WeChat officially adjusted the interface capabilities of the mini program to enhance user experience and privacy protection. However, this also brings more interface restrictions and operational specification challenges to merchants. As a product manager, it is necessary to balance the interests of users and merchants, and ensure compliance with WeChat’s operating specifications. So how should WeChat mini-programs do a good job of “authorization” design?
WeChat officials have made many adjustments to the interface capabilities of mini programs. At the user level, WeChat has increased user privacy protection and user experience upgrades. But for merchants, more interface restrictions and stricter operating specifications have increased the difficulty of acquiring customers. As a product manager, it is necessary to balance the interests of users and merchants without violating the operating norms of WeChat.
1. Distinguish between applet login and business login
Recently, when designing the authorization login process, there was a cognitive difference with the research and development students. The research and development students have never understood what I mean by login, which caused him to make mistakes when designing the technical solution. That's when I realized that logging in is two completely different things for people in different roles.
1. What R&D calls login
There is an interface in the official website document of the applet called: applet login.
Easily obtain the user identity provided by WeChat through the official login capability provided by WeChat, and quickly establish a user system in the Mini Program. And this kind of login can only get the user's openID, UnionID and session key session_key.
In layman's terms, the unique identification ID of a user is obtained through the interface of the applet. For the applets of different entities (company entities), the unique identification IDs are also different. This unique identification ID has no effect on the business level, and merchants cannot obtain core elements such as the user's mobile phone number and name.
For example: Comparing the Mini Program to a school, the unique identification ID is the student ID number. In the case of the school's confidentiality, you get a student ID number, and you cannot find any information about the student. Moreover, the student ID numbers of different schools may be duplicated.
Therefore, the unique identification ID is to create a user at the system level. This user only has a string of IDs; it also records the user's login status, so that the next time you enter the applet, you can avoid logging in.
2. Login as the business says
It refers to creating a user through a mobile phone number/account, and using the mobile phone number/account as a unique identification to determine the uniqueness of the user at the business level. His core point is the account number/mobile phone number.
Therefore, the function described in the requirement at that time was an interface that required [WeChat authorization to obtain a mobile phone number], but the research and development mistakenly thought it was an interface for [small program login].
2. Authorize user information through the mini program
1. Authorized avatar and nickname
Last year, this interface was abolished. The WeChat official website believed that obtaining the user's avatar and nickname violated privacy and was not a necessary factor, so the interface was cancelled. However, it was discovered recently that WeChat officially added a new interface for obtaining user information. If the requirements design involves the need to obtain the user's avatar and nickname, an interface for editing personal information must be designed to allow users to actively upload or obtain it through the interface. Special Note: In general, allowing users to input WeChat IDs is extremely sensitive, and it is easy to be blocked for violations. It is recommended not to collect them.
2. Authorize to obtain mobile phone number
The previous interface required [Mini Program Login] before calling [Get Phone Number]. The current version has been modified. The two interfaces are independent and have no context. However, the user still needs to actively trigger the click button on the page to initiate the mobile phone number acquisition interface, and the system cannot automatically call the API.
If the user reports more or is found to be used in unnecessary scenarios, WeChat has the right to permanently revoke the interface permission of the applet; when using this interface, the user can use WeChat to bind the mobile phone number to authorize, and also add Authorize your phone number. If the developer only uses the mobile phone number as the business association certificate, SMS verification logic can be appropriately added in key scenarios.
3. Other abilities
3. Guidelines for reviewing and avoiding pitfalls of user information interface
The most common reason for rejection of Mini Program review is that it does not comply with "Mini Program Operation Specification 5.12 Collecting User Privacy Behavior".
Therefore, everyone should try to do the following points during the trial, which will increase the chance of passing the trial.
1. Try to design tourist mode
① All first-level pages (such as the home page, personal center) must be accessible without logging in.
② For long-chain businesses, such as shopping malls, users must see product details and check orders before triggering an authorized mobile phone number to log in.
③ For the ordering and pick-up business at the store, it is necessary to design the ordering mode for tourists. For example, Starbucks provides non-member orders, and users can enjoy online ordering services without logging in.
2. When entering the mini program for the first time, you need to prompt the user agreement
It cannot be checked by default, and the user must manually authorize and agree to the agreement.
3. Login to add mobile phone number verification code function
In order to cope with the abnormal situation of the authorized mobile phone number interface (suddenly blocked), it is necessary to increase the login process of the mobile phone number verification code.
4. General Mini Program Login Authorization Process
Triggered according to conditions, generally need to define:
①Triggered when entering a certain page.
②Click a button on the page to trigger.
Generally speaking, the finer the granularity of the definition, the better the user experience, but relatively speaking, the higher the success of research and development. Everyone can consider it as appropriate.
Five, write in the back
The fast and convenient R&D mode and iteration mode of Mini Programs can meet the needs of most Internet products for rapid iteration and quick trial and error, but there are many limitations in relying on the WeChat ecosystem. As a product manager of Mini Programs, you should be familiar with Mini Programs. The documents of the program and the official account are clear about what can and cannot be realized, so that when designing functions, you will not take too many detours, and you will also avoid conflicts with R&D students and design requirements that they cannot achieve.
Reference website: https://developers.weixin.qq.com/miniprogram/dev/framework/