Tag Archives: Authentication

Facebook now has official document describing the AppSecret Proof

According to Facebook, You can reduce your exposure to malware and spammers by requiring server-to-server calls to Facebook’s API be signed with the appsecret_proof parameter. And in short, the app secret proof is a sha256 hash of your access token, … Continue reading

Posted in Authentication | Tagged | Leave a comment

Publish_actions requested in Facebook Authentication Dialog even when it is not specified

Take a look at this if you are going to implement Open-Graph actions in your existing Facebook apps. I get a Facebook application that requests only birthday and email permission from the user.  Recently, I planned to added the “Read” Open-Graph action … Continue reading

Posted in Authentication | Tagged , | Leave a comment

Be careful when handling the deprecation of Facebook Offline Access Permission

According to Facebook’s roadmap, offline_access permission will be removed on 2May, The offline_accesspermission is deprecated and will be removed July 5, 2012. Until then, you can turn this change on or off using the “Remove offline_access permission” migration. On May … Continue reading

Posted in Authentication, news | Tagged , | Leave a comment

How to obtain your Facebook application’s Access Token

There are FB APIs that require the usage of an application’s access token (e.g. sending an app to user FBAppReq, publishing the user score on an app) Referring to the doc https://developers.facebook.com/docs/authentication/applications/, we can get the app’s access token by … Continue reading

Posted in Development Tips | Tagged , | Leave a comment

Renewing Facebook Access Token under the new permission model

As you may be already aware, Facebook has revised it permission mode by deprecating the offline access permission. Under the new model, an access token will get expired only after 6 month it is granted.  To renew the access token, … Continue reading

Posted in Development Tips | Tagged , | Leave a comment

Facebook is going to Deprecate the Offline Access Extended Permission

Facebook is going to Deprecate the Offline Access Extended Permission! Just in case you don’t know, to have your apps or web sites to interact with Facebook on behalf of the user, we need an access token.  That token, be … Continue reading

Posted in news | Tagged , , | Leave a comment

How-To: Handle Revoked Auth Permissions in Facebook Application

Today, Facebook has published a new article in the developer blog discussing how to handle revoked auth permissions in Facebook apps, http://developers.facebook.com/blog/post/576/. The article is good in the sense that it has explained the concept.  However, developer may have problem … Continue reading

Posted in Development Tips, news | Tagged | Leave a comment

Facebook is going to removing non-OAuth endpoints for canvas app and page tab

1st October 2011 past already….. and hopefully, the OAuth 2.0 and SSL migration item should have been handled by Facebook developers already (at least for their most important apps). To move a step further, Facebook announced today that they are … Continue reading

Posted in Authentication, news | Tagged , | Leave a comment
Pages: 1 2 Next