:06

found it ... i just added requestCredentials=true to the URL and it works fine. that's what your "Not You" button does. that's what i needed.

thanks much!

don

Best Answer