Hi folks, I'm Yoichiro Tanaka as an architect of mixi Platform in Japan. I report on a problem and a solution about a spoofing by Referer here: Phenomenon: If an user obtains a referer URL of an OpenSocial application, the user can use the application as other's account (= an application spoofing). Replicate: (1) An application developer writes a code for accessing to an external web server by usi