[英]How to completely Logout of Facebook SDK Auth in iOS App
使用FBSDKCoreKit 4.22.1
我公開安裝了一個應用程序,在白天為多個用戶提供服務。 一個人可以走到iPad並使用他們的Facebook帳戶登錄:
成功登錄后,可以做他們的工作並使用應用程序,而不是他們將在一段時間后注銷:
Logout發生成功。 然后下一個用戶開始使用公共iPad並點擊Facebook登錄按鈕,但他們會看到:
FBSDKLoginManager或其他Facebook SDK Libs記得以前用戶Facebook登錄的一些元素。
我想徹底清除有關以前用戶的Facebook憑據的任何信息
成功注銷后,調用此FBSDKLoginButtonDelegate
方法,我已嘗試以下方法完全刪除Facebook帳戶信息但沒有成功:
func loginButtonDidLogOut(_ loginButton: FBSDKLoginButton!) {
print("\(#function) in \(#file.components(separatedBy: "/").last ?? "")")
print("Todo, must completely remove Facebook Auth token info for current user logging out")
FBSDKAccessToken.setCurrent(nil)
FBSDKLoginManager().logOut()
FBSDKProfile.setCurrent(nil)
}
因此,使用FBSDKCoreKit 4.22.1,Safari瀏覽器用於打開Facebook身份驗證重定向URL,並且Javascript使用本地存儲:
有趣的是,阻止所有Cookie,Apple暗示也將阻止網站數據(localStorage),不阻止本地存儲和Facebook,仍然創建網站數據存儲:
Apple 在這里說:
“更改接受哪些Cookie和網站數據:選擇”Cookie和網站數據“選項:”
這就是我希望阻止本地存儲以及cookie的地方,但Facebook仍然可以創建本地存儲條目
我有一個類似的問題,我最終使用SDK的MODIFIED版本實際上非常危險,因為另一個開發人員可能不知道它被修改..所以你需要留下一個注釋..
問題:你注銷后,你仍然登錄(在Safari中)..但是只有你使用本機登錄或系統登錄,並且沒有辦法從應用程序本身注銷Safari ..超級煩人(你不能從應用程序中清除Safari的cookie或數據。
解決方案(S):
如果您查看SDK的文檔,它會顯示:
// Copyright (c) 2014-present, Facebook, Inc. All rights reserved.
//
// You are hereby granted a non-exclusive, worldwide, royalty-free license to use,
// copy, modify, and distribute this software in source code or binary form for use
// in connection with the web services and APIs provided by Facebook.
//
// As with any software that integrates with the Facebook platform, your use of
// this software is subject to the Facebook Developer Principles and Policies
// [http://developers.facebook.com/policy/]. This copyright notice shall be
// included in all copies or substantial portions of the software.
//
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS
// FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR
// COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER
// IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN
// CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
typedef NS_ENUM(NSUInteger, FBSDKLoginBehavior)
{
/*!
@abstract This is the default behavior, and indicates logging in through the native
Facebook app may be used. The SDK may still use Safari instead.
*/
FBSDKLoginBehaviorNative = 0,
/*!
@abstract Attempts log in through the Safari or SFSafariViewController, if available.
*/
FBSDKLoginBehaviorBrowser,
/*!
@abstract Attempts log in through the Facebook account currently signed in through
the device Settings.
@note If the account is not available to the app (either not configured by user or
as determined by the SDK) this behavior falls back to \c FBSDKLoginBehaviorNative.
*/
FBSDKLoginBehaviorSystemAccount,
/*!
@abstract Attemps log in through a modal \c UIWebView pop up
@note This behavior is only available to certain types of apps. Please check the Facebook
Platform Policy to verify your app meets the restrictions.
*/
FBSDKLoginBehaviorWeb,
};
因此,如果您使用Native但它不能,它將回退到Safari。 如果您使用System但它不能,它會回退到Native,它會回退到Safari。
然后是FBSDKLoginBehaviorWeb,它使用模態網頁視圖/彈出窗口! 因此,如果您不必使用本機或系統登錄,那么我建議您選擇此選項,因為它不會回退到Safari。
否則:這是我改變的,所以它永遠不會在后台使用Safari:
FBLoginSDKManager.m:
- (void)logInWithBehavior:(FBSDKLoginBehavior)loginBehavior
{
NSDictionary *loginParams = [self logInParametersWithPermissions:_requestedPermissions];
void(^completion)(BOOL, NSString *, NSError *) = ^void(BOOL didPerformLogIn, NSString *authMethod, NSError *error) {
if (didPerformLogIn) {
[_logger startAuthMethod:authMethod];
_performingLogIn = YES;
} else {
if (!error) {
error = [NSError errorWithDomain:FBSDKLoginErrorDomain code:FBSDKLoginUnknownErrorCode userInfo:nil];
}
[self invokeHandler:nil error:error];
}
};
switch (loginBehavior) {
case FBSDKLoginBehaviorNative: {
if ([FBSDKInternalUtility isFacebookAppInstalled]) {
[FBSDKServerConfigurationManager loadServerConfigurationWithCompletionBlock:^(FBSDKServerConfiguration *serverConfiguration, NSError *loadError) {
BOOL useNativeDialog = [serverConfiguration useNativeDialogForDialogName:FBSDKDialogConfigurationNameLogin];
if (useNativeDialog && loadError == nil) {
[self performNativeLogInWithParameters:loginParams handler:^(BOOL openedURL, NSError *openedURLError) {
if (openedURLError) {
[FBSDKLogger singleShotLogEntry:FBSDKLoggingBehaviorDeveloperErrors
formatString:@"FBSDKLoginBehaviorNative failed : %@\nTrying FBSDKLoginBehaviorBrowser", openedURLError];
}
if (openedURL) {
completion(YES, FBSDKLoginManagerLoggerAuthMethod_Native, openedURLError);
} else {
[self logInWithBehavior:FBSDKLoginBehaviorWeb]; //-- CHANGED BY BRANDON T.
}
}];
} else {
[self logInWithBehavior:FBSDKLoginBehaviorWeb]; //-- CHANGED BY BRANDON T.
}
}];
break;
}
// intentional fall through. -- CHANGED BY BRANDON T.
[self logInWithBehavior:FBSDKLoginBehaviorWeb]; //-- CHANGED BY BRANDON T.
break;
}
case FBSDKLoginBehaviorBrowser: {
[self performBrowserLogInWithParameters:loginParams handler:^(BOOL openedURL,
NSString *authMethod,
NSError *openedURLError) {
if (openedURL) {
completion(YES, authMethod, openedURLError);
} else {
completion(NO, authMethod, openedURLError);
}
}];
break;
}
case FBSDKLoginBehaviorSystemAccount: {
[FBSDKServerConfigurationManager loadServerConfigurationWithCompletionBlock:^(FBSDKServerConfiguration *serverConfiguration, NSError *loadError) {
if (serverConfiguration.isSystemAuthenticationEnabled && loadError == nil) {
[self beginSystemLogIn];
} else {
[self logInWithBehavior:FBSDKLoginBehaviorNative];
}
}];
completion(YES, FBSDKLoginManagerLoggerAuthMethod_System, nil);
break;
}
case FBSDKLoginBehaviorWeb:
[self performWebLogInWithParameters:loginParams handler:^(BOOL openedURL, NSError *openedURLError) {
completion(openedURL, FBSDKLoginManagerLoggerAuthMethod_Webview, openedURLError);
}];
break;
}
}
這使得所有本機登錄或系統登錄都將回退到模態應用程序UIWebView
。 然后你可以在注銷時清除cookie,你就可以了。刪除所有NSHTTPCookieStorage.sharedHTTPCookieStorage().cookies
和NSURLCache.sharedURLCache().removeAllCachedResponses()
退出后。
顯然最安全的選擇是永遠不要使用系統或本地登錄,而是始終使用: FBSDKLoginBehaviorWeb
..
我可以通過將FBSDKLoginBehavior
更改為FBSDKLoginBehavior
來解決我的問題,請參閱此處: https : FBSDKLoginBehavior
在這里,我將描述用戶如何使用Facebook本機應用程序從您的應用程序注銷: https : //stackoverflow.com/a/51039251/5093900
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.