What Does "Created By" Look Like For A Hacker? And Does It Tie Into User Privacy Settings?

Under the Privacy Permissions if you check/uncheck the ‘created by’ field what does that allow the hacker to see/do?

How is it displayed?

Is it hashed or is it literally the users email address? I’d love to be able to understand this fully for the purposes of better security on this app.

Each thing has a “Created By”, what do we do to protect the system properly to prevent everyone from being able to see all users emails?

Does USER privacy settings rule over each of these ‘Created By’ fields under all other Things privacy settings?

It’s the User ID, as you can see if you use the Get API.

1 Like