Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Facebook getUser() function returning user ID after logout

Tags:

facebook

facebook-php-sdk

I'm developing using the Facebook PHP SDK.

I wanted to make it so that when the user logs out of Facebook, they will automatically be logged out of my website too.

I am using the following code to detect the session, using the session cookie:

$facebook->getUser();

For some reason, the getUser() function still returns the user's Facebook ID, even after they have logged out of Facebook on their website.

Am I to detect the session first using another Function?

On the official documentation example here, is the following excerpt from their comments:

// Get User ID
$user = $facebook->getUser();

// We may or may not have this data based on whether the user is logged in.
//
// If we have a $user id here, it means we know the user is logged into
// Facebook, but we don't know if the access token is valid. An access
// token is invalid if the user logged out of Facebook.

This lead me to believe that the session cookie for Facebook would become unset upon Facebook logout?

Kind Regards,

Luke

like image 628
Luke Avatar asked Sep 04 '11 22:09

Luke

2 Answers

I have the same issue!

The FB PHP SDK saves those things into the $_SESSION! You can delete them like this when your user clicks logout:

$_SESSION['fb_'.APP_ID.'_user_id'] = '';
$_SESSION['fb_'.APP_ID.'_access_token'] = '';

Although this is not the final solution, it works for now.

I appreciate comments and solutions on that!

like image 99
Michael Ionita Avatar answered Nov 17 '22 08:11

Michael Ionita

I want to give an alternative, in a way you don't have to handle session stuff. Although, I must warn you this is slower than cleaning up the session, because it relies on a new request. What we're doing in the code below is to check on Facebook if the token is still valid. Here it's:

try {
    $facebook->api('/me','GET');
    $logged = true;
} catch(FacebookApiException $e) {
    $logged = false;
}

In my case, I was doing everything using the JavaScript SDK, so I couldn't clean session on logout. But in my landing page, I was needing a work around to check it before send the response back.

If you're facing something like this, definitely a good solution.

like image 3
Ramon K. Avatar answered Nov 17 '22 10:11

Ramon K.
Sign in to Comment

Related questions

Android share intent chooser
facebook ios sdk 3.1.1 FBSession completionHandler not removed
Facebook open graph GraphMethodException error code 100
jQuery/iframe not working in Chrome
How to open Facebook App from browser directly to share view
Getting, (#803) Some of the aliases you requested do not exist error
Google, Facebook Sign in support with Flutter
Facebook OAuth login for iframe canvas apps displays a logo image and a Go to Facebook.com caption instead of logging in
Why does Facebook's Open Graph protocol require an fb:admins or fb:app_id .. and what is the importance of this property?
facebook send dialog prepopulated with text
What is Facebook's new Tornado framework?
keytool with Android Facebook SDK
Maintaining Secret key and Access Token for JWT in Express and NodeJS with Facebook in Rest API
Facebook, Django, and Google App Engine
Total number of Facebook Likes for entire domain
How does "Facebook Connect", "Sign in with Twitter", etc. work technologically?
Implementing External Authentication for Mobile App in ASP.NET WebApi 2
How to remove the "Be the first of your friends to like this" part of the standard iframe Facebook Like button?
Can I use a free self signed SSL certificate for a secure Canvas URL?
facebook share link returning 404 redirect error when page exists

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!