I have a webpage that gets a user’s access token and userId (using the

Question

0

Asked: June 14, 20262026-06-14T21:56:43+00:00 2026-06-14T21:56:43+00:00

I have a webpage that gets a user’s access token and userId (using the

0

I have a webpage that gets a user’s access token and userId (using the js api).
I want to send the fb userId I got to a login page on my site, but obviously I need to make sure that the user is really who says he is.

The question is: is it enough to check https://graph.facebook.com/me?access_token=ACCESS_TOKEN

and compare the userId I got and the one in the page above?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-14T21:56:44+00:00

Editorial Team

2026-06-14T21:56:44+00:00Added an answer on June 14, 2026 at 9:56 pm

If you used the FB login functions you can’t be sure the user is who he claims to be.
After that, you just have to retrieve the users session to get he’s details again.

Note that you can use client side and server side code without the need for reauthentication.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have a webpage that gets a user’s access token and userId (using the

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply