试图使用oauth与facebook的问题 - Trying to use oauth with facebook problems

Trying to use oauth with facebook problems

本文关键字：facebook 问题 oauth | 更新日期: 2023-09-27

我试图使用此代码开始构建一个简单的facebook应用程序，但我似乎无法掌握访问令牌部分，因此我可以获得用户的生日等。

谁能看一下，让我知道我做错了什么:

<?php 
$app_id = "*********";
$canvas_page = "https://apps.facebook.com/hotness-battle/";
$auth_url = "https://www.facebook.com/dialog/oauth?client_id=" 
. $app_id . "&redirect_uri=" . urlencode($canvas_page) . '&scope=email,user_birthday';
$signed_request = $_REQUEST["signed_request"];
list($encoded_sig, $payload) = explode('.', $signed_request, 2); 
$data = json_decode(base64_decode(strtr($payload, '-_', '+/')), true);
if (empty($data["user_id"])) {
    echo("<script> top.location.href='" . $auth_url . "'</script>");
} else {
    $token_url = 'https://graph.facebook.com/oauth/access_token?client_id=200482573356726&redirect_uri=http://www.impact25.com/hotness-battle/&client_secret=*******&code='.$data['oauth_token'].'';
    echo("<script> top.location.href='" . $token_url . "'</script>");
    $uid = $data["user_id"];
    $token = $data['oauth_token'];
    $full_name = json_decode(file_get_contents('http://graph.facebook.com/'.$uid))->name;
    $gender = json_decode(file_get_contents('http://graph.facebook.com/'.$uid))->gender;
    $birthday = json_decode(file_get_contents('http://graph.facebook.com/'.$uid.'?access_token='.$token))->birthday;
    echo $full_name;
    echo '<br><br>';
    echo $gender;
    echo '<br><br>';
    echo $token;
    echo '<br><br>';
    echo $cookie['access_token'];
}

好的，显然你只是从某个地方复制了上面的代码…以下是一些技巧:

第二个OAuth请求是不需要的($token_url)，因为如果用户授权你的应用程序，你会有access_token在signed_request
不要做多个图形调用，一个调用将检索所有你需要的
不打印access_token给用户
使安全的调用图(https)

这里是一个工作代码，让你开始:

<?php 
$app_id = "APP_ID";
$canvas_page = "https://apps.facebook.com/appnamespace";
$auth_url = "https://www.facebook.com/dialog/oauth?client_id=" 
. $app_id . "&redirect_uri=" . urlencode($canvas_page) . '&scope=email,user_birthday';
$signed_request = $_REQUEST["signed_request"];
list($encoded_sig, $payload) = explode('.', $signed_request, 2); 
$data = json_decode(base64_decode(strtr($payload, '-_', '+/')), true);
if (empty($data["user_id"])) {
    echo("<script> top.location.href='" . $auth_url . "'</script>");
} else {
    $uid = $data["user_id"];
    $token = $data['oauth_token'];
    $graph_url = 'https://graph.facebook.com/' . $uid . '?access_token=' . $token;
    $user_info = json_decode(file_get_contents($graph_url));
    $full_name = $user_info->name;
    $gender = $user_info->gender;
    $birthday = $user_info->birthday;
    echo $full_name;
    echo '<br><br>';
    echo $gender;
    echo '<br><br>';
    echo $birthday;
    echo '<br><br>';
}