We have Android and iOS apps with integrated Facebook login. Recently Facebook disabled our app because "During Login, your app is crashing or hanging excessively". The problem however is not in our app's source code, but somewhere in our FB app configuration. When we try to log in with a Facebook account that is a developer or administrator in our FB app, we get an error from FB 'Unsupported request'. When we try to log in with any other Facebook account, including Facebook test accounts, we get an error "App Not Setup: This app is still in development mode....". See attached screenshots.
Note that our app was live and everything was working fine for years, until recently it was disabled.
Does anyone have an idea what might be the issue?
One thing that I notice in our FB app configuration in the Permissions and Features section, is that the 'email' and 'public profile' permissions have 'Standard Access'. When I try to change it to 'Advance Access', it asks me for my password, but then the access level doesn't change. It stays 'Standard Access'.
We are using very up-to-date SDK versions:
If you're having trouble logging into your Facebook account from your Facebook app: Make sure that you have the latest version of the Facebook app, or delete the app and then reinstall it. Try logging in from a mobile browser (example: Safari, Chrome).
You can reactivate your Facebook account at any time by logging back into Facebook or by using your Facebook account to log in somewhere else. Remember that you'll need to have access to the email or mobile number you use to log in. If you can't remember your password, you can request a new one.
If you see a message that says "Your account has been disabled," you can send an appeal to have it recovered. Facebook may disable your account if you've used it in a way that violates their terms and standards. This includes using a fake name, impersonating someone, sending spam messages, and harassing other users.
[email protected] – You can use this email to contact Facebook to try to recover disabled or hacked accounts, if you need to reset your password, or if you're having problems accessing a page. [email protected] – This email can be used to appeal any suspended accounts or blocked/removed content.
“Your Facebook account was disabled because it did not follow our Community Standards. This decision can’t be reversed.” The surge in complaints about inexplicable bans appears to go back to roughly Wednesday. “Just happened to my wife about 30 minutes ago,” one Reddit user wrote on Wednesday in reference to Facebook’s disabling accounts.
Don't spend a cent to anyone who says they can re-open a disabled account. (we also started getting emails from people claiming they were THE hacker who did it, and for a mere $700, they'd reopen the account. MF'ers). We filled out forms, we opened new FB accounts to attempt to get SOMEONE to talk with.
Disabled Accounts. If your account is disabled, you won't be able to log in. Please keep in mind that there are many reasons why an account might be disabled, and we handle each of these cases differently.
Nothing remotely controversial.” Facebook users complained that their accounts are being banned for no reason. “Apparently my Facebook account has been disabled because it didn’t follow community standards,” one Facebook user said. In a follow-up post, the user said his wife’s account was then restored the next morning without explanation.
In our case, any communication with facebook didn't help. They can't respond to technical level and explain why and what is the error message from their part.
So the solution for us was to make a new Facebook App and set up our apps to use this new FB App ID and release them.
This way Android and iOS worked with latests SDK 12+
We solved this by using older versions of the Facebook SDK. For Android we switched back to version 11.3.0. So in build.gradle we have:
implementation 'com.facebook.android:facebook-android-sdk:11.3.0'.
For iOS we had to switch way back to version 8.2.0. So in Podfile we have:
pod 'FBSDKCoreKit' , '~> 8.2.0' pod 'FBSDKLoginKit', '~> 8.2.0'
It appeared that the problem is in the "openId" permission, which the Facebook SDK is adding silently behind the scene to the list of requested permission. On iOS we found that this is done in class FBSDKLoginManager.m in method -(NSDictionary *) logInParametersWithConfiguration: (FBSDKLoginConfiguration FBSDKServerConfiguration)
We managed to test where the problem comes from on an Android device, which doesn't have the Facebook App installed. In that case, when you try to login, the Facebook SDK opens a browser and the URL can be inspected. We saw the "openId" parameter in the URL path parameters. With that parameter in the URL we had the error message from Facebook. Then we removed the "openId" parameter from the URL and resubmitted the request and it succeeded. That gave us the clue to search where in the Facebook SDK this "openId" parameter gets added to the request and in which version of the SDK it first appears.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With