Facebook Access Token正在失去生产中的所有范围

Till 3 days ago, our login service was working fine. Now its broken by a unknown problem with Facebook oAuth.

Our app (built with React Native using native FBSDK), ask for Facebook for an Access Token and forward it to our API.

LoginManager.logInWithReadPermissions(['public_profile', 'email'])

Then, our API try to validate the token against Facebook Graph API. Basically we do this:

public static function getInformationFromFacebook($accessToken)
{
    $facebook = new Facebook([
        'app_id' => config('services.facebook.app_id'),
        'app_secret' => config('services.facebook.app_secret'),
        'default_graph_version' => config('services.facebook.default_graph_version'),
    ]);

    try {
        $response = $facebook
            ->get('/me?fields=first_name,last_name,email,picture.type(large)', $accessToken);
    } catch (FacebookResponseException $e) {
        Log::error(sprintf('Graph returned an error: %s', $e->getMessage()));

        throw new \Exception("Facebook graph error.");
    } catch (FacebookSDKException $e) {
        Log::error(sprintf('Facebook SDK returned an error: %s', $e->getMessage()));

        throw new \Exception("Facebook SDK error.");
    }

    $graph = $response->getGraphUser();

    return [
        'first_name' => $graph->getFirstName(),
        'last_name' => $graph->getLastName(),
        'email_address' => $graph->getEmail(),
        'picture' => $graph->getPicture()->getUrl(),
    ];
}

This piece of code uses Laravel 5.2 running with PHP 7.2 with the native Facebook SDK.

The expected behavior is an array with the user data, but it only works at local environment, when we try to debug this on staging server, the scopes from the user's access token are lost.

We discovered that we scopes are lost using this Facebook debug tool

// The OAuth 2.0 client handler helps us manage access tokens
$oAuth2Client = $facebook->getOAuth2Client();

// Get the access token metadata from /debug_token
$tokenMetadata = $oAuth2Client->debugToken($accessToken);
echo '<h3>Metadata</h3>';
var_dump($tokenMetadata);die;

Basically, when we're at the local the scopes are

  'scopes' => 
    array (size=2)
      0 => string 'email' (length=5)
      1 => string 'public_profile' (length=14)

when we change the call to the staging environment, the result is

["scopes"]=>
array(0) {
}

We tried all kind of things, even updating our SDK.

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

报告相同问题？

关注问题

如何使用facebook access_token facebook php
2014-08-20 21:17

回答 1 已采纳 I believe there is a function called "setAccessToken" in the Facebook PHP SDK. You would just need
Facebook API：/ oauth / access_token无效 facebook php
2013-03-23 13:39

回答 2 已采纳 Solved! The code in the question is still not working in spite of ever so many threads on this and
正确使用access_token for Facebook Graph API facebook php
2010-11-16 17:08

回答 1 已采纳 Facebook's SDK already handles adding the access_token param to the call, you don't need to add it
omniauth-facebook-access-token
2021-05-08 18:26

gem 'omniauth-facebook-access-token' 然后bundle install 。用法服务器端 OmniAuth::Strategies::FacebookAccessToken仅仅是Rack中间件。阅读OmniAuth 1.0文档以获取详细说明： : 。这是一个简单的示例，将...
获取Facebook Graph API扩展访问令牌 facebook php
2015-09-14 04:34

回答 2 已采纳 As per the Facebook documentation, you need to pass the short-lived access-token with app secret a
移动浏览器中的Facebook登录错误 facebook php
2016-09-22 10:12

回答 1 已采纳 The problem was during the generation of session. Here the wrong code: if (ini_set('session.use
在laravel 5 facebook graph api中找不到Facebook类 facebook laravel php
2015-11-08 20:16

回答 1 已采纳 Within the index function, you are not in the global scope so that as you call the class as Facebo
facebook access token 获取
2020-05-17 17:56

zzhuao的博客 https://smashballoon.com/custom-facebook-feed/access-token/ Go to developers.facebook.com and click on Log In in the top right. Log in using your personal Facebook credentials. Hover over My Apps ...
我的Facebook应用程序中的OAuth 2.0问题 facebook php
2011-10-02 19:30

回答 1 已采纳 You don't need to parse the signed_request if you are using the PHP-SDK as it'll take care of that
用php-sdk分享facebook中的链接 facebook php
2015-08-20 16:34

回答 1 已采纳 You should replace the whole field with your access token: $response = $fb->post('/'.$pageId.'
使用PHP作为页面管理员发布到Facebook页面 facebook php
2013-11-11 13:37

回答 1 已采纳 Setting up an app You are going to need to authenticate the user who has at least content creator
如何获取永久性的facebook page access token
2017-03-08 15:03

莫冲的博客如何获取永久性的facebook page access token
使用Graph API PHP SDK从特定的Facebook相册中获取所有图像 facebook php
2011-07-13 12:22

回答 3 已采纳 I got it! It should be: $user_profile = $facebook->api('/1881235503185/photos', array('access
python access token_Python config.ACCESS_TOKEN属性代码示例
2020-12-08 06:09

weixin_39615402的博客本文整理汇总了Python中config.ACCESS_TOKEN属性的典型用法代码示例。如果您正苦于以下问题：Python config.ACCESS_TOKEN属性的具体用法？Python config.ACCESS_TOKEN怎么用？Python config.ACCESS_TOKEN使用的例子...
关于Facebook API 获取Page主页的永久access_token
2019-02-16 09:45

chengu3004的博客如何获取Page主页的永久access_token。一、打开网址 https://developers.facebook.com/docs/apps/register?locale=zh_CN#create-app 1、登录Facebook账号 2、创建开发者账号（https:...
没有解决我的问题, 去提问

悬赏问题

¥15 HFSS 中的 H 场图与 MATLAB 中绘制的 B1 场部分对应不上
¥15 如何在scanpy上做差异基因和通路富集？
¥20 关于#硬件工程#的问题，请各位专家解答！
¥15 关于#matlab#的问题：期望的系统闭环传递函数为G(s)=wn^2/s^2+2¢wn+wn^2阻尼系数¢=0.707，使系统具有较小的超调量
¥15 FLUENT如何实现在堆积颗粒的上表面加载高斯热源
¥30 截图中的mathematics程序转换成matlab
¥15 动力学代码报错，维度不匹配
¥15 Power query添加列问题
¥50 Kubernetes&Fission&Eleasticsearch
¥15 報錯：Person is not mapped，如何解決？

码龄粉丝数原力等级 --

Facebook Access Token正在失去生产中的所有范围

0条回答默认最新

悬赏问题

Facebook Access Token正在失去生产中的所有范围

0条回答 默认 最新

悬赏问题

0条回答默认最新