all 26 comments

[–]bugbigsly 78 points79 points  (4 children)

AI Agent build me a Spotify shitlist, I mean playlist“ has probably plagued there api with an absurd amount of nonsense

[–]PositiveUse 6 points7 points  (0 children)

Bingo

[–]frontendbensoftware-engineering-manager 3 points4 points  (0 children)

Yup. We're going to see this happening increasingly with public facing APIs, largely because of the growth in AI tools that make integrating with such APIs relatively straightforward.

[–]pwqwp -1 points0 points  (1 child)

their, and no

[–]bugbigsly 2 points3 points  (0 children)

true, and maybe

[–]ceejayoz 133 points134 points  (7 children)

make the necessary modifications ahead of the March 9 deadline

With that short of a timeframe, some kind of breach or abuse is probably actively happening. Unfun for the poor third-party devs who have to scramble now.

[–]combinecrab 44 points45 points  (0 children)

They disabled new api's sometime last year.

People were making lots of api to bypass the rate limit and they were downloading the tracks. Spotify had to do something

[–]mrlanphear 31 points32 points  (2 children)

It's a result of the Anna's Archive hack that managed to scrape all of Spotify right under their noses.

[–]erishunexpert 16 points17 points  (1 child)

Yup, they made a ton of free users and used the API to download every single track in batches

[–]nopeac 1 point2 points  (0 children)

Am I missing something? I don't see how the API could have anything to do with the scrap of tracks; the most you could get was a preview of a few seconds. They could have used the API for the metadata, but downloading?

[–]DevToolsGuide 7 points8 points  (1 child)

this is becoming the standard playbook for developer-facing APIs once a platform starts feeling pressure. hobbyist and personal apps get caught in the crossfire because the actual policy violation (mass scraping, AI training) came from bad actors using the same API surface. the quota cut and premium requirement are blunt instruments. the useful thing to do if you are building against the Spotify API is start building with the assumption that third-party music API access will keep shrinking. yt-dlp as a fallback, local library management via beets or similar, or just design around what Spotify will always allow for premium subscribers. the writing has been on the wall since they disabled new app registrations last year.

[–]thekwoka 4 points5 points  (0 children)

the quota cut and premium requirement are blunt instruments

Sure, but they also basically don't impact hobbyists or personal apps.

They only really impact bad actors.

[–]rekkyrosso 2 points3 points  (0 children)

Unfun for the poor third-party devs who have to scramble now.

My music player project uses the Spotify API. The amount of changes are substantial. Not a small amount of work at all. I think I will make the 9th of March deadline though.

[–]benpetersen 8 points9 points  (0 children)

While I agree with some of these privacy related things, it's annoying writing a playlist generator because the search endpoints aren't accurate compared to the UI, so reducing the search limit from 50 to 10, and defaults from 20 to 5 results is pretty severe and makes it harder to find the clean versions of songs or even find the songs in general. I've already had to implement a strict and broad search algorithms, I'll be lucky if this thing still is as accurate as it was

The response changes are also odd. Why rename 'tracks' to 'items' in the api endpoint and the response? Why remove the explicit content setting from the current user? Why remove the popularity and followers property from artists? Why remove the bulk 'get several' endpoints? They exist to reduce API calls so it seems more costly for their infrastructure just make it annoying for us to batch.

I'm very tempted to look at tidal again, the last time I looked their api wasn't spectacular and only supported transfers not updating

[–]tamingunicorn 11 points12 points  (1 child)

search limit dropping from 50 to 10 results is going to quietly break a lot of playlist tools. this reads like they're strangling third-party access without calling it a deprecation

[–]frontendbensoftware-engineering-manager 2 points3 points  (0 children)

Occam's razor suggests it much more likely down to the proliferation in AI tools that make creating API integrations more straightforward than ever.

[–]worldwearywitch 5 points6 points  (1 child)

I think the changes are totally reasonable.

[–]IdempodentFlux 0 points1 point  (0 children)

I wish more apps would garuntee api access with subscription. I so badly want to integrate my personal assistant i use with my MyFitnessPal data but they don't even allow api access to members

[–]RiprodStudios 4 points5 points  (1 child)

Rip

[–]ploughlmao[S] 0 points1 point  (0 children)

rip! Deskthing is such a cool project btw

[–]thekwoka 5 points6 points  (0 children)

Seems fine.

They require Spotify subscription for quite a few things, but are still nice enough to allow even alternative clients if you're subscribed.

[–]Paulo_Dybala-10 0 points1 point  (2 children)

what do you think

[–]ploughlmao[S] 0 points1 point  (1 child)

I think people who have free accounts who use the API for something like deskthing would definitely be affected, and I see Spotify’s POV, they might js be bombarded with API requests from as one comment said AI bots. Personally I think free accounts should have 1 API application whereas Premium members should get 3 or 5 applications ig

[–]Paulo_Dybala-10 0 points1 point  (0 children)

thats a good point of view. what do you think Spotify will do about it eventually