Discussion: Check the new Glitch HQ for iPhone... and the API calls it uses :)

/simple/friends.list
/simple/activity.feed
/simple/activity.getStatus
/simple/activity.setStatus
/simple/activity.playerFeed
(I like that they are all part of the /simple/ API path, so I assume they are part of the next/present API release)
Nice
So how did you find those?
(And why the hell everything has to be authenticated? :\)
I configured the iphone app to use a proxy.

about the authentication, if you are using the browser directly (addon, script, plugin, etc) there is a parameter called "itoken" that has the same value, but I'm not sure it is there any more. maybe you can ask for permission using the common oauth method... and then use it inside the game itself, then you can call /simple/ and /internal/ methods...!
I mean, these kind of methods shouldn't need authentication, coz those details are public already on the profile pages
getStatus and feed/playerfeed allows to see more than 5 items, so maybe that's why it requires auth.
but friends.list should be public... maybe there is a parameter to use it without auth... we need to try... :)
Another undocumented method is activity.addBuddy but it requires itoken and id of the request so not useful.
Nice find.

I agree that the API shouldn't be more restrictive than the web site.  (Otherwise, people will be forced into screen scraping.)  But, perhaps they are tightening things up so that you won't be able to get that info from the web site unless you are logged in.