Solved

Facebook wants me to use OAuth 2.0. What do I do?

Posted on 2011-09-29
3
616 Views
Last Modified: 2012-05-12
We received the following message from Facebook on one of our Tab pages for a business. The page is just a simple graphic using an iframe canvas and is hosted on an https:// URL, so I really don't know what else I'm supposed to do.

Surely, I'm not the only one to encounter this problem! Can you tell me what action I need to take?

________

Reminder: Upgrade Your App to OAuth 2.0 and HTTPS by October 1st. In May
we announced that all apps on Facebook need to support OAuth 2.0 and HTTPS
to make the platform more secure.

All apps, including page tab apps, must migrate to OAuth 2.0 for
authentication. The old SDKs, including the old JavaScript SDK
(FeatureLoader.js) and old iOS SDK (facebook-iphone-sdk) will no longer
work. In addition, iframe Canvas and Page Tab apps must support HTTPS and
provide a secure canvas or secure page tab URL.
0
Comment
Question by:Tim-SocialLife
  • 2
3 Comments
 
LVL 18

Expert Comment

by:Mark Gilbert
ID: 37064995
Simple answer: Use OAuth. If you don't your app won't remain published. This stipulation has been in place for at least the last 8 months that I've been working on a project, and it's a strict stipulation. Reason being is that FB as a whole never used to be secure, however with all that personal data out there, concerns have been raised about the security and privacy of such data. This is why ALL applications, no matter how small or complicated MUST support secure and non secure traffic.

My recommendation to meet this requirement: go to godaddy and purchase a really cheap SSL certificate. I believe the cheapest is $69.99 per year, and then have this installed on your app site. Then go into the app settings (developers.facebook.com/apps) and then state the secure url, and under advanced check yes to all the oauth 2 related items. Then you are done.

Hope this helps.
0
 
LVL 18

Accepted Solution

by:
Mark Gilbert earned 500 total points
ID: 37065011
I forgot to mention, as you already state you have https you need to define that in the apps settings. So disregard the ssl purchasing and move on to the other recommendations.
0
 

Author Closing Comment

by:Tim-SocialLife
ID: 37067650
Unfortunately, I no longer have admin access to the page so I cannot verify whether or not this fixes the problem, but it logically makes sense that this would be the issue given that all of the other pages hosted on the server are fine. Thank you.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Gulp not seeing Changes 4 73
remove background quote mark from widget 6 66
Connection to multiple databases 13 25
Syntax for query to update table 2 29
An enjoyable and seamless user experience can go a long way on an eCommerce site. While a cohesive layout and engaging copy play roles in creating a positive user experience, some sites neglect aspects that seem marginal but in actuality prove very …
This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Viewers will get an overview of the benefits and risks of using Bitcoin to accept payments. What Bitcoin is: Legality: Risks: Benefits: Which businesses are best suited?: Other things you should know: How to get started:
This video teaches users how to migrate an existing Wordpress website to a new domain.

790 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question