And FB's platform permission stuff itself was not very granular for a long time - still might not be.
Years ago, building basic 'login with facebook' things for apps, the minimum my app could do was to have access to your email, name, and your friends list. Whether the friends list was used or wanted or not, it was always part of basic permission requests.
Years ago, building basic 'login with facebook' things for apps, the minimum my app could do was to have access to your email, name, and your friends list. Whether the friends list was used or wanted or not, it was always part of basic permission requests.