Tag Archives: Authentication

Facebook OAuth 2.0 Authentication Flow – Incomplete Documentation

According to the Facebook Developer Roadmap, all Facebook apps must migrate to OAuth 2.0. If you are to start the migration, no matter you are using the PHP SDK v3.0 or not, I believe you will be reading the Facebook … Continue reading

Posted in Authentication, Development Tips | Tagged | Leave a comment

Official Facebook PHP SDK – not conforming to the latest platform standard?

The recent “authentication data” email that Facebook sent out should be related to the document Legacy Connect Auth. We recently announced that all apps and sites must migrate to our OAuth 2.0 authentication mechanism by September 1, 2011. We released … Continue reading

Posted in Authentication | Tagged , | 4 Comments

3rd Parties Obtaining Authentication Data from Facebook Application

This is a follow up article for Facebook announces security issue for applications built on it platform. In this article, let’s take a closer look at the issue. Right at the beginning of the mail, Facebook advises that Our automated … Continue reading

Posted in Authentication, news | Tagged , , | 3 Comments

Facebook annouces security issue for applications built on it platform

Many of the Facebook developers should have already mails from Facebook advising a possible security issue that 3rd parties may obtain authentication data from application built on top of the Facebook platform. Just in case you haven’t received one, below … Continue reading

Posted in Authentication, news | Tagged | 1 Comment

How-To: Handle expired access tokens

Regarding to the recent “Invalid Access Token”, many developers have been asking for proper way or sample code for handling “invalid access token”.  I think Facebook has listened to the public voices. Today, Facebook has published a new document “How-To: … Continue reading

Posted in Authentication, Development Tips | Tagged , , | Leave a comment

Facebook App – Moving to OAuth 2.0 + HTTPS

Faecbook has recently announced its plan that all facebook applications have to move to OAuth 2.0  + HTTPS by 1 Oct! To highlight, the plan is: July 1: Updates to the PHP and JS SDKs available that use OAuth 2.0 … Continue reading

Posted in Authentication, Development Tips, news | Tagged , , | 3 Comments

Hottest Bug Report – Inconsistent “Invalid OAuth 2.0 Access Token” errors

Interesting enough, the top 10 bug reports in Facebook Bugzilla can be viewed by visiting the link http://bugs.developers.facebook.net/buglist.cgi?cmdtype=dorem&remaction=run&namedcmd=most%20popular%20bugs&sharer_id=2 As expected, with 230 votes casted, the bug report “Inconsistent “Invalid OAuth 2.0 Access Token” errors” is at the top of list.  … Continue reading

Posted in Authentication, news | Tagged , , | 2 Comments

How Long will an Facebook App Access Token be valid for?

Today, I have seen a post in the Facebook developer forum asking how long will an app access token be valid for. Should be ~2 hours…. but wait!  That’s the value that comes into my mind right after I say … Continue reading

Posted in Authentication, Development Tips, Facebook Dev Forum Digest | Tagged | 1 Comment