They saw the list, but I don’t know if they read through it. The Innovation Awards being cancelled was a completely separate matter that I wasn’t really there for.
3 Likes
Nice To See Roblox Actually Fight Phishing, The Anti Exploit Prevention Article, And Now This, The Platform Is Changing, Into The Good Direction
5 Likes
no way roblox is releasing a good update 
6 Likes
This is an amazing security update Thank you roblox now there won’t be any hackers as before!
6 Likes
This was a great update for protecting accounts against malicious webpages and files however it’s a little confusing on if all endpoints will require this token even if the user has it disabled? Would love to learn more about the future of this.
4 Likes
A good Roblox update for once?
This is great news! No more account hacking, or “beaming”!
Massive W Roblox.
11 Likes
Wasn’t this already a thing since last year iirc. My group ranking bot broke due to the cookie being invalidated when being accessed via a different IP as I was hosting it via glitch. Since then I had to scrap the system and revert to manual methods.
2 Likes
For any questions like this I recommend referring to our terms as most staff members are not legally qualified to answer questions of this nature. Thanks!
5 Likes
Stupid question, but if I get a new device, I just can’t log in anymore?
Great question. Users’ login on a new device won’t be affected. You can still log in or sign up normally with Account Session Protection.
3 Likes
Will endpoints that require no authentication/cookies stay public?
Thanks and yes, endpoints that require no authentication will continue to stay public for the time being. We will make an announcement if any of the endpoints get deprecated in the future.
5 Likes
So, are there plans on outright removing these endpoints or just adding session protection? It seems very unclear on what the plans truly are here and I am concerned that browser extensions may continue to use the “session locked” token in order to retain the ability to use these endpoints on my behalf even after this date
Thank you for the feedback! We will coordinate with Open Cloud for the enforcement of Account Session Protection to avoid disruption to creators’ user cases.
2 Likes
What about APIs like data.roblox.com and the develop APIs? I use these to upload and edit models as well as editing asset permissions. Will authentication for these APIs stay the same?
Thanks for the question! For the time being, this will not affect other APIs. We will coordinate with Open Cloud for any future API enforcement on Account Session Protection.
3 Likes
Is there a way where I can talk to the lawyers that represent roblox?
This is great news! Will this affect users who use a Random-User Agent, such as myself?
I’m glad Roblox cares a lot about their & our security now 
Again, Thanks a lot of updating and improving the platform security for all of us!
1 Like
Great addition for security, but I am currently relying on cookies to rank people in my group. Are there any alternatives currently?
Thanks for the feedback. I believe that endpoint is currently unauthenticated, in that case, your use case won’t be affected.
4 Likes
Holy moly roblox, this is genuinely one of THE best updates yall have ever pushed, this has been plaguing roblox forever. W.
2 Likes
In addition to this question, I don’t know much, I’m just asking to learn, sorry if it’s a stupid question. This feature is enabled in my account, I copied the cookies and pasted them to another device, my account is opened. What exactly does this feature do?
1 Like
I like how this was marked as the solution. Very rarely is a community post the solution in #updates:announcements lol
It just goes to show how much potential this update has if implemented properly
3 Likes