facebook擴展了權限
[英]facebook extended permissions
原文
2011-04-26 18:46:28
0
3
php/
facebook/
facebook-graph-api/
facebook-php-sdk/
facebook-authentication
問題描述
更新2:
好的,通過改變它“有點”工作:
$loginUrl = $facebook->getLoginUrl(array(
'canvas' => 1,
'fbconnect' => 0,
'req_perms' => 'publish_stream',
'next' => 'http://'.$_SERVER['SERVER_NAME'].'/success.php',
'cancel_url' => 'http://'.$_SERVER['SERVER_NAME'].'/cancel.php'
));
對此:
$loginUrl = $facebook->getLoginUrl(array(
'canvas' => 1,
'fbconnect' => 0,
'req_perms' => 'publish_stream',
'next' => 'http://'.$_SERVER['SERVER_NAME'].'/success.php',
'cancel_url' => 'http://'.$_SERVER['SERVER_NAME'].'/cancel.php'
));
header('Location: '.$loginUrl);
即我添加了header('Location: '.$loginUrl); 。
但頁面表現得很奇怪。 我必須導航到頁面,登錄,然后刷新頁面,再次登錄,然后它會要求我允許發布到頁面,並最終發布到頁面。
為什么我要登錄兩次?
更新1:
我現在有以下腳本似乎不起作用。 在這種狀態下,我只是想張貼到自己的牆上,但最終也想發布到朋友的牆上:
<?php
/**
*
* Copyright 2011 Facebook, Inc.
*
* Licensed under the Apache License, Version 2.0 (the "License"); you may
* not use this file except in compliance with the License. You may obtain
* a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
* License for the specific language governing permissions and limitations
* under the License.
*/
require 'facebook.php';
// Create our Application instance (replace this with your appId and secret).
$facebook = new Facebook(array(
'appId' => '<appId removed for security reasons>',
'secret' => '<secret removed for security reasons>',
'cookie' => true,
));
// We may or may not have this data based on a $_GET or $_COOKIE based session.
//
// If we get a session here, it means we found a correctly signed session using
// the Application Secret only Facebook and the Application know. We dont know
// if it is still valid until we make an API call using the session. A session
// can become invalid if it has already expired (should not be getting the
// session back in this case) or if the user logged out of Facebook.
$session = $facebook->getSession();
$me = null;
// Session based API call.
if ($session) {
try {
$uid = $facebook->getUser();
$me = $facebook->api('/me');
$post = $facebook->api("/me/feed", "POST", array('message' => 'Hello! I\'m using the FB Graph API!'));
} catch (FacebookApiException $e) {
error_log($e);
}
}
// login or logout url will be needed depending on current user state.
if ($me) {
$logoutUrl = $facebook->getLogoutUrl();
} else {
$loginUrl = $facebook->getLoginUrl(array(
'canvas' => 1,
'fbconnect' => 0,
'req_perms' => 'publish_stream',
'next' => 'http://'.$_SERVER['SERVER_NAME'].'/success.php',
'cancel_url' => 'http://'.$_SERVER['SERVER_NAME'].'/cancel.php'
));
}
?>
<!doctype html>
<html xmlns:fb="http://www.facebook.com/2008/fbml">
<head>
<title>php-sdk</title>
<style>
body {
font-family: 'Lucida Grande', Verdana, Arial, sans-serif;
}
h1 a {
text-decoration: none;
color: #3b5998;
}
h1 a:hover {
text-decoration: underline;
}
</style>
</head>
<body>
<!--
We use the JS SDK to provide a richer user experience. For more info,
look here: http://github.com/facebook/connect-js
-->
<div id="fb-root"></div>
<script>
window.fbAsyncInit = function() {
FB.init({
appId : '<?php echo $facebook->getAppId(); ?>',
session : <?php echo json_encode($session); ?>, // don't refetch the session when PHP already has it
status : true, // check login status
cookie : true, // enable cookies to allow the server to access the session
xfbml : true // parse XFBML
});
// whenever the user logs in, we refresh the page
FB.Event.subscribe('auth.login', function() {
window.location.reload();
});
};
(function() {
var e = document.createElement('script');
e.src = document.location.protocol + '//connect.facebook.net/en_US/all.js';
e.async = true;
document.getElementById('fb-root').appendChild(e);
}());
</script>
<h1><a href="example.php">php-sdk</a></h1>
<?php if ($me): ?>
<a href="<?php echo $logoutUrl; ?>">
<img src="http://static.ak.fbcdn.net/rsrc.php/z2Y31/hash/cxrz4k7j.gif">
</a>
<?php else: ?>
<div>
Using JavaScript & XFBML: <fb:login-button></fb:login-button>
</div>
<?php endif ?>
<h3>Session</h3>
<?php if ($me): ?>
<pre><?php print_r($session); ?></pre>
<h3>You</h3>
<img src="https://graph.facebook.com/<?php echo $uid; ?>/picture">
<?php echo $me['name']; ?>
<h3>Your User Object</h3>
<pre><?php print_r($me); ?></pre>
<?php else: ?>
<strong><em>You are not Connected.</em></strong>
<?php endif ?>
</body>
</html>
我收到以下錯誤:
[Wed Apr 27 22:28:16 2011] [error] [client <ip address removed for security reasons>] OAuthException: (#200) The user hasn't authorized the application to perform this action, referer: http://<ip address removed for security reasons>/index.php
原始問卷:
我有以下工作腳本,允許有人使用他們的Facebook詳細信息登錄我的頁面,然后我可以捕獲他們的access_token,所以我可以使用它與圖形api:
<?php
/**
*
* Copyright 2011 Facebook, Inc.
