shrhoads / gwt-oauth2

OAuth2 Client Bindings for the GWT generated javascript
Apache License 2.0
0 stars 0 forks source link

No way to define App Secret for Facebook authentication #33

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
I have taken the authentication code examples straight from the website and 
used in my GWT app. But when popup for Facebook authentication loads up, it 
says an error straight away. I deduce that to the fact that I can not give my 
app secret along with app id in AuthRequest constructor. Or atleast that is 
what I think the issue is, as in every other examples providing app secret for 
facebook seems mandatory. Please advice. Thanks.

What version of the product are you using? On what operating system?
gwt-oauth2-0.2-alpha

Original issue reported on code.google.com by dilsha...@gmail.com on 15 Apr 2012 at 9:32

GoogleCodeExporter commented 9 years ago
To add to this..

I imported the source code into a package within my gwt project and ran it. I 
extended the AuthRequest class to accept client_secret and append it to the URL 
where available.
But despite of all of that, I'm still seeing the error.

Could this be because my redirect URL is in localhost? Thats just a guess, some 
help would be greatly appreciated! Thanks.

Original comment by dilsha...@gmail.com on 18 Apr 2012 at 12:46

Attachments:

GoogleCodeExporter commented 9 years ago
You shouldn't need to include your secret when making the auth request -- 
secrets are only required when using the OAuth 2.0 web server flow, and this 
library uses the JavaScript client flow described here: 
http://developers.facebook.com/docs/authentication/client-side/

Do you have any more details about what the error you originally encountered 
was (before using the secret)? It may be a redirect URI mismatch, in which case 
you need to update your app's OAuth configuration with Facebook.

Original comment by jasonhall@google.com on 18 Apr 2012 at 3:06