Menu
I'm trying to use the Facebook Graph API to grab photo albums from Facebook and place them on a website I'm working on. I am using PHP as my language with the Codeigniter framework and am redirecting to a Facebook URL to get an access token for the user. Facebook returns an access token to me and I grab it and insert it into my database.
That being said, when I try to grab the JSON data for the photo album by going to to a the graph URL, it returns an error. The graph URL and error are:
https://graph.facebook.com/1298926000574/photos?access_token=[MY ACCESS TOKEN] My access token: AQBxqdB64GHNTGY5Yp_IOuMY7NerwNtXVVrp2HwT1qXj02zqU-63KJDyB2jzqurlJ4M0vd7TAu7upA6T7ZYQzIChr2PgD1dpu-6Iebi0WVILbBSBOu-yj7sgcHSGS-Ew4Yio0I9In-1O5jOxbYLDMbI0Zmwk-F1-u-7a8iVvTJram8PvpmdRt5eg Returned error: { "error": { "message": "Malformed access token [MY ACCESS TOKEN]", "type": "OAuthException", "code": 190 } } I'm really unsure why Facebook keeps returning this error to me. The access token is quite long and I'm storing it in my database as a "text" field. I followed their instructions and now they are shooting me in the foot. Any help would be much appreciated.
310
Message: Error validating access token: The user is enrolled in a blocking, logged-in checkpoint. This error message means that your Facebook user account has failed a security checkpoint and needs to log in at Facebook or the Facebook Business Manager to correct the issue.
You can simply request https://graph.facebook.com/me?access_token=xxxxxxxxxxxxxxxxx if you get an error, the token is invalid. If you get a JSON object with an id property then it is valid. Unfortunately this will only tell you if your token is valid, not if it came from your app.
I had this same problem and I found this post searching for a solution. I noticed that 'our' access token had a lot of odd symbols, while others are just an Alphanumeric string.
I believe that the mistake you (and I) made was mixing the code with the access_token
After sending the facebook user to your api to confirm access, they get returned to your website with $_GET['code']. This code needs to be verified with Facebook, who will return the access_token on success.
$app_id = [YOUR_APP_ID]; $app_secret = [YOUR_APP_SECRET]; $my_url = [THE_SAME_AS_THE_POST_BEFORE]; $code = $_GET['code']; $token_url = "https://graph.facebook.com/oauth/access_token?" . "client_id=" . $app_id . "&redirect_uri=" . urlencode($my_url) . "&client_secret=" . $app_secret . "&code=" . $code; $response = file_get_contents($token_url); $params = null; json_decode($response, $params); $access_token = $params['access_token']; More info about fetching an access_token with PHP
More info about using the correct redirect_uri
87
One wp plugin was returning same error, and this was the solution, it may be related to your problem:
Php requests the access_token, and facebook servers return it.
The returned message containing access_token USED to be a like:
access_token=....... But for newly created applications (2012), facebook servers return:
access_token=.....&expires=..... If your code is parsing this wrongly, as in
$access_token=str_replace('access_token=','',$message); then your $access_token wrongly contains the extra &expires etc.
it should be parsed like:
parse_str($message,$ar); $access_token=$ar['access_token']; If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
