具有嵌入式表單處理的單頁Facebook應用-簽名請求問題
[英]single page facebook app with embedded form processing - signed request issue
問題描述
我正在使用同一個頁面上的注冊表處理我的第一個Facebook Fanpage應用程序。
該應用程序的工作方式如下:
- 檢查Facebook用戶是否已登錄->否,要求登錄,如果是,則將基本用戶數據記錄到我的數據庫table1(mysql)中,
- 檢查用戶是否喜歡我的Facebook頁面->否,要求單擊“贊”按鈕,如果是,請繼續下一步,
- 檢查用戶數據是否已經存在於我的數據庫表中2->否,打印出注冊表格並將其發送到同一頁面以在mysql中處理
- 用戶注冊后,實際的專有內容應顯示給用戶。
我的問題是,在發送注冊表后,用戶返回到“非粉絲”區域(盡管他已經很喜歡該頁面,因此應該看到僅粉絲內容),並且單詞“ ERROR”被打印在頁面的頂部。這一頁。 ->這意味着在頁面的開始處“ isset($ _ REQUEST ['signed_request'])”將返回false。
這是我的代碼:
<?php
require '../facebook-php-sdk/src/facebook.php';
$facebook = new Facebook(array(
'appId' => 'fb-app-id',
'secret' => 'fb-app-secret',
'cookie' => true,
));
$user = $facebook->getUser();
function saveuser(&$id, &$name, &$email, &$ip, $hostname, $browser, &$like) {
mysql_connect('host', 'user', 'password');mysql_set_charset('utf8');mysql_select_db('mydatabase');
mysql_query("INSERT INTO mytable1 (id,name,email,ip,hostname,browser,fblike) VALUES ($id, '$name', '$email', '$ip', '$hostname', '$browser', $like)");
mysql_close();
}
function checkuser(&$id) {
mysql_connect('host', 'user', 'password');mysql_set_charset('utf8');mysql_select_db('mydatabase');
$query="SELECT phone, round, points FROM mytable2 WHERE fbuserid = " .$id. " ORDER BY timecreated DESC LIMIT 1";
$result=mysql_query($query);
mysql_close();
return $result;
}
?>
<html><head><title>page title</title></head>
<body>
<?php
if (isset($_REQUEST['signed_request'])) {
$encoded_sig = null;
$payload = null;
list($encoded_sig, $payload) = explode('.', $_REQUEST['signed_request'], 2);
$sig = base64_decode(strtr($encoded_sig, '-_', '+/'));
$signed_request = json_decode(base64_decode(strtr($payload, '-_', '+/'), true),true);
} else { echo "ERROR"; }
if ($signed_request['page']['liked']) { $like = 1; } else { $like = 0; }
if ($user) { try {
$user_profile = $facebook->api('/me','GET');
$name = $user_profile['name'];
$email = $user_profile['email'];
$id = $user_profile['id'];
$ip = $_SERVER['REMOTE_ADDR'];
$hostname = gethostbyaddr($ip);
$browser = $_SERVER['HTTP_USER_AGENT'];
saveuser($id, $name, $email, $ip, $hostname, $browser, $like);
} catch(FacebookApiException $e) {
?>
<script type="text/javascript">
//<![CDATA[
var oauth_url = 'https://www.facebook.com/dialog/oauth/';
oauth_url += '?client_id=fb-app-id';
oauth_url += '&redirect_uri=' + encodeURIComponent('https://www.facebook.com/fb-page-name?sk=app_fb-app-id');
oauth_url += '&scope=email'
window.top.location = oauth_url;
//]]>
</script>
<?php } } else { // User not logged in or we need user permission ?>
<script type="text/javascript">
//<![CDATA[
var oauth_url = 'https://www.facebook.com/dialog/oauth/';
oauth_url += '?client_id=fb-app-id';
oauth_url += '&redirect_uri=' + encodeURIComponent('https://www.facebook.com/fb-page-name?sk=app_fb-app-id');
oauth_url += '&scope=email'
window.top.location = oauth_url;
//]]>
</script>
<?php }
if ($like == 1) { // user is fan of my facebook page
$userdata = checkuser($id);
if (mysql_num_rows($userdata) > 0) { // user is registered
$userphone=mysql_result($userdata,0,telefon);
$roundscompleted=mysql_result($userdata,0,round);
$currentpoints=mysql_result($userdata,0,points);
?>
Here comes extended html content visible only for users who have liked my page and completed the registration form.
<?php } else { // user is not registered
if ($_POST['emailaddress'] != "") { // process user registration
mysql_connect('host', 'user', 'password');mysql_set_charset('utf8');mysql_select_db('mydatabase');
$id = $_POST['fbuserid'];
$name = mysql_real_escape_string($_POST['fullname']);
$email = mysql_real_escape_string($_POST['emailaddress']);
$mobile = mysql_real_escape_string($_POST['phonenumber']);
mysql_query("INSERT INTO mytable2 (fbuserid,regname,regemail,telefon) VALUES ('$id', '$name', '$email', '$mobile')");
mysql_close();
/*
On this point, the page should be reloaded and checkuser() function should return user data.
What happens is "ERROR" gets printed on top of page and user gets back to the "non-fan area".
*/
} else { // user not registered - print registration form ?>
<form id="regisztracio" name="regisztracio" method="post" action="<?php echo $_SERVER['PHP_SELF']; ?>">
<fieldset><legend>Registration form</legend>
<label>Your name</label>
<input type="text" name="fullname" id="fullname" value="<?php echo $name; ?>" />
<br style="clear:both;" />
<label>Your e-mail</label>
<input type="text" name="emailaddress" id="emailaddress" value="<?php echo $email; ?>" />
<br style="clear:both;" />
<label>Your phone number</label>
<input type="text" name="phonenumber" id="phonenumber" />
<br style="clear:both;" />
<input name="fbuserid" type="hidden" value="<?php echo $id; ?>" />
<input name="submitreg" type="submit" class="submit" value="Register" />
</fieldset></form>
<?php } } } else { // non-fan area ?>
Here comes basic html content asking the user to click on the like button and become a fan of my facebook page.
<?php } ?>
</body>
</html>
非常感謝您的幫助!
1 個解決方案
解決方案1
1 已采納 2012-09-25 11:43:57
這意味着頁面的開始處的“ isset($ _ REQUEST ['signed_request']))”返回false。
當然可以-因為signed_request參數僅在初始頁面加載時才發布到您的頁面。 在用戶開始在iframe中的應用內導航之后,它不再存在。
因此,在每個請求上,檢查是否有一個 signed_request參數-如果是,請將其(最好是解碼版本)保存到會話中。
每當需要查找值時,都可以在會話中查找它。
在iframe標簽頁中訪問Facebook signature_request參數
[英]Accessing the Facebook signed_request parameter in iframe tab page
Facebook選項卡在經過身份驗證的用戶的簽名請求中丟失頁面信息
[英]Facebook Tab lose page information in signed request for authenticated users
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.