I order to get access to the Facebook API on behalf of a user, one must get an OAuth access_token, the process is well documented (albeit it appears to be some undocumented requirements from FB) but from time to time I get this “Error validating verification code.” when trying to exchange a validation code for an access_token.

There seems to be a lot of people having such trouble and most of the time the redirect_uri seems to be the issue, but here the redirect_uri is fine (it’s exactly the same as the one passed to the auth dialog, ends with a slash and do not have funky characters or a trailing query string, I read almost all threads on SO about this issue and none of the proposed solutions did solve my problem)

What is the most intriguing is that when I check my logs, where I write the exact request url I use, and manually try it to get the access token, then it works. It is like the request is failing when the user logs in but works after some time.

So the fact that it is working after all seems to indicate that the request is fine but there is a problem on the Facebook side, like if there was some replication involved that did not complete between the time the auth dialog do it’s thing and I try to exchange the code for a token.

I put in place a retry mechanism, hoping that the delay between two calls would be enough and the second call would succeed, but it doesn’t work either.

Also, it’s working most of the time and I cannot tell any difference between when it works and when it fails, only the user changes.

Any suggestion would be greatly appreciated.