stackoom
  简体   繁体   中英

Is Facebook Hash key for android secret

 原文  2013-11-16 14:18:51       android/ facebook/ encryption/ hash/ public-key-encryption

Question

I wanted to know if the secret key used for Facebook SDK on Android should be kept a secret. Can I show it to users as part of a bug report?

2 answers

solution1
 2 ACCPTED  2013-11-16 16:14:04

In your code Facebook SDK only use your Facebook App id. And you put the hash key to the Facebook Developer web page.

This way facebook ensures the calls from the specific app id only calls from the authorized application. This way, no one can act as your application.

Even if you give the hash and some malicious user tries to mock your application, facebook will hash that app's sign key and the two hash values won't match and there will be no problem.

solution2
 0  2013-11-16 16:19:21

The hashkey is only meaningful to the apps which are signed with the same certificates. So if you don't share your keystore/certificate, there is noting to worry about.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Facebook Android Key Hash Facebook Key Hash on Android Facebook key hash for Android Android facebook key hash Key hash for Facebook login in android Android Key Hash for Facebook with Cordova Android Facebook key hash not working Key hash for Facebook Android SDK Hash key for android facebook app Hash key release in Android for Facebook
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM