Question

我正在使用解析服务器在我的网站上登录Facebook，但当然，我有Facebook PHP SDK的所有代码来处理登录，并且它工作正常，直到几个几天前。 “ 这是我在尝试登录时遇到的错误：

网址已阻止：此重定向失败，因为重定向URI不是已在应用的客户端OAuth设置中列入白名单。确保启用了客户端和Web OAuth登录，并将所有应用程序域添加为有效的OAuth重定向URI。

我的Facebook登录设置：

这是我的 fb-callback.php 脚本：

<?php
require_once 'fb-autoload.php';
include 'Configs.php';
// include 'fbconfig.php';

$fb = new Facebook\Facebook([
  'app_id' => $_GLOBALS["FACEBOOK_APP_ID"],
  'app_secret' => $_GLOBALS["FACEBOOK_APP_SECRET"],
  'default_graph_version' => 'v2.3',
  ]);

$helper = $fb->getRedirectLoginHelper();

if (isset($_GET['state'])) {
    $helper->getPersistentDataHandler()->set('state', $_GET['state']);
}


try {
  $accessToken = $helper->getAccessToken();
} catch(Facebook\Exceptions\FacebookResponseException $e) {
  // When Graph returns an error
  echo 'Graph returned an error: ' . $e->getMessage();
  exit;
} catch(Facebook\Exceptions\FacebookSDKException $e) {
  // When validation fails or other local issues
  echo 'Facebook SDK returned an error: ' . $e->getMessage();
  exit;
}

if (! isset($accessToken)) {
  if ($helper->getError()) {
    header('HTTP/1.0 401 Unauthorized');
    echo "Error: " . $helper->getError() . "\n";
    echo "Error Code: " . $helper->getErrorCode() . "\n";
    echo "Error Reason: " . $helper->getErrorReason() . "\n";
    echo "Error Description: " . $helper->getErrorDescription() . "\n";
  } else {
    header('HTTP/1.0 400 Bad Request');
    echo 'Bad request';
  }
  exit;
}

// Logged in
// echo '<h3>Access Token:</h3>';
// var_dump($accessToken->getValue());

// The OAuth 2.0 client handler helps us manage access tokens
$oAuth2Client = $fb->getOAuth2Client();

// Get the access token metadata from /debug_token
$tokenMetadata = $oAuth2Client->debugToken($accessToken);
// echo '<h3>METADATA:</h3>';
// var_dump($tokenMetadata);


// Validation (these will throw FacebookSDKException's when they fail)
$tokenMetadata->validateAppId($_GLOBALS["FACEBOOK_APP_ID"]); // Replace {app-id} with your app id
// If you know the user ID this access token belongs to, you can validate it here
//$tokenMetadata->validateUserId('123');
$tokenMetadata->validateExpiration();

if (! $accessToken->isLongLived()) {
  // Exchanges a short-lived access token for a long-lived one
  try {
    $accessToken = $oAuth2Client->getLongLivedAccessToken($accessToken);
  } catch (Facebook\Exceptions\FacebookSDKException $e) {
    echo "<p>Error getting long-lived access token: " . $helper->getMessage() . "</p>\n\n";
    exit;
  }

  //echo '<h3>Long-lived</h3>';
  //var_dump($accessToken->getValue());
}

$_SESSION['fb_access_token'] = (string) $accessToken;

// User is logged in with a long-lived access token.
// You can redirect them to a members-only page.
// header('Location: login.php');

// CHECK IF SESSION IS OK, GET GRAPH OBJECT AND GO BACK TO login.php
if (isset($_SESSION)) {

  $response = $fb->get('/me?fields=id,name', $accessToken);
  $node = $response->getGraphNode();

  // Get ID, Name and Email of Facebook user
  $fbid = $node->getField('id');         // To Get Facebook ID
  $fbfullname = $node->getField('name'); // To Get Facebook full name
  $femail = $node->getField('email');    // To Get Facebook email ID
  // $token = $session->getToken(); // Get Access Token
  $token = $_SESSION['fb_access_token'];


  // ---- Session Variables -----
  $_SESSION['FBID'] = $fbid;
  $_SESSION['FULLNAME'] = $fbfullname;
  $_SESSION['EMAIL'] =  $femail;
  $_SESSION['TOKEN'] = $token;


// ---- GO TO fb-login.php ----
header("Location: fb-login-confirm.php");

} else {
    $loginUrl = $helper->getLoginUrl();
    header("Location: ".$loginUrl);
}
?>

我不知道是否需要编辑/添加其他内容，正如我上面所说，我的FB登录工作直到几天才开始。

Answer 1

问题非常简单，我的网址有效OAuth重定向URI 字段中缺少 www ：

 https://www.example.com/woopy/fb-callback.php

Facebook登录PHP：URL已阻止：此重定向失败，因为重定向URI未在应用的客户端OAuth设置中列入白名单

1 个答案: