FAQ Database Discussion Community


How is native client only Facebook Login secure if you never send your client secret to get an access token?

facebook,oauth,oauth-2.0,facebook-oauth
When you integrate Facebook Login into your app, there are essentially 2 (OK, there are more than 2, but for this question I'm just concerned with these 2) ways to get an access token: Have FB return a code to your app, which you then exchange for an access token...

Facebook login for desktop apps

facebook,facebook-graph-api,facebook-oauth
Our desktop app (written in Java and running on windows but not registered on the Windows app store) needs to publish images on the user's Facebook profile (using publish_actions rights). While our implementation works in test mode (we're able to publish on test user's profile), our application submission for approval...