Facebook graph api 访问令牌不';不包含任何作用域
我想得到一份朋友名单,上面有他们的名字、当前位置和个人资料图片。我在GRAPH API explorer工具中执行了查询和访问令牌(带有所需的作用域参数),它工作正常--> 但是每次我执行应用程序时,我都会得到一个没有所需作用域的访问令牌(它没有)。如何将作用域发送到访问令牌 我要给访问令牌的作用域:作用域:朋友\位置用户\位置用户\关系 我在本地主机环境中工作Facebook graph api 访问令牌不';不包含任何作用域,facebook-graph-api,scope,facebook-javascript-sdk,facebook-access-token,Facebook Graph Api,Scope,Facebook Javascript Sdk,Facebook Access Token,我想得到一份朋友名单,上面有他们的名字、当前位置和个人资料图片。我在GRAPH API explorer工具中执行了查询和访问令牌(带有所需的作用域参数),它工作正常--> 但是每次我执行应用程序时,我都会得到一个没有所需作用域的访问令牌(它没有)。如何将作用域发送到访问令牌 我要给访问令牌的作用域:作用域:朋友\位置用户\位置用户\关系 我在本地主机环境中工作 <html> <head></head> <body> <div id="fb
<html>
<head></head>
<body>
<div id="fb-root"></div>
<script src="//connect.facebook.net/en_US/all.js"></script>
<script js.src = "//connect.facebook.net/en_US/all/debug.js"></script>
<script>
var accessToken
var uid
window.fbAsyncInit = function() {
FB.init({
appId : '493774134048550', // App ID
channelUrl : '//localhost/Facebook', // Channel File
status : true, // check login status
cookie : true, // enable cookies to allow the server to access the session
xfbml : true // parse XFBML
});
// Here we subscribe to the auth.authResponseChange JavaScript event. This event is fired
// for any authentication related change, such as login, logout or session refresh. This means that
// whenever someone who was previously logged out tries to log in again, the correct case below
// will be handled.
FB.Event.subscribe('auth.authResponseChange', function(response) {
// Here we specify what we do with the response anytime this event occurs.
if (response.status === 'connected') {
// The response object is returned with a status field that lets the app know the current
// login status of the person. In this case, we're handling the situation where they
// have logged in to the app.
uid = response.authResponse.userID;
accessToken = response.authResponse.accessToken;
console.log(uid);
console.log(accessToken);
testAPI(function(response) {
// handle the response
uid = response.authResponse.userID;
accessToken = response.authResponse.accessToken;
console.log(uid);
console.log(accessToken);
}, {scope: 'friends_location, user_location, user_relationships'});
} else if (response.status === 'not_authorized') {
// In this case, the person is logged into Facebook, but not into the app, so we call
// FB.login() to prompt them to do so.
// In real-life usage, you wouldn't want to immediately prompt someone to login
// like this, for two reasons:
// (1) JavaScript created popup windows are blocked by most browsers unless they
// result from direct interaction from people using the app (such as a mouse click)
// (2) it is a bad experience to be continually prompted to login upon page load.
//FB.login();
FB.login(function(response) {
// handle the response
uid = response.authResponse.userID;
accessToken = response.authResponse.accessToken;
console.log(uid);
console.log(accessToken);
}, {scope: 'friends_location, user_location, user_relationships'});
} else {
// In this case, the person is not logged into Facebook, so we call the login()
// function to prompt them to do so. Note that at this stage there is no indication
// of whether they are logged into the app. If they aren't then they'll see the Login
// dialog right after they log in to Facebook.
// The same caveats as above apply to the FB.login() call here.
// FB.login();
FB.login(function(response) {
// handle the response
uid = response.authResponse.userID;
accessToken = response.authResponse.accessToken;µ
console.log(uid);
console.log(accessToken);
}, {scope: 'friends_location, user_location, user_relationships'});
}
}, {scope: 'friends_location, user_location, user_relationships'});
};
// Load the SDK asynchronously
(function(d){
var js, id = 'facebook-jssdk', ref = d.getElementsByTagName('script')[0];
if (d.getElementById(id)) {return;}
js = d.createElement('script'); js.id = id; js.async = true;
js.src = "//connect.facebook.net/en_US/all.js";
ref.parentNode.insertBefore(js, ref);
}(document));
// Here we run a very simple test of the Graph API after login is successful.
// This testAPI() function is only called in those cases.
function testAPI() {
console.log('Welcome! Fetching your information.... ');
//FB.api('/me', function(response) {
// console.log('Good to see you, ' + response.name + '.');
// console.log(response);
//});
///me/friends?fields=name,location,picture&accesstoken=CAACEdEose0cBAFhNXAYgMjfAPWNxGZAdNdEJ6s2GAyIQp4zicpV0ZBZCeVINbiLvIxaFl33N0I1gZAZArREsHmOGiqQX2HPaNZCiU4W4Nq3VA12TrreKfeOtFSMvmZC8c1qYqu85NZAzzWDXWH5foXIWfPFk1ZBScNbAZD
FB.api('/'+uid+'/friends?fields=name,location,picture&accesstoken='+accessToken, function(response) {
//FB.api('/'+uid+'/friends?fields=name,location,picture&accesstoken=CAACEdEose0cBAJayThSg77Ydil76EM0W4zuJ9l29yKoIxlu6g37ZAX1CWQhpTStBL48xoX5g0Bbe8Va4wr6qqT2ft5tZBoNDZCWFYF7TtwmBnTDOSGWruOp0pSS9Ws1phfl5wiFbHeZAyUbdZBDdx3GLBHeysn6EZD', function(response) {
var teller1 = 0;
console.log('Good to see you, ' + response.name + '.');
console.log(response.data);
for (var i=0;i<response.data.length;i++)
{
if(response.data[i].name && response.data[i].location && response.data[i].picture){
console.log(response.data[i].name);
console.log(response.data[i].location.name);
console.log(response.data[i].picture.data.url);
teller1++;
}
//<img border="0" src="console.log(response.data[0].picture.data.url)">
}
console.log(teller1); //aantal gebruikers met naam, locatie en picture
console.log(response.data.length); //aantal gebruikers in totaal
});
}
//Logout
function fbLogout() {
FB.init();
FB.logout(function (response) {
//Do what ever you want here when logged out like reloading the page
window.location.reload();
});
}
</script>
<!--
Below we include the Login Button social plugin. This button uses the JavaScript SDK to
present a graphical Login button that triggers the FB.login() function when clicked.
Learn more about options for the login button plugin:
/docs/reference/plugins/login/ -->
<fb:login-button show-faces="true" width="200" max-rows="1"></fb:login-button>
<span id="fbLogout" onclick="fbLogout()"><a class="fb_button fb_button_medium"><span class="fb_button_text">Logout</span></a></span>
</body>
</html>
var访问令牌
变量uid
window.fbAsyninit=函数(){
FB.init({
appId:'493774134048550',//应用ID
channelUrl:“//localhost/Facebook”,//频道文件
状态:true,//检查登录状态
cookie:true,//启用cookie以允许服务器访问会话
xfbml:true//解析xfbml
});
//这里我们订阅auth.authResponseChangeJavaScript事件
//用于任何与身份验证相关的更改,例如登录、注销或会话刷新
//每当以前注销的用户尝试再次登录时,下面的正确案例
//我们会处理的。
FB.Event.subscribe('auth.authResponseChange',函数(响应){
//在这里,我们指定在发生此事件时如何处理响应。
如果(response.status===“已连接”){
//响应对象返回一个状态字段,让应用程序知道当前状态
//此人的登录状态。在本例中,我们正在处理他们
//已登录到应用程序。
uid=response.authResponse.userID;
accessToken=response.authResponse.accessToken;
控制台日志(uid);
日志(accessToken);
testAPI(功能(响应){
//处理响应
uid=response.authResponse.userID;
accessToken=response.authResponse.accessToken;
控制台日志(uid);
日志(accessToken);
},{范围:'朋友位置,用户位置,用户关系'});
}else if(response.status===“未授权”){
//在这种情况下,此人登录了Facebook,但没有登录到应用程序,因此我们呼叫
//FB.login()来提示他们这样做。
//在现实生活中,您不会希望立即提示某人登录
//像这样,有两个原因:
//(1)大多数浏览器都会阻止JavaScript创建的弹出窗口,除非
//使用该应用程序的用户直接交互的结果(如鼠标单击)
//(2)页面加载时不断提示登录是一种不好的体验。
//FB.login();
FB.登录(功能(响应){
//处理响应
uid=response.authResponse.userID;
accessToken=response.authResponse.accessToken;
控制台日志(uid);
日志(accessToken);
},{范围:'朋友位置,用户位置,用户关系'});
}否则{
//在本例中,此人未登录Facebook,因此我们称其为login()
//函数提示他们这样做。请注意,在此阶段没有任何指示
//他们是否登录到应用程序。如果他们没有,他们将看到登录
//在他们登录Facebook后立即进行对话。
//上面的警告同样适用于这里的FB.login()调用。
//FB.login();
FB.登录(功能(响应){
//处理响应
uid=response.authResponse.userID;
accessToken=response.authResponse.accessToken;µ
控制台日志(uid);
日志(accessToken);
},{范围:'朋友位置,用户位置,用户关系'});
}
},{范围:'朋友位置,用户位置,用户关系'});
};
//异步加载SDK
(职能(d){
var js,id='facebook jssdk',ref=d.getElementsByTagName('script')[0];
if(d.getElementById(id)){return;}
js=d.createElement('script');js.id=id;js.async=true;
js.src=“//connect.facebook.net/en_US/all.js”;
ref.parentNode.insertBefore(js,ref);
}(文件);
//在这里,我们在登录成功后运行一个非常简单的Graph API测试。
//此testAPI()函数仅在这些情况下调用。
函数testAPI(){
log('欢迎!获取您的信息…);
//FB.api('/me',函数(响应){
//log(“很高兴见到你,+response.name+”);
//控制台日志(响应);
//});
///我/朋友?字段=姓名、位置、图片和访问令牌=CAACEDEOSE0CBAFHNxAygmJFAPWNxGzADNDEJ6S2GAYIQP4ZICPV0ZCEVINBILVIXAFL33N0I1GZAZARRESHMOGIQX2HPANZCIU4W4NQ3VA12TRREKFEOTSMVMZC8C1QYQU85NZZWDXWH5FOXIWFK1ZBSCNBAZD
FB.api('/'+uid+'/friends?字段=名称、位置、图片和accesstoken='+accesstoken、函数(响应){
//FB.api('/'+uid+'/friends?fields=name、location、picture和accesstoken=caacedeose0cbajaythsg77ydil76em0w4zuj9l29ykoixlu6g37zax1cwqhptstbl48xox5g0bbe8va4wr6qqt2ft5tzbondzcwyf7ttwmbnstodosgruops9ws1pfl5wifbayubddx3glbheysn6ezd'函数(响应){
var=1=0;
log(“很高兴见到你,+response.name+”);
console.log(response.data);
对于(var i=0;i替换response.status==“connected”下的代码。删除原始代码中添加作用域的所有其他部分。(您只需在此处添加)
你试过通过查看你的令牌吗?这表明什么?它是空的。但现在我有了一个正确的访问令牌。问题是我没有要求FB.login使用scope@正确的位置。我必须在连接时询问它,否则,访问令牌(使用正确的作用域)第一次登录被不带任何作用域的访问令牌替换后。切勿在异步回调中直接使用FB.login,它将立即被PopubLocker阻止。
if (response.status === 'connected') {
// The response object is returned with a status field that lets the app know the current
// login status of the person. In this case, we're handling the situation where they
// have logged in to the app.
if(accessToken)
{
// alert("Connected WITH accesToken");
testAPI();
}
else{
// alert("Connected WITHOUT accesToken");
FB.login(function(response) {
// handle the response
uid = response.authResponse.userID;
accessToken = response.authResponse.accessToken;
console.log(uid);
console.log(accessToken);
}, {scope: 'friends_location, user_location, user_relationships'});
}