*
* Licensed under the Apache License, Version 2.0 (the "License"); you may
* not use this file except in compliance with the License. You may obtain
* a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
* License for the specific language governing permissions and limitations
* under the License.
*/
require 'facebook.php';
// Create our Application instance (replace this with your appId and secret).
$facebook = new Facebook(array(
'appId' => 'app id goes here',
'secret' => 'secret id goes here',
'cookie' => true,
));
// We may or may not have this data based on a $_GET or $_COOKIE based session.
//
// If we get a session here, it means we found a correctly signed session using
// the Application Secret only Facebook and the Application know. We dont know
// if it is still valid until we make an API call using the session. A session
// can become invalid if it has already expired (should not be getting the
// session back in this case) or if the user logged out of Facebook.
$session = $facebook->getSession();
$me = null;
// Session based API call.
if ($session) {
try {
$uid = $facebook->getUser();
$me = $facebook->api('/me');
} catch (FacebookApiException $e) {
error_log($e);
}
}
// login or logout url will be needed depending on current user state.
if ($me) {
$logoutUrl = $facebook->getLogoutUrl();
} else {
$loginUrl = $facebook->getLoginUrl();
}
?>
<!doctype html>
<html xmlns:fb="http://www.facebook.com/2008/fbml">
<head>
<title>php-sdk</title>
<style>
body {
font-family: 'Lucida Grande', Verdana, Arial, sans-serif;
}
h1 a {
text-decoration: none;
color: #3b5998;
}
h1 a:hover {
text-decoration: underline;
}
</style>
</head>
<body>
<!--
We use the JS SDK to provide a richer user experience. For more info,
look here: http://github.com/facebook/connect-js
-->
<div id="fb-root"></div>
<script>
window.fbAsyncInit = function() {
FB.init({
appId : '<?php echo $facebook->getAppId(); ?>',
session : <?php echo json_encode($session); ?>, // don't refetch the session when PHP already has it
status : true, // check login status
cookie : true, // enable cookies to allow the server to access the session
xfbml : true // parse XFBML
});
// whenever the user logs in, we refresh the page
FB.Event.subscribe('auth.login', function() {
window.location.reload();
});
};
(function() {
var e = document.createElement('script');
e.src = document.location.protocol + '//connect.facebook.net/en_US/all.js';
e.async = true;
document.getElementById('fb-root').appendChild(e);
}());
</script>
<h1><a href="example.php">php-sdk</a></h1>
<?php if ($me): ?>
<a href="<?php echo $logoutUrl; ?>">
<img src="http://static.ak.fbcdn.net/rsrc.php/z2Y31/hash/cxrz4k7j.gif">
</a>
<?php else: ?>
<div>
Using JavaScript & XFBML: <fb:login-button></fb:login-button>
</div>
<?php endif ?>
<h3>Session</h3>
<?php if ($me): ?>
<pre><?php print_r($session); ?></pre>
<h3>You</h3>
<img src="https://graph.facebook.com/<?php echo $uid; ?>/picture">
<?php echo $me['name']; ?>
<h3>Your User Object</h3>
<pre><?php print_r($me); ?></pre>
<?php else: ?>
<strong><em>You are not Connected.</em></strong>
<?php endif ?>
</body>
</html>
用戶登錄后,我了解到我可以通過以下方式獲取他們的朋友列表:
https://graph.facebook.com/me/friends?access_token=...
