StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POPHP SDK: How do I capture the access token after user auths app?
primarykey
Id
7354978
data
AcceptedAnswerId
0
AnswerCount
4
ClosedDate
CommentCount
0
CommunityOwnedDate
CreationDate
2011-09-08T21:51:02.010
FavoriteCount
2
LastActivityDate
2011-09-10T00:05:29.840
LastEditDate
2011-09-09T21:50:00.170
LastEditorUserId
767040
OwnerUserId
767040
ParentId
0
PostTypeId
1
Score
1
ViewCount
21240
LastEditorDisplayName
text
Body
This is for a canvas app on the Facebook Platform using the new(est) Facebook PHP SDK. We are using the PHP example from the Facebook tutorial (https://developers.facebook.com/docs/appsonfacebook/tutorial/) to trigger the OAuth dialog and get the test user to the redirect URL. At the redirect URL, we use the PHP example from the Facebook signed request docs page (https://developers.facebook.com/docs/authentication/signed_request/) and our test users can successfully authorize the app. However, after the test user auths the app, we are not able to capture the access token and its expiration. We can see it in the address bar appended to the redirect URL, but it does not show up in the $_REQUEST array. If we add {$access_token = $facebook->getAccessToken();} to the redirect URL page, it shows a value for the access token, but the value it shows is not the full token string that we see when we click on Show Token in the Test User Roles page (which we believe is the correct access token for the test user). Here is an example of the redirect URL with an access token appended: <a href="http://karmakorn.com/karmakorn/alpha20/kk-fb-auth.php#access_token=126736467765%7C2.AQDavId8oL80P5t9.3600.1315522800.1-100002908746828%7CJICJwM1P_97tKmqkEO5pXDCf-7Y&expires_in=6008" rel="nofollow">http://karmakorn.com/karmakorn/alpha20/kk-fb-auth.php#access_token=126736467765%7C2.AQDavId8oL80P5t9.3600.1315522800.1-100002908746828%7CJICJwM1P_97tKmqkEO5pXDCf-7Y&expires_in=6008</a> Here is what var_dump shows for the $REQUEST array for that same page: array(3) { ["_qca"]=> string(26) "P0-709927483-1291994912966" ["__switchTo5x"]=> string(2) "30" ["PHPSESSID"]=> string(26) "euois02ead39ijumca7nffblh2" } We have no idea why the $_REQUEST array varies from the values appended to the URL, and more importantly -- how to capture the access token and its expiration date. Can someone show us a working example of how they capture this data after running the parse_signed_request($signed_request, $secret) function on the redirect page? Thanks! ADDITIONAL INFO: Here is the pertinent code from A) our test index page, and B) our test redirect page. If we use our text index page as the redirect url it gets stuck in an endless loop -- because the user is never identified. A) Index Page <pre><code>// Create kk-fb app instance $facebook = new Facebook(array( 'appId' => KKFB_ID, 'secret' => KKFB_KY, 'oauth' => true, )); $app_id = KKFB_ID; $secret = KKFB_KY; $canvas_auth = 'http://karmakorn.com/karmakorn/alpha20/kk-fb-auth.php'; $auth_url = "https://www.facebook.com/dialog/oauth?" . "client_id=" . $app_id . "&redirect_uri=" . urlencode($canvas_auth) . "&response_type=token" . "&scope=email,publish_stream"; $signed_request = $_REQUEST["signed_request"]; list($encoded_sig, $payload) = explode('.', $signed_request, 2); $data = json_decode(base64_decode(strtr($payload, '-_', '+/')), true); if (empty($data["user_id"])) { echo("<script> top.location.href='" . $auth_url . "'</script>"); } else { echo ("Welcome User: " . $data["user_id"]); } </code></pre> B) Redirect Page <pre><code>// Create kk-fb app instance $facebook = new Facebook(array( 'appId' => KKFB_ID, 'secret' => KKFB_KY, 'oauth' => true, )); $app_id = KKFB_ID; $secret = KKFB_KY; $signed_request = $_REQUEST["signed_request"]; list($encoded_sig, $payload) = explode('.', $signed_request, 2); $data = json_decode(base64_decode(strtr($payload, '-_', '+/')), true); $user = $facebook->getUser(); $access_token = $facebook->getAccessToken(); echo "User: $user "; echo "Access Token: $access_token "; echo "Signed Request: $signed_request "; var_dump($_REQUEST); </code></pre> Here is what shows up as these echo results: User: 0 Access Token: 126736467765|**SECRET** Signed Request: array(3) { ["_qca"]=> string(26) "P0-709927483-1291994912966" ["_switchTo5x"]=> string(2) "30" ["PHPSESSID"]=> string(26) "frugi545cdl15gjind1fnv6pq1" } Interestingly, when the test user goes back to the index page the if condition is satisfied and we can get the correct access token: Welcome User: 100002908746828 Access Token: 126736467765|2.AQBgcyzfu75IMCjw.3600.1315544400.1-100002908746828|m5IYEm976tJAkbTLdxHAhhgKmz8 Obviously, we are still missing something!? Also, we need to learn how to get the expiration time as a variable too so we can store both of these in our database.
Tags
<facebook-php-sdk><oauth-2.0><access-token><facebook-canvas>
Title
PHP SDK: How do I capture the access token after user auths app?
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USBill Scheurer
UserOwnerUserId
1. USBill Scheurer
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
2. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. PO
 singulars
 PostTypePostTypeId
 PTAnswer
2. PO
 singulars
 PostTypePostTypeId
 PTAnswer
3. PO
 singulars
 PostTypePostTypeId
 PTAnswer
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POPHP SDK: How do I capture the access token after user auths app?
 UserUserId
 USMaurice
 VoteTypeVoteTypeId
 VTFavorite
2. VO
 singulars
 PostPostId
 POPHP SDK: How do I capture the access token after user auths app?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
3. VO
 singulars
 PostPostId
 POPHP SDK: How do I capture the access token after user auths app?
 UserUserId
 USuser1271518
 VoteTypeVoteTypeId
 VTFavorite
CommentsPostId
1. This table or related slice is empty.

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.