我無法弄清楚如何使用擴展權限,所以我的應用程序可以發布給用戶朋友的Facebook牆。
顯然我應該使用擴展的權限加上以下內容:
curl -F 'access_token=...' \
-F 'message=Hello, Arjun. I like this new API.' \
https://graph.facebook.com/arjun/feed
我不明白我應該如何從PHP做到這一點。
3 個解決方案
解決方案1
4 已采納 2011-04-26 19:02:17
更新 :
好吧,我自己無法真正測試它,所以只需要一些建議就可以嘗試。 將$loginUrl更改為:
$loginUrl = $facebook->getLoginUrl(array(
'req_perms' => 'publish_stream',
'next' => 'http://'.$_SERVER['SERVER_NAME'].'/success.php',
'cancel_url' => 'http://'.$_SERVER['SERVER_NAME'].'/cancel.php'
));
在整個上下文中,文件的頂部應如下所示:
require 'facebook.php';
$facebook = new Facebook(array(
'appId' => '<appId removed for security reasons>',
'secret' => '<secret removed for security reasons>',
'cookie' => true,
));
$session = $facebook->getSession();
$me = null;
if ($session)
{
try
{
$uid = $facebook->getUser();
$me = $facebook->api('/me');
$post = $facebook->api("/me/feed", "POST", array('message' => 'Hello! I\'m using the FB Graph API!'));
}
catch (FacebookApiException $e)
{
error_log($e);
}
}
else
{
$loginUrl = $facebook->getLoginUrl(array(
'req_perms' => 'publish_stream',
'next' => 'http://' . $_SERVER['SERVER_NAME'] . '/success.php',
'cancel_url' => 'http://' . $_SERVER['SERVER_NAME'] . '/cancel.php'
));
header('Location: ' . $loginUrl);
}
那么,首先檢查您是否有會話,因此您需要像示例中那樣配置Facebook SDK:
$facebook = new Facebook(array(
'appId' => 'app id goes here',
'secret' => 'secret id goes here',
'cookie' => true,
));
然后,您可以檢查用戶是否已登錄並且您的應用已獲得授權:
if ($facebook->getSession() == null) {
// not logged in or not authorized
}
在if -clause中,您必須重定向到正確的login-url以獲得所需的所有權限:
$loginUrl = $facebook->getLoginUrl(array(
'canvas' => 1,
'fbconnect' => 0,
'req_perms' => 'publish_stream',
'next' => // url where to go when you were authorized
'cancel_url' => // url to go to when user cancelled
));
header('Location: '.$loginUrl);
獲得權限后,您可以使用在文檔中提到的發布
$facebook->api(/* url */, array(/* additional parameters go here */));
解決方案2
1 2011-04-26 18:56:09
Facebook的文檔顯示了完成此操作的原始實現,即您粘貼的curl調用。 這基本上只是演示功能,並沒有真正說明如何用您選擇的語言完成任務。
正如邁克爾·羅斯在下面指出的那樣,首先,您需要獲得在用戶牆上發布的擴展許可。 為此,您的$ loginUrl調用應類似於:
$loginUrl = $facebook->getLoginUrl(array(
'canvas' => 1,
'fbconnect' => 0,
'req_perms' => 'publish_stream',
'next' => // url where to go when you were authorized
'cancel_url' => // url to go to when user cancelled
));
這將提示用戶安裝您的應用程序,並允許您訪問publish_stream擴展權限,這需要發布到他們的牆和他們的朋友的牆上。
為了實際制作牆貼,您的代碼將類似於此:
$facebook->api("/{$friends_fb_uid}/feed", "POST",
array('message' => 'Hello! I\'m using the FB Graph API!'));
在獲得用戶的許可后,您應該在POST請求或對頁面的某些請求(如果您願意,甚至是ajax請求)上使用它。 FB PHP SDK應自動獲取用戶的訪問令牌,驗證它並為您發出請求。
解決方案3
0 2011-04-27 22:10:04
嘗試改變
header('Location: '.$loginUrl);
至
echo '<script>top.location="'.$loginUrl.'";</script>';
die();
我不記得在哪里,但我在某處讀到你必須使用javascript進行重定向。 很久以前我讀過它,所以它可能已經改變了。
Facebook應用程序不會彈出以獲取生產站點上的擴展權限
[英]Facebook application doesn't popup for extended permissions on production site
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.